Privacy Policy

Effective Date: 23/01/2025

Zayf Medical & Aesthetics respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you interact with us, including through our website www.zayfmedical.co.uk.

We process your data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who We Are

Data Controller:
Zayf Medical & Aesthetics
55 Darlaston Road, Walsall, WS2 9QT.
Email: info@zayfmedical.co.uk
Phone: 01922 662950

We are responsible for how your personal data is used and are registered with the Information Commissioner’s Office (ICO) where applicable.

2. What Data We Collect

We may collect the following categories of personal data:

a. Identity and Contact Information

  • Full name

  • Email address

  • Phone number

  • Postal address

  • Date of birth (where relevant for treatment)

b. Health & Medical Information

  • Relevant medical history and treatment notes (with your explicit consent)

  • GP details (where required for treatment)

c. Technical & Usage Information

  • IP address

  • Browser type

  • Device identifiers

  • Pages visited, time on site (via cookies and analytics tools)

d. Marketing & Communication Preferences

  • Your preferences for receiving marketing from us

3. How We Collect Your Data

We collect data through:

  • Forms you complete on our website or in clinic

  • Emails, phone calls, or messages you send us

  • Consultations and treatment records

  • Website analytics and cookies (see our Cookie Policy)

4. Why We Collect Your Data

We only process your personal data where we have a lawful basis to do so. These include:

  • Booking and managing treatments

  • Medical and aesthetic consultations and care

  • Marketing communications

  • Internal analytics and website improvement

  • Legal or regulatory obligations

5. Sharing Your Data

We do not sell your personal data. We may share it with:

  • Healthcare professionals (with your consent)

  • IT and website service providers

  • Payment processors

  • Regulators or insurers if required by law

All third-party providers are required to respect the security of your personal data and comply with UK data protection laws.

6. How Long We Keep Your Data

We retain your data only for as long as necessary for the purposes for which it was collected, including legal, medical, or regulatory reasons.

  • Medical and aesthetic records: 8 years from the date of last treatment (in line with medical guidelines)

  • Marketing data: Until you withdraw consent

  • Analytics data: Typically 26 months (e.g. Google Analytics)

7. Your Rights

You have the following rights under UK GDPR:

  • Access – Request a copy of your personal data

  • Rectification – Request corrections to inaccurate data

  • Erasure – Request deletion of your data (where applicable)

  • Restriction – Limit how we process your data

  • Data Portability – Request data in a portable format

  • Object – Object to processing based on legitimate interests

  • Withdraw Consent – At any time

To exercise these rights, please contact us at:
info@zayfmedical.co.uk

If you are unhappy with how we handle your data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO) at https://ico.org.uk.

8. Data Security

We have implemented technical and organisational measures to protect your personal data against loss, misuse, unauthorised access, or disclosure.

9. International Transfers

We aim to store your data in the UK. If we transfer your data outside the UK, we ensure it is protected by appropriate safeguards, such as standard contractual clauses or adequacy decisions.

10. Marketing

We will only send you marketing communications if you have explicitly opted in. You can unsubscribe at any time by clicking the link in our emails or contacting us directly.

11. Third-Party Links

Our website may contain links to other websites. We are not responsible for their privacy practices, and you should read their privacy policies before submitting any data.

12. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal obligations. We will notify you of any significant changes and update the "Effective Date" accordingly.

13. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your data protection rights, please contact:

Zayf Medical & Aesthetics
Email: info@zayfmedical.co.uk
Phone: 01922 662950