Privacy Policy

Effective Date: 19th May 2025

1. Introduction

This Privacy Policy outlines how [Your Business Name], ("we", "our", "us") collects, uses, and protects your personal data when you visit our website, book a service, or engage with us online or in person. We are committed to handling your data responsibly and in accordance with the UK General Data Protection Regulation (UK GDPR).

2. What Personal Data We Collect and Why

  
        Type of Data
        Examples
        Why We Collect It
      
        Contact Details
        Name, email, phone number
        To confirm bookings, send reminders, and contact you regarding appointments.
      
        Appointment Data
        Treatment type, booking date/time, service provider
        To manage your services, personalise treatments, and maintain accurate records.
      
        Health Information
        Allergies, contraindications, medical conditions
        To ensure treatments are safe and appropriate for your needs (with your consent).
      
        Technical Data
        IP address, browser type, cookies, device information
        To improve our website performance, user experience, and security.
      
        Social & Booking Data
        Interactions via social media or third-party apps
        To respond to enquiries and manage bookings through platforms like Instagram or Fresha.

3. How We Use Your Data

We use your personal data to:

Book and manage your appointments
Provide high-quality, safe treatments
Send booking confirmations, reminders, and aftercare
Respond to questions or feedback
Improve our website and services
Comply with legal or insurance obligations

4. Legal Basis for Processing

We process your data on the following lawful bases:

Consent (e.g., to collect health info)
Contract (e.g., when you book an appointment)
Legal obligation (e.g., insurance or tax purposes)
Legitimate interest (e.g., client relationship management)

5. How We Store and Protect Your Data

Your data is securely stored through encrypted digital systems and protected against unauthorised access. Only authorised staff have access to your personal information, and we never store sensitive data without purpose or consent.

6. Data Sharing

We do not sell or rent your personal information. However, we may share it with trusted third parties such as:

Appointment and booking platforms (e.g., Fresha)
Payment processors (e.g., Stripe or Square)
Legal or regulatory bodies when required

All third-party services are GDPR-compliant and contractually bound to protect your data.

7. How Long We Keep Your Data

We keep your data only as long as necessary for:

Providing our services
Meeting legal and insurance requirements
Retaining treatment records (typically 6 years for aesthetic treatments)

8. Your Rights

You have the right to:

Access the personal data we hold about you
Request corrections or updates
Request deletion, unless retention is legally required
Withdraw consent at any time
Object to or limit certain processing
File a complaint with the ICO (Information Commissioner’s Office)

To make a request, please email: info@liorabeautysalon.com

9. Cookies and Website Tracking

We use cookies to enhance your browsing experience, analyse website traffic, and help our site function properly. Please refer to our [Cookie Policy] for details on how we use cookies and how to control them.

10. Policy Updates

We may update this Privacy Policy from time to time. Any changes will be posted here with an updated effective date.

11. Contact Us

If you have any questions about how we handle your personal data, please contact: info@liorabeautysalon.com.