Privacy Policy - Streatham Storage

Effective date: This Privacy Policy applies to all Streatham Storage customers in the area and explains how we collect, use, store, share, and protect personal data in connection with our storage services.

Streatham Storage is committed to handling personal information fairly, lawfully, and transparently in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who this policy applies to

This Privacy Policy applies to all customers, prospective customers, account holders, authorised users, and individuals who interact with Streatham Storage in the area, including those who:

  • Request a quotation or make an enquiry
  • Open or manage a storage account
  • Use our storage facilities or related services
  • Communicate with us by any means
  • Provide information as an emergency contact, guarantor, or authorised representative

By using our services, you acknowledge that this policy explains our data practices for all Streatham Storage customers in the area.

2. Personal data we collect

We collect only the personal data needed to provide and manage our services, maintain security, meet legal obligations, and administer our business. The types of information we may collect include:

Information you provide directly

  • Name, title, and contact details
  • Billing address and correspondence address
  • Email address and telephone number
  • Date of birth and identity information where required
  • Payment information and transaction records
  • Vehicle registration details, access credentials, or booking information
  • Communication preferences and customer service correspondence
  • Information provided in complaints, claims, or service requests

Information collected automatically

  • Access logs and facility entry records
  • CCTV footage where used for security, safety, and crime prevention
  • Device and usage information from our systems or online forms
  • Technical data such as IP address, browser type, and timestamps

Information from third parties

  • Identity verification providers
  • Payment service providers
  • Credit reference or fraud prevention services where lawful and appropriate
  • Law enforcement bodies, regulators, insurers, or legal advisers
  • Anyone you authorise to act on your behalf

We do not intentionally collect special category personal data unless it is necessary and permitted by law, such as where you voluntarily disclose health-related information in a customer support context or where legal claims require it.

3. How we use personal data

We use personal data for the following purposes:

  • To register and administer storage accounts
  • To verify identity and prevent fraud
  • To manage payments, invoices, refunds, and account balances
  • To communicate about bookings, access, safety, and service updates
  • To monitor and protect our premises, staff, customers, and property
  • To respond to enquiries, complaints, and disputes
  • To comply with legal, tax, accounting, and regulatory duties
  • To maintain business records and improve our services

We only use personal data for purposes that are compatible with the reason it was collected or where we have another lawful basis to do so.

4. Lawful basis for processing

Under UK GDPR, we must have a lawful basis for each type of processing. Streatham Storage relies on the following lawful bases:

Contract

We process personal data where it is necessary to enter into or perform a contract with you. This includes creating accounts, managing access to storage units, processing payments, and delivering agreed services.

Legal obligation

We process data where necessary to comply with legal obligations, including tax, accounting, fraud prevention, health and safety, and responding to lawful requests from public authorities.

Legitimate interests

We may process data where it is necessary for our legitimate business interests and where those interests are not overridden by your rights and freedoms. Examples include security monitoring, service improvement, loss prevention, and internal administration.

Consent

In limited situations, we may rely on your consent, for example for certain optional communications. Where consent is used, you may withdraw it at any time. Withdrawal will not affect processing already carried out lawfully before withdrawal.

Vital interests

In rare circumstances, we may process information to protect someone’s vital interests, such as in an emergency affecting health or safety.

5. How we share personal data

We may share personal data only when necessary and subject to appropriate safeguards. We do not sell personal data. We may disclose information to:

  • Payment processors for collecting and reconciling payments
  • IT and cloud service providers that support our systems, communications, and data storage
  • Security and monitoring providers where CCTV or access control is used
  • Professional advisers such as accountants, auditors, insurers, and legal advisers
  • Debt recovery or credit reference services where necessary and lawful
  • Regulators, courts, police, or other authorities when required by law or to protect rights, property, or safety

Where we use third-party processors, they are contractually required to act only on our instructions, keep data secure, and comply with applicable data protection law.

6. Processors and service providers

We may appoint external processors to carry out tasks on our behalf. These may include:

  • Customer relationship management and booking systems
  • Cloud hosting and data backup providers
  • Electronic payment handling services
  • Email and messaging providers
  • Physical security and CCTV support services
  • Document storage and administrative support services

All processors are selected carefully and are required to maintain appropriate technical and organisational security measures. Where a processor is located outside the UK, we will ensure that suitable safeguards are in place, such as an adequacy decision or approved contractual protections.

7. Retention of personal data

We keep personal data only for as long as necessary for the purposes described in this policy, including to satisfy legal, accounting, and reporting requirements. Retention periods vary depending on the nature of the data and why it was collected.

Typical retention periods

  • Customer account records: kept for the duration of the contract and for a reasonable period afterwards
  • Financial and tax records: retained for the periods required by law, typically up to six years or longer where necessary
  • Security logs and access records: retained only as long as needed for security, investigation, or incident management
  • CCTV footage: retained for a limited period unless needed for an investigation or legal claim
  • Enquiry records: retained for business administration and follow-up purposes for a proportionate period

When data is no longer required, we will delete it, anonymise it, or securely destroy it. We review retention periodically to ensure we do not keep personal data longer than necessary.

8. Data security

We use appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, or disclosure. These measures may include access controls, role-based permissions, secure storage, staff confidentiality obligations, and monitoring of suspicious activity.

While we work hard to protect data, no system can be guaranteed completely secure. If a personal data breach occurs and we are legally required to do so, we will notify the relevant authority and affected individuals without undue delay.

9. Your rights

Under UK data protection law, you have a number of rights in relation to your personal data. Subject to legal limits and exemptions, you may have the right to:

  • Access the personal data we hold about you
  • Rectify inaccurate or incomplete information
  • Erase your data in certain circumstances
  • Restrict processing in certain cases
  • Object to processing based on legitimate interests or direct marketing
  • Data portability for information you provided to us in a structured, commonly used format, where applicable
  • Withdraw consent where processing is based on consent

You also have the right to complain to the Information Commissioner’s Office (ICO) if you are unhappy with how we handle your personal data. We encourage customers to raise concerns with us first so we can address them promptly.

10. Children’s data

Our services are intended for adults. We do not knowingly collect personal data from children except where necessary and lawful in a limited family, contact, or emergency context. If we learn that we have collected data from a child inappropriately, we will take steps to delete it.

11. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in law, operations, or data handling practices. When we do, we will make the updated version available and revise the effective date where appropriate.

12. Summary of our commitment

Streatham Storage is committed to processing personal data lawfully, fairly, and transparently. We collect only what is needed, use it for clear and legitimate purposes, share it only with trusted processors and authorities when necessary, and retain it only for as long as required. Your privacy matters to us, and we are dedicated to protecting it.

Call Now!
Call Now Get a Quote
Streatham Storage

GDPR-compliant Privacy Policy for Streatham Storage covering data collection, lawful basis, retention, processors, and user rights for all local customers.

Get a Quote

Get In Touch With Us.

Please fill out the form below to send us an email and we will get back to you as soon as possible.