Privacy Policy – Skin and Self Clinic

Last updated: 12 June 2025

Introduction

Skin and Self Clinic (“we”, “us”, or “our”) is committed to protecting and respecting your privacy. This privacy policy outlines how we collect, use, store, and protect your personal data in accordance with UK data protection laws including the UK General Data Protection Regulation (UK GDPR).

Clinic Address:
Skin and Self Clinic
9a Burkes Parade, Station Approach
Beaconsfield, HP9 1NN

Email: info@skinselfclinic.com

We act as a data controller for the personal information you provide to us.

⸻

What Personal Data We Collect

We collect and process personal data relevant to the treatments and services we provide, including but not limited to:
• Full name
• Date of birth
• Address
• Email address
• Phone number
• Medical history, allergies, and medications (special category data)
• Treatment records and clinical notes
• Payment details (processed securely via third-party providers)

⸻

How We Use Your Personal Data

We process your data for the following purposes:
• To provide and manage your treatments and consultations
• To assess your medical suitability for treatments
• To contact you about your appointments and clinical care
• To maintain records as required by medical, legal, and regulatory standards
• To process payments and issue receipts
• To send occasional marketing communications, only with your consent

⸻

Legal Basis for Processing

We collect and process your data based on one or more of the following lawful grounds:
• Your consent (e.g. for marketing)
• To fulfil a contract with you (e.g. providing a treatment)
• To meet legal obligations (e.g. record keeping for medical and insurance purposes)
• Legitimate interests (e.g. clinic management and service improvement)
• Explicit consent for processing special category data such as health information

⸻

Children’s Privacy

We do not knowingly collect data from individuals under the age of 18 without the consent of a parent or guardian. If we become aware that we have collected data from a child without consent, we will delete it promptly.

⸻

Your Rights

You have the right to:
• Access the personal data we hold about you
• Request correction of inaccurate or incomplete data
• Request erasure of your data (where legally permissible)
• Object to or restrict the processing of your data
• Withdraw your consent at any time
• Request transfer of your data to another provider
• Lodge a complaint with the Information Commissioner’s Office (ICO)

To exercise any of these rights, please contact us using the details provided above. We may ask you to verify your identity before acting on your request.

⸻

Sharing Your Information

We do not sell, rent, or share your personal information with third parties for marketing or independent use.

We only share your information when absolutely necessary to deliver our services or meet legal requirements. This may include:
• Clinicians and staff directly involved in your care
• Trusted software providers (e.g. Aesthetidocs) for booking and secure medical records
• Payment processors for securely handling transactions
• Insurers, regulators, or legal bodies where required by law

All third parties are contractually bound to handle your data confidentially and securely, and only under our instruction.

⸻

Data Security

We take appropriate technical and organisational measures to secure your data against unauthorised access, alteration, or loss. This includes:
• Encrypted clinical software and secure servers
• Role-based access control for team members
• Confidentiality agreements and staff training
• Secure storage for paper records (if applicable)

⸻

Retention of Data

We retain your data for as long as necessary to fulfil the purpose it was collected for, including:
• Medical records: Retained in line with legal and regulatory standards
• Marketing preferences: Retained until you withdraw consent
• Payment records: Retained for accounting and taxation purposes

⸻

Cookies

Our website may use cookies to enhance your browsing experience. Cookies are small files stored on your device to track activity and usage preferences.

You can manage or disable cookies through your browser settings. If you choose to disable cookies, some features of the website may not function correctly.

⸻

Marketing Communications

We may contact you via email or SMS with clinic updates, special offers, and promotions — only if you have given explicit consent. You can withdraw your consent at any time by:
• Clicking the unsubscribe link in our emails
• Contacting us at info@skinselfclinic.com

⸻

Changes to This Policy

We may update this privacy policy from time to time to reflect changes in our services or legal requirements. The latest version will always be available on our website and will take effect immediately upon publication.

This policy was last updated on: 12 June 2025

⸻

Contact Us

If you have any questions, concerns, or complaints about how your personal data is handled, please contact us at:

Skin and Self Clinic
9a Burkes Parade, Station Approach
Beaconsfield, HP9 1NN
Email: info@skinselfclinic.com