Self Storage Camden Privacy Policy
This Privacy Policy explains how Self Storage Camden collects, uses, stores and protects personal data relating to customers and prospective customers in the Camden area. It also describes your rights under the UK General Data Protection Regulation and related data protection laws. This policy applies to all Self Storage Camden customers and anyone who contacts or interacts with us in relation to our storage services in the area.
Who this policy applies to
This policy applies to individual customers, business customers where personal data is involved, prospective customers making enquiries, visitors to our premises, and any person acting on behalf of a customer, such as an authorised contact or guarantor, in connection with Self Storage Camden services in the Camden area.
Types of personal data we collect
We may collect and process the following categories of personal data when you use our services or contact us:
Identification data, such as full name, date of birth, identification document details, and customer reference numbers.
Contact details, such as postal address, billing address, and correspondence address.
Account and contract information, such as unit number, contract start and end dates, payment history, outstanding balances, notices served, and communications regarding your storage agreement.
Payment and billing information, such as payment method details, transaction records and invoicing data. We do not store full card details where a secure payment processor is used.
Access and security information, such as access codes, key or fob identifiers, entry and exit logs for our storage facilities, and any records generated by security systems.
CCTV footage, where you are recorded on our surveillance systems on or around our premises, used for security and safety purposes.
Communication data, such as emails, written correspondence, and notes of telephone conversations where necessary for managing your account or responding to enquiries.
Marketing preferences, such as records of whether you have agreed to receive marketing and your communication preferences.
How we collect your personal data
We collect personal data directly from you when you obtain a quote, sign a storage agreement, make a payment, visit our premises, communicate with us by any channel, or update your details. We may also receive data from third parties where this is necessary for our contract with you, for example from your authorised representatives or from payment service providers that process transactions on our behalf.
Lawful bases for processing your data
We process personal data only where we have a valid lawful basis under data protection law. Depending on the activity, the lawful basis may be:
Performance of a contract: We process your personal data to provide storage services, manage your account, take payment, communicate with you about your agreement, and handle moves in and out of the facility.
Compliance with legal obligations: We may process and retain certain records to comply with tax, accounting and other legal and regulatory requirements, and to cooperate with lawful requests from authorities.
Legitimate interests: We process data to operate and improve our business, maintain site security, prevent fraud, enforce our terms and conditions, recover debts, monitor facility usage and ensure the safety of customers, staff and property. When relying on this basis, we balance our interests against your rights and freedoms.
Consent: In limited cases, such as some forms of direct marketing or optional communications, we may rely on your consent. Where consent is used, you can withdraw it at any time by contacting us or using any opt-out method we provide.
How we use your personal data
We use your personal data for the following purposes:
To provide and manage self storage services, including setting up your account, preparing and administering your contract, giving you access to your storage unit and handling your payments.
To communicate with you about quotes, bookings, contract renewals, changes to our terms, payment reminders, queries or complaints, and operational notices affecting your storage unit or access.
To maintain the security and safety of our premises, staff, customers and stored items, including operation of access systems and CCTV surveillance.
To manage our business operations, including internal administration, financial management, auditing, debt collection, and exercising or defending legal claims.
To comply with applicable laws, regulations and guidance issued by authorities.
To send you marketing communications about our services, where permitted by law and in line with your preferences, and to measure the effectiveness of such communications.
Data sharing and processors
We may share your personal data with trusted third parties who act as data processors on our behalf. These may include providers of payment processing services, secure data storage and hosting, customer management systems, email and communication platforms, security and CCTV system providers, and professional advisers such as accountants or legal advisers where necessary.
We ensure that any processors who handle personal data on our behalf do so under a written contract, only process data in accordance with our instructions, implement appropriate security measures, and comply with applicable data protection laws.
We may also share personal data with third parties acting as independent controllers where required by law, such as regulatory authorities, law enforcement agencies or courts, or where necessary in connection with legal claims, debt recovery or the sale or restructuring of our business. In such cases, those parties are responsible for their own compliance with data protection law.
International transfers
Where our use of service providers involves transfer of personal data outside the United Kingdom or the European Economic Area, we will ensure that appropriate safeguards are in place. These may include using countries with an adequacy decision or entering into contracts that incorporate standard data protection clauses approved by relevant authorities.
Data retention
We keep personal data only for as long as necessary to fulfil the purposes for which it was collected, including for the purposes of satisfying legal, accounting or reporting requirements.
In general, we retain customer account and contract information for a period after your contract ends, to deal with any queries, disputes or claims and to comply with our legal obligations. CCTV recordings are retained for a shorter period, unless longer retention is required for the investigation of an incident or legal claim. Payment and billing records are kept for the period required by tax and accounting rules.
When personal data is no longer needed, it is securely deleted or anonymised so that it can no longer be linked to an identifiable individual.
Your data protection rights
Under data protection law, you have a number of rights in relation to your personal data, subject to certain conditions and exemptions. These include:
Right of access: You have the right to request confirmation that we process your personal data and to receive a copy of that data, together with certain additional information.
Right to rectification: You have the right to request that inaccurate or incomplete personal data is corrected or updated.
Right to erasure: In some circumstances, you may have the right to request that we delete your personal data, for example where it is no longer necessary for the purposes for which it was collected, or where you withdraw consent and we have no other lawful basis to continue processing.
Right to restriction of processing: You can ask us to restrict processing of your personal data in certain situations, such as where you contest the accuracy of the data or object to our processing.
Right to data portability: In certain cases, you can request that we provide your personal data in a structured, commonly used and machine-readable format or that we transmit it to another controller where technically feasible.
Right to object: You have the right to object to processing of your personal data where we rely on legitimate interests, including profiling based on those interests. You also have the right to object to direct marketing at any time.
Where processing is based on your consent, you have the right to withdraw that consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
Security of your personal data
We take appropriate technical and organisational measures to protect personal data from unauthorised access, alteration, disclosure or destruction. These measures include access controls, physical security at our premises, secure storage systems and staff training on data protection responsibilities. While we take reasonable steps to safeguard your data, no system can be completely secure and we cannot guarantee absolute security.
Changes to this Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements or the services we offer. Any updates will take effect when the revised policy is made available. We encourage you to review this policy periodically to stay informed about how we handle your personal data.
