Privacy Policy

Last updated: 15th April 2026

This privacy policy explains how Leigh on Sea Laser Clinic (“we,” “us,” or “our”) collects, stores, and uses personal information from clients and website users, in accordance with the UK GDPR and the Data Protection Act 2018.

By using our website or services, you agree to the practices described in this policy.

1. Information We Collect

We may collect and process the following information:

  • Personal details: name, email address, phone number, date of birth

  • Health and medical information relevant to your treatments

  • Patch test records and consultation forms

  • Payment and billing information

  • Photographs for clinical, insurance, and (where consent is given) marketing purposes

  • Website usage data via cookies and analytics tools

2. How We Use Your Data

We use your information to:

  • Assess your suitability for treatments, including seeking GP consent where required

  • Carry out patch tests safely and effectively

  • Contact you regarding appointments, treatments, and follow-ups

  • Maintain accurate and legally compliant treatment records

  • Provide personalised treatment plans

  • Meet legal, regulatory, and insurance requirements

We will only send marketing communications where you have explicitly opted in. You may withdraw this consent at any time.

3. Cookies

Our website uses cookies to enhance your experience and analyse website performance. Cookies help us to:

  • Recognise your device and remember preferences

  • Understand how visitors interact with our website

  • Improve website functionality and content

If you submit an enquiry via our website, we may collect:

  • Name

  • Email address

  • Phone number

You can control or disable cookies via your browser settings. Please note that doing so may affect website functionality.

4. Client Confidentiality

We are committed to maintaining strict client confidentiality.

  • We do not disclose any client information, including treatments, pricing, or appointments, to third parties without explicit consent

  • Consent must be provided via the email address registered on your account

  • This applies even if the third party is also a client

All treatment records and medical information are securely stored within Timely, our booking system system, and retained for a minimum of 7 years in line with legal and insurance requirements.

5. Clinical Photography & Marketing Consent

We may take photographs before, during, or after treatment for:

  • Clinical assessment and progress tracking

  • Insurance and legal documentation

  • Training and professional standards

Images will only be used for marketing purposes (including social media, website and anywhere else we deem necessary) where written consent has been provided.

You have the right to withdraw consent for marketing use at any time.

6. Sharing Your Data

We do not share your personal data with third parties except:

  • Where you have given explicit consent

  • Where required by law or regulatory authorities

  • For insurance, legal, or professional compliance purposes

  • With trusted service providers (e.g., booking systems like Timely), who process data securely on our behalf

All staff are trained in data protection and confidentiality.

7. Your Rights Under GDPR

You have the right to:

  • Access the personal data we hold about you

  • Request correction of inaccurate or incomplete data

  • Request deletion or restriction of your data (where legally permissible)

  • Withdraw consent at any time

  • Object to processing for marketing purposes

  • Lodge a complaint with the Information Commissioner’s Office (ICO)

To exercise your rights, please contact us at:
leighonsealaserclinic@yahoo.com

8. Data Security

We take appropriate technical and organisational measures to protect your personal data from unauthorised access, loss, or misuse.

All treatment records are securely stored within Timely, our booking system system with secure data handling protocols.

9. Age Restrictions

Our services are only available to individuals aged 18 and over.

We do not knowingly collect or process data from individuals under this age without parental or guardian consent where legally required.

10. Third-Party Links

Our website may contain links to external websites. We are not responsible for the privacy practices of websites outside the leighonsealaserclinic.co.uk domain.

11. Retention of Data

  • Treatment records and consultation forms are retained for 7 years

  • Contact details and marketing preferences are stored until you unsubscribe or withdraw consent

  • Financial records may be retained longer where required for tax or legal purposes

12. Updates to This Policy

We may update this Privacy Policy from time to time. The most current version will always be available on our website.

13. Contact

For any questions or to exercise your data protection rights, please contact:

Email: leighonsealaserclinic@yahoo.com
Phone: +44 7862 880804