Privacy Policy - Oakleighpark Storage

Effective Date: This Privacy Policy applies to all Oakleighpark Storage customers in the area and explains how we collect, use, store, share, and protect personal data in connection with our storage services.

Oakleighpark Storage is committed to handling personal information in a lawful, fair, and transparent manner in accordance with the UK GDPR and the Data Protection Act 2018. We respect the privacy of our customers, visitors, and any other individuals whose personal data we process. This policy describes what data we collect, why we collect it, how long we keep it, who may process it on our behalf, and what rights you have over your information.

1. Who This Policy Applies To

This Privacy Policy applies to all customers of Oakleighpark Storage in the area, including individuals, sole traders, business customers, and any authorised representatives using or enquiring about our storage services. It also applies to persons whose information we collect when they interact with us for account setup, security purposes, payments, deliveries, access control, or customer support.

2. Information We Collect

We collect only the personal data that is necessary to provide and manage our storage services, maintain security, and meet legal obligations. The information we may collect includes:

  • Identity details: name, date of birth, and identification information where required for verification.
  • Contact details: address, email address, telephone number, and emergency contact information where applicable.
  • Account and contract information: storage unit details, booking records, tenancy agreements, service preferences, and correspondence.
  • Payment information: billing address, payment status, transaction records, and limited payment details processed through secure payment systems.
  • Security and access data: access logs, CCTV images where used, entry times, and incident reports.
  • Communication data: records of emails, calls, messages, complaints, and service requests.
  • Technical data: basic device and usage information if you interact with our digital systems, such as IP address or browser data, where this is necessary for security and functionality.

We do not intentionally collect special category data unless it is provided by you and is necessary for a specific legal or operational purpose. Where such data is processed, we do so only when permitted by law and with appropriate safeguards.

3. How We Use Your Personal Data

We use personal data for the following purposes:

  • to create and manage customer accounts and storage agreements;
  • to verify identity and prevent fraud;
  • to process payments, invoices, refunds, and account balances;
  • to provide access to storage facilities and maintain site security;
  • to communicate with customers about bookings, renewals, notices, and service updates;
  • to handle queries, complaints, claims, and dispute resolution;
  • to comply with legal and regulatory obligations;
  • to protect the rights, property, and safety of Oakleighpark Storage, our customers, staff, and visitors;
  • to improve our services, systems, and customer experience.

We only process personal data when we have a lawful basis to do so.

4. Lawful Basis for Processing

Under UK GDPR, we must identify a lawful basis for each processing activity. Oakleighpark Storage relies on the following lawful bases:

Contract

We process personal data where it is necessary to enter into or perform a contract with you, such as managing your storage agreement, billing, access rights, and service communications.

Legal Obligation

We may process personal data where required to comply with legal obligations, including accounting, tax, fraud prevention, safety requirements, and lawful requests from authorities.

Legitimate Interests

We may process personal data where it is necessary for our legitimate business interests, provided your rights and freedoms do not override those interests. This includes safeguarding premises, preventing misuse, maintaining records, and improving our services. When we rely on this basis, we consider whether the processing is necessary and proportionate.

Consent

In limited situations, we may rely on your consent, for example for certain optional communications or specific uses that are not covered by another lawful basis. Where consent is used, you may withdraw it at any time.

5. Sharing Your Data and Processors

We do not sell your personal data. However, we may share it where necessary and lawful with trusted third parties who act as data processors or independent controllers.

Processors may include:

  • Payment service providers that process card or online payments securely;
  • IT and cloud service providers that host or maintain our records, systems, and security tools;
  • Security service providers that support CCTV, alarm systems, access control, or site monitoring;
  • Professional advisers such as accountants, auditors, insurers, and legal advisers;
  • Delivery or logistics partners where needed to support operational arrangements;
  • Public authorities where disclosure is required by law or to protect rights, safety, or property.

All processors are required to handle personal data only on our instructions, keep it secure, and comply with applicable data protection laws. We use written contracts with processors to ensure they provide appropriate safeguards.

6. Data Retention

We keep personal data only for as long as necessary for the purposes for which it was collected, including legal, accounting, insurance, and reporting requirements. Retention periods depend on the type of data and the reason for processing.

  • Contract and account records: retained for the duration of the storage relationship and for a reasonable period afterward to deal with disputes, queries, or legal claims.
  • Financial and tax records: retained for the period required by law and relevant accounting rules.
  • Security records: such as access logs and CCTV footage, retained for a limited period unless needed longer for an incident, investigation, or legal matter.
  • Enquiry records: retained for as long as needed to respond to your request and for service management purposes.

When personal data is no longer required, it is securely deleted, anonymised, or destroyed. We review retention periods regularly to ensure data is not kept longer than necessary.

7. Data Security

We take appropriate technical and organisational measures to protect personal data against unauthorised access, accidental loss, alteration, disclosure, or destruction. These measures may include access controls, password protection, secure storage, staff training, restricted permissions, and monitored systems.

While we work to protect your data, no system can be guaranteed completely secure. If a personal data incident occurs, we will assess the situation and take steps in line with applicable data protection laws.

8. Your Rights

Under data protection law, you have a number of rights in relation to your personal data. These rights may be subject to legal limits and exemptions.

  • Right of access: you may request a copy of the personal data we hold about you.
  • Right to rectification: you may ask us to correct inaccurate or incomplete information.
  • Right to erasure: you may request deletion of your data in certain circumstances.
  • Right to restriction: you may ask us to limit how we use your data in specific situations.
  • Right to object: you may object to processing based on legitimate interests or direct marketing.
  • Right to data portability: you may request that certain data be provided in a structured, commonly used format.
  • Right to withdraw consent: where processing is based on consent, you may withdraw it at any time.

If you exercise any of these rights, we may need to verify your identity before responding. We will respond within the time limits set by law.

9. Automated Decision-Making

Oakleighpark Storage does not normally use automated decision-making that produces legal or similarly significant effects on customers. If this changes, we will update this policy and provide relevant information about the logic involved and your rights.

10. International Transfers

Where personal data is transferred outside the United Kingdom, we ensure that appropriate safeguards are in place, such as adequacy regulations, standard contractual clauses, or other lawful transfer mechanisms required by data protection law.

11. Third-Party Links and External Services

Our services may involve third-party providers for payments, security, or administration. These third parties may have their own privacy notices. We encourage you to review those notices where relevant, as they explain how those organisations handle your data.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, or operational practices. The latest version will apply from the date it is published or communicated to you. We encourage customers to review this policy periodically to stay informed.

13. Summary of Our Commitment

Oakleighpark Storage is committed to protecting the personal data of all customers in the area. We collect only what we need, use it for clear and lawful purposes, keep it only for as long as necessary, and share it only with trusted processors or where required by law. We also respect your rights and aim to process your information in a secure, transparent, and responsible way.

If you are a customer and wish to exercise your data protection rights, we will handle your request in accordance with applicable law.

Call Now!
Call Now Get a Quote
Oakleighpark Storage

GDPR-compliant Privacy Policy for Oakleighpark Storage covering data collection, lawful basis, retention, processors, and user rights for all customers in the area.

Get a Quote

Get In Touch With Us.

Please fill out the form below to send us an email and we will get back to you as soon as possible.