Introduction
Julie Bain Clinical Tattooing is committed to protecting your privacy and handling your personal data in accordance with UK data protection laws, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
Due to the nature of our services, we may collect and process sensitive personal data (including medical information). We take this responsibility seriously and ensure all data is handled securely, lawfully, and transparently.
This policy explains how we collect, use, store and protect your personal data.
Where we use third-party services (such as payment providers or booking systems), those providers may process your personal data in accordance with their own privacy policies.
What Information We Collect
We may collect and process the following personal data:
- Name Contact details (phone number, email address)
- Date of birth (where required for treatment suitability)
- Medical history and health information relevant to your treatment
- Consultation records, treatment notes, and consent forms
- Photographs (before and after treatment, where consent is given)
- Appointment history
- Payment and transaction information (processed securely via third parties)
We only collect information that is necessary to provide safe, appropriate, and effective treatments.
Lawful Basis for Processing
Under UK GDPR, we rely on the following lawful bases:
- Consent – for processing medical information, photographs, and marketing communications
- Contract – to provide booked treatments and services
- Legal obligation – to comply with health, safety, and insurance requirements
- Legitimate interests – to manage our business and improve our services
You have the right to withdraw consent at any time.
Special Category (Medical) Data
Due to the nature of clinical tattooing, we may process special category data, including health and medical information.
This data is collected to:
- Assess suitability for treatment
- Ensure your safety during procedures
- Maintain accurate clinical records
We process this information only with your explicit consent and in accordance with Article 9 of UK GDPR.
All medical information is treated as strictly confidential.
How We Use Your Information
We use your personal data to:
- Provide safe and appropriate treatments
- Carry out consultations and patch testing
- Maintain accurate treatment records
- Manage appointments and bookings
- Communicate with you regarding your treatment
- Send appointment reminders and aftercare advice
- Meet legal, regulatory, and insurance requirements
We only use your data for the purposes for which it was collected.
Photographs
With your consent, we may take photographs before and after treatment for:
- Clinical records
- Monitoring results
- Insurance purposes
- Training and professional development
Photographs will only be used for marketing or social media with your separate explicit consent, and you have the right to withdraw this at any time.
How Your Data is Stored
Your data is stored securely, either electronically or in written form.
We implement appropriate technical and organisational measures to protect your data from unauthorised access, loss, misuse, or disclosure.
Access to personal data is restricted to authorised individuals only.
Sharing Your Information
We do not sell or share your personal data with third parties for marketing purposes.
We may share your personal data where necessary with:
- Payment providers Booking systems
- Insurance providers (if required)
- Legal or regulatory authorities (if required by law)
All third parties are required to handle your data securely and in compliance with UK data protection laws.
Third-Party Services
Payments (Stripe & Klarna)
We use secure third-party payment providers, including Stripe and Klarna, to process payments.
When making a payment, your personal data (such as your name, contact details, and payment information) is processed directly by these providers. We do not store full payment details.
Stripe
Payments may be processed via Stripe.
Stripe may collect and process personal data such as:
- Name
- Email address
- Payment details
- Transaction information
- Device and technical data
Stripe uses this information to:
- Process payments securely
- Prevent fraud
- Comply with legal obligations
Stripe acts as a data processor and, in some cases, a data controller.
For more information: https://stripe.com/gb/privacy
Klarna
If you choose Klarna as a payment option, your information may be shared with Klarna to:
- Assess your eligibility for payment options
- Process payments and manage payment plans
- Perform identity and fraud checks
Klarna acts as an independent data controller.
For more information: https://cdn.klarna.com/1.0/shared/content/legal/terms/0/en_gb/privacy
Booking System (Acuity Scheduling)
We use Acuity Scheduling to manage appointments and bookings.
When you book an appointment, we may collect:
- Name
- Email address
- Phone number
- Appointment details
- Any information you choose to provide
This information is used to:
- Schedule appointments
- Send confirmations and reminders
- Deliver services safely
Acuity Scheduling processes this data securely on our behalf.
How Long We Keep Your Data
We retain personal data only for as long as necessary to meet legal, regulatory, and insurance requirements.
For clinical records, this may be up to 7 years after your last treatment (or longer where required).
Your Rights
Under UK GDPR, you have the right to:
- Access your personal data
- Request correction of inaccurate data
- Request deletion of your data (where applicable)
- Restrict or object to processing
- Withdraw consent at any time
- Lodge a complaint with the Information Commissioner’s Office (ICO)
To exercise your rights, please contact us directly.
Cookies
Our website may use cookies to improve your browsing experience and ensure the site functions correctly.
You can control cookie settings through your browser.
Contact
If you have any questions about this policy or how your data is handled, please contact us.
Cookie Policy
Introduction
This website uses cookies to improve your experience and ensure that the site functions correctly.
What Are Cookies?
Cookies are small text files stored on your device when you visit a website.
They help the website recognise your device and remember your preferences.
Types of Cookies We Use
Essential Cookies
Necessary for the website to function.
Analytics Cookies
Help us understand how visitors use the site. Functionality Cookies Remember your preferences and settings.
Managing Cookies
You can control or disable cookies through your browser settings.
Disabling cookies may affect website functionality.
Third-Party Cookies
We may use third-party services, including payment and booking providers, which may place cookies on your device to support functionality, performance, and security.
Consent
By using this website, you agree to the use of cookies in accordance with this policy.