This Privacy Policy explains how ChesterfieldCare (“we”, “us”) collects and uses personal data when you visit our website or submit a repair request via our forms.
1) Who we are
Data controller: ChesterfieldCare
Address: [Add your address]
Email: [Add your contact email]
Phone: [Add your phone number]
2) What data we collect
When you submit a request, we may collect:
- Name
- Email address
- Phone number (optional)
- Your message/description of the issue
- Photos you upload (up to 3)
- Technical data such as IP address and browser details (via analytics, if enabled)
3) Why we use your data
We use your data to:
- Assess whether repair is possible and provide an upfront quote
- Contact you about your request and next steps
- Provide customer service and answer questions
- Improve our website and measure performance (analytics, if enabled)
4) Legal bases (GDPR)
We process your personal data based on:
- Consent (e.g., when you submit the form and upload photos)
- Pre-contractual steps (to provide an estimate and assess feasibility)
- Legitimate interest (e.g., improving our services and website)
- Legal obligations (where applicable)
5) Photos and sensitive content
Uploaded photos are used solely to assess your repair request and (if you proceed) to perform the service. Please do not upload unnecessary personal information (e.g., IDs). If a photo accidentally contains personal data, we will handle it with care and only use it for assessment.
6) How long we keep your data
We keep your data only as long as needed for the purpose it was collected. In general:
- Requests and contact data: up to [e.g., 12 months] after the last contact
- Photos: up to [e.g., 12 months], unless longer retention is required for warranty/disputes
- Analytics data: according to your analytics settings (if enabled)
7) Sharing data with third parties
We do not sell your data. We only share data when necessary to provide our services, for example:
- Email service provider (to send confirmation and receive your request)
- Web hosting provider (to run the website)
- Analytics provider (e.g., Google Analytics, if enabled)
We take reasonable measures to ensure third parties handle data securely and in line with data protection rules.
8) Cookies and analytics
We may use cookies or similar technologies for basic site operation and analytics.
If you use Google Analytics, your browser may store cookies to measure visits and interactions.
You can manage cookies through your browser settings.
9) Security
We implement appropriate technical and organisational measures to protect your data, such as secure hosting, access controls and limiting file uploads.
10) Your rights
Depending on your location (including the EU/EEA), you may have the right to:
- Access your data
- Correct inaccurate data
- Delete your data (“right to be forgotten”)
- Restrict processing
- Data portability
- Object to processing
- Withdraw consent at any time (where processing is based on consent)
To exercise your rights, contact us via [your email].
11) Changes to this policy
We may update this policy from time to time. The latest version will always be published on this page.
Last updated: [add date]