Introduction 

Welcome to Cosmetic Physician Partner’s privacy policy. 

We respect your privacy and are committed to protecting your personal data. This privacy policy tells you how we look after your personal data whenever you engage with us, whether you are making an enquiry with us, are one of our patients or are visiting our website (regardless of where you visit it from) and sets out your privacy rights and how the law protects you. 

It is important that you read this privacy policy so that you are fully aware of how and why we are using your data.  

Important Information and Who We Are 

About us 

Cosmetic Physician Partners is the controller of and is responsible for your personal data (referred to as “CPP”, “we”, “us” or “our” in this privacy policy). 

We have appointed a data protection officer (DPO) who is responsible for overseeing questions in relation to this privacy policy. If you have any questions about this privacy policy, including any requests to exercise your legal rights, please contact the DPO using the details set out below. 

As a patient your treatment/procedure and consultations regarding them will be conducted by a registered medical practitioner. 

Contact details 

If you have any questions about this privacy policy or the processes we have in place to protect your privacy practices, please contact us/our DPO in the following ways: 

Full name of legal entity: Cosmetic Physician Partners, LLC

Email address: [email protected] 

Changes to the privacy policy and your duty to inform us of changes 

We keep our privacy policy under regular review and may make changes to it from time to time.  

It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us. 

Third-party links 

This website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy policy of every website you visit. 

1. The Data We May Collect About You 

Throughout your relationship with us we may collect personal data from or about you. The type of information we collect depends on how and why you got in touch with us and the type of services we are providing to you.   

What is personal data?  

Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data). 

We may collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows: 

• Identity Data this can include your full-name (maiden name), username or similar identifier, marital status, title, date of birth and gender. This may also include your image (as captured in photographs or recordings we make of procedures/treatments for the purpose of delivering our services).  
• Contact Data this will include the information that we need to get in touch with you and includes your home address, email address and telephone numbers. 
• Financial Data may include bank account and payment card details. 
• Health if you chose to use our services then we will need to collect (and will create) certain information about your health and/or medical history. When you meet with one of our medical practitioners, they will determine the extent of health information they need to be able to provide services to you.  
• Special Category Data Your health information is known as Special Category Data. Special Category Data is a certain set of personal data to which additional protections apply under data protection law. To allow us to provide our services to you, we may collect other Special Category Data about you in addition to your Health Data, including information about your racial or ethnic origin. We set out below how we process your Special Category Data.  
• Technical Data if you view our website then we may collect details about your internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website. 
• Usage Data includes information about how you use our website. 
• Marketing and Communications Data includes your preferences in receiving marketing from us and our third parties and your communication preferences. 

1. How Do we Collect Your Personal Data? 

We use different methods to collect data from and about you including through: 

• Direct interactions. You may give us your Personal Data (including Special Category Data) by filling in forms or by corresponding with us by post, phone, email or otherwise. This includes personal data you provide when you: 
• make enquiries with us via telephone/email/social media or our website; 
• request information (including marketing information) to be sent to you; 
• complete any medical history forms or consent forms;  
• engage or attend consultations with our staff and medical practitioners; or 
• give us feedback or contact us. 
• Automated technologies or interactions. As you interact with our website, we will automatically collect Technical Data about your equipment, browsing actions and patterns. We collect this personal data by using cookies, server logs and other similar technologies. We may also receive Technical Data about you if you visit other websites employing our cookies.
• Third parties or publicly available sources. In some circumstances we may receive your personal data from various third parties and public sources, examples are set out below: 
• other aesthetic clinics or healthcare providers – if you have been referred to us by another clinic or by a healthcare provider or if you are seeking a second opinion then we may receive relevant health records from that other provider – you have been asked to consent to this transfer of personal data depending on the circumstances; and 
• publicly available sources – this may assist with contact information or scheduling.    

1. How We Use Your Personal Data 

We are only allowed to use your personal data where the law allows us to.  

We set out further detail about the lawful grounds that we rely on in the table below, but in short, we use your personal data: 

• – to perform our contract with you (including steps that we need to take to enter into the contract). 
• – where it is necessary for us to provide health and medical treatment to you. In particular, we are unable to provide our services without having health and medical information about you. 
  • – you have given us your consent. 
• – where it is necessary for our legitimate interests of providing a clinic.  
• – where we need to comply with a legal obligation that we are subject to. 

Where we process special category data we have to have additional grounds on which to process the data. We will only process your special category data where one of those additional grounds exists.  

Purposes for which we will use your personal data 

We have set out below, in a table format, a description of all the ways we use your personal data, and the lawful grounds we rely on to do so.  

Note that we may process your personal data for more than one purpose or on more than one lawful ground depending on the specific purpose for which we are using your data. Please contact us if you need details about the specific legal ground we are relying on to process your personal data where more than one ground has been set out in the table below. 

It is sometimes necessary to share your personal data with third parties and we provide more information about this below. We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions. 

No mobile information will be shared with third parties or affiliates for marketing or promotional purposes. All categories above exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties