Privacy Policy - Tree Surgeons Sutton

This Privacy Policy explains how Tree Surgeons Sutton collects, uses, stores, shares, and protects personal data. It applies to all Tree Surgeons Sutton customers in the area, including prospective customers, existing customers, website visitors, and anyone who contacts us for information, quotations, bookings, or services. We are committed to handling personal data in line with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who We Are

Tree Surgeons Sutton provides tree surgery and related arboricultural services for residential and commercial customers. In this policy, references to we, us, and our mean Tree Surgeons Sutton. We act as a data controller when we decide how and why your personal data is used.

We take privacy seriously and aim to be transparent about what information we collect, why we need it, how long we keep it, and what rights you have over your information.

2. Personal Data We Collect

We may collect and process different types of personal data depending on how you interact with us and the services you request. This may include:

  • Identity details such as your name.
  • Contact details such as your address, email address, and phone number.
  • Property details relevant to the work, including access notes, site location, and photographs provided by you or taken during a site visit.
  • Service information such as quotation requests, booking details, job specifications, and service history.
  • Billing and payment information such as invoices, payment status, and transaction records.
  • Communication records including emails, messages, call notes, and complaint correspondence.
  • Technical data if you use our online services, such as device information, IP address, and browsing activity collected through cookies or similar technologies where applicable.

We generally do not seek to collect special category data. If such information is provided to us inadvertently, we will handle it carefully and only where there is a lawful reason to do so.

3. How We Collect Your Data

We collect personal data in several ways:

  • Directly from you when you request a quotation, make an enquiry, arrange a visit, confirm a booking, or communicate with us.
  • Through our service delivery when we assess work, carry out tree surgery, or manage aftercare and invoicing.
  • From third parties such as landlords, property managers, insurers, or contractors where they are authorised to share your information with us.
  • Automatically through website logs or analytics tools, where these are used and permitted.

4. Lawful Basis for Processing

We only process personal data where we have a lawful basis under UK GDPR. Depending on the situation, we rely on one or more of the following:

  • Contract - to provide quotes, book work, deliver services, manage payments, and fulfil our obligations to you.
  • Legal obligation - to comply with tax, accounting, health and safety, insurance, and record-keeping requirements.
  • Legitimate interests - to run and improve our business, respond to enquiries, keep records, prevent fraud, and manage service quality, provided that our interests do not override your rights and freedoms.
  • Consent - where we ask for your permission, for example for certain types of optional marketing or non-essential cookies, if used.

Where we rely on consent, you may withdraw it at any time. This will not affect the lawfulness of processing carried out before withdrawal.

5. How We Use Your Data

We use personal data for the following purposes:

  • To provide quotations and respond to enquiries.
  • To plan, carry out, and manage tree surgery services.
  • To communicate about appointments, updates, safety matters, and follow-up work.
  • To prepare invoices, process payments, and maintain financial records.
  • To keep internal records of work completed and customer preferences.
  • To comply with legal, regulatory, and insurance obligations.
  • To deal with complaints, disputes, or claims.
  • To improve our services, customer experience, and operational efficiency.

We will only use your data for the purposes for which it was collected unless we reasonably consider that another compatible purpose applies.

6. Data Sharing and Processors

We may share personal data with trusted third parties where necessary to operate our business and deliver services. These third parties act as processors or independent controllers depending on the circumstances.

Examples of processors may include:

  • IT and cloud service providers who store or support our systems.
  • Accountants or bookkeepers who assist with financial administration.
  • Payment service providers who process transactions securely.
  • Scheduling or communication tools used to manage bookings and correspondence.

Where processors act on our behalf, they are only permitted to use personal data in accordance with our instructions and must implement appropriate security measures. We may also share information with insurers, professional advisers, regulators, law enforcement, or other authorities where required by law or where necessary to establish, exercise, or defend legal claims.

We do not sell personal data.

7. Data Retention

We keep personal data only for as long as necessary for the purposes for which it was collected, including meeting legal, accounting, and reporting obligations. Retention periods may vary depending on the type of information and the nature of the relationship.

As a general approach:

  • Customer and job records are retained for a reasonable period after completion of services to support warranty queries, disputes, and service history.
  • Invoice and payment records are kept for the period required by tax and accounting laws.
  • Communication records are held for as long as needed to manage the relationship and address any issues.
  • Enquiry records may be retained for a limited time if no service is booked, to allow follow-up and business administration.

When data is no longer required, we will delete it or anonymise it securely.

8. Data Security

We use appropriate technical and organisational measures to protect personal data against loss, misuse, unauthorised access, alteration, or disclosure. These measures may include access controls, secure storage, staff confidentiality obligations, and regular review of our data-handling practices.

However, no method of transmission or storage is completely secure. While we work to protect your information, we cannot guarantee absolute security.

9. Your Rights

Under data protection law, you have several rights in relation to your personal data. These include:

  • Right of access - you can ask for a copy of the personal data we hold about you.
  • Right to rectification - you can ask us to correct inaccurate or incomplete information.
  • Right to erasure - in some circumstances, you can ask us to delete your data.
  • Right to restriction - you can ask us to limit how we use your data in certain situations.
  • Right to object - you can object to processing based on legitimate interests or direct marketing.
  • Right to data portability - in certain cases, you can request a copy of data you provided to us in a structured format.
  • Right to withdraw consent - where processing is based on consent, you may withdraw it at any time.

If you wish to exercise any of these rights, we will respond in accordance with applicable law. We may need to verify your identity before acting on your request.

10. Marketing

We do not send unsolicited marketing communications without a lawful basis. If we contact you for marketing purposes, you can opt out at any time. Where required, we will seek your consent before sending electronic marketing messages.

11. Cookies and Online Data

If our online services use cookies or similar technologies, these may be used for basic site functionality, performance analysis, or preference management. Where required, we will provide appropriate notice and obtain consent for non-essential cookies. You can manage cookie settings through your browser or device controls.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in legal requirements, our services, or our data practices. Any updated version will apply from the date it is published or otherwise communicated. We encourage you to review this policy periodically.

13. Summary of Key Points

This policy explains how Tree Surgeons Sutton handles personal data for customers in the area. We collect only the information needed to deliver services, manage bookings, meet legal obligations, and communicate effectively. Our lawful bases include contract, legal obligation, legitimate interests, and consent where applicable. We retain data only as long as necessary, use trusted processors under appropriate safeguards, and respect your legal rights over your personal information.

Tree Surgeons Sutton is committed to protecting your privacy and handling your data responsibly, fairly, and transparently. If you continue to use our services, you acknowledge that you have read and understood this Privacy Policy.

Tree Surgeons Sutton

GDPR-compliant Privacy Policy for Tree Surgeons Sutton covering data collection, lawful basis, retention, processors, rights, and applies to all local customers.

Call Now!
Get a Quote

Get In Touch With Us.

Please fill out the form below to send us an email and we will get back to you as soon as possible.