GDPR Policy

Allure Beauty Lounge

Introduction

Allure Beauty Lounge is committed to protecting the privacy and security of our clients’ personal data. This policy explains how we collect, use, store, and protect personal information in accordance with the UK General Data Protection Regulation (UK GDPR).

1. What Information We Collect

  • Full name
  • Contact details (address, phone number, email)
  • Date of birth
  • Medical history or allergies (relevant to treatments)
  • Treatment history and preferences
  • Consent for specific treatments (e.g., massage, body sculpting, facials)
  • Payment information (only when applicable)

2. Why We Collect Client Information

  • To provide professional beauty treatments safely and effectively
  • To assess client suitability for certain treatments (e.g., allergies, skin sensitivities)
  • To maintain accurate treatment records
  • To contact clients for appointment confirmations, updates, or follow-ups
  • To manage loyalty schemes or promotional communications (with consent)
  • To comply with legal and insurance requirements

3. Legal Basis for Processing

  • Consent – Clients give clear consent for us to process their personal data for specific purposes.
  • Contract – Processing is necessary to deliver agreed treatments and services.
  • Legal obligation – We may retain records to comply with health, safety, and insurance obligations.
  • Legitimate interests – For maintaining treatment records and improving client experience, where this does not override individual rights.

4. How Long We Retain Your Data

We retain client records for up to 7 years from the date of the last treatment, in line with insurance and legal obligations. For clients under 18, records are kept for 7 years after they turn 18. After this period, personal data will be securely deleted or shredded.

5. Sharing Your Information

We do not share your personal information with third parties, except:

  • When required by law or insurance providers
  • With your explicit consent
  • If using secure software providers for booking or client management (e.g. Treatwell), who comply with GDPR

We never sell or distribute personal information for marketing purposes.

6. How We Store and Protect Your Data

  • Client records are stored securely (in locked cabinets or password-protected systems).
  • Access is restricted to authorised salon personnel.
  • Electronic records are stored using encrypted software with secure backups.

7. Your Rights

  • Access your personal data
  • Request correction of inaccurate or incomplete data
  • Request deletion of your data (subject to legal or insurance exceptions)
  • Withdraw consent at any time
  • Lodge a complaint with the Information Commissioner’s Office (ICO)

8. Contact Details

If you have questions or requests regarding your personal data, please contact:

Allure Beauty Lounge

Location: 21a St. Mary’s street, Wallingford, Oxfordshire, OX10 0EW, United Kingdom

Email: manager@allurebeautyloungeltd.co.uk

Tel: 01865 560100

Date: 28 May 2025

Our Services
Treaments
Contacts

Allure Beauty Lounge

©2025 - All Rights Reserved.

Instagram Facebook