Facebook Instagram Phone-square-alt
Menu
Menu

Menu

01623 653493
Phone-square-alt
Book-open

Privacy Policy

East Midlands Laser and Cosmetic Clinic Ltd

CQC Registered Medical Aesthetic Clinic

1. Introduction

East Midlands Laser and Cosmetic Clinic Ltd (“we”, “our”, “us”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and requirements set by the Care Quality Commission (CQC).

2. Who We Are

East Midlands Laser and Cosmetic Clinic Ltd is a medical aesthetics clinic registered with the Care Quality Commission (CQC). We act as a Data Controller for the personal data we process.
Contact Details:

Clinic Name: East Midlands Laser and Cosmetic Clinic Ltd
Address: 62 Commercial Gate, Mansfield, NG18 1EU.
Email: eastmidlandslaser@btconnect.com
Phone: 07425629538

3. Information We Collect

We may collect and process the following categories of personal data:

a) Personal Information

• Full name
• Date of birth
• Address
• Contact details (phone number, email)

b) Medical Information (Special Category Data)

• Medical history
• Current medications
• Allergies
• Treatment records and consultation notes
• Before and after photographs (only with your explicit consent)

c) Administrative Information

• Appointment details
• Payment and billing information
• Communication records

d) Website Data (if applicable)

• IP address
• Cookies and browsing activity

4. Lawful Basis for Processing

We process your data under the following lawful bases:

• Consent – for treatments, photography, and marketing communications
• Contract – to provide services you request
• Legal Obligation – to comply with healthcare and CQC regulatory requirements
• Vital Interests – where necessary to protect your health and safety
• Legitimate Interests – for clinic administration, record keeping, and service improvement

5. How We Use Your Information

We use your personal data to:

• Deliver safe and effective medical aesthetic treatments (including laser and cosmetic procedures)
• Maintain accurate and up-to-date medical records
• Communicate with you about appointments, treatments, and aftercare
• Process payments and manage accounts
• Comply with legal and regulatory obligations
• Improve our services and patient experience
• Send marketing communications (only where you have given consent)

6. Sharing Your Information

We may share your personal data with:

• Qualified healthcare professionals involved in your care
• Regulatory authorities, including the Care Quality Commission (CQC)
• Insurance providers (where applicable)
• Payment processing providers
• Secure IT and clinic management system providers

We will never sell your personal data to third parties. 

7. Data Storage and Security

We implement appropriate technical and organisational measures to safeguard your data, including:

• Secure electronic patient record systems
• Encrypted and password-protected devices
• Access controls limiting data to authorised staff only
• Staff training and confidentiality agreements

8. Data Retention

We retain your personal data in line with NHS and CQC guidance:

• Adult patient records: retained for 8 years after your last treatment
• Children’s records: retained until age 25 (or 26 if treated at age 17)

After these periods, data will be securely deleted or anonymised.

9. Your Rights

Under UK GDPR, you have the right to:

• Request access to your personal data
• Request correction of inaccurate or incomplete data
• Request erasure of your data (where applicable)
• Restrict or object to processing
• Request transfer of your data (data portability)
• Withdraw consent at any time (where processing is based on consent)
• Lodge a complaint with the Information Commissioner’s Office (ICO)

10. Marketing

We will only send you marketing communications if you have given explicit consent. You can opt out at any time by:

• Clicking the “unsubscribe” link in emails
• Contacting us directly

11. Cookies (if applicable)

Our website may use cookies to enhance your browsing experience and analyse website traffic. You can control cookie preferences through your browser settings.

12. Complaints

If you have concerns about how we handle your personal data, please contact us in the first instance. You also have the right to lodge a complaint with:
Information Commissioner’s Office (ICO)
Website: https://www.ico.org.uk

13. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be made available on our website and within the clinic.