Privacy policy.

1. Introduction

At Sinaesthetics, we are committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and share your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Information We Collect

We may collect and process the following types of personal data:

  • Personal Identification Information: Name, address, email address, phone number, date of birth, gender.

  • Medical Information: Health history, treatments received, allergies, medications, and any other medical information necessary for treatment.

  • Payment Information: Bank account details, credit/debit card information for payment processing.

  • Website Data: Cookies, IP address, and browsing behaviour when you visit our website.

3. We collect data in the following ways:

  • Directly from you: When you complete forms on our website, make appointments, or interact with us in person or via email/phone. This is kept in a HIPAA compliant electronic record.

4. Why We Collect Your Data and Our Legal Basis for Processing

We collect and process your data for the following purposes:

  • To provide medical services: Treatment planning, advice, and care.

  • To fulfil contractual obligations: To manage appointments and payments.

  • To comply with legal requirements: Such as medical record-keeping and insurance claims.

  • For marketing and communications: If you have given us consent, we may send you newsletters or promotional offers. You can withdraw consent at any time.

Our lawful bases for processing your data are:

  • Consent: For sending marketing materials and other non-essential communications.

  • Contractual necessity: To provide healthcare services as agreed upon.

  • Legal obligation: For maintaining medical records or compliance with healthcare regulations.

  • Legitimate interests: For administrative purposes, fraud prevention, and improving services.

5. How We Use Your Data

We use your personal data for the following purposes directly related to your care:

  • Providing cosmetic treatments and healthcare services.

  • Managing and confirming appointments and follow-ups.

  • Processing payments and invoices.

  • Communicating with you regarding your treatment, health updates, or clinic-related information.

  • Marketing communications (if you have opted in).

  • Complying with legal obligations such as medical record-keeping and insurance.

6. Sharing Your Data

We will not share your basic personal data i.e. only name, address, telephone no, with third parties except in the following circumstances:

  • Healthcare professionals: If you have been referred to or are being treated by another practitioner as part of your care, and have given your explicit consent.

  • Service providers: Third-party vendors who help us manage payments, IT services, or marketing (these vendors are contractually obligated to protect your data).

  • Regulatory authorities: As required by law or if requested by law enforcement or regulatory bodies.

  • In case of business transfer: If our clinic undergoes a business transfer or merger, your data may be transferred to the new owners.

7. How We Protect Your Data

We implement appropriate technical and organizational measures to protect your personal data, including:

  • Secure servers and encrypted communications.

  • Restricted access to data by authorized staff only.

  • Regular security reviews and updates.

8. Your Rights

Under the UK GDPR, you have the following rights regarding your personal data:

  • Access: You can request a copy of the personal data we hold about you.

  • Rectification: You can request that we correct any inaccuracies in your personal data.

  • Erasure: You can request that we delete your personal data, subject to legal obligations.

  • Restriction of Processing: You can request that we limit the way we process your data.

  • Data Portability: You can request a copy of your data in a machine-readable format for transfer to another provider.

  • Objection: You can object to the processing of your data, particularly in cases of direct marketing.

  • Withdraw Consent: You can withdraw consent for marketing communications at any time.

If you wish to exercise any of these rights, please contact us at contact@sinaesthetics.co.uk

9. Cookies and Website Data

Our website may use cookies to enhance your user experience. Cookies are small text files stored on your device. You can manage cookie settings through your browser. For more information, please see our Cookie Policy.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on our website, and the revised policy will be effective immediately upon publication. We encourage you to review this policy regularly.

12. Complaints

If you are not satisfied with how we have handled your personal data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK's independent authority on data protection.

13. How to delete your data: you can delete your data by contacting us via email, contact@sinaesthetics.co.uk. We will then permanently delete your data.