Privacy Policy - Brunswickpark Storage

Brunswickpark Storage is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, share, and protect personal information in connection with our storage services. It applies to all Brunswickpark Storage customers in the area, including prospective customers, account holders, authorised users, and individuals who interact with us about our services.

We process personal data in accordance with applicable data protection law, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This policy is intended to be clear, fair, and transparent about our practices.

1. Personal Data We Collect

We may collect personal information directly from you, from your use of our services, and from third parties where lawful and appropriate. The categories of data we may collect include:

  • Identity details, such as your name, title, and proof of identity where required.
  • Contact details, such as postal address, email address, and telephone number.
  • Account and service details, including rental records, unit numbers, access logs, payment status, and communication preferences.
  • Billing and payment information, such as payment card details, bank account information, invoices, and transaction history.
  • Security information, such as CCTV recordings, access badge or key records, visitor logs, and incident reports.
  • Correspondence, including emails, messages, complaint records, and notes from service interactions.
  • Technical data, such as device information, IP address, and website or digital service usage where relevant.

We generally do not seek to collect special category data, such as health information, racial or ethnic origin, or political opinions. If such information is provided to us incidentally, we will handle it with extra care and only where there is a lawful basis to do so.

2. How We Use Personal Data

We use personal data only for legitimate and lawful business purposes. These may include:

  • setting up and managing storage accounts;
  • verifying identity and preventing fraud;
  • processing payments and managing billing;
  • providing access to storage facilities and related services;
  • communicating about bookings, service updates, payments, or account issues;
  • handling complaints, disputes, and customer support requests;
  • protecting the safety and security of our premises, customers, and staff;
  • meeting legal, regulatory, and insurance obligations;
  • improving our services, systems, and customer experience;
  • establishing, exercising, or defending legal claims.

We only collect data that is relevant and necessary for these purposes. We do not use your personal data in a way that is incompatible with the purposes for which it was collected.

3. Lawful Basis for Processing

Under data protection law, we must have a lawful basis to process personal data. Depending on the situation, we rely on one or more of the following lawful bases:

Contract

We process data where it is necessary to enter into or perform a contract with you. This includes managing your storage agreement, billing, access, and service communications.

Legal Obligation

We process data when we must do so to comply with legal requirements, such as tax, accounting, anti-fraud, or regulatory obligations.

Legitimate Interests

We may process data where it is necessary for our legitimate business interests, provided those interests are not overridden by your rights and freedoms. This may include protecting our property, maintaining security, preventing misuse, and improving services.

Consent

In limited cases, we may rely on your consent, for example for certain optional communications or where special category data is involved and consent is the appropriate basis. Where we rely on consent, you may withdraw it at any time.

Where required, we will tell you which lawful basis applies to a particular processing activity. We do not sell your personal data.

4. Sharing Personal Data and Processors

We may share personal data with trusted third parties where necessary for the operation of our business, the delivery of our services, or compliance with the law. These third parties act either as processors or, in some cases, as independent controllers.

Examples of processors may include:

  • payment processors that handle card or bank transactions;
  • IT and cloud service providers that host data, manage communications, or maintain systems;
  • security service providers that support alarm monitoring, CCTV storage, or access control systems;
  • accounting and administration providers that help with invoicing, reporting, or record-keeping;
  • customer support tools that manage enquiries and service records;
  • legal, insurance, or professional advisers where necessary for advice or claims handling.

Processors are only permitted to process personal data on our instructions and are required to protect it appropriately. We take reasonable steps to ensure that all processors provide sufficient guarantees regarding security, confidentiality, and lawful processing.

We may also disclose personal data if required to do so by law, regulation, court order, or lawful request from a public authority. In the event of a business reorganisation or transfer, personal data may be shared with relevant parties as part of that process, subject to appropriate protections.

5. Data Retention

We retain personal data only for as long as necessary for the purposes for which it was collected, including satisfying any legal, accounting, insurance, or reporting requirements. Retention periods may vary depending on the type of data and the reason for processing.

For example:

  • customer account and contract records are generally kept for the duration of the relationship and for a reasonable period afterwards;
  • financial and tax records are kept for the period required by law;
  • security records, such as CCTV footage, are retained for a limited period unless needed for investigation or legal purposes;
  • complaints and dispute records may be retained for as long as needed to resolve the issue and protect our legal position.

When personal data is no longer needed, we will delete it securely or anonymise it so that it can no longer identify you. Retention is reviewed regularly to ensure it remains proportionate and lawful.

6. Data Security

We use appropriate technical and organisational measures to protect personal data against unauthorised access, accidental loss, alteration, disclosure, or destruction. These measures may include access restrictions, secure storage, encryption where appropriate, staff training, and monitoring of systems.

While no system can be guaranteed completely secure, we work to reduce risks and maintain a level of protection appropriate to the nature of the data we hold. If a personal data breach occurs and there is a legal requirement to do so, we will notify the relevant supervisory authority and affected individuals.

7. International Transfers

If personal data is transferred outside the UK, we will ensure that appropriate safeguards are in place. These may include adequacy regulations, standard contractual clauses, or other legally recognised transfer mechanisms designed to protect your information.

8. Your Rights

You have a number of rights in relation to your personal data. These rights may apply depending on the circumstances and the lawful basis used for processing. They include:

  • Right of access – you may request a copy of the personal data we hold about you.
  • Right to rectification – you may ask us to correct inaccurate or incomplete data.
  • Right to erasure – you may request deletion of your data in certain situations.
  • Right to restriction – you may ask us to limit how we use your data in certain cases.
  • Right to data portability – you may request that certain data be provided to you or another organisation in a structured format.
  • Right to object – you may object to processing based on legitimate interests or direct marketing.
  • Right to withdraw consent – where processing is based on consent, you may withdraw it at any time.

To help protect your privacy, we may need to verify your identity before responding to a request. We will respond within the time limits required by law, unless an extension is permitted. Some rights may be limited where there is a compelling legal reason to retain or process the data.

9. Children

Our services are generally intended for adults. We do not knowingly collect personal data from children unless it is necessary in connection with a customer relationship and lawful to do so. Where a child’s data is involved, we take additional care to ensure it is processed appropriately.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in law, our services, or our data practices. The updated version will apply from the date it is made available. We encourage customers to review this policy periodically to stay informed about how we protect personal data.

11. Complaints

If you believe that your personal data has been handled improperly, you have the right to raise a concern with us and to lodge a complaint with the relevant data protection authority. We encourage you to contact us first so that we can try to resolve the issue promptly and fairly.

This Privacy Policy is intended to provide clear information about how Brunswickpark Storage handles personal data. We are committed to processing information lawfully, fairly, and transparently, while respecting the rights and expectations of all customers in the area.

Call Now!
Call Now Get a Quote
Brunswickpark Storage

GDPR-compliant Privacy Policy for Brunswickpark Storage covering data collection, lawful bases, retention, processors, and user rights for all customers in the area.

Get a Quote

Get In Touch With Us.

Please fill out the form below to send us an email and we will get back to you as soon as possible.