Privacy Policy - Homerton Storage

This Privacy Policy explains how Homerton Storage collects, uses, stores, shares, and protects personal data. It applies to all Homerton Storage customers in area, including prospective customers, current customers, and individuals who interact with us in connection with storage services, billing, access management, and support. We are committed to handling personal data in a lawful, fair, and transparent way in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who We Are

Homerton Storage provides storage services and related account administration. For the purposes of data protection law, Homerton Storage acts as the data controller in relation to the personal data described in this policy. This means we determine why and how personal data is processed for the operation of our services.

2. Personal Data We Collect

We only collect data that is necessary for our legitimate business purposes and the provision of storage services. Depending on how you interact with us, we may collect the following categories of personal data:

  • Identity data such as your name, title, and identification details provided for verification purposes.
  • Contact data such as your postal address, email address, and telephone number.
  • Account data such as customer reference numbers, booking details, payment status, and service preferences.
  • Transaction data such as payment records, invoices, and billing history.
  • Access and security data such as entry logs, key or access card information, CCTV footage where applicable, and records of site access.
  • Communications data such as enquiries, complaints, service requests, and correspondence.
  • Technical data such as device or browser information collected through our systems, where applicable.

We do not intentionally collect special category data unless it is provided to us by you for a specific lawful reason, and only where processing is permitted by law. We ask that you avoid sending sensitive personal information unless it is necessary.

3. How We Use Personal Data

Homerton Storage uses personal data for the following purposes:

  • To register and manage customer accounts.
  • To provide storage services and manage access to storage units or facilities.
  • To process payments, invoices, refunds, and account-related administration.
  • To verify identity and prevent fraud, misuse, or unauthorised access.
  • To communicate with customers about bookings, service changes, and operational matters.
  • To maintain site safety, security, and business records.
  • To handle complaints, disputes, and legal claims.
  • To comply with legal and regulatory obligations.

We will only use your personal data where we have a valid legal reason to do so, and we will not use it for purposes that are incompatible with the reasons for which it was collected.

4. Lawful Basis for Processing

Under data protection law, we must have a lawful basis to process personal data. Homerton Storage relies on the following lawful bases:

  • Contract - where processing is necessary to enter into or perform a contract with you, such as providing storage services, managing your account, and taking payment.
  • Legal obligation - where processing is necessary to comply with a legal duty, including accounting, tax, safety, or record-keeping obligations.
  • Legitimate interests - where processing is necessary for our legitimate business interests, such as securing our premises, preventing fraud, improving services, and managing customer relationships, provided these interests do not override your rights and freedoms.
  • Consent - where we rely on your clear permission for particular processing activities, such as optional marketing communications where required by law.

We do not rely on consent where another lawful basis is more appropriate for the activity in question.

5. Sharing Your Data and Processors

We may share personal data with trusted third parties where necessary for the operation of our services and compliance with legal obligations. These third parties act either as independent controllers or as processors acting on our behalf.

Our processors may include:

  • Payment service providers that process card or other electronic payments.
  • IT and cloud service providers that support our systems, data storage, and security tools.
  • Accounting and administrative service providers that help with bookkeeping, invoicing, or records management.
  • Security and monitoring providers that support site safety, access control, and surveillance systems.
  • Professional advisers such as lawyers, auditors, or insurers where necessary for advice, claims, or compliance.
  • Public authorities or regulators where disclosure is required by law.

Where a third party acts as a processor, they are only permitted to process your data on our instructions and must apply appropriate security measures. We require processors to treat personal data confidentially and to use it only for the specific services they provide to us.

6. Data Security

We use appropriate technical and organisational measures to protect personal data against unauthorised access, accidental loss, alteration, or disclosure. These measures may include access restrictions, secure storage, encryption where appropriate, staff training, and monitored security procedures.

Although we work hard to protect your information, no system can be completely secure. If a data breach occurs that is likely to result in a risk to your rights and freedoms, we will take the steps required by law, including notifying the relevant supervisory authority and affected individuals where necessary.

7. Data Retention

We keep personal data only for as long as necessary for the purposes for which it was collected, including satisfying legal, accounting, reporting, or dispute-resolution requirements. Retention periods vary depending on the type of information and the purpose of processing.

  • Customer account and contract records are generally retained for the duration of the relationship and for a reasonable period afterwards.
  • Payment and accounting records are retained for the period required by tax and financial laws.
  • Security logs and access records are kept for a limited period unless needed longer for safety, investigation, or legal reasons.
  • Correspondence and complaint records are retained as long as needed to manage the issue and maintain a business record.

When personal data is no longer needed, we will securely delete, anonymise, or archive it in accordance with our retention practices.

8. International Transfers

If any of our processors or service providers store or access data outside the United Kingdom, we will ensure that appropriate safeguards are in place. This may include adequacy regulations, standard contractual clauses, or other lawful transfer mechanisms recognised under data protection law.

9. Your Rights

Individuals whose personal data we process have rights under data protection law. Subject to certain legal conditions and exemptions, you may have the right to:

  • Access your personal data and receive a copy of it.
  • Rectification of inaccurate or incomplete personal data.
  • Erasure of your personal data in certain circumstances.
  • Restriction of processing in certain circumstances.
  • Object to processing based on legitimate interests or for direct marketing.
  • Data portability for information you have provided to us, where applicable.
  • Withdraw consent at any time where processing is based on consent.

You also have the right to lodge a complaint with the UK Information Commissioner’s Office if you believe your data has been handled unlawfully. Exercising your rights will not usually require any fee, although a reasonable fee may apply in limited circumstances where a request is unfounded or excessive.

10. Automated Decision-Making

Homerton Storage does not use personal data for decisions based solely on automated processing that produce legal or similarly significant effects, unless we inform you and such processing is lawful. If automated tools are used in limited ways, we will ensure that appropriate safeguards are in place.

11. Children’s Data

Our services are intended for adults. We do not knowingly collect personal data from children without appropriate authority or lawful basis. If we learn that personal data has been collected inappropriately, we will take steps to delete it where required.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in law, our services, or how we process personal data. Any revised version will apply from the date it is made available. We encourage customers to review this policy periodically so they remain informed about how their data is used.

Summary of Our Commitment

Homerton Storage is committed to processing personal data lawfully, fairly, and transparently, using it only for legitimate storage-service purposes, keeping it secure, retaining it only as long as necessary, and respecting the rights of all Homerton Storage customers in area.

Call Now!
Call Now Get a Quote
Homerton Storage

GDPR-compliant Privacy Policy for Homerton Storage covering data use, lawful basis, retention, processors, security, and user rights.

Get a Quote

Get In Touch With Us.

Please fill out the form below to send us an email and we will get back to you as soon as possible.