Add Your Heading Text Here
Data Collection and Processing
We collect and process personal data from our clients solely for the purpose of providing cleaning services and maintaining customer accounts.
Personal data collected may include names, addresses, contact information, and other relevant details necessary for service delivery and communication.
Lawful Basis for Processing
We process personal data based on the lawful basis of contractual necessity, as it is necessary for the performance of a contract to which the data subject is party (i.e., the cleaning service agreement).
In some cases, we may also process personal data based on legitimate interests, such as customer communication and service improvement.
Data Security Measures
We implement appropriate technical and organizational measures to ensure the security of personal data against unauthorized access, disclosure, alteration, or destruction.
Access to personal data is restricted to authorized personnel only, and all staff members are trained in data protection practices.
Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal and accounting requirements.
After the retention period expires, personal data is securely deleted or anonymized to prevent unauthorized access.
Data Subject Rights
Data subjects (our clients) have the right to access, rectify, or erase their personal data held by us.
Data subjects also have the right to restrict or object to the processing of their personal data, as well as the right to data portability.
Data Breach Notification
In the event of a data breach involving personal data, we will promptly assess the risk to individuals’ rights and freedoms and, if necessary, report the breach to the relevant supervisory authority and affected data subjects within the required timeframe.
Third-Party Data Processors
We may engage third-party service providers (e.g., payment processors, software providers) to assist in processing personal data on our behalf.
We ensure that all third-party processors comply with GDPR requirements and have adequate data protection measures in place.
Privacy Policy and Consent
We maintain a comprehensive privacy policy that outlines our data processing practices, including the purposes of data collection, the lawful basis for processing, and data subject rights.
We obtain explicit consent from clients before collecting and processing their personal data for any purposes not covered by the cleaning service agreement.
Data Protection Officer (DPO)
Professional Shine Bright appoints [Name] as the designated Data Protection Officer responsible for overseeing GDPR compliance and handling data protection inquiries and requests.
Compliance Monitoring and Review
– We regularly monitor our data processing activities to ensure compliance with GDPR requirements and industry best practices.
– This GDPR compliance policy is subject to periodic review and updates as necessary to reflect changes in regulations and business practices.