Data Privacy Policy

Our care extends to the information we hold about you................

1.About this Policy

1.1. This policy explains when and why we collect personal information about our patients, customers and members, how we use it and how we secure your information. It also details your rights and our permissions in relation to said information.

1.2. We may collect, use and store your personal data, as described in this Data Privacy Policy. This will also be made clear when we collect data from you.

1.3. We reserve the right to amend this Data Privacy Policy from time to time and without prior notice. You are advised to check our website regularly for any amendments or updates.

1.4. AcuSpa Ltd will always comply with the General Data Protection Regulation (GDPR) when dealing with your personal data. Further information on the GDPR can be found online at the Information Commissioner (ico.org.uk/for-organisations/guide-tothe-general-data-protection-regulation-gdpr). For the purposes of GDPR compliance we will be the “controller” of all personal information we hold about you.

2. Who are we?

2.1. We are AcuSpa Ltd.  Our clinic operates out of 50, Bridge Street, Manchester, M3 3BW, U.K. We can be contacted via email at info@acuspa.co.uk or via telephone on+44 (0)161 711 0456.

3. What information we collect and why.

3.1 Name, address, telephone number, email.            

PURPOSES

Shipping information, managing membership, in the event we need to contact you.

3.2 Online behaviour (cookies), profiling and analytics data

PURPOSES

Collating data on marketing strategies and effective spending.

3.3 Emergency and General Practitioner’s contact details

PURPOSES

Contacting the next of kin in the event of an emergency or your surgery in the event we need to contact them.

3.4 Gender

PURPOSES

​For medical notes and to establish medical background for treatments.

3.5 Date of Birth

PURPOSES

For medical notes and to establish background for treatment.

3.6 Occupation

PURPOSES

For medical notes and to establish medical background for treatment.

3.7 Ethnicity

​PURPOSES

For medical notes and to establish medical background.

3.8 Health Information

PURPOSES

​For medical notes and to establish medical background.

3.9 Professional Accreditation

PURPOSES

To ensure that you are able to practice your area of expertise safely and legally. To ensure that you have the necessary standard of experience and education required to fulfil the role.

4. How we protect your data.

4.1. We will not transfer your personal data outside the EU without your consent.

4.2. We have implemented generally accepted standards of technology and operational security in order to protect data (personal or otherwise) from loss, misuse, or unauthorised alteration or destruction.

4.3. Acknowledgement: When transferring personal data via the internet, due to connection, server or web security, we cannot guarantee 100% security. This is due to factors beyond our control.

4.5. In the event of a data breach, we will notify you immediately (if able to do so).

5. Who else has access to your information?

5.1. We will never sell your personal data. We will not share your personal data to any third parties (without your prior consent, which you are entitled to withhold) except where we are required to do so by law or as set out in paragraph 5.2 below.

5.2. Your personal data may be supplied to third parties i.e. service providers, agents, subcontractors etc. (this list is not exhaustive) for the purposes of completing tasks and/or providing a service on your behalf e.g. orders may be directly shipped to your address from one of our third-party suppliers. We will disclose personal data that is necessary for the third party to deliver the service and we will ensure that we have a contract in place that requires them to keep your information secure and will not allow them to use it for their own purposes.

6. How long do we keep your information?

6.1. We will hold your personal/professional information on our systems for as long as you are a patient, customer and/or member of AcuSpa Ltd. Subsequent to your break with AcuSpa Ltd, we will retain your information for as long as it is in the company’s legitimate interests to do so, or, for as long as it takes for us to comply with legal obligations. We will review your personal data every year to establish whether we are still entitled to process it. Any personal data that we deem unsuitable for further processing will be retained in a secure data archive to ensure that we remain compliant with any future legal obligations e.g. tax requirements, defending or establishing legal claims etc.

6.2. We securely destroy all financial information once we have used it. Any reoccurring payments are taken through a secure payment terminal.

7. Your Rights

7.1. Your rights under the GDPR are as follows, you have the right to;

7.1.1. Access your personal data

7.1.2. Receive information about how your personal data is processed

7.1.3. Correct your personal data

7.1.4. Erase your personal data (in certain circumstances)

7.1.5. Restrict the use/processing of your personal data

7.1.6. Transfer your data to yourself or another business (in certain circumstances)

7.2. You retain the right to complain to the Information Commissioner should you have any grievance or object to the way in which we process our data. This can be done via their website https://ico.org.uk/concerns/

For more details about our data processing or operating procedures, or you have a comment or suggestion regarding our processing practices, please send this for the attention of The Director, AcuSpa Ltd, 50, Bridge Street, Manchester, M3 3BW.

Your Well Being in Our Business