Privacy Policy - Tree Surgeons Raynespark
This Privacy Policy explains how Tree Surgeons Raynespark collects, uses, stores, shares, and protects personal data when providing tree surgery and related services. It applies to all Tree Surgeons Raynespark customers in the area, including individuals, landlords, businesses, property managers, and organisations that request our services or communicate with us in connection with an enquiry, quotation, booking, or completed work.
We are committed to handling personal data in a lawful, fair, and transparent way in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This policy is intended to help you understand what information we collect, why we collect it, how long we keep it, and the rights you have over your data.
1. Personal Data We Collect
We only collect personal data that is necessary for us to deliver our services, manage customer relationships, comply with legal duties, and operate our business effectively. The types of information we may collect include:
- Identity information such as your name or the name of your company or property owner.
- Contact details such as postal address, email address, and telephone number.
- Property and service information such as site access details, tree locations, service instructions, and photographs of trees or premises relevant to the work.
- Payment and invoicing information where needed to manage billing, accounts, and receipts.
- Communication records including emails, messages, call notes, and enquiries.
- Technical information if you use our digital systems, such as basic device or usage data collected through security and performance tools.
- Health and safety information where necessary for risk assessment, site safety, or to protect workers and customers.
In most cases, we collect data directly from you when you make an enquiry, request a quotation, book a service, or communicate with us. We may also receive information from third parties such as landlords, agents, neighbours, contractors, or public sources where this is relevant to the work being carried out and permitted by law.
2. How We Use Personal Data
We use personal data for clear and limited purposes connected to our tree surgery services. These purposes include:
- Responding to enquiries and providing quotations.
- Arranging site visits, assessing work requirements, and planning service delivery.
- Carrying out tree surgery, tree maintenance, pruning, removal, stump work, or related services.
- Managing bookings, invoices, payments, and records.
- Maintaining safety records, risk assessments, and work documentation.
- Handling complaints, queries, or follow-up requests.
- Meeting legal, regulatory, tax, insurance, and contractual obligations.
- Improving the quality, efficiency, and security of our services.
We will not use personal data for purposes that are incompatible with the reasons it was collected unless we have a lawful basis to do so and, where required, your permission.
3. Lawful Basis for Processing
Under data protection law, we must have a lawful basis to process your personal data. Depending on the situation, we may rely on one or more of the following:
Contract
We process personal data when it is necessary to enter into or perform a contract with you. For example, this includes preparing a quote, booking work, delivering services, issuing invoices, and managing aftercare connected to a service request.
Legal Obligation
We may process data where we need to comply with legal duties, including tax rules, accounting requirements, health and safety obligations, insurance requirements, and record-keeping duties.
Legitimate Interests
We may process personal data where it is necessary for our legitimate business interests, provided those interests are not overridden by your rights and freedoms. Examples include managing our operations, preventing fraud, ensuring site safety, keeping basic business records, improving our services, and defending legal claims.
Consent
In limited situations, we may rely on your consent, for example where it is the most appropriate basis for a particular type of optional communication or use of data. If consent is used, you can withdraw it at any time.
4. Retention of Personal Data
We keep personal data only for as long as necessary for the purpose for which it was collected, unless a longer retention period is required or permitted by law. Retention periods depend on the type of information and the reason it is held.
- Customer and service records are generally retained for as long as needed to manage the relationship and for a reasonable period afterwards.
- Financial and accounting records are retained for the period required by tax and accounting laws.
- Health and safety records may be retained for longer periods where needed to demonstrate compliance or manage risk.
- Enquiry records may be kept for a limited time where no service is booked, in order to handle follow-up communication and business administration.
When personal data is no longer required, it is securely deleted, anonymised, or archived in a way that prevents unnecessary access.
5. Sharing Personal Data and Processors
We may share personal data with trusted third parties where necessary for the operation of our business or the provision of our services. These third parties act as processors or, in some cases, separate data controllers.
Processors may include:
- IT and cloud service providers that host data, email, or business management systems.
- Accounting and invoicing providers that help with financial administration.
- Payment processors that handle secure payment transactions.
- Customer relationship and communication tools used to manage enquiries and service records.
- Health and safety or compliance services where required for risk management and legal obligations.
- Professional advisers such as insurers, legal advisers, or accountants.
We require processors to act only on our instructions, to protect personal data appropriately, and to use it only for the services they provide to us. We do not sell personal data. If data is disclosed to a third party because the law requires it, we will only do so when lawful and necessary.
6. Data Security
We take reasonable technical and organisational measures to protect personal data from loss, misuse, unauthorised access, alteration, or disclosure. These measures may include access controls, secure storage, password protection, limited employee access, and regular review of data handling practices.
While we aim to protect your data, no system can be guaranteed to be completely secure. If a data incident occurs that affects your personal data, we will respond in line with our legal obligations.
7. Your Rights
As a data subject, you have several rights under data protection law. These rights may apply depending on the circumstances and the legal basis for processing.
- Right of access - you can request a copy of the personal data we hold about you.
- Right to rectification - you can ask us to correct inaccurate or incomplete data.
- Right to erasure - you can request deletion of your data in certain situations.
- Right to restrict processing - you can ask us to limit how we use your data in specific cases.
- Right to object - you can object to processing based on legitimate interests in certain circumstances.
- Right to data portability - you can request your data in a structured, commonly used format in some cases.
- Right to withdraw consent - where we rely on consent, you may withdraw it at any time.
Important: some rights may not apply where we are legally required to keep data or where processing is necessary for contractual, legal, or compliance reasons.
8. International Transfers
Where any service provider stores or accesses data outside the United Kingdom, we will take appropriate steps to ensure your personal data remains protected to the standard required by law. This may include the use of approved transfer safeguards and contractual protections.
9. Cookies and Similar Technologies
If digital tools or systems are used to support our business, they may place cookies or similar technologies on devices for security, performance, or functionality. Where required, we will provide appropriate notice and seek consent before using non-essential technologies.
10. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, or data handling practices. Any updates will take effect when published or otherwise communicated. We encourage you to review this policy periodically so you remain informed about how your data is used.
11. Summary of Your Choices
You may choose not to provide certain information, but this may affect our ability to respond to enquiries, deliver services, or meet legal requirements. Wherever possible, we aim to keep data collection limited, relevant, and proportionate to the service requested.
By using our services, requesting a quotation, or communicating with Tree Surgeons Raynespark, you acknowledge that your personal data may be processed as described in this policy. We are committed to treating your information with care, confidentiality, and respect.