Privacy Policy

This privacy policy has been updated to reflect the new General Data Protection Regulations (GDPR).
‘Personally, Identifiable Information’ (PII) Is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context. This policy explains why we collect the data we do and how it is used within the business.
Please read our privacy policy carefully to get a clear understanding of how we collect, use, protect or otherwise handle your Personally Identifiable Information in accordance with our client consultation and client record keeping process, customer service, website interaction and online booking process.
How we use your data
What information does Holistic Beauty Ltd collect about me?
For insurance purposes we collect information from you during the initial consultation meeting such as name, address, date of birth, email address and phone number, any past or current medical conditions including allergies, current medications taken and if you are receiving medical treatment or under a doctor’s supervision for any suspected medical condition. 
This information is required as some treatments may not be appropriate for people with certain conditions and/or, you may be asked to obtain a doctor’s approval (in writing) before treatment can commence.
To make an accurate assessment to determine whether your treatment is as safe and effective as possible, it is also a legal requirement to perform a mini consultation before every treatment, even for regular clients. Changes to your health, such as new medical conditions or medication will be recorded and this may mean that a treatment is no longer suitable or safe to be carried out by the therapist. Also, skin, hair and nails can change over time, and if a client has been visiting for years then chances are they won’t be in the same condition as their first consultation!
We also record information when you contact us, including customer service requests and notes or details explaining what you asked and how we responded. 
Our online booking system is provided by TIMIFY. TIMIFY- TerminApp GmbH, Balanstrasse 23, Building 24, 3rd Floor, D-81541 Munich, Germany (“TIMIFY”) operates an online booking solution. TIMIFY have their own Privacy Policy which may be accessed via the link below. TIMIFY is based on a cloud solution in cooperation with AWS servers. As TIMIFY servers are in the EU, Timify are therefore subject to European data protection laws. Timify do not sell or share the data entered by our users. TIMIFY use customer data only and exclusively for internal statistics and for the proper functioning of the system.
Click here on this link:
Our Website is provided by Yell have their own data protection privacy policy, please see below:
Yell Limited, a private limited company incorporated in (and subject to the laws of) England and Wales with registration number 4205228. Registered address is at 3 Forbury Place, Forbury Road, Reading, Berkshire RG1 3YL.
How we protect visitor information
Keeping your data secure
Sending information over the internet is generally not completely secure, and we can’t guarantee the security of your data while it’s in transit.
Any data you send is at your own risk.
Both TIMIFY and YELL.COM has procedures and security features in place to keep your data secure once we receive it.
Once we (Holistic Beauty Ltd) hold your personal information, it is contained behind secured networks and filing systems and is only accessible by a limited number of persons who have special access rights to such systems and are required to keep the information confidential. 
Both TIMIFY and YELL.COM implement a variety of security measures when a user places their details within their systems to help maintain the safety of your personal information.
All transactions are processed through a gateway provider and are not stored or processed on our servers.
The use of ‘COOKIES’
The Holistic Beauty website does not use Cookies. Cookies are small files that a site or its service provider transfers to your computer’s hard drive through your Web browser (if you allow) that enables the site’s or service provider’s systems to recognise your browser and capture and remember certain information.
We do not sell, trade, or otherwise transfer to outside parties your personally identifiable information unless we provide you with advance notice. This does not include website hosting partners and other parties who assist us in operating our website, conducting our business, or servicing you, so long as those parties agree to keep this information confidential. We may also release your information when we believe release is appropriate to comply with the law, enforce our site policies, or protect ours or others’ rights, property, or safety.
However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.
A button for the Timify appointment booking system has been placed on our website provided by
Third-party cookies or other third-party identifiers together to compile data regarding user interactions with ad impressions, and other ad service functions as they relate to our website.
Stripe Online Payment Porcessing
At Stripe, privacy, data protection, and data security are at the very heart of everything we do. We’re continuously working to reset the bar for ourselves in the security and data privacy realm, and view the GDPR as an opportunity for the entire industry to come together on this and improve.
Stripe started its efforts towards GDPR compliance back in 2016, and we are working to ensure that our services are GDPR-compliant on the effective date of May 25, 2018.
GDPR compliance is comprised of many elements. Among others, we are updating our documentation and agreements to align with GDPR requirements. We are also revising our internal policies and procedures to ensure that they adhere to the GDPR standard.
Most of the GDPR compliance elements take place “under the hood” of an organization as they relate to updates on how an organization is processing personal data. These are some of the steps platforms like Stripe are performing for their users (and themselves) in anticipation of the GDPR:
Perform a gap analysis between the requirements imposed by the Data Protection Directive and the GDPR, as applicable to the company’s business operations.
Review and update internal tools, procedures and policies where necessary.
Revise data mapping and data inventory practices, and update where necessary, to comply with record retention obligations under the GDPR.
Perform a dedicated gap analysis of privacy and data protection review tooling to meet the Data Protection Impact Assessment requirements.
Update approach to international data transfers.
Update contracts to reflect Art. 28 GDPR obligations as they relate to the company’s contracting parties.
Review and, where necessary, revise relationships with vendors to meet the requirements of the GDPR to ensure that those third parties receive and process personal data in a lawful way.
Update the company’s Privacy Compliance Program with continuous employee training to reflect the changes to be implemented for the GDPR.
More Information about compliance ma be found here -
Users of both TIMIFY and YELL.COM can set preferences for how cookies are used by using an Opt Out Browser add on.
Direct marketing
During the initial consultation period you will see a couple of tick boxes. We will always ask you if you want to be contacted by phone, SMS, post or email, and give you the chance to object by not ticking to, or only ticking certain boxes.
When we collect customer details, we will first get your permission in regards to sending you other offers or promotions.
Letting customers opt out
Customers have the right at any time, to stop their information being used for direct marketing.
We make it easy to opt out - for example by sending a ‘STOP’ text to 07876405932.
If at any time you would like to unsubscribe from receiving future emails, you can email us at stating ‘unsubscribe’.
and we will promptly remove you from ALL correspondence.
If there are any questions regarding this privacy policy you may contact us using the information below.
Holistic Beauty Ltd
35 Underwood Road
RG30 3LZ
Company Reg. No 09571827
+44 7876 405 932