Privacy Policy - Tree Surgeons Honoroak
This Privacy Policy explains how Tree Surgeons Honoroak collects, uses, stores, shares, and protects personal data. It applies to all Tree Surgeons Honoroak customers in the area, including prospective customers, current customers, and anyone who interacts with us in connection with tree surgery, arboricultural services, site surveys, quotations, maintenance work, and related services.
1. Who We Are
Tree Surgeons Honoroak provides professional tree surgery and related outdoor maintenance services. In the context of data protection law, we act as the data controller for the personal data we collect and use about our customers, suppliers, and website or service enquirers where applicable. This means we decide how and why your personal data is processed.
2. Personal Data We Collect
We only collect personal data that is relevant and necessary for the services we provide, for managing our business, and for meeting legal obligations. The types of personal data we may collect include:
- Identity details, such as your name and title
- Contact details, such as address, email address, and telephone number
- Property and service information, such as site address, access notes, and details of the trees or work requested
- Quotation and contract information, including records of services requested, estimates, invoices, and payment status
- Communication records, such as emails, messages, notes from calls, and service-related correspondence
- Technical data, where relevant, such as basic device and usage information if you interact with digital systems
- Financial information, such as billing and transaction details
- Health and safety information where necessary, for example access restrictions, risks on site, or special requirements affecting safe delivery of services
We do not intentionally collect special category personal data unless it is required for a specific lawful reason and appropriate safeguards are in place. If such data is ever needed, we will ensure it is handled in accordance with data protection law.
3. How We Collect Your Data
We may collect personal data directly from you when you:
- request a quote or consultation
- book services or ask for a follow-up visit
- communicate with us by phone, email, or message
- complete forms or provide information during a site visit
- make a payment or raise a service query
We may also receive data from third parties where necessary, such as:
- property managers, landlords, or agents arranging work on your behalf
- business partners or subcontractors involved in delivering a service
- publicly available sources where needed for business or safety reasons
4. Why We Use Your Personal Data
We use personal data for the following purposes:
- to provide quotations, assess work requirements, and deliver tree surgery services
- to communicate with you about bookings, site visits, and service updates
- to manage billing, invoices, and payments
- to maintain records of work completed and customer history
- to support health and safety planning and risk management
- to handle complaints, disputes, or service issues
- to comply with legal, tax, insurance, and regulatory obligations
- to improve our services and maintain business records
5. Lawful Basis for Processing
Under UK GDPR, we must have a lawful basis for processing personal data. Depending on the purpose, we rely on one or more of the following:
Contract
We process your data where it is necessary to enter into or perform a contract with you. This includes preparing quotations, confirming jobs, carrying out tree surgery services, issuing invoices, and managing customer communications related to the agreed work.
Legal Obligation
We process data where required to comply with legal obligations, including tax records, accounting obligations, health and safety requirements, insurance obligations, and compliance with applicable laws and regulations.
Legitimate Interests
We may process data where it is necessary for our legitimate business interests, provided those interests are not overridden by your rights and freedoms. Examples include managing customer records, improving our services, preventing fraud, maintaining security, and efficiently operating our business.
Consent
Where consent is required by law, we will ask for it clearly and separately. You may withdraw consent at any time, although this will not affect processing that has already taken place lawfully before withdrawal.
6. Sharing Your Personal Data
We may share your data only where necessary and in line with data protection law. This may include sharing with:
- service providers and processors who help us operate our business
- accountants and tax advisers for financial and compliance purposes
- payment processors for handling transactions
- IT, hosting, and software providers supporting record keeping and communications
- subcontractors or specialist contractors assisting with specific work
- insurers, legal advisers, or regulatory bodies where required by law or to protect our rights
Where we use third parties to process data on our behalf, they act as processors and are only permitted to use your data under our instructions and for the agreed purpose. We require appropriate contractual and security safeguards from processors to protect personal data.
7. International Transfers
If any of our processors store or access data outside the UK, we will ensure appropriate safeguards are in place before the transfer occurs. These safeguards may include adequacy regulations, standard contractual clauses, or equivalent legal mechanisms required under data protection law.
8. Data Retention
We keep personal data only for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting, insurance, and reporting requirements. Retention periods vary depending on the type of data and the reason it is held.
- Customer and service records are generally retained for the period needed to manage our relationship and any follow-up issues
- Financial and tax records are kept for the period required by law
- Health and safety-related records are retained for as long as needed to demonstrate compliance and manage risk
- Communication records are stored for a reasonable period in case of queries, disputes, or ongoing service matters
When personal data is no longer required, we will securely delete, anonymise, or archive it as appropriate.
9. Data Security
We use appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, or disclosure. These measures may include access controls, secure storage, staff confidentiality obligations, and limiting data access to those who need it for legitimate business purposes.
While we take reasonable steps to protect your data, no system can be guaranteed to be completely secure. We will respond to any data incident in accordance with applicable legal obligations.
10. Your Rights
As a data subject, you have rights under data protection law. These rights may apply depending on the circumstances and the lawful basis used for processing. Your rights include:
- Access to a copy of the personal data we hold about you
- Rectification of inaccurate or incomplete data
- Erasure of your data in certain circumstances
- Restriction of processing in certain situations
- Objection to processing based on legitimate interests or direct marketing
- Data portability where processing is based on consent or contract and carried out by automated means
- Withdrawal of consent where consent is the lawful basis
You also have the right to raise concerns with the UK Information Commissioner’s Office if you believe your data has not been handled properly. We encourage you to contact us first so we can try to resolve any concerns promptly.
11. Children’s Data
Our services are intended for adults and business customers. We do not knowingly collect personal data from children unless it is required in connection with a service and there is a lawful basis for doing so. If we become aware that we have unintentionally collected a child’s data without appropriate permission or legal justification, we will take steps to delete it.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, or business operations. The most recent version will apply from the date it is made available. We encourage customers in the area to review this policy periodically to understand how their personal data is handled.
13. Summary of Our Approach
Tree Surgeons Honoroak is committed to handling personal data lawfully, fairly, and transparently. We collect only the information needed to provide tree surgery services, operate our business responsibly, and comply with legal obligations. We rely on appropriate lawful bases, limit access to trusted processors, retain information only as long as necessary, and respect your rights under data protection law. Your privacy matters to us, and we aim to use personal data only in ways that are necessary, proportionate, and secure.