OUR PRIVACY PROMISE
We will always tell you what data we're collecting about you and how we use it. We only share your data with trusted partners and we will never sell your data.
We are committed to always following the industries best practices to ensure our data is stored safely ad securely. We protect the confidentialiaty, accuracy and availability of the information we collect about you.
We will always give you control over the marketing you receive from us. You can choose the types of messages you receive and whether you want to stop receiving marketing communications.
The data controller at Aviva Day Spa is J Saher and she is responsible for your personal data.
Our email address is www.avivadayspa.co.uk.
Our postal address is 2-4 Park Street, Luton, Beds, LU1 3EP.
Please let us know if at any time your personal information changes by emailing us at firstname.lastname@example.org
THE TYPES OF DATA WE COLLECT & HOW WE USE IT
The most common uses of your personal data can be found below:
- Treatment consent forms, treatment consultation forms, client information, record cards, medical certificates and Drs consent.
- As part of the registration process, we collect personal information. We use that information for a couple of reasons: to tell you about stuff you’ve asked us to tell you about; to contact you if we need to obtain or provide additional information; to check our records are right and to check every now and then that you’re happy and satisfied.
- To text or email reminders of your appointment. We don't rent or trade email lists with other organisations and businesses.
- We may need to use your personal information if we need to comply with a legal obligation or regulation.
- We do not collect any Sensitive Data about you. Sensitive Personal Data consists of racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic data, biometric data, data concerning health or data concerning a natural person's sex life or sexual orientation.
You have the right to withdraw consent to marketing at any time by emailing us at email@example.com
WHAT PERSONAL DATA DO WE USE AND WHY?
Below is a description of the ways we intend to use your personal data:
- When registering a new client: we will request contact details to be able to communicate with you regarding your appointment, or personal information.
- To track treatment performance, client results, before and after pictures, consultations and reviewing past and current information in relation the services and products we provide: use of contact details, medical history, marketing communications.
- To process financial transactions: Manage payments, fees and charges, collect and recover money owed to us: use of financial, contractual obligations, and contact details.
- Taking part in competitions including those on social media: use of contact details and marketing communications.
- To deliver relevant website and app content and advertisements to you and measure and understand the effectiveness of our advertising: contact details.
You will receive marketing communications from us if you have:
- if you provided us with your details and ticked the box at the point of entry of your details for us to send you marketing communications
requested information from us or purchased goods or services from us
- If you have not opted out of receiving such marketing.
- We do not share your personal data with any third party for marketing purposes.
- Where you opt out of receiving our marketing communications, this will not apply to personal data provided to us as a result of a product/service purchase, client registration, product/service experience or other transactions.
DISCLOSURES OF YOUR PERSONAL DATA
We may have to share your personal data with the parties set out below:
Salon software/IT provider (Salon IQ)
Legal or regulatory authorities such as HMRC.
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, accessed in an unauthorised way, used or disclosed. We limit access of your personal data to employees, agents, and other third parties who have a business need to know such data. They will only process your personal data on our instructions and they are subject to a duty of confidentiality. We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
PERSONAL DATA RETENTION
Personal data shall be kept for no longer than is necessary for the purposes for which it is being processed. There are some circumstances where personal data may be stored for longer periods (e.g. archiving purposes in the public interest, tax, contractual, medical purposes).
YOUR LEGAL RIGHTS
Under certain circumstances, you have rights under data protection laws in relation to your personal data. These include:
- The right to be informed
- The right of access
- The right to rectification
- The right to erasure
- The right to restrict processing
- The right to data portability
- The right to object
- Rights in relation to automated decision making and profiling
You can read more about these rights at:
If you wish to exercise any of the rights set out above, please email us at firstname.lastname@example.org.
You have the right to complain to the Information Commissioner’s Office (ICO) , the UK supervisory authority for data protection issues (www.ico.org.uk), if you are unhappy with how we have used your personal information, however, please do feel free to contact us first if you do have a complaint so that we can try to resolve it for you.
What’s a cookie?
A ‘cookie’ is a piece of information that is stored on your computer’s hard drive and which records how you move your way around a website so that, when you revisit that website, it can present tailored options based on the information stored about your last visit. Cookies can also be used to analyse traffic and for advertising and marketing purposes.Cookies are used by nearly all websites and do not harm your system.
If you want to check or change what types of cookies you accept, this can usually be altered within your browser settings. You can block cookies at any time by activating the setting on your browser that allows you to refuse the setting of all or some cookies. However, if you use your browser settings to block all cookies (including essential cookies) you may not be able to access all or parts of our website.
There are three main types of cookies, here how and why we use them:
Session cookies: these are only stored on your computer during your web session and are automatically deleted when you close your browser – they usually store an anonymous session ID allowing you to browse a website without having to log in to each page but they do not collect any personal data from your computer; or
Persistent cookies: a persistent cookie is stored as a file on your computer and it remains there when you close your web browser. The cookie can be read by the website that created it when you visit that website again. We use persistent cookies for Google Analytics.
Performance cookies: These cookies enable us to monitor and improve the performance of our website. For example, they allow us to count visits, identify traffic sources and see which parts of the site are most popular.
CHANGES TO THIS POLICY