Privacy Policy

The Heavenly Touch Beauty & Massage Therapy is registered under the Data Protection Act 1998.

The policy: This privacy policy is for this website and our booking system Ovatu and served by The Heavenly Touch Beauty & Massage Therapy and Bob & Betty Aesthetics and governs the privacy of its users who choose to use it. It explains how we comply with the GDPR (General Data Protection Regulation), the DPA (Data Protection Act) [pre GDPR enforcement] and the PECR (Privacy and Electronic Communications Regulations).

This policy will explain areas of this website that may affect your privacy and personal details, how we process, collect, manage and store those details and how your rights under the GDPR, DPA & PECR are adhere to. Additionally it will explain the use of cookies or software, advertising or commercial sponsorship from third parties and the download of any documents, files or software made available to you (if any) on this website. Further explanations may be provided for specific pages or features of this website in order to help you understand how we, this website/Booking System (Ovatu) and its third parties (if any) interact with you and your computer / device in order to serve it to you. Our contact information is provided if you have any questions.

The DPA & GDPR May 2018

We and this website complies to the DPA (Data Protection Act 1998) and complies to the GDPR (General Data Protection Regulation) which comes into affect from 26th May 2018. We will update this policy accordingly after the completion of the UK's exit from the European Union.

 

 

Use of Cookies

This website uses cookies to better the users experience while visiting the website. As required by legislation, where applicable this website uses a cookie control system, allowing the user to give explicit permission or to deny the use of /saving of cookies on their computer / device.

What are cookies? Cookies are small files saved to the user's computers hard drive that track, save and store information about the user's interactions and usage of the website. This allows the website, through its server to provide the users with a tailored experience within this website.

Users are advised that if they wish to deny the use and saving of cookies from this website on to their computers hard drive they should take necessary steps within their web browsers security settings to block all cookies from this website and its external serving vendors or use the cookie control system if available upon their first visit.

Website Visitor Tracking

This website uses tracking software to monitor its visitors to better understand how they use it. The software will save a cookie to your computers hard drive in order to track and monitor your engagement and usage of the website, but will not store, save or collect personal information.

Adverts and Sponsored Links

This website may include links to outside companies namely Lasbase and robovoucher, care should be taken when following any outside links.

Downloads & Media Files

Any downloadable documents, files or media made available on this website are provided to users at their own risk. While all precautions have been undertaken to ensure only genuine downloads are available users are advised to verify their authenticity using third party anti virus software or similar applications.

We accept no responsibility for third party downloads and downloads provided by external third party websites and advise users to verify their authenticity using third party anti virus software or similar applications.

Contact & Communication With us

Users contacting us through this website do so at their own discretion and provide any such personal details requested at their own risk. Your personal information is kept private and stored securely until a time it is no longer required or has no use.

Where we have clearly stated and made you aware of the fact, and where you have given your express permission, we may use your details to send you products/services information through a mailing list system. This is done in accordance with the regulations named in 'The policy' above.

Treatment Consultation Information

When undergoing a treatment you will be required to fill in a consultation form directly linked to the treatment being under taken. The information on these forms can include medical information to ensure your health and safety and to ensure that you are able to have a specific treatment and notes about the treatment carried out. This information is required by our insurance company Associated Beauty Therapists, The Court Yard, Wixford Park, Georges Elm Lane, Warwickshire, B50 4JS, UK. Email: info@abtinsurance.co.uk. We are required by our insurance company to keep all records for seven years. All of your information is kept in a safe and secure manner. You are able to request to see all information held about you by contacting Angelina Pearson-Hesketh by email theheavenlytouch@outlook.com.

Email Mailing List & Marketing Messages

We operate an email mailing list program, used to inform subscribers about products, services and/or news we supply/publish. Users can subscribe through an online automated process where they have given their explicit permission and at consultation by signing the 'request email newsletter' question. Subscriber personal details are collected, processed, managed and stored in accordance with the regulations named in 'The policy' above. Subscribers can unsubscribe at any time through an automated online service and also by emailing Angelina Pearson-Hesketh at theheavenlytouch@outlook.com and requesting to be removed. The type and content of marketing messages subscribers receive, and if it may contain third party content, all email marketing is for and connected to The Heavenly Touch & Kathryn Elizabeth Hair & Beauty offers, promotions and news and treatments.

Email marketing messages may contain tracking beacons / tracked clickable links or similar server technologies in order to track subscriber activity within email marketing messages. Where used, such marketing messages may record a range of subscriber data relating to engagement, geographic, demographics and already stored subscriber data.

Our EMS (email marketing service) provider is wix.com and you can read their privacy policy in the resources section.

External Website Links & Third Parties

Although we only look to include quality, safe and relevant external links, users are advised to adopt a policy of caution before clicking any external web links mentioned throughout this website.

Shortened URL's; URL shortening is a technique used on the web to shorten URL's (Uniform Resource Locators) to something substantially shorter. This technique is especially used in social media and looks similar to this (example: http://bit.ly/zyVUBo). Users should take caution before clicking on shortened URL links and verify their authenticity before proceeding.

We cannot guarantee or verify the contents of any externally linked website despite our best efforts. Users should therefore note they click on external links at their own risk and we cannot be held liable for any damages or implications caused by visiting any external links mentioned.

Social Media Policy & Usage

We adopt a Social Media Policy to ensure our business and our staff conduct themselves accordingly online. While we may have official profiles on social media platforms users are advised to verify authenticity of such profiles before engaging with, or sharing information with such profiles. We will never ask for user passwords or personal details on social media platforms. Users are advised to conduct themselves appropriately when engaging with us on social media.

There may be instances where our website features social sharing buttons, which help share web content directly from web pages to the respective social media platforms. You use social sharing buttons at your own discretion and accept that doing so may publish content to your social media profile feed or page. You can find further information about some social media privacy and usage policies in the resources section below.

Payment Security

We do not take any payment details and only deal in cash payments, paypal chip & pin or bank transfer which we do not have access to your bank details. We will never ask you for your bank or payment details.

Booking System

Ovatu our booking system ensures that our account and all of its data is encrypted, stored and backed up securely on servers in the United States, which complies with GDPR via the US/EU Security Shield Framework. 

A copy of their Privacy Policy can be found below.

Resources and Further Information