This privacy notice explains how Kelly Rose Skincare & Aesthetics LTD looks after the personal information you supply to us or that we learn by having you as a client, and explains your privacy rights and how the law protects you.
- What information we collect about you
- How information about you will be used
- How long your information will be kept for
- Where your information is kept
- Access to your information and correction
- Other websites
- Changes to our privacy notice
- How to contact us
WHAT INFORMATION WE COLLECT ABOUT YOU
We collect information about you when you book an appointment for a service or treatment, visit the salon for a service or treatment, buy a product or apply for a job, whether contact is online, on paper, by email or over the phone.
The information you give us may include your name, address, email address, phone number, relevant history which may suggest that a service or treatment should not go ahead or certain products should not be used (eg allergies, pregnancy, skin conditions), payment and transaction information, IP address and CVs.
HOW INFORMATION ABOUT YOU WILL BE USED
In law, we are allowed to use personal information, including sharing it outside the salon, only if we have a proper reason to do so, for example:
- To fulfil a contract with you, e.g. to enable us to communicate with you about your appointments, or we may request one of our suppliers (for example, Image Skincare) to ship products purchased direct to you
- When it is in our legitimate interest ie there is a business or commercial reason to do so, unless this is outweighed by your rights or interests
- When you consent to it: our Consultation Forms may ask for your consent to hold and use (where appropriate) photographs and health and medical information.
Client information will therefore be shared with:
- our website suppliers (KOR Digital, Siteground and WordPress);
- the suppliers of our booking system, Timely;
- if you have signed up to our campaigns, Mailchimp;
- (only when required) our suppliers if we need them to send out a product direct to you
All of our suppliers have their own rigorous data protection and security policies in place.
All of our staff are made aware of our Privacy Notice and Data Retention Policy at induction.
We will not share your information with any other third party without your consent except to help prevent fraud, or if required to do so by law.
We would like to send you information about products and services which may be of interest to you. We will ask for your consent to receive marketing information.
If you have consented to receiving marketing, you may opt out at a later date.
You have the right at any time to stop us from contacting you for marketing purposes.
If you no longer wish to be contacted for marketing purposes, there is a button you can click on at the end of each campaign, asking us to stop. Alternatively, please contact email@example.com
The information we collect about employees, the purposes it is used for and who it will be shared with is set out in our Company Handbook, which forms part of our employment contracts
HOW LONG YOUR INFORMATION WILL BE KEPT FOR
Unless you request otherwise, we will keep:
- Emails for a maximum of 1 year from the date of your last visit to the salon (unless a longer date is relevant);
- Client General Records for 24 months
- Client Health Records (e.g. allergy test records) for 4 years;
- Financial transactions for 6 years (we are obliged by law to keep them for this period)
Information about unsuccessful job applicants will be deleted after four months
WHERE YOUR INFORMATION IS KEPT
On our software applications as mentioned above, i.e. Siteground, WordPress, Timely, Mailchimp
ACCESS TO YOUR INFORMATION AND CORRECTION
You have the right to request a copy of the personal information that we hold about you. This will normally be free, unless we consider the request to be unfounded or excessive, in which case we may charge a fee to cover our administration costs.
If you would like a copy of some or all of your personal information, please contact firstname.lastname@example.org
We want to make sure that your personal information is accurate and up-to-date. You may ask us to correct or remove information you think is inaccurate.
You have the right to object to our use of your personal information, and ask us to delete, remove or stop using your personal information if there is no need for us to keep it.
What’s a cookie?
- A “cookie” is a piece of information that is stored on your computer’s hard drive and which records how you move your way around a website so that, when you revisit that website, it can present tailored options based on the information stored about your last visit. Cookies can also be used to analyse traffic and for advertising and marketing purposes.
- Cookies are used by nearly all websites and do not harm your system.
If you want to check or change what types of cookies you accept, this can usually be altered within your browser settings. You can block cookies at any time by activating the setting on your browser that allows you to refuse the setting of all or some cookies. However, if you use your browser settings to block all cookies (including essential cookies) you may not be able to access all or parts of our site.
- Cookies are either:
- Session cookies: these are only stored on your computer during your web session and are automatically deleted when you close your browser – they usually store an anonymous session ID allowing you to browse a website without having to log in to each page but they do not collect any personal data from your computer; or
- Persistent cookies: a persistent cookie is stored as a file on your computer and it remains there when you close your web browser. The cookie can be read by the website that created it when you visit that website again.
- Cookies can also be categorised as follows:
- Strictly necessary cookies: These cookies are essential to enable you to use the website effectively, such as when buying a product and / or service, and therefore cannot be turned off. Without these cookies, the services available to you on our website cannot be provided. These cookies do not gather information about you that could be used for marketing or remembering where you have been on the internet.
- Performance cookies: These cookies enable us to monitor and improve the performance of our website. For example, they allow us to count visits, identify traffic sources and see which parts of the site are most popular.
- Functionality cookies: These cookies allow our website to remember choices you make and provide enhanced features. For instance, we may be able to provide you with news or updates relevant to the services you use. They may also be used to provide services you have requested such as viewing a video or commenting on a blog. The information these cookies collect is usually anonymised.
We are always looking at ways to make improvements, so use Google Analytics to monitor how our website is being used. This requires us to pass to Google your IP address - no other information is passed to them. Google uses this information to prepare site usage reports for us, but Google may also share this information with other Google services. In particular, Google may use the data collected to contextualize and personalize the ads of its own advertising network. Related information:
CHANGES TO OUR PRIVACY NOTICE
We keep our privacy notice under regular review and we will place any updates on this webpage. This privacy notice was last updated in February 2022.
HOW TO CONTACT US
Please contact us, by email, if you have any questions about our privacy notice or information we hold about you:
We hope that, if you have concerns about the way your personal information is being used by us you will firstly raise the matter with us but you do have a legal right to complain direct to the Information Commissioner’s Office. You can find out more on their website at https://ico.org.uk/concerns/.