Privacy Policy

The Happy Skin Clinic

1. Who We Are

The Happy Skin Clinic is responsible for collecting and processing your personal data.

We are committed to protecting your privacy and handling your personal data with care, transparency, and respect.
We treat your personal data with the same attention and professionalism as your skin.

2. What Personal Data We Collect

We may collect and store the following types of personal data:

a) Client & Treatment Data

  • Name, contact details (email, phone number)

  • Date of birth

  • Medical history and skin concerns

  • Treatment records, photographs, and consultation notes

  • Communication records (emails, messages, forms)

b) Marketing & Website Data

  • Enquiry forms and website submissions

  • Email marketing preferences

  • Social media interactions (e.g. messages, comments)

  • Website usage data (via cookies and tracking technologies)

c) Supplier / Contractor Data

  • Contact details

  • Business information

  • Payment and contract details

3. How We Use Your Data

We process your personal data in order to:

  • Provide safe and appropriate skincare treatments

  • Communicate with you about appointments and care

  • Maintain accurate clinical records

  • Respond to enquiries and messages

  • Provide marketing communications where appropriate

  • Improve our services, website, and client experience

  • Meet legal, regulatory, and insurance requirements

4. Lawful Basis for Processing

Under UK GDPR, we rely on the following lawful bases:

a) Legitimate Interests

We process your data where it is necessary for the operation of the clinic, including providing services, managing records, and responding to enquiries.

b) Contract

Where processing is necessary to deliver a service you have requested.

c) Legal Obligation

Where we are required to retain or share data for legal or regulatory purposes.

d) Consent

Where you have given clear permission (for example, for marketing communications).

5. Special Category Data (Health Information)

As part of providing skincare treatments, we process health-related data.

We do this in accordance with UK GDPR Article 9(2)(h), as it is necessary for the provision of health care and treatment.

Where required, we will also seek your explicit consent.

6. Marketing & Social Media

We may use your data to provide relevant skincare information, updates, and offers.

This may include:

  • Email marketing

  • Social media engagement (messages, comments)

  • Lead forms or downloadable resources

We will only send marketing communications where:

  • You have given your consent, or

  • We rely on legitimate interests where appropriate and you have not opted out

You can unsubscribe or opt out at any time.

6.1 Social Media Advertising

We use social media platforms, including Facebook and Instagram (provided by Meta Platforms), to promote our services.

These platforms may use information about your interests, interactions, and online behaviour to show you relevant adverts for our services.

We do not receive personally identifiable information about individuals from these platforms, but we may receive anonymised insights about how our adverts perform.

These platforms may process data outside the UK. For more information, please refer to the relevant platform’s privacy policy.

7. Cookies & Tracking Technologies

Our website may use cookies and similar technologies to:

  • Understand how visitors use our website

  • Improve performance and user experience

  • Deliver relevant advertising, including through platforms such as Facebook and Instagram

This may include third-party services such as Meta Platforms and Google.

You can manage your cookie preferences via your browser settings.

8. Automated Processing

We may use automated tools (such as CRM systems, email platforms, or advertising tools) to help personalise communication and improve our services.

You have the right to request human review of any decisions made using automated processing.

9. Sharing Your Data

We only share your data where necessary and securely.

This may include:

  • Other professionals involved in your care (with your knowledge)

  • Software providers (e.g. secure CRM systems)

  • Accountants, insurers, or legal advisors

  • Government authorities where required by law

We never sell your data.

10. International Data Transfers

Some of the systems we use may store or process data outside the UK.

Where this occurs, we ensure appropriate safeguards are in place to protect your data in line with UK GDPR.

11. How Long We Keep Your Data

  • Client data is kept for as long as you are receiving treatment and for a period afterwards as required for legal, insurance, and regulatory purposes

  • Marketing data is kept until you unsubscribe or opt out

  • Supplier/contractor data is kept for up to 7 years after the relationship ends

12. Your Rights

You have the right to:

  • Be informed about how your data is used

  • Access a copy of your data

  • Request correction of inaccurate data

  • Request deletion of your data in certain circumstances

  • Restrict or object to processing

  • Request transfer of your data (data portability)

To make a request, please contact us directly.

We may ask you to clarify your request before responding.
The response period may be paused until clarification is received.

13. Complaints

If you have any concerns about how your data is handled, please contact:

Jacqui de Jager
Email: hello@thehappyskinclinic.co.uk

We will do our best to resolve your concern promptly and fairly.

If you are not satisfied, you have the right to complain to the Information Commissioner's Office:
🌐 www.ico.org.uk/concerns
📞 0303 123 1113

ICO Registration Number: ZB499779

14. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in legal requirements or how we operate.

The latest version will always be available on our website.