Self Storage Kentish Town Customer Privacy Policy
This Privacy Policy explains how Self Storage Kentish Town collects, uses, stores and protects personal data relating to customers and prospective customers in the Kentish Town area. It also explains your rights under applicable data protection laws, including the UK General Data Protection Regulation and the Data Protection Act.
This Privacy Policy applies to all Self Storage Kentish Town customers and prospective customers in the area, including individuals, sole traders and representatives of corporate clients who use or enquire about our storage services.
Who we are and scope of this policy
Self Storage Kentish Town is a provider of self-storage services. In relation to the personal data described in this policy, Self Storage Kentish Town acts as a data controller. This means we determine the purposes and means of processing your personal data when you interact with us, sign a storage agreement, make an enquiry or otherwise use our services.
By using our services or providing your personal data to us, you acknowledge that you have read and understood this Privacy Policy.
Personal data we collect
We collect and process different categories of personal data depending on how you interact with us. This may include:
Identification and contact details: name, address, previous address, contact number, email address, proof of identity documents such as passport or driving licence details, and proof of address documentation.
Account and contract information: storage unit number, contract start and end dates, payment history, records of communications with you, and details of any special instructions or preferences you share with us.
Payment information: limited payment details required to process transactions, such as partial card details or bank account information, subject to the secure practices of our payment processors. We do not store full card details when this is handled directly by a third-party payment provider.
Security and access information: vehicle registration details for site access where applicable, access control data such as key fob or entry code logs, CCTV footage in and around our premises, and records of visits to the facility for security, safety and fraud prevention.
Enquiry and marketing information: information you provide when you request a quote, submit an enquiry form, respond to a promotion, or consent to receive marketing communications, such as your service interests and communication preferences.
Technical information: if you interact with our online services, we may collect technical data such as IP address, browser type and approximate location, used for security and service improvement purposes where applicable.
How we collect your personal data
We collect personal data directly from you when you:
Make an enquiry about our storage services in person, by post, or through online forms.
Enter into a storage agreement with us or request related services.
Contact us for customer support or provide feedback and complaints.
Attend our premises and are recorded on CCTV or access control systems.
We may also receive personal data about you from third parties where this is necessary, for example from payment service providers, credit reference agencies, fraud prevention bodies, or corporate customers who provide your details as an authorised contact.
Lawful basis for processing
We process your personal data only when we have a lawful basis to do so. Depending on the specific processing activity, this may include:
Contract: processing that is necessary to enter into or perform a contract with you, such as setting up your storage account, managing your booking, processing payments and providing customer support.
Legal obligation: processing required to comply with legal, regulatory or law enforcement requirements, including tax laws, accounting rules, anti-money laundering obligations and health and safety regulations.
Legitimate interests: processing that is necessary for our legitimate business interests or those of a third party, provided your interests and fundamental rights do not override those interests. This includes ensuring site security, preventing fraud, managing our business operations, improving our services, handling customer queries, and maintaining CCTV and access logs for safety and security.
Consent: processing certain data for specific purposes where we have obtained your explicit consent, such as sending direct marketing communications by electronic means where required by law. You can withdraw your consent at any time.
How we use your personal data
We use the personal data we collect to:
Provide, manage and administer storage services and related customer accounts.
Verify your identity, eligibility and capacity to enter into a storage agreement.
Process payments, manage billing, handle debt recovery and resolve payment issues.
Maintain the security and integrity of our premises, including site access control, CCTV monitoring and incident investigation.
Communicate with you about your account, bookings, changes to services or terms, and service updates.
Respond to enquiries, feedback and complaints and provide customer service.
Comply with legal and regulatory obligations and respond to lawful requests from competent authorities.
Conduct internal reporting, auditing and service improvement activities.
Send marketing communications where permitted and in line with your preferences, which you may opt out of at any time.
Disclosure to data processors and other recipients
We may share your personal data with trusted third parties that act as data processors on our behalf. These service providers are engaged under written contracts and may only process your personal data in accordance with our instructions and for the purposes described in this Privacy Policy. Such processors may include:
IT and cloud service providers who host or support our systems and data storage.
Payment processing providers and banking partners who facilitate payments and refunds.
Security and monitoring providers who help manage CCTV, access control, alarms or incident response.
Professional advisers such as auditors, accountants, or legal advisers who support our business operations.
We may also share your personal data, where necessary, with:
Law enforcement agencies, courts, regulators or other public authorities where required by law or in order to establish, exercise or defend legal claims.
Debt collection agencies or credit reference agencies for the purposes of debt recovery and credit checking where applicable.
Prospective purchasers or business partners and their advisers in the context of a business sale, merger or restructuring, subject to appropriate confidentiality safeguards.
International transfers
Where our service providers or systems are located outside the United Kingdom or the European Economic Area, your personal data may be transferred to and processed in those countries. In such cases, we ensure that appropriate safeguards are in place to protect your personal data, such as standard contractual clauses or equivalent legal mechanisms, in accordance with applicable data protection laws.
Data retention
We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including to meet any legal, accounting or reporting requirements.
In general, this means:
Customer account and contract records are kept for a period necessary to manage our relationship and for a reasonable time after your contract ends, to handle any queries, disputes or legal claims.
Financial and transactional records are retained for the period required by tax and accounting laws.
CCTV footage and access logs are retained for a limited period that is appropriate for security, safety and incident investigation purposes, unless an incident requires longer retention.
Marketing data is retained until you opt out or until it is no longer necessary for the purpose for which it was collected.
When data is no longer required, we will securely delete, anonymise or destroy it in line with our data retention procedures.
How we protect your data
We implement technical and organisational measures designed to keep your personal data secure and to protect it against accidental or unlawful destruction, loss, alteration, unauthorised disclosure or access. These measures include access controls, physical security at our premises, secure storage and encryption where appropriate, staff training, and procedures for handling suspected data breaches.
Your data protection rights
Under data protection law, you have a number of rights in relation to your personal data, subject to certain conditions and exemptions. These rights include:
Right of access: you can request confirmation of whether we process your personal data and obtain a copy of that data, together with information about how it is processed.
Right to rectification: you can ask us to correct or complete inaccurate or incomplete personal data we hold about you.
Right to erasure: you can request the deletion of your personal data where there is no compelling reason for its continued processing, for example where it is no longer necessary for the purposes for which it was collected and there is no legal obligation to retain it.
Right to restriction: you can ask us to suspend the processing of your personal data in certain circumstances, for example while we verify its accuracy or assess an objection you have raised.
Right to object: you can object to processing of your personal data that is based on our legitimate interests, including profiling, and we will stop processing unless we have compelling legitimate grounds which override your interests, rights and freedoms or where processing is required for legal claims. You also have the unconditional right to object to direct marketing at any time.
Right to data portability: where processing is based on consent or contract and is carried out by automated means, you can request that we provide your personal data in a structured, commonly used and machine-readable format, and have it transmitted to another controller where technically feasible.
If you wish to exercise any of these rights, we may need to verify your identity to protect your data. We will respond to your request in accordance with applicable legal timeframes.
Complaints and further information
If you have concerns about how we handle your personal data, you can contact us so that we can address your concerns and attempt to resolve any issues. You also have the right to lodge a complaint with the relevant supervisory authority in the United Kingdom for data protection matters.
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements or service offerings. Any updates will apply from the date they are made available. You should review this policy periodically to stay informed about how we process your personal data.
