Effective Date: 6 March 2026 · Last Reviewed: 6 March 2026
At JasZara Aesthetics, your privacy matters as much as your skin health. This Privacy Policy explains how we collect, use, store, and protect your personal information when you visit our website at jaszaraaesthetics.com, book a consultation, or receive treatments at our clinic in Portsmouth. Please read this policy carefully.
JasZara Aesthetics is an aesthetic clinic based in Portsmouth, United Kingdom, providing advanced skin treatments including microneedling, dermal fillers, PRP therapy, LED light therapy, and more.
For the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018,
JasZara Aesthetics is the data controller responsible for your personal data.
• Business Name: JasZara Aesthetics
• Address: 38 London Road, Portsmouth, PO2 0LR, United Kingdom
• Phone: +44 7440 394639
• Website: www.Jaszaraaesthetics.com
We may collect and process the following categories of personal data in order to provide our services safely and efficiently:
Identity Data – This may include your full name and date of birth. This information is collected for client identification and appointment booking.
Contact Data – This may include your email address, phone number, and home address. This information is used for appointment management and general communication with you.
Health and Medical Data – This may include information such as allergies, skin conditions, medical history, contraindications, and treatment notes. This data is collected to ensure safe and personalised treatment delivery.
Financial Data – This may include payment details. Payments are processed through secure third-party payment providers and are collected solely for billing purposes.
Communication Data – This includes messages you send to us via contact forms, email, or social media. This information is used to respond to enquiries and provide customer support.
Marketing Preferences – This includes your consent and preferences regarding receiving newsletters, updates, or promotional offers. This information is used to manage email campaigns and marketing communications.
Health information, including allergies and medical history, is classified as Special Category Data under UK GDPR. We treat this data with the highest level of care and only process it where you have given explicit consent or where it is necessary for the provision of healthcare related services.
Information Collected Automatically:
When you visit our website, we may automatically collect:
• IP address and approximate geographic location
• Browser type, device type, and operating system
• Pages visited, time spent, and navigation paths
• Referring website URLs
• Cookie identifiers and session data
We use your personal information for the following purposes:
• Providing Treatments: To book and manage appointments, complete health
assessments, and deliver safe aesthetic treatments tailored to your needs.
• Client Communications: To send appointment confirmations, reminders, aftercare
instructions, and respond to your enquiries.
• Health & Safety: To record and review allergy information and medical history to
prevent adverse reactions and ensure your wellbeing during treatment.
• Marketing & Promotions: Where you have given consent, to send promotional emails,
newsletters, seasonal offers, and updates about new treatments or services.
• Paid Advertising: To show relevant advertisements on platforms such as Google, Meta
(Facebook/Instagram), and other digital advertising networks, including through
audience matching and retargeting.
• Analytics & Improvement: To understand how visitors use our website, improve our
content and services, and measure the effectiveness of our marketing campaigns.
• Legal Compliance: To comply with applicable laws, regulations, and professional
obligations, including record-keeping requirements for aesthetic and healthcare
treatments.
Under UK GDPR, we are required to have a lawful basis for processing your personal data. We rely on the following:
• Contract: Processing necessary to fulfil our service agreement with you (e.g., bookings
and treatment delivery).
• Legitimate Interests: Processing for our legitimate business interests such as improving
our services and preventing fraud, provided these interests are not overridden by your
rights.
• Legal Obligation: Processing required to comply with laws and professional regulatory
requirements.
• Explicit Consent: Processing of Special Category Data (health information, including
allergies) and marketing communications — you may withdraw consent at any time.
We may use your contact details to send you marketing communications about our treatments, promotions, and news where you have consented to receive them. Our marketing activities may include:
• Email Campaigns: Newsletters, promotional offers, seasonal events, and new treatment
announcements.
• Paid Advertising Campaigns: Targeted advertisements on Google Ads, Meta Ads
(Facebook and Instagram), and similar platforms. Your data may be used to create
custom audiences or lookalike audiences on these platforms.
• Retargeting: We may use cookies and tracking pixels to show relevant ads to visitors
who have previously browsed our website.
Your choice matters. You can opt out of marketing emails at any time by clicking the “unsubscribe” link in any email, or by contacting us directly. Withdrawing marketing consent will not affect the lawfulness of processing already carried out, nor will it affect your ability to receive non-marketing communications (e.g., appointment reminders).
Our website uses cookies and similar tracking technologies to enhance your browsing experience, analyse website performance, and support our marketing activities.
Types of Cookies:
Our website uses cookies to ensure the site functions properly, analyse usage, and improve user experience.
The types of cookies we use are outlined below:
Essential Cookies – These cookies enable core website functionality, such as page navigation, secure access, and form submissions. These cookies are necessary for the website to function and therefore do not require user consent.
Analytics Cookies – These cookies help us understand how visitors interact with our website by collecting information such as site traffic and user behaviour. For example, we may use tools such as Google Analytics. These cookies are only used with your consent.
Marketing or Advertising Cookies – These cookies track advertising performance and may be used for retargeting or personalised advertising, for example through platforms such as Meta Pixel or Google Ads. These cookies are used only if you provide consent.
