Privacy Policy for AESTHETICS LDN LTD
1. Introduction
At AESTHETICS LDN, (“The Clinic”, "we, 'us" or "our"), we are committed to protecting your privacy and ensuring that your personal information is handled in a safe and responsible manner. This Privacy Policy outlines how we collect, use, store, and protect your personal data in compliance with the UK General Data Protection Regulation (GDPR).
By using our services, you agree to the collection and use of your personal information in accordance with this policy.
2. Data We Collect
We may collect, use, store, and transfer different kinds of personal data about you, including but not limited to:
Identity Data: Full name, date of birth, proof of age, gender.
Contact Data: Address, email address, phone numbers.
Medical Data: Medical history, information about your health, allergies, treatments, photos taken before and after treatments.
Financial Data: Payment information, such as bank account or credit/debit card details.
Transaction Data: Details of treatments you have purchased from us.
Technical Data: Information about how you use our website, including IP address, browser type, time zone settings, and cookies.
Marketing Data: Preferences for receiving marketing and communication from us.
3. How We Collect Your Data
We use different methods to collect data from and about you, including:
Direct interactions: When you fill in forms or provide information to us in person, by phone, email, or otherwise, such as during your consultation.
Automated technologies: When you interact with our website, we may collect Technical Data using cookies, server logs, and other similar technologies.
Third parties: We may receive personal data about you from third-party sources, such as payment service providers and analytics providers.
4. How We Use Your Data
We only use your personal data when the law allows us to. The most common uses of your data include:
To provide services: We process your personal data to deliver aesthetic treatments and aftercare, including maintaining treatment records and managing appointments.
To comply with legal obligations: This includes sharing your personal information for regulatory reporting or cooperating with authorities if required.
For financial transactions: We use your payment information to process payments for the services you receive at The Clinic.
To communicate with you: We use your contact details to send reminders, updates about your treatment, or respond to inquiries.
Marketing purposes: With your consent, we may use your personal data to send you information about promotions, offers, or services that may interest you.
5. Legal Basis for Processing
Under GDPR, we must have a lawful basis for processing your personal data. These include:
Consent: When you provide us with your explicit consent to use your data for specific purposes, such as marketing.
Contractual necessity: When processing your data is necessary to fulfil a contract with you (e.g., providing a treatment).
Legal obligation: When we are required to process your data to comply with a legal obligation (e.g., keeping treatment records).
Legitimate interests: When it is in our legitimate business interest to process your data (e.g., improving our services, securing our systems), provided this does not override your rights.
6. How We Store Your Data
We take appropriate measures to ensure that your personal data is stored securely. This includes physical, technical, and administrative safeguards to protect your data from unauthorised access, use, or disclosure.
Your data will be stored for as long as is necessary to fulfil the purposes for which it was collected, including complying with any legal, accounting, or reporting obligations. We typically retain medical records, including treatment photos, for 7 years in accordance with industry standards and legal requirements.
7. Data Sharing and Disclosure
We will never sell your personal information. However, we may share your data with third parties in the following circumstances:
Service providers: We may share your data with trusted third-party providers who perform functions on our behalf, such as payment processing, IT services, or marketing support. These providers are required to protect your data and only use it for the services they provide to us.
Legal and regulatory compliance: If required by law or to respond to legal processes, we may disclose your personal data to relevant authorities.
Business transfers: In the event of a sale or merger of the business, your data may be shared with the new owners.
8. Your Data Protection Rights
Under UK GDPR, you have the following rights regarding your personal data:
Right to access: You can request a copy of the personal data we hold about you.
Right to rectification: You can request that we correct any inaccurate or incomplete data we hold about you.
Right to erasure: You can ask us to delete your personal data in certain circumstances.
Right to restrict processing: You can ask us to limit how we use your data in certain situations.
Right to data portability: You can request a copy of your personal data in a structured, machine-readable format to transfer to another provider.
Right to object: You can object to our processing of your data based on legitimate interests, or for marketing purposes.
Right to withdraw consent: Where we rely on your consent to process your data, you can withdraw that consent at any time.
To exercise any of these rights, please contact us using the contact details below.
9. Marketing Communications
If you have given your consent, we may send you marketing communications by email, phone, or SMS. You can withdraw your consent at any time by:
Clicking the "unsubscribe" link in the emails you receive.
Contacting us directly using the details provided below.
10. Cookies
Our website uses cookies to enhance your browsing experience. These are small text files stored on your device that collect information about how you interact with our website. You can manage your cookie preferences through your browser settings.
11. Third-Party Links
Our website may contain links to third-party websites. Please be aware that we are not responsible for the privacy practices of other websites. We encourage you to read the privacy policies of any third-party site you visit.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. We will notify you of any significant changes via email or by posting the updated policy on our website.
13. Contact Us
If you have any questions about this Privacy Policy or how we handle your personal data, please contact us at: AESTHETICS LDN LTD, 85 Great Portland Street, First Floor, London, W1W 7LT.
clinic@aestheticsldn.com
07508 533743.
If you are not satisfied with our response, you can contact the Information Commissioner’s Office (ICO), the UK’s supervisory authority for data protection issues, at www.ico.org.uk or by calling 0303 123 1113.
Thank you for your subscription we will confirm this via email.
(Please check your junk mail)
Oops, there was an error sending your message.
Please try again later.
Mobile Service:
by appointment only.
Clinic:
by appointment only.
Light Centre
9 Eccelstone Street,
Belgravia,
London,
SW1W 9LX
Telephone: 07508 533743
Email: clinic@aestheticsldn.com
All Rights Reserved | AESTHESTICS LDN LTD