Self Storage Bayswater Privacy Policy
This Privacy Policy explains how Self Storage Bayswater collects, uses, stores and protects personal data relating to our customers and prospective customers. It also explains your rights under the UK General Data Protection Regulation and related data protection laws. This Privacy Policy applies to all Self Storage Bayswater customers and prospective customers in the Bayswater area, whether you contact us online, by post, or in person at our facilities.
Who We Are and Scope of This Policy
Self Storage Bayswater is the controller of the personal data described in this Privacy Policy. As the controller, we determine how and why your personal data is processed. This Policy applies to all services we provide, including storage unit rentals, related services, customer accounts, enquiries and marketing activities directed at individuals in the Bayswater area.
By using our services or contacting us, you acknowledge that you have read and understood this Privacy Policy. We may update this Policy from time to time to reflect changes in our practices or legal requirements. The version displayed on our website will always be the most current version.
Personal Data We Collect
We collect and process different types of personal data depending on how you interact with us and which services you use. The categories of data we may collect include:
Identification and contact details such as your full name, postal address, billing address, contact address, date of birth, and other information needed to identify you and communicate with you.
Account and contract information such as storage unit number, contract start and end dates, rental terms, payment status, service preferences, and correspondence relating to your account.
Payment and billing data such as payment method details, billing history, invoices, and records of payments made. Where required, we may record limited information from payment cards or bank accounts in a secure and compliant way.
Verification and security information such as copies or details of identity documents where required to confirm your identity, vehicle registration numbers for site access, and access codes or fob identifiers.
Facility access and CCTV data including logs of entry and exit to the facility, access control records, and images captured by closed circuit television systems installed for safety and security.
Communication data including records of emails, letters, forms, and notes of phone calls or face to face enquiries, along with any feedback or complaints you submit.
Marketing preferences such as your choices about receiving marketing communications from us and how you prefer to be contacted.
How We Collect Your Data
We collect personal data directly from you when you enquire about our services, request a quote, sign a rental agreement, create or update an account, make a payment, visit our premises, or communicate with us by any channel. We may also receive data from third parties that support our services, for example payment service providers, referencing agencies if used, and maintenance or security contractors who operate on our behalf.
Lawful Basis for Processing
We only process your personal data when a lawful basis under data protection law applies. Depending on the situation, we rely on the following lawful bases:
Contract performance where processing is necessary to enter into or perform a contract with you, such as creating your storage agreement, administering your account, processing payments, and providing customer support.
Legal obligations where we are required to comply with laws and regulations, including tax and accounting rules, health and safety obligations, and obligations to assist law enforcement or regulatory authorities when lawfully requested.
Legitimate interests where processing is necessary for our legitimate business interests, provided those interests are not overridden by your rights and freedoms. Our legitimate interests include securing our facilities, preventing fraud, managing and improving our services, maintaining business records, and defending legal claims.
Consent where you have clearly agreed to a specific use of your data, for example receiving certain types of marketing communications. Where we rely on consent, you may withdraw it at any time without affecting the lawfulness of processing carried out before withdrawal.
How We Use Your Personal Data
We use the personal data we collect for the following purposes:
To provide storage and related services including setting up and managing your storage agreement, granting access to your storage unit, and handling day to day account administration.
To take and process payments including raising invoices, collecting payments, managing arrears, and processing refunds where applicable.
To communicate with you about your account such as sending important notices about your contract, payment reminders, service updates, or changes to our terms and conditions.
To maintain security and safety including controlling access to the premises, monitoring for unauthorised activity, and using CCTV systems to help protect people and property.
To manage and improve our business including staff training, internal reporting, quality assurance, service development, and analysis of how our services are used.
To comply with legal and regulatory requirements including maintaining records for tax and audit purposes, responding to lawful requests from public authorities, and managing legal or insurance claims.
To send marketing communications where permitted including information about our storage services, offers, and customer updates, always respecting your marketing preferences and rights to opt out.
Data Retention
We keep your personal data only for as long as is necessary for the purposes described in this Privacy Policy or as required by law. The length of time we keep data will vary depending on the type of information and the reasons we process it.
Customer account, contract and billing records are generally retained for a period required by tax, accounting and limitation laws so that we can respond to questions about past transactions and meet our legal obligations.
CCTV recordings and access control logs are retained for a shorter period, usually only long enough to investigate incidents, enforce our site rules, or assist law enforcement, unless a longer retention is required in connection with an ongoing investigation, dispute or legal claim.
Marketing data linked to your preferences and contact details is kept while you remain a customer or prospective customer, unless you opt out of marketing or request deletion and we have no overriding lawful reason to retain it.
When personal data is no longer needed, we take steps to securely delete or anonymise it so that it can no longer be associated with you.
Data Processors and Sharing
We may share your personal data with carefully chosen third parties who act as our processors and provide services on our behalf. These may include payment processing providers, IT and cloud hosting providers, customer management systems, security and CCTV maintenance providers, document storage and shredding services, and professional advisers such as accountants or legal advisers.
Where we use processors, they are only permitted to process your personal data in accordance with our instructions, for the purposes we specify, and subject to appropriate confidentiality and security requirements. We do not sell your personal data.
We may also need to share personal data with other organisations that act as independent controllers, such as banks involved in payments, insurers handling claims, or public authorities such as the police, courts, tax authorities or regulators where we are legally required or permitted to do so.
If personal data is transferred outside the United Kingdom or European Economic Area, we take steps to ensure that adequate safeguards are in place, such as using standard contractual clauses or relying on other legally recognised transfer mechanisms.
Data Security
We take the security of your personal data seriously and use appropriate technical and organisational measures to protect it from unauthorised access, loss, alteration or disclosure. These measures include access controls, secure storage, encryption where appropriate, staff training, and regular review of our security practices.
Your Data Protection Rights
You have several rights in relation to the personal data we hold about you, subject to certain legal conditions and exemptions. These rights include:
The right of access to obtain confirmation as to whether we process your personal data and to receive a copy of the data we hold about you, together with certain information about how it is processed.
The right to rectification to have inaccurate or incomplete personal data corrected or completed.
The right to erasure in certain circumstances, for example where the data is no longer needed for the purposes for which it was collected, you withdraw consent where consent was the only lawful basis, or you successfully object to processing. This right may be limited where we have a legal obligation or other lawful reason to retain the data.
The right to restriction of processing in certain circumstances, such as when the accuracy of the data is contested or you have objected to processing and the matter is under review.
The right to data portability to receive certain personal data in a structured, commonly used and machine readable format and to have that data transmitted to another controller where technically feasible and where the processing is based on consent or contract and carried out by automated means.
The right to object to processing where we rely on legitimate interests as our lawful basis, including for direct marketing. If you object to direct marketing, we will stop processing your data for that purpose.
The right not to be subject to a decision based solely on automated processing, including profiling, where that decision has legal or similarly significant effects on you, unless specific legal conditions apply.
You also have the right to lodge a complaint with a supervisory authority if you believe that your data protection rights have been infringed. In the United Kingdom, this is the Information Commissioner's Office.
How To Exercise Your Rights
If you would like to exercise any of your data protection rights, or if you have any questions about how we handle your personal data, you can contact us using the contact details provided on our website or by writing to us at our Bayswater facility. We will respond to your request as soon as reasonably possible and within the time limits set by data protection law. When necessary, we may ask you to provide information to help us verify your identity before acting on your request.
We are committed to protecting your privacy and handling your personal data in a fair, lawful and transparent manner. Your trust is important to us, and we will continue to review and improve our data protection practices to ensure that your information remains secure while you use Self Storage Bayswater services in the Bayswater area.
