GDPR Privacy Policy - May 2018


Neo-Derm Limited (the company) is committed to protecting your privacy and ensuring that any information that we collect about you is never misused.
This policy explains what information we collect, how and why we use it, how we keep it safe, and what your rights are.
By using our website (www.neo-derm.co.uk), services and products.
You agree to the way we collect and use your personal information according to the terms of this privacy policy. We may change this policy from time to time, we will inform you of any changes we make to our privacy policy that may affect your personal information always. You will have the right to remove consent at any time.
Any questions regarding this policy and our privacy practices should be sent by email to info@neoderm.co.uk or by writing to Neo-Derm Limited,407 Bury New Road, Prestwich M25 1AA. Alternatively, you can telephone 0161 425 9600 and speak to a member of the team.
The rules on processing of personal data are set out in the General Data Protection Regulation (the “GDPR”).

ABOUT US


Neo-Derm Ltd is a Medispa with a doctor-led specialist skin care clinic that provides aesthetic, medical, dental, beauty and holistic treatments.

We are committed to protecting and respecting your privacy and complying with the principles of applicable data protection laws and GDPR.

PRINCIPLES


Neo-Derm welcomes the EU General Data Protection Regulation (GDPR) as a set of regulations to reaffirm our commitment to data protection. We are committed to ensuring:

  • We only collect and use relevant personal data we need to provide or improve our products and services for our customers
  • You can request a copy of whatever information we hold about you
  • We will keep your personal information safe and secure
  • Personal data is processed fairly, lawfully, and in a transparent clear manner.
  • We will never sell your details or share it except in the ways mentioned in this policy or unless you instruct us to.
  • We will let you know if there are important changes that affect your information or how we use it
  • We take responsibility for the information we hold about you
  • We only keep your information for as long is necessary.

What personal information we collect


Below are the categories of personal information we will ask for

  • As a customer, prospective customer, online website user, we may collect information about you when you complete forms: •
  • your full namE
  • telephone number(s)
  • email address(s)
  • full postal address(s)
  • website address (professional/business)
  • Financial details (credit/payment card details)
  • Professional affiliations, clubs, memberships
  • Business/Organisation social media links
  • Photographs before and afters of the treatment taking place


We only ever collect information that is relevant to Neo-Derm in providing you, as our customer, with appropriate products and services that suit your needs and requirements.

How we collect and process personal information


You provide us with personal information when you engage in any of the following activities:

  • Directly: when you correspond with us by phone, email, website contact form, social media or otherwise.
  • When you register with Neo-Derm online, post or email.
  • When you complete a Neo-Derm registration form.
  • Subscribe to our newsletter, mailing list or any other Neo-Derm marketing medium.
  • When you make a purchase/order with Neo-Derm Ltd online by phone and/or email.
  • Participate in our discussion boards, chat or social media.
  • Information you provide when entering competitions, or special promotions.
  • Information you provide when you complete a survey or questionnaire.
  • nformation from your professional/business social media account(s) but only where you have given us permission to use it. For example, posts, pictures and video footage you share on sites such as Facebook, Twitter and Instagram.
  • Information about emails and other communications we have sent to you and your interaction with them.
  • Information from third parties where you consent to those other organisations sharing information they hold on you with us and where those other organisations lawfully share your information with us.


Information you provide us that contains the image or information of a third party. We will only ever use this information if the party/owner of that information has given you permission and consent to use their information or image for marketing purposes and permission for a third-party company to use such information. We may ask you to provide evidence of consent from the owner of the information in question.

How we use your personal information

The information collected from customers, prospective customers and registrants may be used for the following purposes:

  • To provide access to our products and services or to provide quotes, offers, promotions and updates about our products and services.
  • To inform by phone, email or text any changes to your personal information.
  • To administer and manage customer accounts, including online account access, your orders, responding to questions and enquiries raised by you.
  • To accept, receive, review and provide feedback to you regarding any information, documentation or enquiries you provide us.
  • For administrative, planning, product or service development, quality control and research relating to our products and services.
  • For marketing purposes, but only if where we have your expressed or implied consent to contact someone or we are otherwise permitted by law to do so.
  • To confirm customer identities as part of our customer security checks.
  • To see your views and comments on the services we provide.
  • Any medical records taken are strictly kept private and confidential for relevance of the treatment carried out with Neo-Derm Ltd.

How we keep your personal information safe


Neo-Derm Ltd is committed to information security and the efficient processing of personal information. We have implemented technical, administrative and physical security measures that are designed to protect personal information from unauthorised access, disclosure, use, modification and that staff are adequately trained for handling personal information safely. We carry out regular security checks on all our security measures to ensure our customers personal information is kept safe and secure.

Our procedures mean that we may ask you to prove your identity before we share your personal information with you.

Third-party websites you access through links on our websites will have their own privacy policies. We do not accept any responsibility or liability for them.
Where we have given you (or where you have chosen) a password which enables you to access certain parts of the website, you are responsible for keeping this password confidential. We ask you not to share such a password with anyone.

We continually update and review our payments system to ensure we are compliant with the Payment Card Industry’s Data Security standards (PCI-DSS).

CCTV


Our CCTV is used to capture record and monitor images of what takes place at our locations. We operate CCTV for the health and safety of our employees and visitors to our locations and for the detection and prevention of crime.

