top of page

Privacy Policy

A legal disclaimer

The information provided by INNAAMI Beauty (“we”, “our”, “us”) on our website, social media platforms, training materials, courses, consultations, and services is for general informational, educational, and business purposes only.

By accessing our website, booking treatments, enrolling in courses, or using our services, you acknowledge and agree to this disclaimer.

Privacy Policy - the basics

Customers / Clients:

  • Full name

  • Contact details (email, phone number, address)

  • Date of birth (where relevant)

  • Appointment history

  • Treatment records

  • Patch test forms

  • Allergy, skin, or medical information relevant to treatments

  • Consent forms

  • Payment details (processed securely through third-party providers)

  • Before-and-after treatment photographs (with separate consent)

  • Marketing preferences

Students / Course Participants:

  • Full name

  • Contact details

  • Billing information

  • Identification where required for certification

  • Course progress records

  • Assessment results

  • Certificates issued

  • Attendance records

  • Health or accessibility information where relevant

  • Insurance or qualification details where applicable

Website Visitors:

  • IP address

  • Browser/device information

  • Cookies and analytics data

  • Website usage patterns

  • Contact form submissions

3. Special Category Data

Because some beauty treatments require health-related information (for example allergies, contraindications, skin conditions, or medical history), we may process special category data under UK GDPR.

We only process this data when:

  • You provide explicit consent

  • It is necessary for safe treatment provision

  • It is necessary for insurance or legal compliance

You may withdraw consent at any time, though this may affect our ability to safely provide services.

4. How We Use Your Information

We use your personal data to:

  • Book and manage appointments

  • Deliver beauty treatments safely

  • Provide accredited beauty education and certification

  • Maintain student records

  • Process payments

  • Communicate about bookings, services, and courses

  • Send appointment reminders

  • Respond to enquiries

  • Provide customer support

  • Meet legal, tax, and insurance obligations

  • Improve our services and website

  • Send marketing communications (only with consent)

  • Protect against fraud or misuse

5. Legal Bases for Processing

Under UK GDPR, we rely on:

  • Contractual necessity: To provide services or training you purchase

  • Legal obligation: For tax, insurance, and regulatory requirements

  • Legitimate interests: For business administration and service improvement

  • Consent: For marketing, photography, testimonials, and health information

  • Vital interests: For emergency health/safety purposes where necessary

6. Marketing Communications

We may send:

  • Promotional emails

  • SMS offers

  • Course launches

  • Loyalty offers

  • Business updates

We will only do this where lawful and, where required, with your consent.

You can unsubscribe at any time by:

  • Clicking unsubscribe links

  • Contacting us directly

  • Updating your booking preferences

7. Photography, Social Media & Testimonials

INNAAMI Beauty may request consent to use:

  • Before-and-after photos

  • Videos

  • Testimonials

  • Student work

  • Social media content

This content will only be used with explicit permission and can be withdrawn unless already used in published marketing materials.

8. Sharing Your Information

We do not sell personal data.

We may share data with:

  • Booking software providers

  • Payment processors

  • Accreditation bodies

  • Insurance providers

  • Accountants/bookkeepers

  • Legal or regulatory authorities where required

  • IT, website, or marketing providers

All third parties are expected to process data securely and lawfully.

9. International Data Transfers

If any data is transferred outside the UK, we ensure:

  • UK adequacy regulations apply, or

  • Standard contractual clauses or equivalent safeguards are in place

10. Data Security

We implement appropriate security measures including:

  • Secure password systems

  • Encrypted software where possible

  • Restricted access

  • Secure storage of consultation forms

  • Staff confidentiality obligations

  • Secure payment gateways

  • Cybersecurity protections

While we take reasonable precautions, no online system is completely secure.

11. Data Retention

We retain data only as long as necessary.

Typical retention periods:

  • Client records: Up to 7 years

  • Student records/certifications: Up to 7 years or longer where accreditation requires

  • Financial records: Minimum 6 years (HMRC compliance)

  • Marketing records: Until consent is withdrawn

  • Medical/patch test records: In line with insurance/legal obligations

After this, data is securely deleted or anonymised.

12. Your Rights Under UK GDPR

You have the right to:

  • Access your personal data

  • Correct inaccurate data

  • Request deletion

  • Restrict processing

  • Object to processing

  • Withdraw consent

  • Request data portability

  • Lodge complaints with the UK Information Commissioner’s Office (ICO)

ICO Website: https://ico.org.uk
ICO Helpline: 0303 123 1113

13. Children’s Privacy

For clients or students under 18:

  • Parent/guardian consent may be required

  • Additional safeguarding measures may apply

  • We do not knowingly market directly to children unlawfully

14. Cookies & Website Tracking

Our website may use cookies for:

  • Website performance

  • Analytics

  • Booking systems

  • Marketing

  • User experience improvements

You can manage cookies via browser settings.

A separate Cookie Policy may also apply.

15. CCTV (If Applicable)

If CCTV is used at salon premises:

  • It is for safety and security purposes

  • Signage will be displayed

  • Footage is retained only as necessary

  • Processing complies with UK data protection law

16. Student-Specific Privacy

For beauty training students, we may additionally process data for:

  • Accreditation submissions

  • Examination records

  • Insurance compliance

  • Professional certification

  • Portfolio assessments

  • Attendance verification

Students may be required to provide accurate records for certification validity.

17. Third-Party Links

Our website or social platforms may contain links to third-party websites. We are not responsible for their privacy practices.

18. Changes to This Policy

We may update this Privacy Policy periodically to reflect legal, regulatory, or operational changes.

The latest version will always appear on our website.

19. Contact Us

For privacy-related questions, requests, or concerns, contact:

INNAAMI Beauty
Email: info@innaami.co.uk
Website: www.innaami.co.uk
Business Address: NARA 294 Long Lane, Halesowen, B62 9JZ

bottom of page