top of page

PRIVACY POLICY

Last updated: 6th October 2025

Lumera Clinic (“we”, “our”, or “us”) is committed to protecting your privacy and ensuring that your personal information is handled safely and responsibly.
This Privacy Policy explains how we collect, use, and protect your personal data when you visit our website www.lumeraclinic.co.uk, contact us, or receive treatments at Lumera Clinic.

1. WHO WE ARE
Lumera Clinic is a UK-based aesthetics and wellness clinic offering cosmetic and medical treatments.
Our registered contact details are:
Lumera Clinic, First Floor, 377 Edgware Road,W9 3UA
Email: hello@lumeraclinic.co.uk
Website: www.lumeraclinic.co.uk


We act as the Data Controller for the personal data we collect and process.

 


2. INFORMATION WE COLLECT
We collect and process personal information in order to provide our services safely, effectively, and in compliance with legal and regulatory obligations.
Information you provide directly:

  • Your full name, date of birth, and contact details (email, phone number, address)

  • Medical history, current medications, allergies, and relevant health information

  • Treatment records, consent forms, and photographs (before and after)

  • Payment and billing details

  • Communication preferences and correspondence

 

Information we collect automatically:
When you visit our website, we may automatically collect:

  • IP address, browser type, and operating system

  • Pages visited and time spent on the site

  • Cookie and tracking data (see section 7)

 

 

3. HOW WE USE YOUR INFORMATION
We use your personal information to:

  • Provide safe and effective treatments

  • Manage your appointments and records

  • Respond to enquiries and provide customer support

  • Send booking confirmations, reminders, or follow-up information

  • Comply with medical, insurance, and legal obligations

  • Improve our website, services, and user experience

  • Send marketing communications (only if you’ve given consent)

We will only process your personal data where we have a lawful basis to do so under the UK GDPR and the Data Protection Act 2018.

 

 

4. LAWFUL BASES FOR PROCESSING
We rely on the following lawful bases:

  • Consent – where you have agreed to receive marketing or optional communications.

  • Contract – where processing is necessary to deliver your treatment or respond to your enquiries.

  • Legal obligation – to maintain accurate treatment and medical records as required by UK law.

  • Legitimate interests – for administrative and business operations such as improving our services.

 

 

5. HOW WE STORE AND PROTECT YOUR DATA
Your personal information is stored securely in password-protected systems and clinic management software compliant with data protection regulations.
We take all reasonable technical and organisational measures to prevent unauthorised access, alteration, disclosure, or destruction of your data.
We will retain your information only as long as necessary for the purposes it was collected, or as required by law (typically up to 7 years for medical and treatment records).

 


6. SHARING YOUR DATA
We will never sell or rent your personal data.
We may share information with:

  • Licensed medical practitioners and authorised staff within Lumera Clinic

  • Payment processors or booking systems to complete transactions

  • Regulatory authorities or insurers, where legally required

  • IT or software providers who support our clinic systems (under strict confidentiality agreements)

All third parties are required to comply with data protection laws and handle your information securely.

 

 

7. COOKIES AND WEBSITE TRACKING
Our website uses cookies to enhance user experience and gather analytics on how our site is used.
Cookies are small files stored on your device that help us understand preferences and improve functionality.
You can control or disable cookies in your browser settings. However, this may affect your ability to use certain parts of the website.
For detailed information, please refer to our Cookie Policy.

 

8. YOUR RIGHTS
Under UK data protection law, you have the right to:

  • Access the personal data we hold about you

  • Request correction of inaccurate or incomplete data

  • Request deletion of your data (where legally permissible)

  • Withdraw consent for marketing communications at any time

  • Request data portability in certain circumstances

  • Object to processing for legitimate interest purposes

To exercise your rights, please contact us at hello@lumeraclinic.co.uk.
We will respond within 30 days as required by law.

 

 

9. MARKETING COMMUNICATIONS
If you opt in to receive updates or promotions, we may send occasional marketing emails.
You can unsubscribe at any time using the link in our emails or by contacting us directly.

 

 

10. LINKS TO OTHER WEBSITES
Our website may contain links to external websites.
We are not responsible for the privacy practices or content of those third-party sites and encourage you to review their privacy policies before providing any personal information.

 

 

11. CHANGED TO THIS POLICY
We may update this Privacy Policy periodically to reflect changes in legislation, clinic operations, or data protection practices.
Any updates will be posted on this page with an updated “Last updated” date.

 

 

12. CONTACT US
If you have any questions or concerns about how your data is handled, please contact us:
Email: hello@lumeraclinic.co.uk

If you believe your data has been mishandled, you also have the right to lodge a complaint with the Information Commissioner’s Office (ICO):
www.ico.org.uk

bottom of page