top of page

Privacy Policy

Sunday Skin UK (“we,” “our,” or “us”) is committed to protecting your privacy and handling your personal data in accordance with UK GDPR and data protection legislation.

Last Updated: 07/04/2026.

If you have any questions about this Privacy Policy or how we handle your data, please contact us via email or via the form on our Contact page.

  • Sunday Skin is a skin clinic based at:
    11 Kidderminster Road, Bromsgrove, Worcestershire, B61 7JJ

    If you have any questions about this Privacy Policy or how we process your personal data, please contact us via email or our Contact page.

  • We may collect and process the following information:

    • Personal identification: Name, email address, phone number (when you contact us or book a treatment)

    • Health and medical information: Date of birth, medical history, allergies (to provide safe and personalised treatments)

    • Payment information: Collected securely via third-party processors such as (but not limited to) Stripe, PayPal, Fresha, Klarna & Clearpay.

    • Website usage data: Cookies, analytics, and interactions to improve our website and services

  • Your personal data is used to:

    • Manage bookings and appointments

    • Deliver safe and effective treatments

    • Send appointment reminders and follow-ups

    • Respond to enquiries

    • Comply with legal, insurance, or professional obligations

    • Improve our website, user experience, and services

    • We process your data under the following legal grounds:

    • Consent: You provide consent when booking treatments or subscribing to communications

    • Contract: Processing is necessary to deliver treatments you have booked

    • Legal obligations: Compliance with applicable laws, insurance, or health regulations

    • Legitimate interests: Improving our services, marketing, and website functionality

    • We never sell your data. We only share your information with: booking and payment platforms: Fresha, Stripe, PayPal, Klarna, Clearpay etc.

    • Email or SMS providers: Mailchimp, automated reminder systems

    • Professional insurers or legal advisors: Only where legally required

    • All third-party services are GDPR-compliant and only receive data necessary to provide their services.

    • Personal data is stored securely using encrypted systems and restricted access.

    • We retain data only for as long as necessary to provide services or comply with legal obligations.

  • ​Under UK GDPR, you have the right to:

    • Access the personal data we hold about you

    • Request correction of inaccurate data

    • Request deletion of your data

    • Object to or restrict processing

    • Withdraw consent at any time (where applicable)

    • To exercise your rights, contact us via email or our Contact page

  • We use cookies to:

    • Improve website performance and user experience

    • Track analytics and website interactions

    • Support basic website functionality

    • You can adjust your cookie settings through your browser at any time.

    • We may update this Privacy Policy to reflect changes in legal requirements or our services. We encourage you to review this page regularly.

    • If you have concerns about how we process your data, you can contact us directly. You also have the right to raise complaints with the UK Information Commissioner’s Office (ICO): www.ico.org.uk

bottom of page