Simply book your storage online!
Have a question? Phone 01903 812241
Ex Tax Inc Tax
Vehicle Storage Indoor Storage Units Shipping Containers Campsite About Us FAQ's

Privacy

Privacy Policy

Gatewick Farm Ltd
Last updated: 27/02/2026
1. Introduction
Gatewick Farm Ltd (“we”, “us”, “our”) is committed to protecting and respecting your privacy.
This Privacy Policy explains how we collect, use, store, and protect personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
Gatewick Farm Ltd is the data controller for the purposes of data protection law.
2. Contact Details
Gatewick Farm Ltd
 Gatewick Farm, Steyning, West Sussex, BN44 3SF.
 Email: info@gfstorage.co.uk
 Telephone: 01903 812241

If you have questions about this policy or wish to exercise your data protection rights, please contact us using the details above.

3. The Personal Data We Collect
We may collect and process the following categories of personal data:
Identity & Contact Data
  • Full name
  • Email address
  • Telephone number
  • Postal address
Customer & Account Data
  • Booking details
  • Storage unit details
  • Vehicle registration details (where relevant)
  • Communication records
Financial Data
  • Payment information
  • Transaction history
  • Invoicing data
We do not store full card details.
Technical Data
  • IP address
  • Browser type and version
  • Device type
  • Website usage information
  • Cookie identifiers
Marketing Data
  • Communication preferences
  • Consent records
CCTV Data
  • Video recordings captured at our premises
4. How We Collect Personal Data
We collect personal data when you:
  • Submit an enquiry via our website
  • Contact us by phone or email
  • Register for or use our services
  • Make a payment
  • Opt in to marketing communications
  • Visit our website (via cookies and analytics)
  • Attend our premises (via CCTV systems)
5. Lawful Basis for Processing
We process personal data under the following lawful bases:
Contractual Necessity
To provide storage services, manage accounts, and process payments.
Legal Obligation
To comply with tax, accounting, fraud prevention, and regulatory requirements.
Legitimate Interests
To operate, secure, and improve our business, including:
  • Managing customer relationships
  • Ensuring site security
  • Preventing fraud
  • Improving website functionality
We ensure our legitimate interests do not override your fundamental rights.
Consent
For:
  • Marketing communications
  • Non-essential cookies
You may withdraw consent at any time.
6. How We Use Your Information
We use your data to:
  • Respond to enquiries
  • Provide and administer storage services
  • Process payments
  • Issue invoices
  • Maintain internal records
  • Send operational communications
  • Send marketing communications (where permitted)
  • Improve our website via analytics
  • Protect our premises and customers through CCTV
  • Comply with legal and regulatory obligations
7. Data Sharing & Processors
We share personal data only where necessary with trusted third-party service providers acting as data processors, including:
  • Stora – Booking and customer management platform
  • Xero – Accounting and invoicing software
  • Stripe – Secure payment processing
  • Microsoft 365 / Teams – Business communication and data storage
  • Google Analytics – Website usage monitoring
  • Third-party CCTV monitoring provider – Security services
All processors are contractually required to:
  • Process data only on our instructions
  • Maintain appropriate security measures
  • Comply with UK data protection law
We do not sell personal data.
8. International Data Transfers
Some of our service providers may store or process data outside the UK.
Where this occurs, we ensure appropriate safeguards are in place, including:
  • UK International Data Transfer Agreements (IDTA)
  • Standard Contractual Clauses
  • Adequacy regulations
9. Data Retention
We retain personal data only for as long as necessary:
  • Customer contracts and financial records: 6 years (legal requirement)
  • Marketing data: until consent is withdrawn
  • Enquiries not converted to customers: typically 12 months
  • CCTV footage: retained for a limited period unless required for investigation
When no longer required, data is securely deleted or anonymised.
10. CCTV
We operate CCTV at our premises for:
  • Crime prevention and detection
  • Protection of customers, staff, and property
  • Site security monitoring
CCTV may be monitored by an authorised third-party security provider.
Clear signage is displayed on site.
 Footage is accessed only when necessary and may be shared with law enforcement where legally required.
11. Data Security
We implement appropriate technical and organisational measures including:
  • Secure cloud-based systems
  • Access controls and role-based permissions
  • Encryption where appropriate
  • Secure payment processing via Stripe
  • Staff awareness of data protection responsibilities
Despite these measures, no transmission over the internet is completely secure.
12. Your Rights
Under UK GDPR, you have the right to:
  • Request access to your personal data
  • Request correction of inaccurate data
  • Request erasure (“right to be forgotten”)
  • Request restriction of processing
  • Object to processing based on legitimate interests
  • Withdraw consent at any time
  • Request data portability
  • Lodge a complaint with the Information Commissioner’s Office (ICO)
ICO Website: https://ico.org.uk

We may require proof of identity before fulfilling requests.
13. Cookies
We use cookies and Google Analytics to analyse website traffic and improve functionality.
Non-essential cookies are used only with your consent via our cookie banner.
You can control cookies through your browser settings.
For more information, see our Cookie Policy.
14. Updates to This Policy
We may update this Privacy Policy from time to time. The latest version will always be published on our website.