Privacy Policy

Hemmali Aesthetics Ltd (“we”, “us”, “our”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and safeguard your information when you visit our website, contact us, or use our services.

Please read this policy carefully to understand our practices regarding your personal data and how we will treat it.

1) Information We Collect

We may collect and process the following categories of personal data:

Personal Information

  • Identity Data: first name, last name, title, date of birth, and gender (where relevant).

  • Contact Data: billing address, delivery address (if applicable), email address, and telephone numbers.

  • Financial Data: bank account and payment card details (processed securely via our payment providers where applicable).

  • Transaction Data: details about payments to and from you, and details of services you have purchased from us.

  • Technical Data: IP address, login data (where applicable), browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access our website.

  • Profile Data: your account or booking information (where applicable), purchases made by you, preferences, feedback, and survey responses.

  • Usage Data: information about how you use our website, products, and services.

  • Marketing and Communications Data: your preferences in receiving marketing from us and your communication preferences.

Special Categories of Personal Data

We may also collect health-related information, which is treated as a special category of personal data, where it is necessary to provide certain treatments safely and appropriately (for example, medical history, contraindications, and treatment records).

 

2) Cookies

A cookie is a small file placed on your device to help websites function properly and to help us understand how visitors use our site.

Cookies may:

  • help analyse web traffic

  • remember your preferences

  • improve website functionality and user experience

Cookies do not give us access to your computer or any information about you beyond the data you choose to share and the information collected through your use of the website.

You can control and/or delete cookies through your browser settings. You may be able to block cookies, but some parts of the website may not function properly if you do.

3) How We Collect Your Information

We use different methods to collect data from and about you, including:

  • Direct interactions: you may provide information by filling in forms, booking consultations, purchasing services, or corresponding with us by post, phone, email, online messaging, or otherwise.

  • Automated technologies: as you interact with our website, we may automatically collect Technical Data using cookies, server logs, and similar technologies.

  • Third parties: we may receive personal data from third-party service providers (such as payment processors, booking platforms, website hosting providers) and publicly available sources where relevant and lawful.

4) How We Use Your Information

We use the information we collect for the following purposes:

  • To provide services: to deliver the services you request, manage bookings, and provide appropriate care.

  • To manage payments: to process payments, fees, and charges and to collect and recover money owed to us.

  • To manage our relationship with you: to communicate about your appointments, notify you of changes to our terms/policies, and request reviews or feedback.

  • To improve our services: to administer and protect our business and website, including troubleshooting, data analysis, testing, system maintenance, support, reporting, and hosting.

  • To use analytics: to improve our website, marketing, customer relationships, and user experience.

  • To send relevant communications: where permitted, to provide you with information about services that may be of interest to you.

Where required by law, we will obtain your consent before sending marketing communications. You can opt out at any time.

5) Disclosure of Your Information

We may share your personal information with:

  • Service providers: third parties that support us in delivering services (for example payment processing, booking systems, data analysis, email delivery, website hosting, customer service, and marketing support).

  • Professional advisers: such as lawyers, bankers, auditors, and insurers who provide consultancy, banking, legal, insurance, and accounting services.

  • Regulators and authorities: where we are under a duty to disclose or share your personal data to comply with a legal obligation, or to protect our rights, property, safety, and/or the rights, property, or safety of our clients or others.

We will only share your data where necessary, and where we have a lawful basis for doing so.

6) Data Security

We have appropriate security measures in place to protect your personal data from being accidentally lost, used, accessed in an unauthorised way, altered, or disclosed.

Access to your personal data is limited to employees, agents, contractors and third parties who have a genuine business need to know. They will only process your personal data on our instructions and are subject to confidentiality obligations.

7) Data Retention

We will retain your personal data only for as long as necessary to fulfil the purposes we collected it for, including meeting legal, accounting, regulatory, insurance, and reporting requirements.

Health and treatment records may be retained for longer periods where required by clinical and/or legal obligations.

 

8) Your Legal Rights

Under UK data protection laws, you may have rights in relation to your personal data, including the right to:

  • Request access to your personal data

  • Request correction of inaccurate or incomplete personal data

  • Request erasure of your personal data (in certain circumstances)

  • Object to processing of your personal data (in certain circumstances)

  • Request restriction of processing (in certain circumstances)

  • Request transfer of your personal data to you or another provider (in certain circumstances)

  • Withdraw consent at any time where we rely on consent to process your data

If you wish to exercise any of these rights, please contact us using the details below.

9) Changes to This Privacy Policy

We keep this Privacy Policy under review and may update it from time to time. Any changes will be posted on this page and, where appropriate, we may notify you by email.

Please check back periodically for updates.

10) Contact Us

If you have any questions about this Privacy Policy or how we handle your personal data, please contact us:

Legal Entity Name: Hemmali Aesthetics LTD
Company Number: 15414038
Data Protection Contact Name (if applicable): Hemmali Patel, Director
Email Address: [email protected]
Telephone Number: 07542 429365
Postal Address: 68 Edendale Road, Bexleyheath, Kent, DA7 6RN
Website: www.drhpa.co.uk

By using our website and/or services, you acknowledge this Privacy Policy.

This policy is subject to change at any time without prior notice. While we strive to provide accurate and up-to-date information, we do not guarantee the completeness or accuracy of this policy. Compliance with this policy does not constitute a legal obligation beyond applicable laws and regulations.