1. WHO WE ARE
2. SCOPE OF THIS NOTICE
3. ROLES (CONTROLLER AND PROCESSOR)
4. PERSONAL DATA WE COLLECT
5. HOW WE USE PERSONAL DATA (LAWFUL BASES)
6. SHARING PERSONAL DATA
7. INTERNATIONAL TRANSFERS
8. DATA RETENTION
9. YOUR RIGHTS
10. HOMEOWNER / END-CUSTOMER ENQUIRIES (LEADS)
11. AUTOMATED PROCESSING
12. COMPLAINTS
13. UPDATES
1. WHO WE ARE
| 1.1 |
Get Work Limited (company number 10914848) of Jubilee House, East Beach, Lytham St Annes, FY8 5FT (“Get Work”, “we”, “us”, “our”). |
| 1.2 |
Email: [email protected] |
| 1.3 |
ICO Registration: ZA272345 |
| 1.4 |
You have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO) at www.ico.org.uk. |
2. SCOPE OF THIS NOTICE
| 2.1 |
This Privacy Notice explains how we collect and use personal data when you:
|
| 2.2 |
If you are a member of the public submitting an enquiry to a trade business via our platform, please also see section 10. |
3. ROLES (CONTROLLER AND PROCESSOR)
| 3.1 |
Controller. We act as a controller for:
| a) |
website visitors; |
| b) |
business customers and contacts; |
| c) |
account administration, billing and support; and |
| d) |
security, fraud prevention and product improvement. |
|
| 3.2 |
Processor. We act as a processor where we process Lead Data on behalf of our business customers. |
| 3.3 |
Lead enquiries. Where a homeowner or end-customer submits an enquiry to a trade business via a Get Work-hosted landing page, contact form or tracking number:
| 3.3.1 |
the trade business is the controller for handling the enquiry, contacting the homeowner, quoting for work and providing its services; |
| 3.3.2 |
Get Work processes the enquiry data on the trade business’s behalf to deliver the service, including routing enquiries, notifying the trade business, providing lead records, call tracking, call recordings/voicemails (where enabled), reporting and related platform functionality; and |
| 3.3.3 |
Get Work may also act as an independent controller for limited purposes relating to its own legal obligations and legitimate interests, including platform and account security, fraud prevention, abuse monitoring, troubleshooting, service administration and the establishment, exercise or defence of legal claims. |
|
4. PERSONAL DATA WE COLLECT
| 4.1 |
Information you provide:
| a) |
name, business name and contact details; |
| b) |
trade, area and business information; |
| c) |
account credentials; and |
| d) |
support queries and communications. |
|
| 4.2 |
Platform and usage data:
| a) |
IP address, device and browser information; |
| b) |
login activity and usage events; and |
| c) |
platform interaction data. |
|
| 4.3 |
Communications data:
| a) |
emails, SMS and chat messages; |
| b) |
call metadata (time, duration, caller ID); and |
| c) |
call recordings and voicemails (where enabled). |
|
| 4.4 |
Payment data:
| a) |
billing details and transaction data; |
| b) |
limited card data (for example, last four digits); and |
| c) |
payments are processed securely by third-party providers (for example, Stripe). |
|
| 4.5 |
Identity verification data. Where used, identity verification is performed by our verification provider, Veriff. Veriff processes the information needed to complete the check, which may include:
| a) |
ID document data; |
| b) |
session media (such as a photo or video/selfie); and |
| c) |
verification outputs. |
Where biometric technology is used as part of the verification process, this is carried out by Veriff for the purpose of completing the check. Get Work typically receives only the verification result and limited related metadata (for example, status, reason codes and reference information) and does not typically receive or store the full ID document, selfie/photo or verification session media.
|
| 4.6 |
Cookies and tracking. We use cookies and similar technologies. See our Cookie Policy for details. |
5. HOW WE USE PERSONAL DATA (LAWFUL BASES)
| 5.1 |
We process personal data for the following purposes and lawful bases: |
| Purpose |
Lawful Basis |
| Provide and operate services |
Contract |
| Account management and support |
Contract / Legitimate interests |
| Billing and accounting |
Legal obligation / Contract |
| Security, fraud prevention, platform integrity |
Legitimate interests |
| Product analytics and improvement |
Consent (where required) / Legitimate interests |
| Marketing communications |
Consent where PECR requires it / Legitimate interests where PECR permits us to send marketing without consent |
| Identity verification (using results returned by Veriff) |
Contract / Legitimate interests |
| 5.2 |
Where we rely on legitimate interests, these include operating and improving our services, administering customer accounts, preventing fraud, maintaining platform security and, where permitted, sending relevant marketing communications about our services. We balance these interests against your rights. |
| 5.3 |
Some personal data is required so we can enter into and perform our contract with you, including to create and administer your account, verify identity, take payment, reserve a location and provide our services. If you do not provide this data, we may not be able to create your account, reserve your location, accept payment or provide the relevant services. |
| 5.4 |
You can opt out of marketing at any time by using the unsubscribe link in our emails or by contacting us at [email protected]. |
| 5.5 |
You also have the right to object at any time to processing of your personal data for direct marketing and we will stop. |
6. SHARING PERSONAL DATA
| 6.1 |
We share personal data with service providers who support our operations, including:
| a) |
Hosting: DigitalOcean, AWS; |
| b) |
Communications: Intercom; |
| c) |
Email delivery: Mailgun, SendGrid; |
| d) |
Telephony/SMS: Twilio; |
| e) |
Analytics: Google Analytics (GA4), Heap; |
| f) |
Advertising: Google Ads; |
| g) |
Payments: Stripe; |
| h) |
Accounting: Xero; and |
