Privacy Policy

At mysite-name, we are committed to protecting your personal information while you use our hair salon services across England. This policy explains how we collect, use, and safeguard your data in compliance with UK GDPR and the Data Protection Act 2018.

1. Information We Collect

We collect information necessary to provide our hairdressing services, including your name, contact details, appointment history, hair type and condition preferences, style preferences, and any specific requirements or sensitivities you share with us.

We collect technical data through our website analytics to improve user experience. This information is anonymised where possible and not linked to your personal identity without explicit consent.

2. How We Use Your Information

Your data enables us to deliver personalised hair services and includes:

Managing appointment bookings and scheduling
Maintaining your style preferences and service history
Recording hair colour formulas and cutting techniques
Communicating appointment reminders and confirmations
Processing payments and managing account information
Providing personalised service recommendations

We handle your information responsibly, using it solely for your hair service requirements and essential business administration.

3. Hair and Sensitivity Information

Details about your hair type, condition, colour history, and any sensitivities or allergies are recorded to ensure we use appropriate products and techniques. This information helps us provide consistent results and maintain your hair's health between visits.

Sensitivity and allergy information is treated with strict confidentiality and stored separately from general client records with enhanced security measures.

4. Service History and Preferences

We maintain records of your service history, including colour formulas, cutting techniques, and styling preferences. This allows us to provide consistent results and track what works well for your hair type and lifestyle needs over time.

Service records are accessed only by our styling team and are used to enhance your ongoing salon experience.

5. Data Security Measures

We implement industry-standard security protocols to protect your personal and service information. All client data is stored on encrypted systems with access limited to authorised team members. Physical records containing client details are securely stored and shredded when no longer needed.

Our team follows strict confidentiality agreements regarding client information and service details.

6. Photography and Portfolio

We may request permission to take photographs of completed styles for your reference and, with separate explicit consent, for our professional portfolio. Portfolio images will never be used without your written consent, and you may withdraw consent at any time.

Photographs used in our portfolio typically focus on the hair style unless additional specific consent is provided for facial features.

7. Product Compatibility and Testing

We document product compatibility and colour formulations that work well with your hair type. This information helps us achieve consistent results and make informed product recommendations for your at-home hair care routine.

Patch testing records are maintained for clients with known sensitivities and are accessed only by stylists involved in your service.

8. Legal Basis for Processing

By using our hair salon services, you consent to us processing your information as outlined in this policy. This includes processing necessary for appointment management, service delivery, and maintaining your style preferences.

9. Third-Party Data Sharing

We may share your information with trusted third parties only when necessary to deliver our services, such as payment processors for transaction handling, booking system providers for appointment management, and product suppliers for specific requirements.

All third-party providers are bound by strict data protection agreements compliant with UK GDPR requirements. We never sell your personal information to other companies.

10. Your Data Protection Rights

Under UK GDPR, you have the right to:

Access personal information we hold about you
Request correction of inaccurate personal data
Request deletion of your personal data
Object to processing of your personal data
Request transfer of your data to another provider

To exercise these rights, contact us at: [email protected]. We respond to all valid requests within 30 days.

11. Data Retention Period

We retain your personal and service data for as long as necessary to fulfil our services and legal obligations. Client records are typically maintained for 3 years after your last service to allow for service continuity and preference tracking, unless you request earlier deletion.

After the retention period expires, we securely delete or anonymise your personal information, though we may retain minimal data for legal compliance purposes.

12. Policy Updates

We may update this privacy policy periodically to reflect changes in our services or legal requirements. The current version will always be available on our website, and we will notify you of significant changes that affect how we process your data.

Last updated: October 2025