Last updated: 09/12/2025

Copper Coast Cleaning (“we”, “us”, “our”) is committed to full compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

As a sole trader operating in the UK, we confirm the following:

 

1. Lawful Processing

We ensure all personal data is processed lawfully, fairly, and transparently under Articles 6(1)(a–f) of the UK GDPR.

 

2. Data Minimisation

We only collect the minimum amount of personal data required to:
 

• Provide cleaning services
   
• Manage bookings
   
• Comply with legal obligations
   

We do not collect unnecessary or excessive data.

 

3. Security Measures

We use appropriate technical and organisational security methods, including:
 

• Encrypted or password-protected devices
   
• Secure email and communication channels
   
• Restricted access to personal data
   
• Regular deletion of unnecessary information
   

4. Third-Party Processors

Where we use external providers (such as payment processors or analytics tools), we ensure:
 

• They are GDPR-compliant
   
• Data Processing Agreements (DPAs) are in place where applicable
   

5. Data Breach Procedure

In the unlikely event of a data breach:
 

• We will take immediate steps to contain and resolve the issue
   
• We will notify the ICO where legally required
   
• We will notify affected individuals where required by law
   

6. Consent & Marketing

We only send marketing messages where:
 

• The customer has explicitly opted in
   
• Consent can be withdrawn at any time
   

7. Individual Rights

We uphold all rights under the UK GDPR, including:
 

• Right of access
   
• Right to rectification
   
• Right to erasure
   
• Right to restrict processing
   
• Right to object
   
• Right to data portability
   

Requests can be made via: ryan@coppercoastcleaning.co.uk

 

8. Accountability

We keep necessary internal records demonstrating our GDPR compliance.

If you have concerns, you may contact the Information Commissioner’s Office (ICO) at www.ico.org.uk .