Privacy Policy - Worcesterpark Storage

Effective date: This Privacy Policy applies to all Worcesterpark Storage customers in the area and explains how we collect, use, store, share, and protect personal data in line with the UK GDPR and the Data Protection Act 2018.

1. Introduction

Worcesterpark Storage is committed to protecting the privacy and security of personal data. This Privacy Policy sets out what information we collect, why we collect it, the lawful bases we rely on, how long we keep it, which third parties may process it on our behalf, and the rights available to individuals under data protection law.

By using our storage services, requesting a quote, making an enquiry, entering into a storage agreement, or otherwise interacting with us, you acknowledge that your personal data may be processed as described in this Policy.

2. Data We Collect

We only collect data that is necessary and relevant to operating our storage services, managing customer relationships, maintaining security, and meeting legal obligations. The types of personal data we may collect include:

  • Identity data: name, title, date of birth, and identification details where needed for verification.
  • Contact data: postal address, email address, telephone number, and any preferred communication details.
  • Account and contract data: storage unit number, rental start and end dates, payment status, correspondence records, and service preferences.
  • Financial data: payment method information, transaction records, invoices, receipts, and related billing information. We do not retain unnecessary card details where a payment provider handles such information securely.
  • Security and access data: entry logs, CCTV recordings, alarm records, incident reports, and other information used to protect the site and stored goods.
  • Communications data: enquiries, complaints, service requests, and any messages you send to us.
  • Technical data: IP address, browser type, device information, and usage data if you interact with digital systems we use for business operations.

We generally do not seek to collect special category personal data. If such data is inadvertently provided to us, we will handle it in accordance with applicable law and only where a valid legal basis exists.

3. How We Use Personal Data

We use personal data for the following purposes:

  • to provide and manage storage services;
  • to verify identity and prevent fraud;
  • to process bookings, payments, refunds, and invoices;
  • to communicate about contracts, access arrangements, service updates, and account matters;
  • to maintain site security and protect property;
  • to handle disputes, complaints, and claims;
  • to meet legal, regulatory, tax, and accounting obligations;
  • to improve our service, operations, and customer experience;
  • to enforce our terms and protect our legal rights.

We will only use your personal data where the law allows us to do so and will not process it in a way that is incompatible with the purposes set out in this Policy.

4. Lawful Basis for Processing

Under data protection law, we must have a lawful basis for processing personal data. Depending on the situation, Worcesterpark Storage may rely on one or more of the following lawful bases:

Contract

We process personal data where it is necessary to enter into or perform a contract with you. This includes setting up storage agreements, managing accounts, handling payments, and delivering the services you have requested.

Legal obligation

We may process personal data where necessary to comply with legal obligations, including record-keeping, tax requirements, fraud prevention, health and safety obligations, and lawful requests from authorities.

Legitimate interests

We may process personal data where it is necessary for our legitimate interests, provided that those interests are not overridden by your rights and freedoms. Our legitimate interests include maintaining site security, preventing theft and misuse, managing customer relationships, improving our services, and protecting our business.

Consent

In limited cases, we may rely on your consent, for example for certain optional communications or processing activities where consent is the most appropriate basis. Where we rely on consent, you may withdraw it at any time.

5. Sharing and Processors

We may share personal data with trusted third parties who act as processors or, in some cases, as independent controllers. These parties are only permitted to use the data for specified purposes and are required to safeguard it appropriately.

Typical processors and recipients may include:

  • Payment service providers for handling card or electronic payments;
  • IT and cloud service providers that host systems, manage data storage, or support communications;
  • Security service providers that support CCTV, alarm systems, access control, or incident management;
  • Accountancy and professional advisers for financial, audit, legal, or compliance purposes;
  • Debt recovery or legal service providers where necessary to recover unpaid amounts or protect our rights;
  • Public authorities, law enforcement, and regulators where disclosure is required by law or necessary to respond to lawful requests.

We take reasonable steps to ensure that any processor we engage provides sufficient guarantees regarding the security, confidentiality, and lawful handling of personal data. Where data is transferred outside the United Kingdom, we will ensure appropriate safeguards are in place in accordance with applicable law.

6. Data Retention

We keep personal data only for as long as necessary for the purposes for which it was collected, including for satisfying legal, accounting, or reporting requirements. Retention periods vary depending on the nature of the information and the reason for processing.

  • Customer contract and account records: kept for the duration of the agreement and for a period afterwards to handle queries, disputes, or legal claims.
  • Payment and invoice records: kept in line with tax and accounting obligations.
  • Security records such as access logs and CCTV: retained only for as long as necessary for security, incident response, or investigation purposes.
  • General correspondence: retained for a reasonable period depending on the nature of the communication.

When data is no longer needed, we will delete it securely or anonymise it so that it can no longer identify you.

7. Data Security

We use appropriate technical and organisational measures to protect personal data against accidental loss, unauthorised access, misuse, alteration, or disclosure. These measures may include access controls, staff confidentiality obligations, secure storage, password protection, and monitoring of systems where appropriate.

No method of transmission or storage is completely secure, but we regularly review our practices to reduce risk and strengthen protection.

8. Your Rights

Under data protection law, you have a number of rights in relation to your personal data. These rights may be subject to conditions and exceptions, depending on the circumstances.

  • Right of access: you can request confirmation of whether we process your data and obtain a copy of it.
  • Right to rectification: you can ask us to correct inaccurate or incomplete data.
  • Right to erasure: you can ask us to delete your data in certain circumstances.
  • Right to restriction: you can ask us to limit how we use your data in certain situations.
  • Right to object: you can object to processing based on legitimate interests or direct marketing.
  • Right to data portability: you can request certain data in a structured, commonly used format where applicable.
  • Right to withdraw consent: where we rely on consent, you may withdraw it at any time.

If you believe your data is inaccurate, outdated, or being used unfairly, you may request a review and we will respond in accordance with our legal obligations.

9. Children’s Data

Our storage services are intended for adults. We do not knowingly collect personal data from children. If we become aware that we have inadvertently collected such data without a valid legal basis, we will take steps to delete it promptly.

10. Automated Decision-Making

We do not use personal data for decisions based solely on automated processing that produce legal or similarly significant effects. If this changes, we will update this Policy and provide the information required by law.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect operational, legal, or regulatory changes. Any updated version will apply from the date it is published, unless stated otherwise. We encourage customers to review this Policy periodically to stay informed about how we protect personal data.

12. Summary of Our Commitment

Worcesterpark Storage is committed to handling personal data lawfully, fairly, and transparently. We collect only the information needed to provide storage services, keep our site secure, meet legal duties, and support our customers. We use appropriate safeguards, limit retention to what is necessary, and respect the rights of all individuals whose data we process.

This Privacy Policy applies to all Worcesterpark Storage customers in the area.

Call Now!
Call Now Get a Quote
Worcesterpark Storage

GDPR-compliant Privacy Policy for Worcesterpark Storage covering data collection, lawful basis, retention, processors, and user rights for all local customers.

Get a Quote

Get In Touch With Us.

Please fill out the form below to send us an email and we will get back to you as soon as possible.