Preference Cookies – These cookies remember your settings and preferences, such as language choices or other customisations, to improve your browsing experience. These cookies are also used only with your consent.
We use tools such as Google Analytics and the Meta Pixel to collect anonymised or pseudonymised data about how our website is used. This data helps us improve our website experience and the relevance of our advertising. You can manage cookie preferences via our cookie consent banner or through your browser settings. You may also opt out of Google
Analytics tracking at tools.google.com/dlpage/gaoptout.
We do not sell your personal data. We may share your information only in the following limited circumstances:
• Service Providers: Trusted third-party providers who support our operations, such as
booking software, payment processors, email marketing platforms, and IT services.
These parties are bound by data processing agreements and may only process your data
as instructed.
• Advertising Platforms: Google LLC and Meta Platforms Inc., for the purposes of
running paid advertising campaigns. These platforms operate under their own privacy
policies and data processing terms.
• Healthcare Professionals: In rare cases, where clinically necessary or where you have
requested a referral, we may share relevant health information with other healthcare
professionals.
• Legal Authorities: Where required by law, court order, or regulatory body (e.g., the
Information Commissioner’s Office).
• Business Transfer: In the event of a sale, merger, or acquisition of our business, your
data may be transferred to the new owner under the same protections described in this
policy.
Some of our third-party service providers may be based outside the UK. Where transfers occur, we ensure appropriate safeguards are in place (such as UK Adequacy Regulations or Standard Contractual Clauses).
We retain your personal data only for as long as necessary to fulfil the purposes outlined in this policy, or as required by law. Our general retention guidelines are:
• Client Treatment Records (including health data): Retained for a minimum of 8
years from the date of last treatment, in accordance with healthcare record-keeping best
practice and professional regulatory guidance.
• Consultation & Booking Records: Retained for 3 years following your last
appointment.
• Marketing Data: Retained until you withdraw consent or request deletion, subject to a
maximum of 3 years from the date of last engagement.
• Financial Records: Retained for 7 years in accordance with HMRC requirements.
• Website Analytics Data: Typically retained for up to 26 months by analytics providers.
When data is no longer needed, it is securely deleted or anonymised.
Under UK GDPR, you have the following rights regarding your personal data:
Right of Access – Request a copy of the personal data we hold about you (Subject Access
Request).
Right to Rectification – Request correction of inaccurate or incomplete personal data.
Right to Erasure – Request deletion of your personal data where there is no longer a lawful
basis for processing.
Right to Restrict Processing – Request that we limit how we use your data in certain circumstances.
Right to Data Portability – Receive your data in a structured, machine-readable format to
transfer elsewhere.
Right to Object – Object to processing based on legitimate interests or for direct marketing
purposes.
Rights re: Automated Decisions – Not be subject to decisions made solely by automated processing that significantly affect you.
Right to Withdraw Consent – Withdraw any consent you have given at any time, without
affecting prior lawful processing.
To exercise any of these rights, please contact us using the details in our website. We will
respond within 30 days. We may need to verify your identity before processing your request.
If you are unhappy with how we handle your data, you have the right to lodge a complaint with
the Information Commissioner’s Office (ICO) at ico.org.uk or by calling 0303 123 1113.
We take the security of your personal data seriously and have implemented appropriate technical and organisational measures to protect it against unauthorised access, loss, destruction, or alteration. These measures include:
• Secure, encrypted storage of electronic records
• Access controls and staff training on data protection
• Use of reputable, compliant third-party systems for booking and payments
• SSL/TLS encryption on our website
• Regular review of our security practices
While we take every reasonable precaution, no method of transmission over the internet is
100% secure. In the unlikely event of a data breach that poses a risk to your rights and freedoms,
we will notify you and the ICO as required by law.
Our services are intended for adults aged 18 and over. We do not knowingly collect personal data from individuals under 18. If you believe we have inadvertently collected data from a minor, please contact us immediately, and we will take steps to delete such information promptly.
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we do, we will update the “Last Reviewed” date at the top of this page. Where changes are significant, we may also notify you by email or by displaying a prominent notice on our website.
We encourage you to review this policy periodically. Your continued use of our website or services after any changes constitutes acceptance of the updated policy.
If you have any questions, concerns, or requests relating to this Privacy Policy or your personal data, please contact us:
38 London Road, Portsmouth, PO2 0LR, United Kingdom
+44 7440 394639
https://jaszaraaesthetics.com/contact/
We aim to respond to all data-related enquiries within 30 calendar days of receipt.
This site is controlled and operated by Jaszara Aesthetics Limited from the United Kingdom and complies with English law. It is intended to be accessed by UK users and international users. All visits to this site shall be governed by English law.
Whilst Jaszara Aesthetics Limited UK uses reasonable efforts to include accurate and up-to date information in the site, Jaszara Aesthetics Limited UK makes no warranties or representations as to its accuracy. Jaszara Aesthetics Limited UK, assumes no liability for any errors or omissions in the content of the site.