| i) |
Identity verification: Veriff / Stripe Identity (where used). |
|
| 6.2 |
We may also share data with:
| a) |
professional advisers (legal, accounting, insurers); and |
| b) |
regulators or law enforcement where required. |
|
7. INTERNATIONAL TRANSFERS
| 7.1 |
Some of our service providers may process personal data outside the UK. This can include providers used for hosting, communications, analytics, advertising, payments and identity verification. |
| 7.2 |
Where personal data is transferred outside the UK, we use a lawful transfer mechanism appropriate to the relevant provider and destination, such as an adequacy decision, the UK International Data Transfer Agreement (IDTA), the UK Addendum to the EU Standard Contractual Clauses, or the UK-US Data Bridge where applicable. |
| 7.3 |
You can contact us at [email protected] to request more information about the countries involved, the relevant transfer mechanism and how to obtain a copy of the applicable safeguards. |
8. DATA RETENTION
| 8.1 |
We retain personal data for no longer than is necessary for the purposes for which it was collected, including to meet legal, regulatory, tax, accounting and reporting requirements. |
| 8.2 |
In determining appropriate retention periods, we take into account the nature of the data, the purposes for which it is processed, and the need to retain information to establish, exercise or defend legal claims. |
| 8.3 |
Indicative retention periods are set out below:
| a) |
Account and customer relationship data: retained for the duration of the relationship and for a reasonable period afterwards, typically up to 6 years, and longer where ongoing engagement, repeat services or legal considerations apply; |
| b) |
Financial records and invoices: retained in accordance with applicable legal and tax requirements (generally up to 6 years from the end of the relevant financial year); |
| c) |
Customer communications and support enquiries: retained for a reasonable period following resolution, typically up to 2 years, and longer where relevant to the ongoing provision of services or dispute resolution; |
| d) |
Lead and prospective customer data (including contact form submissions): retained for as long as there is a reasonable prospect of engagement or ongoing commercial relationship, and periodically reviewed; |
| e) |
Call recordings and voicemails: retained for a limited period for training, quality assurance and dispute resolution purposes; |
| f) |
Identity verification data: retained only for as long as necessary to complete verification processes and manage fraud prevention and legal obligations; |
| g) |
Technical, analytics and security logs: retained for operational, security and service improvement purposes for a limited period; and |
| h) |
Marketing suppression data: retained indefinitely (or as long as necessary) to ensure that opt-out preferences are respected. |
|
| 8.4 |
In some circumstances, we may retain personal data for longer periods where required or permitted by law, or where reasonably necessary to establish, exercise or defend legal claims, prevent fraud, or protect our legitimate business interests. |
| 8.5 |
Personal data may also be retained in backup systems for a limited period in accordance with our backup and disaster recovery processes. |
| 8.6 |
When personal data is no longer required, we will securely delete or anonymise it. |
9. YOUR RIGHTS
| 9.1 |
You have the right to:
| a) |
access your personal data; |
| b) |
correct inaccurate data; |
| c) |
request deletion; |
| d) |
restrict processing; |
| e) |
request data portability; |
| f) |
object to processing where we rely on legitimate interests; |
| g) |
object to direct marketing at any time; and |
| h) |
withdraw consent at any time (where applicable). |
|
| 9.2 |
We will respond to requests within one month. |
| 9.3 |
To exercise your rights, contact: [email protected]. |
| 9.4 |
We may need to verify your identity. |
10. HOMEOWNER / END-CUSTOMER ENQUIRIES (LEADS)
| 10.1 |
If you submit an enquiry via a Get Work landing page, contact form or tracking number:
| 10.1.1 |
the trade business is the controller of the personal data used to handle your enquiry, contact you, quote for work and provide its services; |
| 10.1.2 |
Get Work processes that enquiry data on the trade business’s behalf to transmit the enquiry, notify the trade business, provide call tracking and lead-management tools, and otherwise deliver the service; and |
| 10.1.3 |
Get Work may also use limited personal data as an independent controller for its own purposes such as platform and account security, fraud prevention, abuse monitoring, troubleshooting and legal compliance. |
|
| 10.2 |
For rights requests about your enquiry or the trade business’s use of your data, you should contact the trade business directly. |
| 10.3 |
We will assist our customers where required and will handle any requests relating to Get Work’s own independent-controller processing. |
11. AUTOMATED PROCESSING
| 11.1 |
We may use automated tools to support:
| a) |
lead routing; |
| b) |
fraud detection; and |
| c) |
identity verification. |
|
| 11.2 |
These tools use information such as the data you provide, device/IP and usage data, and identity verification results to help route enquiries, detect suspicious activity and flag cases for review. |
| 11.3 |
We do not normally make solely automated decisions that produce legal or similarly significant effects without human involvement. |
| 11.4 |
Where applicable, you may request human review by contacting [email protected]. |
12. COMPLAINTS
| 12.1 |
If you are unhappy with how we handle your data, please contact us first. |
| 12.2 |
You also have the right to complain to the ICO. |
13. UPDATES
| 13.1 |
We may update this Privacy Notice from time to time. The latest version will always be available on our website. |
Last updated: 24 April 2026
