Privacy Policy - Barnet Storage

Effective Date: This Privacy Policy applies to all Barnet Storage customers in the area and explains how we collect, use, disclose, store, and protect personal data in connection with our storage services, site access, administration, and related customer support.

We are committed to handling personal data in a lawful, fair, and transparent manner in line with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Scope of This Policy

This Privacy Policy applies to all individuals who use Barnet Storage services, make enquiries, enter into a storage agreement, access our facilities, manage an account, or otherwise interact with us in the course of using our services in the Barnet area. It covers customers, prospective customers, account holders, authorised users, and anyone whose personal data we process in connection with our business operations.

By using our services, you acknowledge that your personal data may be processed in accordance with this policy.

2. Personal Data We Collect

We may collect and process different types of personal data depending on how you interact with us. The categories of data may include:

  • Identity information: name, date of birth, and identification details used for verification purposes.
  • Contact information: address, email address, telephone number, and postal details.
  • Account and contract information: storage unit details, agreement terms, billing information, payment status, and service preferences.
  • Verification and security information: proof of identity, access credentials, sign-in records, and facility entry logs.
  • Financial information: payment card details, bank account information, transaction records, and invoicing data, where applicable.
  • Communications: correspondence, queries, complaints, feedback, and notes relating to customer support.
  • Technical and usage information: device information, IP address, browser data, and records of how our systems are used, where relevant.
  • Security and CCTV data: images, video recordings, and associated logs collected to protect people, property, and premises.

We generally do not seek to collect special category data unless it is provided by you voluntarily or is required for a specific legal purpose. If special category data is processed, we will do so only where a valid lawful basis exists and additional safeguards are in place.

3. How We Use Personal Data

We use personal data only where necessary for legitimate business purposes and lawful service delivery. Typical uses include:

  • setting up and managing customer accounts;
  • verifying identity and authorisation;
  • processing bookings, payments, and renewals;
  • communicating with you about your storage agreement or service updates;
  • responding to enquiries, complaints, and support requests;
  • protecting our customers, staff, premises, and stored items;
  • preventing fraud, misuse, and unlawful activity;
  • meeting regulatory, legal, tax, and accounting obligations;
  • improving our services, systems, and customer experience;
  • defending or establishing legal claims where necessary.

We do not use personal data for purposes that are incompatible with the original reason for collection unless permitted by law.

4. Lawful Basis for Processing

Under UK GDPR, we must have a lawful basis for each processing activity. Barnet Storage relies on one or more of the following lawful bases:

  • Contract: to enter into and perform our storage agreement, manage your account, provide access to services, and fulfil our obligations to you.
  • Legal obligation: to comply with laws relating to taxation, accounting, fraud prevention, health and safety, and other statutory requirements.
  • Legitimate interests: to operate and protect our business, maintain site security, manage customer relationships, prevent misuse, and improve services, provided these interests are not overridden by your rights and freedoms.
  • Consent: where we rely on your freely given, specific, informed, and unambiguous consent for particular optional processing activities. You may withdraw consent at any time where consent is the basis relied upon.

When processing special category data or criminal offence data, where applicable, we will only do so if an additional condition under UK law is satisfied.

5. Data Sharing and Processors

We may share personal data with trusted third parties where necessary for service delivery, legal compliance, or the protection of our interests. These third parties act as either independent controllers or processors depending on the nature of the service they provide.

Examples of processors we may use include:

  • payment service providers;
  • accounting and invoicing systems;
  • IT hosting, cloud storage, and software providers;
  • customer relationship management tools;
  • security monitoring and CCTV service providers;
  • document storage, archiving, and administrative support services.

Where processors handle personal data on our behalf, they are contractually required to process it only according to our instructions, keep it secure, and comply with applicable data protection laws.

We may also disclose personal data to:

  • law enforcement bodies or regulatory authorities where required by law;
  • insurers, legal advisers, or debt recovery specialists where necessary to protect legal rights;
  • courts or tribunals if relevant to a dispute or legal process.

We do not sell personal data. We do not permit third parties to use your data for their own marketing purposes unless you have been clearly informed and, where required, have given consent.

6. Retention of Personal Data

We keep personal data only for as long as necessary to fulfil the purposes for which it was collected, including any legal, accounting, or reporting requirements.

Retention periods may vary depending on the type of data and the reason for processing. In general:

  • customer account and contract records are retained for the duration of the service relationship and for a reasonable period afterwards;
  • financial and tax records are retained for the period required by law;
  • security logs and CCTV records are retained for limited periods unless they are required for investigation or legal action;
  • communications and support records are retained as long as needed to resolve issues and maintain business records;
  • identification and verification records are retained only for as long as necessary for lawful verification and compliance purposes.

When personal data is no longer needed, we will securely delete, anonymise, or destroy it in accordance with our retention procedures.

7. Security of Personal Data

We use appropriate technical and organisational measures to protect personal data against unauthorised access, loss, alteration, disclosure, or destruction. These measures may include access controls, encryption, secure storage, staff training, system monitoring, and restricted physical access to records.

Although no system is completely risk-free, we work to ensure that personal data is handled securely and responsibly.

8. International Transfers

Where personal data is transferred outside the United Kingdom, we will ensure that suitable safeguards are in place so that the data remains protected to a standard consistent with UK data protection law. These safeguards may include adequacy regulations, approved contractual clauses, or other lawful transfer mechanisms.

9. Your Rights

Subject to conditions and exemptions under data protection law, you have the following rights in relation to your personal data:

  • Right of access: to request a copy of the personal data we hold about you.
  • Right to rectification: to ask us to correct inaccurate or incomplete data.
  • Right to erasure: to request deletion of your data where there is no lawful reason for us to keep it.
  • Right to restriction: to ask us to limit how we use your data in certain circumstances.
  • Right to data portability: to receive certain data in a structured, commonly used, machine-readable format, where applicable.
  • Right to object: to object to processing based on legitimate interests or direct marketing.
  • Right to withdraw consent: where processing is based on consent, you may withdraw it at any time.

These rights are not absolute and may be limited where legal obligations or legitimate grounds apply.

10. Automated Decision-Making

We do not normally carry out automated decision-making that produces legal or similarly significant effects. If this changes, we will inform you and explain the logic involved, the significance, and the potential consequences for you, as required by law.

11. Complaints and Further Information

If you have concerns about how your personal data is handled, you may raise the matter with us so that we can review and respond appropriately. You also have the right to lodge a complaint with the UK Information Commissioner’s Office if you believe your data protection rights have been infringed.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in law, business practices, or the way we process personal data. Any updates will take effect when published or otherwise communicated to you. We encourage you to review this policy periodically.

Summary of Key Points

  • We collect only the personal data needed to provide and manage Barnet Storage services.
  • We process data under contract, legal obligation, legitimate interests, and consent where applicable.
  • We share data only with trusted processors and authorities when necessary.
  • We keep data only for as long as needed and delete it securely afterward.
  • Customers have clear rights over their personal data under UK GDPR.

This Privacy Policy applies to all Barnet Storage customers in the area.

Call Now!
Call Now Get a Quote
Barnet Storage

GDPR-compliant Privacy Policy for Barnet Storage covering data collection, lawful basis, retention, processors, and user rights.

Get a Quote

Get In Touch With Us.

Please fill out the form below to send us an email and we will get back to you as soon as possible.