Privacy Policy

Effective Date: 29 September, 2025

At Aesthetic by Maria, we respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, store, and protect your data when you visit https://aesthetic-by-maria.com, book an appointment, or use our services.

1) Information We Collect

We may collect the following personal data:
– Personal Information: Name, email address, phone number, and details provided when booking a consultation, filling out forms, or contacting us.
– Medical / Treatment Information: Relevant health or aesthetic information you choose to share to help us assess suitability and provide treatments.
– Payment Information: Processed securely through third-party payment providers; we do not store card details.
– Communication Data: Emails, WhatsApp messages, and other correspondence with us.
– Website & Analytics Data: IP address, browser type, device information, and browsing behaviour collected via cookies, Google Analytics, and Meta Pixel.

2) How We Use Your Information

We process your data for the following purposes:
– To manage appointments and treatments through our booking system (Fresha).
– To send confirmations, reminders, and service updates.
– To provide safe and personalised aesthetic or medical treatments.
– To send marketing communications (if you consent).
– To improve our website, services, and customer experience using analytics.
– To comply with legal and regulatory requirements.

3) Legal Basis for Processing

In compliance with the UK GDPR and Data Protection Act 2018, we process personal data under the following legal bases:
Consent – for marketing updates and optional communications.
Contract – when processing is necessary to deliver our services.
Legal Obligation – to meet healthcare and tax requirements.
Legitimate Interest – for essential business operations, service improvement, and fraud prevention.

– We use a cookie banner to inform you about cookies and tracking technologies.
– By booking via Fresha or providing your details, you consent to the use of your information for treatment and appointment management.
– You may withdraw your consent for marketing at any time by clicking “unsubscribe” in emails or contacting us directly.

We never sell your data. We may share it with:
Fresha – for appointment scheduling and management.
Payment providers – to securely process payments.
Analytics & marketing tools – such as Google Analytics and Meta Pixel.
Medical professionals – only if required for safe treatment and with your consent.
Regulatory authorities – if legally required.

6) Data Storage & Retention

– Appointment and treatment records are stored securely in Fresha.
– Communication data may be stored in our email inbox and WhatsApp.
– Medical records are retained as required by healthcare regulations.
– Financial records are kept as required by tax law.
– Marketing data is retained until you opt out.

7) Your Data Protection Rights

Under UK law, you have the right to:
– Access the personal data we hold about you.
– Request correction of inaccurate information.
– Request deletion of your data (where legally permissible).
– Restrict or object to certain processing.
– Withdraw consent at any time (for marketing or non-essential data).
– File a complaint with the Information Commissioner’s Office (ICO) if you believe your rights are not being respected.
To exercise these rights, please contact us (see Section 10).

8) Security

We take appropriate technical and organisational measures to protect your data against loss, misuse, and unauthorised access. While no online system is 100% secure, we use trusted third-party platforms (e.g. Fresha) that comply with GDPR and industry standards.

9) Third-Party Links

Our website may contain links to other websites. We are not responsible for their privacy practices and encourage you to read their policies.

10) Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in law, technology, or our services. The updated version will always be posted on our website with a revised effective date. We will not notify users individually.

10) Contact Us

If you have questions about this Privacy Policy or how we handle your data, please contact us:

Aesthetic by Maria
10 Adam and Eve Mews
Kensington, London W8 6UJ
Phone: +44 208 129 5005
Phone: +44 7494 281058
Email: hello@aesthetic-by-maria.com