Privacy Policy

Last updated: 23/02/2026

Legacy Beauty & Skin Clinic Limited (“we”, “us”, “our”) is committed to protecting your personal data and respecting your privacy.

This Privacy Policy explains how we collect, use and protect your information when you visit our website or use our services.

1. Who We Are

Legacy Beauty & Skin Clinic Limited
Registered Office:
1a Nags Corner, Wiston Road,
Nayland, Colchester,
England, CO6 4LT

Email: info@legacyskinclinic.co.uk

We are the “data controller” for the purposes of UK data protection law.

2. What Personal Data We Collect

Contact Form (Ninja Forms)

  • Name
  • Email address
  • Phone number
  • Any information you include in your message

This information is sent to us via email at info@legacyskinclinic.co.uk.

Appointment Bookings (Timely)

Appointments are managed using the Timely booking platform. When booking, you may provide:

  • Name
  • Contact details
  • Appointment details
  • Payment information (processed securely by Timely or its payment provider)

We do not store full payment card details on our website.

Website Analytics

Through Google Site Kit (Google Analytics and Google Search Console), we may collect:

  • IP address
  • Device type
  • Browser type
  • Pages visited
  • Time spent on site
  • General location (town/region level only)

This data is anonymised and used only to monitor website performance.

3. How We Use Your Data

  • Respond to enquiries
  • Manage and confirm appointments
  • Provide treatments and services
  • Process payments
  • Improve our website
  • Comply with legal obligations

We do not sell your data and we do not use your data for marketing emails.

4. Lawful Basis for Processing

  • Consent – when you contact us directly
  • Contract – when you book an appointment
  • Legitimate interests – to operate and improve our website
  • Legal obligation – where required for tax or regulatory purposes

5. Third-Party Providers

We may share data with trusted service providers who help operate our business:

  • Timely – booking system
  • Payment processors used by Timely
  • KnownHost – website hosting provider
  • Google – analytics and search console

These providers process data securely and in accordance with UK data protection law.

6. Data Security

We use appropriate technical and organisational measures to protect your personal data, including:

  • Secure hosting via KnownHost
  • SSL encryption
  • Secure booking platform
  • Password-protected email systems

We retain data only for as long as necessary to fulfil its purpose or meet legal obligations.

7. Your Rights

Under UK GDPR, you have the right to:

  • Request access to your data
  • Request correction
  • Request deletion
  • Restrict or object to processing
  • Request data portability
  • Withdraw consent at any time

To exercise your rights, email: info@legacyskinclinic.co.uk

8. Complaints

If you are unhappy with how we handle your data, you may contact:

Information Commissioner’s Office (ICO)
Website: https://www.ico.org.uk

We would appreciate the opportunity to resolve concerns before you contact the ICO.

Cookie Policy

What Are Cookies?

Cookies are small text files stored on your device when you visit a website. They help improve functionality and performance.

Cookies We Use

Essential Cookies

These are required for the website to function properly.

Analytics Cookies

We use Google Analytics via Google Site Kit to understand how visitors use our website. This may collect anonymous usage data, device information and regional location data.

We do not use cookies for advertising.

Cookie Consent

We use a cookie consent tool provided through the Blocksy theme. You can accept or decline non-essential cookies when you first visit the website.

Managing Cookies

You can manage or disable cookies through your browser settings. Disabling essential cookies may affect website functionality.

Policy Updates

We may update this policy from time to time. Any changes will be posted on this page with an updated revision date.