Only authorised Neo-Derm Ltd staff has access to CCTV footage. We will never share any image or personal information of yourself to a third party unless we are required to do so by law or if it is necessary for a legitimate purpose such as defending or bringing legal action.

Sharing your personal information

We do not share your information with others (third party organisations) without your consent or it is necessary to do so if the law requires us to.

When we have received your consent to share your information, it is likely we will provide this information to one or several of the following:

  • A manufacturer/supplier of a brand permitted to Neo-Derm Ltd for contractual distribution
  • A training academy to provide further training and support services if requested by you.
  • A group, organisation, membership base, non-profit organisation, or charity appropriate to your requirements.
  • We may share your details, achievements, and successes in our media sources, magazines, social media and website but only when asked by us and with your written consent.
  • A third-party credit control agency, financial management firm that we choose to manage our customer credit accounts.

Transfer of personal information: data transfers, storage and global transfers


We do not envisage transferring any information about or relating to you to any individual or organisation that is situated outside of the European Economic Area (EEA)
Your personal information is uploaded to and stored to servers that are maintained by third parties that comply with strict contractual privacy obligations.

Cookies and IP Addresses



When you visit our company website www.neo-derm.uk we will place cookies on your device that will help to identify you as a user on our website and may help to create a more tailored user experience from the data that is collected on each visit.

You may refuse to accept cookies by activating the setting on your browser which allows you to refuse the setting of cookies. However, if you select this setting you may be unable to access certain parts of the site. Unless you have adjusted your browser setting so that it will refuse cookies, our system will issue cookies when you log on to the site.

Our website is linked to a range of social media pages you may select; these social media pages may also place cookies on your device: Facebook, Twitter, Google+, Instagram, LinkedIn and other third-party organisations featured on the Neo-Derm Ltd website.

Communications: Email, Chat and Social Media


When you communicate with Neo-Derm Ltd via email, chat and social media channels we make every effort to use only secure and GDPR complaint channels and social media organisations. We never recommend that our customers send any sensitive information via these sites but to only use the official email/fax/website portals for transferring of sensitive information.

How we use and process your information, who accesses it and how long we keep it depends on the context in which we collected it but follows the terms of our Privacy Policy and UK law.

All information is handled by our authorised personal at Neo-Derm Ltd.

PAYMENT/FINANCE DETAILS

We use your payment details to process orders payments only. We do not use your information for any purpose you have not authorised and we always seek your consent to process any payment transaction. We process credit and debit card transactions following the Payment Card Industry Data Security Standard (PCI DSS).

Only authorised Neo-Derm Ltd staff have access to your payment details. We will only ever keep your details, safely and secured when we receive your expressed consent and we only ever keep the card details for as long as you permit.

We will ask for the following card details to process payments
  • Cardholder name
  • Card number
  • Card security code (CVV)
  • Expiry dates
CHILDREN

Our websites, services and products are not aimed at children and we do not knowingly collect any information from them.

We ask children not to register with us or give us any of their information.

Where we have inadvertently collected information from a child, we will delete it as soon as possible.

If you know that a child has given their information to us, please contact us at info@neo-derm.co.uk
YOUR RIGHTS

Data protection laws grant you, as a Data Subject, certain ‘information rights’, which are summarised below:

Right to be informed – You have the right to be informed about the collection and use of your personal data. This is a key transparency requirement under the GDPR.

Right of access– You have the right to access your personal data and supplementary information.

Right of Rectification/Erasure– You have the right to request inaccurate personal data be rectified or completed if it is incomplete. You also have a right to be forgotten and ask us to erase information about you where you can demonstrate that the data we hold is no longer required by us when you withdraw consent to use your information for whatever reason. Please note that we may be entitled to retain your personal data to comply with legal obligations.

Right to restriction of processing– You have a right to request that we refrain from processing your data where you contest its accuracy or the processing is unlawful and you have opposed its erasure or where we do not need to hold your data any longer, but you need us to establish, exercise or defend any legal claims and or disputes.

Right to Portability– You have a right to request any personal information that you have provided to us and provide your data to another data controller where the processing is based on consent and is carried out by automated means. This is called a data portability request.

Right to Object– You have a right to object to how your personal information is processed for direct marketing or some other form of processing.

Right to Withdraw Consent– You have the right to withdraw your consent for the processing of your personal information where the processing is based on consent including the right to opt out of any direct marketing communications. You can do this by unsubscribing from a mailer we may send you or by contacting us directly and we will update your contact preferences at your request. •

Right of Complaint– You also have the right to lodge a complaint about any aspect of how we are handling your data with the UK Information Commissioner’s Office, which can be contacted at ico.org.uk.
How to change your contact preferences

You can change how you prefer we contact you by writing to us at info@neo-derm.co.uk or post:

Neo-Derm Ltd
407 Bury New Road
Prestwich
Manchester
M25 1`AA
How to request a copy of your information

To see the information we hold about you, you should make a Subject Access Request in writing, including your:
  • Full Name & Address
  • Company/Clinic Name
  • Telephone Number
You can send this request to:

Neo-Derm Ltd
407 Bury New Road
Prestwich
Manchester
M25 1AA
Last updated: 18th May 2018
Contact Us
NEO-DERM LTD

Neo-Derm ltd
407 Bury New Road,
Prestwich,
Manchester
M25 1AA
United Kingdom