PRIVACY POLICY

Skinplan.health

Last updated: 21.01.2026

1. Introduction

Skinplan.health ("Skinplan", "we", "us", or "our") is committed to protecting your privacy and personal data.

This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our website, applications, and services (the "Platform").

We are based in the United Kingdom and comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Want a simpler explanation? Check out Your Data, Explained โ€” the same information, without the legal language.

2. Who We Are (Data Controller)

Skinplan.health is the data controller for personal data collected through the Platform.

Contact details:

๐Ÿ“ง Email: [email protected]
๐ŸŒ Website: www.skinplan.health

If required, our ICO registration number is: [To be added when registered]

3. Personal Data We Collect

We may collect and process the following categories of personal data:

3.1 Information You Provide

  • Full name
  • Email address
  • Phone number
  • Date of birth
  • Account login details
  • Skin, wellness, and preference information you choose to share
  • Communications with us (emails, messages, feedback)

3.2 Payment Information

  • Payment authorisation details required for Direct Debit
  • Payment status and transaction references

We do not store full bank or payment card details. Payments are processed securely by third-party providers, including GoCardless.

3.3 Technical Information

  • IP address
  • Device and browser type
  • Login activity
  • Usage data and analytics

4. How We Use Your Information

We use personal data to:

  • Create and manage user accounts
  • Provide skin and wellness planning tools
  • Facilitate payment collection and account administration
  • Communicate with users regarding services or support
  • Improve platform performance and user experience
  • Meet legal, regulatory, and compliance obligations

We do not sell personal data to third parties.

5. Legal Basis for Processing

Under UK GDPR, we process personal data based on one or more of the following lawful bases:

  • Contractual necessity โ€“ to provide Platform services
  • Consent โ€“ where you explicitly agree
  • Legal obligation โ€“ regulatory or compliance requirements
  • Legitimate interests โ€“ improving and securing our services

6. Payments & Third-Party Providers

Payments are processed by trusted third-party providers, including GoCardless.

These providers act as independent data controllers for payment information and process data in accordance with their own privacy policies.

Skinplan.health only receives confirmation of payment status and references necessary to manage accounts.

7. Data Security

We take data security seriously and implement appropriate technical and organisational measures, including:

  • Secure servers and encryption
  • Restricted access controls
  • Two-factor authentication where available
  • Ongoing monitoring and security updates

While we take reasonable steps to protect personal data, no online system can be guaranteed to be completely secure.

8. Data Retention

We retain personal data only for as long as necessary to:

  • Provide Platform services
  • Comply with legal and regulatory obligations
  • Resolve disputes or enforce agreements

When no longer required, data is securely deleted or anonymised.

9. Sharing Your Information

We may share personal data with:

  • Payment processors (e.g. GoCardless)
  • IT and hosting providers
  • Professional advisers (legal, compliance, accounting)
  • Regulatory or law enforcement authorities where required by law

All third parties are required to handle data securely and lawfully.

10. Your Data Protection Rights

Under UK GDPR, you have the right to:

  • Access your personal data
  • Request correction of inaccurate data
  • Request erasure ("right to be forgotten")
  • Restrict or object to processing
  • Data portability
  • Withdraw consent at any time

Requests can be made by contacting us at [email protected].

11. Cookies & Tracking

Skinplan.health may use cookies and similar technologies to:

  • Improve functionality
  • Analyse usage
  • Enhance user experience

Full details are provided in our Cookie Policy [if applicable].

12. Children's Data

Skinplan.health is not intended for use by individuals under the age of 18, and we do not knowingly collect data from children.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time.

The latest version will always be available on the Platform.

Continued use of Skinplan.health constitutes acceptance of the updated policy.

14. Complaints

If you are unhappy with how your data is handled, you have the right to complain to the Information Commissioner's Office (ICO):

๐ŸŒ www.ico.org.uk

15. Contact Us

For privacy-related enquiries, please contact:

๐Ÿ“ง [email protected]
๐ŸŒ www.skinplan.health

By using Skinplan.health, you acknowledge that you have read and understood this Privacy Policy.