Privacy Policy - Landscaping Poplar

Last updated: This Privacy Policy explains how Landscaping Poplar collects, uses, shares, and protects personal data. It applies to all Landscaping Poplar customers in the area, including individuals who request services, receive quotations, make bookings, or otherwise interact with us. We are committed to processing personal data in a lawful, fair, and transparent manner in accordance with the UK GDPR and the Data Protection Act 2018.

1. Who We Are

Landscaping Poplar provides landscaping and related outdoor services to customers in the area. For the purposes of data protection law, we act as the data controller for the personal data we collect and use about our customers, suppliers, and website or enquiry users. This means we determine the purposes and means of processing personal data.

2. Personal Data We Collect

We only collect personal data that is relevant and necessary for providing our services, managing customer relationships, meeting legal duties, and operating our business. The categories of data we may collect include:

  • Identity data: name, title, and similar identifying information.
  • Contact data: address, email address, telephone number, and communication preferences.
  • Service and project data: details of requested landscaping work, site notes, property information, quotations, plans, and service history.
  • Payment and transaction data: invoice details, payment records, and billing information.
  • Technical data: limited device and usage information if you interact with our digital systems, such as IP address and basic log data.
  • Correspondence data: records of emails, calls, messages, feedback, complaints, and other communications.
  • Business and compliance data: records required for accounting, tax, insurance, safeguarding, or legal compliance.

We do not intentionally collect special category data unless it is strictly necessary and you have provided it voluntarily or it is otherwise permitted by law. If such information is ever needed, we will apply additional safeguards.

3. How We Collect Personal Data

We may collect personal data directly from you when you:

  • request information or a quotation;
  • book or receive services;
  • communicate with us by phone, email, message, or in writing;
  • make a payment or receive an invoice;
  • leave feedback or submit a complaint; or
  • otherwise interact with us as a customer, prospect, or supplier.

We may also receive data from third parties where appropriate, such as referral partners, payment providers, professional advisers, insurers, or public sources, but only where permitted by law and relevant to our relationship with you.

4. Why We Use Personal Data

We use personal data for legitimate business and legal purposes, including:

  • providing quotations, scheduling work, and delivering landscaping services;
  • managing customer accounts and records;
  • processing payments, issuing invoices, and handling refunds or disputes;
  • communicating with customers about appointments, service updates, or requests;
  • maintaining internal records and service quality;
  • meeting tax, accounting, insurance, and legal obligations;
  • preventing fraud, misuse, or security incidents;
  • responding to complaints, claims, or legal inquiries; and
  • improving our services and business operations.

5. Lawful Basis for Processing

We process personal data only where we have a valid lawful basis under the UK GDPR. Depending on the circumstances, we rely on the following lawful bases:

Contract

We process personal data where it is necessary to take steps at your request before entering into a contract, or to perform a contract with you. This includes preparing quotations, arranging services, and managing ongoing customer work.

Legitimate Interests

We may process personal data where it is necessary for our legitimate interests, provided those interests are not overridden by your rights and freedoms. Our legitimate interests include operating and improving our business, communicating with customers, protecting our services, and maintaining records. We always consider whether the processing is proportionate and whether it has a minimal privacy impact.

Legal Obligation

We process personal data where necessary to comply with legal obligations, including tax, accounting, consumer protection, insurance, and record-keeping requirements.

Consent

In limited situations, we may rely on your consent, for example where it is required by law for certain types of communication or optional processing. Where we rely on consent, you can withdraw it at any time, without affecting the lawfulness of processing carried out before withdrawal.

6. How We Share Personal Data

We may share personal data with trusted third parties where necessary for the purposes described in this policy. These third parties may act as processors or independent controllers, depending on the service they provide. We only share the minimum information needed and require appropriate data protection safeguards.

Processors We Use

Examples of processors may include:

  • IT and cloud service providers that host our records, email, or operational systems;
  • payment processing providers that handle card or electronic payments;
  • accounting and bookkeeping providers that assist with financial records and tax compliance;
  • customer management or scheduling providers that help organise bookings and service delivery;
  • professional advisers such as lawyers, insurers, auditors, or consultants where relevant;
  • delivery or subcontracting partners when required to complete requested services;
  • regulatory, law enforcement, or public authorities where disclosure is required by law.

Where a third party acts as our processor, they are contractually required to process personal data only on our instructions, keep it secure, and comply with applicable data protection requirements.

7. International Transfers

If any of our service providers process data outside the UK, we will ensure appropriate safeguards are in place before transfer occurs. These may include adequacy regulations, standard contractual clauses, or equivalent legal protections. We aim to keep data transfers to a minimum and to use providers with strong privacy and security standards.

8. Data Retention

We keep personal data only for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting, and reporting requirements. Retention periods vary depending on the type of data and the reason we hold it.

  • Customer and service records are retained for the duration of the relationship and for a reasonable period afterwards.
  • Financial, invoice, and tax records are generally retained for the period required by law.
  • Communication records may be retained for a period needed to manage enquiries, disputes, or service history.
  • Data no longer needed is securely deleted, anonymised, or archived in line with our retention practices.

We regularly review records to ensure we do not keep personal data for longer than necessary.

9. Security of Personal Data

We take appropriate technical and organisational measures to protect personal data against loss, misuse, unauthorised access, alteration, or disclosure. These measures may include access controls, secure storage, staff awareness, and regular review of our systems and procedures. While no system can be guaranteed completely secure, we work to maintain a level of protection that is appropriate to the nature of the data we process.

10. Your Rights

Under data protection law, you may have the following rights in relation to your personal data:

  • Right of access: to request a copy of the personal data we hold about you.
  • Right to rectification: to ask us to correct inaccurate or incomplete data.
  • Right to erasure: to request deletion of your data in certain circumstances.
  • Right to restrict processing: to ask us to limit how we use your data in certain situations.
  • Right to object: to object to processing based on legitimate interests or direct marketing.
  • Right to data portability: to receive certain data in a structured, commonly used format where applicable.
  • Right to withdraw consent: where processing is based on consent.

These rights are not absolute and may be subject to exemptions or legal limitations. We will respond to valid requests in line with applicable data protection law.

11. Children’s Data

Our services are generally intended for adults. We do not knowingly collect personal data from children except where it is incidental or necessary in the context of providing services and where lawful to do so. If we become aware that we have collected data unlawfully, we will take appropriate steps to delete or secure it.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or service arrangements. Any updated version will apply from the date it is published or otherwise communicated. We encourage customers to review this policy periodically so they remain informed about how their data is used.

13. Fair Processing Notice

We are committed to using personal data responsibly and respectfully. Our approach is based on the principles of lawfulness, fairness, transparency, data minimisation, accuracy, storage limitation, integrity, and confidentiality. We will only use personal data for the reasons described in this policy or for compatible purposes allowed by law.

By engaging Landscaping Poplar, requesting services, or providing your information, you acknowledge that your personal data may be processed in accordance with this Privacy Policy.

Landscaping Poplar

GDPR-compliant Privacy Policy for Landscaping Poplar covering data collection, lawful basis, retention, processors, and user rights for all customers in the area.

Get a quote
man-img
grass-img

Get In Touch With Us.

Please fill out the form below to send us an email and we will get back to you as soon as possible.