Privacy Policy

The A Hub Group Ltd t/a The Aesthetics Hub

This Privacy Policy explains how The A Hub Group Ltd ("we", "us", "our") collects, uses, stores, and protects personal data in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the Privacy and Electronic Communications Regulations (PECR).

This policy has been informed by a review of comparable clinic privacy notices and reflects best practice for UK-based medical and aesthetic clinics.

1. Controller Details

Legal entity: The A Hub Group Ltd
Trading as: The Aesthetics Hub
Address: Unit 5D, Glenn Buildings South, 10A Moor Lane, Crosby Village, Liverpool, L23 2UN
Telephone: 0151 345 0620
Email: info@theaestheticshub.com

Date last updated: 17 January 2026

For the purposes of UK GDPR, The A Hub Group Ltd is the data controller.

2. Scope of This Policy

This Privacy Policy applies to:

• Visitors to our website
  
• Individuals who contact us or make enquiries
  
• Newsletter subscribers
  
• Patients receiving treatments or consultations
  

This policy does not apply to third-party websites accessed via links on our website.

3. Personal Data We Collect

3.1 Website and Enquiries

• Name
  
• Email address
  
• Date of Birth
• Telephone number
  
• IP address
  
• Browser type, operating system, and basic usage data
  

3.2 Newsletter and Marketing

• Name
  
• Email address
  
• Marketing preferences
  

3.3 Patients

• Name
  
• Date of birth
  
• Contact details (address, email, telephone)
  
• Medical history and health information
  
• Consultation notes and treatment records
  
• Clinical photographs (where required and with consent)
  
• Appointment history
  
• Payment and transaction records
  
• Medical and health information constitutes special category data and is processed with enhanced safeguards.

4. How We Collect Personal Data

We collect personal data when you:

• Complete website forms or subscribe to communications
  
• Contact us by phone, email, or in person
  
• Attend consultations or receive treatment
  
• Use our website (via cookies and analytics tools)
  
• Make payments or apply for finance

5. How and Why We Use Your Data

We use personal data to:

• Provide safe, appropriate, and effective medical and aesthetic treatments
  
• Assess suitability for treatment and maintain accurate medical records
  
• Manage appointments, follow-up care, and aftercare
  
• Communicate with you regarding services, enquiries, or your account
  
• Process payments and finance arrangements
  
• Improve our services and website functionality
  
• Send marketing communications where consent has been given
  
• Meet legal, regulatory, and professional obligations
  

6. Lawful Bases for Processing

We process personal data under the following lawful bases:

Consent: For marketing communications, sharing data with third parties, clinical photography, and cookies where required. Consent can be withdrawn at any time.

Contract: Where processing is necessary to provide treatments or services requested by you.

Legal obligation: Where processing is required to comply with law or regulation.

Health and social care purposes: For the provision of medical care, diagnosis, and treatment, including record keeping.

7. Sharing Your Personal Data

We only share personal data where necessary and appropriate. This may include:

• Other healthcare professionals or medical practices, only with your explicit written consent
  
• UK registered Pharmacy supplier of medicines in order to complete appropriate written prescriptions
• Our finance provider Buyline Ltd, where you choose to fund treatment via a loan. Data is shared only with your consent. Buyline’s privacy policy is available at: https://www.buyline.co.uk/privacy-policy/
  
• Professional advisers (e.g. accountants, insurers, legal advisers)
  
• Regulatory bodies, insurers, or law enforcement where legally required
  

We do not sell, rent, or trade personal data.

8. Cookies and Website Analytics

Our website uses cookies to ensure functionality and improve user experience. Cookies are small text files stored on your device.

We use the following categories of cookies:

• Strictly necessary cookies: Essential for website operation and security
  
• Analytical/performance cookies: Help us understand how visitors use the website
  
• Functionality cookies: Remember preferences and settings
  
• Targeting cookies: Used to make content and advertising more relevant
  

You can manage or disable cookies through your browser settings. Disabling cookies may affect website functionality.

9. Data Storage and Security

We implement appropriate technical and organisational measures to protect personal data, including:

• Secure digital systems with access controls
  
• Encrypted or password-protected records where appropriate
  
• Locked storage for physical records
  
• Access limited to authorised staff on a need-to-know basis
  
• While we take all reasonable steps to protect data, transmission over the internet cannot be guaranteed as completely secure.
  

10. Data Retention

We retain personal data only for as long as necessary:

• Patient medical records: Normally retained for a minimum of 10 years from the last treatment, or longer where clinically or legally required
  
• Financial records: Retained for 6 years for accounting and tax purposes
  
• Marketing data: Retained until consent is withdrawn or you unsubscribe
  
• Website analytics data: Retained in accordance with analytics provider settings
  

Data is securely deleted, anonymised, or destroyed when no longer required.

11. Your Data Protection Rights

You have the following rights under data protection law:

• Right of access
  
• Right to rectification
  
• Right to erasure (in certain circumstances)
  
• Right to restrict processing
  
• Right to object to processing, including direct marketing
  
• Right to data portability
  
• Requests are free of charge and will be responded to within one month.
  

To exercise your rights, contact: info@theaestheticshub.com

12. Third-Party Websites

Our website may contain links to third-party websites. We are not responsible for the content or privacy practices of those websites. Please review their privacy policies separately.

13. Changes to Business Ownership

If The A Hub Group Ltd is sold, merged, or restructured, personal data may be transferred as part of that process. Any successor will be required to process data in accordance with this Privacy Policy and applicable law.

14. Complaints

If you have concerns about our use of your personal data, please contact us first at:

Email: info@theaestheticshub.com

You also have the right to complain to the Information Commissioner’s Office (ICO):

Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

Helpline: 0303 123 1113
Website: https://www.ico.org.uk

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be published on our website and the revised date will be updated above.