Privacy Policy - Greenford Storage

Greenford Storage is committed to protecting the privacy and personal data of our customers, visitors, and anyone who interacts with us in connection with our storage services. This Privacy Policy explains how we collect, use, share, retain, and protect personal data, and it describes the rights available to individuals under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

This policy applies to all Greenford Storage customers in area, including current, former, and prospective customers, as well as any individuals whose personal data is processed by us in the course of providing storage services. By using our services or providing personal data to us, you acknowledge the practices described in this policy.

1. Information We Collect

We collect only the personal data that is necessary and relevant for providing our storage services, managing our business, and meeting legal obligations. The types of information we may collect include:

  • Identity information: name, date of birth, and identification details where required for verification.
  • Contact information: address, email address, telephone number, and other communication details.
  • Account and service information: booking details, storage unit number, rental dates, payment records, and correspondence relating to your account.
  • Financial information: billing details, payment method information, and transaction records. We do not store full payment card details unless this is necessary for a specific transaction and handled securely through approved systems.
  • Security and access information: records relating to access to our premises, CCTV images where applicable, and incident reports.
  • Technical information: device information, IP address, and usage data collected when you interact with digital systems used to manage our services.

We may also receive information from third parties, such as payment providers, identity verification services, insurers, or legal representatives, where this is required for our operations or permitted by law.

2. How We Use Personal Data

We use personal data only for clear and legitimate purposes. These include:

  • providing storage services and managing customer accounts;
  • processing bookings, payments, invoices, and refunds;
  • verifying identity and preventing fraud;
  • operating and securing our facilities, including access control and CCTV monitoring where in use;
  • communicating about your account, services, changes, or important notices;
  • responding to queries, complaints, or legal claims;
  • meeting legal, regulatory, accounting, and insurance obligations;
  • improving our services, systems, and customer experience;
  • establishing, exercising, or defending legal rights.

We will not use personal data for purposes that are incompatible with the reasons it was collected unless we have a lawful basis to do so.

3. Lawful Basis for Processing

Under data protection law, we must identify a lawful basis before processing personal data. Depending on the circumstances, Greenford Storage relies on the following lawful bases:

Performance of a Contract

We process personal data where it is necessary to enter into or perform a contract with you. This includes setting up your storage agreement, managing your account, taking payment, and providing access to your storage unit.

Legal Obligation

We process personal data where necessary to comply with legal obligations, such as tax, accounting, anti-fraud, health and safety, and record-keeping requirements.

Legitimate Interests

We may process personal data where it is necessary for our legitimate interests, provided these interests are not overridden by your rights and freedoms. Legitimate interests may include maintaining security, preventing misuse of our facilities, managing business operations, improving services, and protecting our legal position.

Consent

In limited situations, we may rely on your consent, for example where required for optional marketing communications or specific categories of data. Where we rely on consent, you may withdraw it at any time, without affecting the lawfulness of processing before withdrawal.

4. Sharing and Processors

We do not sell personal data. We may share personal data where necessary and proportionate for the purposes described in this policy. In some cases, we use trusted service providers acting as processors on our behalf. These processors may include:

  • payment processors for secure handling of transactions;
  • IT and cloud service providers that store or maintain customer records and operational systems;
  • security providers that support CCTV, alarm, or access-control systems;
  • professional advisers such as accountants, insurers, auditors, or legal advisers;
  • identity verification and fraud-prevention providers where necessary;
  • maintenance and facilities contractors when access is needed to manage the site safely and securely.

We require processors to act only on our instructions, to keep personal data secure, and to process it only for the agreed purpose. We may also disclose data to public authorities, courts, or law enforcement where required or permitted by law.

5. International Transfers

Where personal data is transferred outside the United Kingdom, we will take appropriate steps to ensure that it remains protected to a standard that is consistent with UK data protection law. This may include the use of approved contractual safeguards or transfers to countries recognized as providing adequate protection.

6. Data Retention

We keep personal data only for as long as necessary for the purposes for which it was collected, including for legal, accounting, security, or dispute-resolution reasons. Retention periods depend on the type of data and the reason for processing.

  • Customer account and contract records: retained for the duration of the relationship and for a reasonable period afterward.
  • Payment and invoice records: kept for the period required by tax and accounting laws.
  • Security records and incident reports: retained for a limited period unless needed longer for investigations, claims, or legal proceedings.
  • Correspondence and complaints: retained for as long as necessary to resolve the matter and demonstrate compliance.

When data is no longer required, we will delete, anonymize, or securely archive it in line with our retention practices. We aim to retain personal data no longer than necessary.

7. Data Security

We use appropriate technical and organizational measures to safeguard personal data against loss, unauthorized access, alteration, disclosure, or destruction. These measures may include access controls, password protection, secure storage, staff training, and regular review of our systems and procedures. While we take reasonable steps to protect data, no method of transmission or storage is completely secure.

8. Your Rights

Under data protection law, you have a number of rights in relation to your personal data. These rights may be subject to legal limitations and exemptions. Your rights include:

  • Right of access: to request a copy of the personal data we hold about you.
  • Right to rectification: to request correction of inaccurate or incomplete data.
  • Right to erasure: to request deletion of your data in certain circumstances.
  • Right to restriction: to request limited processing in specific situations.
  • Right to object: to object to processing based on legitimate interests or direct marketing.
  • Right to data portability: to receive certain data in a structured, commonly used format where applicable.
  • Right to withdraw consent: where processing is based on consent.

You also have the right to lodge a complaint with the UK Information Commissioner’s Office if you believe your data protection rights have been infringed. We encourage you to raise any concerns directly with us first so that we can try to resolve them promptly and fairly.

9. Children’s Data

Our services are intended for adults and businesses. We do not knowingly collect personal data from children unless it is necessary in connection with a lawful service arrangement or legal requirement. Where we become aware that we have collected such data without an appropriate basis, we will take steps to delete or protect it as required.

10. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our services, legal obligations, or data protection practices. Any updated version will apply from the date it is published or otherwise communicated. We encourage customers to review this policy periodically to stay informed about how we protect personal data.

11. General Principles

Greenford Storage follows the core principles of data protection law, including lawfulness, fairness, transparency, purpose limitation, data minimization, accuracy, storage limitation, integrity, confidentiality, and accountability. We are committed to handling personal data in a way that is fair, transparent, and proportionate, and to maintaining the trust of everyone who uses our services.

If you continue to use Greenford Storage services, your personal data will be processed in accordance with this Privacy Policy and applicable law. Nothing in this policy limits your statutory rights.

Call Now!
Call Now Get a Quote
Greenford Storage

GDPR-compliant Privacy Policy for Greenford Storage covering data collection, lawful basis, retention, processors, rights, and scope across all customers in area.

Get a Quote

Get In Touch With Us.

Please fill out the form below to send us an email and we will get back to you as soon as possible.