GDPR Compliance
At BU Aesthetics, we are committed to protecting and handling your personal data in compliance with the General Data Protection Regulation (GDPR). This policy outlines how we collect, use, and protect your personal data when you visit our website at https://www.buaesthetics.co.uk or use our services.
Data Collection
We collect personal data to provide and improve our services. This data may include your name, contact information, and any other details you provide when booking an appointment, subscribing to our newsletter, or contacting us. We also collect information about your use of our website through cookies and other tracking technologies. This helps us understand how you interact with our website and allows us to enhance your user experience.
Data Use
Your personal data is used to provide you with the services you have requested, such as scheduling appointments and sending confirmations or reminders. We also use your data to communicate with you, respond to your inquiries, and send you promotional materials if you have opted to receive them. Additionally, we use the data collected through cookies to analyse website traffic and user behaviour, which helps us improve our website and services.
Legal Basis for Processing
Under the GDPR, we must have a legal basis to process your personal data. The legal bases for processing your data include the performance of a contract (e.g., providing the services you have requested), compliance with a legal obligation, and our legitimate interests (e.g., improving our services and website). In some cases, we may also process your data based on your consent, which you can withdraw at any time.
Data Protection
We implement appropriate technical and organisational measures to protect your personal data from unauthorised access, loss, or misuse. These measures include secure servers, encryption, and access controls. While we strive to protect your data, please be aware that no security measures are completely foolproof, and we cannot guarantee the absolute security of your data.
Data Retention
We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. The retention period varies depending on the type of data and the purpose of processing. When your data is no longer needed, we will securely delete or anonymise it.
Your Rights
Under the GDPR, you have several rights regarding your personal data. These include the right to access, rectify, or erase your data, as well as the right to restrict or object to processing. You also have the right to data portability, which allows you to receive your data in a structured, commonly used, and machine-readable format. If you wish to exercise any of these rights, please contact us at info@buaesthetics.co.uk.
Third-Party Sharing
We do not sell or rent your personal data to third parties. However, we may share your data with trusted service providers who assist us in operating our website and providing our services. These third parties are contractually obligated to protect your data and use it only for the purposes specified by us. We may also disclose your data if required by law or in response to legal requests.
International Transfers
If your data is transferred outside the European Economic Area (EEA), we ensure that it is protected in accordance with the GDPR. This may include using standard contractual clauses approved by the European Commission or ensuring that the recipient country has adequate data protection laws.
Contact Us
If you have any questions or concerns about our GDPR compliance or how we handle your personal data, please contact us at info@buaesthetics.co.uk. We are committed to addressing your concerns and ensuring that your data is handled in a secure and lawful manner. Thank you for trusting BU Aesthetics with your personal data. Thank you for choosing BU Aesthetics.
