Dr Phil Aesthetics logo

Privacy Policy

Last updated: 13 May 2026

This Privacy Policy explains how Dr Phil Aesthetics ("we", "our", "us") collects, uses, and protects your personal data when you visit our website or get in touch with us. We are committed to processing your data in accordance with the UK GDPR and the Data Protection Act 2018.

Who we are

Dr Phil Aesthetics is the data controller for any personal data you provide through this website.

Address: 38 Queen Anne Street, Marylebone, London W1G 8HZ

If you have questions about this policy or wish to exercise any of your rights, please contact us using the contact form.

What data we collect

We may collect the following categories of personal data:

  • Contact details you submit through our contact form (name, email address, phone number, and any message content).
  • Booking information if you book an appointment through our booking provider.
  • Technical data such as IP address, browser type, device information, and pages visited — collected via cookies and similar technologies (only with your consent for non-essential categories).
  • Marketing data such as ad engagement and conversion events — only if you consent to marketing cookies.

Lawful basis for processing

We rely on the following lawful bases under UK GDPR:

  • Consent — for non-essential cookies (analytics and marketing) and any direct marketing communications.
  • Legitimate interests — to respond to enquiries, improve our services, and keep our site secure.
  • Contract — where processing is necessary to provide a service you have requested (e.g. responding to a booking enquiry).
  • Legal obligation — to comply with applicable laws and regulations, including dental record-keeping requirements.

How we use your data

We use your personal data to:

  • Respond to enquiries and arrange consultations or appointments.
  • Provide and improve our services.
  • Understand how visitors use our site, where consent is given.
  • Measure the performance of our advertising, where consent is given.
  • Keep our site secure and prevent abuse.

We do not sell your personal data.

Cookies

Cookies are small files stored on your device. We use the following categories:

  • Strictly necessary — required for the site to function (e.g. remembering your cookie choice). These cannot be switched off.
  • Analytics — Google Analytics (G-947GL9MPPT) helps us understand how visitors use the site. Loaded only with your consent.
  • Marketing — Meta Pixel (881308121650354) helps us measure the effectiveness of our adverts on Facebook and Instagram. Loaded only with your consent.

You can change your cookie preferences at any time using the Manage cookie preferences button at the bottom of this page.

Third parties and processors

We share data with the following service providers, who act as data processors on our behalf:

  • Supabase — database and image hosting.
  • Resend — transactional email delivery for contact form submissions.
  • Google (Analytics) — website analytics (only with consent).
  • Meta (Pixel) — advertising measurement (only with consent).
  • Vercel — website hosting and content delivery.

These providers may process data outside the UK. Where they do, we ensure appropriate safeguards are in place (such as Standard Contractual Clauses).

How long we keep your data

We retain personal data only for as long as necessary for the purpose it was collected, including to satisfy any legal, accounting, or reporting requirements. Enquiry messages are typically kept for up to 24 months unless they form part of a clinical record, which is retained in line with regulatory requirements.

Your rights

Under UK GDPR you have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate or incomplete data.
  • Request deletion of your data (the "right to be forgotten"), subject to legal exceptions.
  • Restrict or object to our processing of your data.
  • Request transfer of your data to another provider (data portability).
  • Withdraw consent at any time, where processing is based on consent.

To exercise any of these rights, please get in touch via the contact form.

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

Changes to this policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top of this page shows when it was most recently revised.

Get in touch