Privacy Policy

JLF Aesthetics

JLF Aesthetics is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who We Are

JLF Aesthetics

Thursday: Sophistikaty's Hair and Beauty Salon, Unit 3, 10 Front St, Prudhoe, NE42 5HJ

Friday: On the go glam, Upper level Blaydon Shopping Precinct, Blaydon, NE21 5BT

Email: jess@jlfaesthetics.co.uk

Phone: 07362276084

For data protection purposes, JLF Aesthetics is the Data Controller.

2. What information we collect

We may collect and process the following information:

Personal information:

  • Full name
  • Date of Birth
  • Address
  • Contact details (phone/email)

Medical Information (Special Category Data):

  • Medical History
  • Current Medications
  • Allergies
  • GP Details
  • Treatment History
  • Before and After photographs (with consent)

Website data:

  • IP Address
  • Browser type
  • Cookies and usage data

3. Lawful Basis for Processing

We process your data under the following lawful bases:

  • Consent - For medical treatment and marketing communications.
  • Contractual obligation - To provide booked services
  • Legal obligation - For medical record keeping and regulatory compliance
  • Legitimate interests - For business administration and service improvement.

Medical data is processed under Article 9(2)(h) UK GDPR (provision of healthcare).

4. How we use your information

We use your data to: 

  • Provide safe and appropriate treatments.
  • Maintain medical records.
  • Contact you regarding appointments.
  • Process payments.
  • Respond to enquiries.
  • Send marketing communications (only where consent has been given).
  • Comply with legal and regulatory requirements.

5. Medical Records Retention

In line with UK insurance and clinical guidance:

  • Adult medical records are retained for 7 years from the date of last treatment.
  • Records relating to clients under 18 (where applicable for other services) are retained until age 25.

After this period, records are securely destroyed.

6. Sharing Your Information

Your data may be shared with:

  • Independent prescribers (for anti-wrinkle treatments).
  • Insurance providers (if required).
  • Regulatory bodies (if legally required).
  • Emergency medical professionals (if clinically necessary).

We do not sell or rent your data to third parties.

7. Data Storage & Security

  • Records are stored securely (digitally password-protected and/or locked files).
  • Access is restricted to authorised personnel only.
  • We take appropriate technical and organisational measures to protect your data.

8. Photography & marketing

Clinical photographs may be taken:

  • For medical record purposes (mandatory for certain treatments).
  • For marketing purposes (only with separate written consent).

You may withdraw marketing consent at any time.

9. Your Rights Under UK GDPR

You have the right to: 

  • Access your personal data.
  • Request correction of inaccurate data.
  • Request erasure (where legally permissible).
  • Restrict processing.
  • Object to processing.
  • Withdraw consent at any time.
  • Lodge a complaint with the Information Commissioner's Office (ICO)

ICO Website: https://ico.org.uk

10. Cookies

Our website may use cookies to improve user experience. You can adjust cookie preferences via your browser settings.

11. Changes to this policy

We may update this privacy policy from time to time. The latest version will always be available on our website.

 

©Copyright. All rights reserved.

We need your consent to load the translations

We use a third-party service to translate the website content that may collect data about your activity. Please review the details in the privacy policy and accept the service to view the translations.