We are Le Masseur Personnel Limited. ("Le Masseur Personnel", "we", "us", "our"). Our registered address is 3 Church Road, Reading, Berkshire, RG4 7AA, United Kingdom. Our website is www.le-masseur-personnel.com ("website") and ur contact email is firstname.lastname@example.org ("email"). For the purposes of processing your data, we are the 'data controller'.
To ensure we are providing you with the best service we can, we collect and store certain information about you. The data we collect and store about you may include the following:
Personal data may be collected and/or stored via communication you submit through our website, by your use of our website, via cookie interations, via email communication with you, via in-person interactions via telephone conversations with you, directly from you with your consent or via any other means of communication with you.
The lawful basis' on which we process your data include Contract, Consent and Legitimate Interest.
We will process your data in order to fulfil our contractual obligations with you.
We will process your data in accordance with your prior consent. We will not treat you without explicit prior consent being granted.
We will process your data as it is in both yours and our legimate interest with regards to treatment safety, contractual obligations, the provision of health-related services including massage and other services we provide including, but not limited to: waxing treatments, facial treatments, body treatments and to comply with any legislation.
With regards to 'technical informaiton', this includes your use of our website using analyitc tracking software and computer logs in order to track, verify and rectify errors on our site and to improve usability for you.
Your personal data is securely stored in electronic form on our centre management software which is provided through our industry-leading and provider, MINDBODY Ltd. One New Change, 2nd Floor London, EC4M 9AF, United Kingdom
For information regarding the security measures in place with MINDBODY software to protect your data please visit : https://www.mindbodyonline.com/company/security
Your personal data may also be stored at our centre (paper and/or electronically) in a locked cabinet protected by image recording devices and/or password protected and encrypted electronic storage.
Transactional information may also be stored with our payment processors. Please refer to their privacy policies for further information:
Only authorised members of staff have access to your data.
Your data will be stored for the minimum amount of time as required by law. For health information and medical records, we are required to by law to retain this personal data for a minimum of eight years from your last treatment. In the case of a child/minor receiving treatment, personal data will be retained until the date of their 25th birthday; or 26th birthday if the event the child/minor was aged 17 from their last treatment.
The GDPR (General Data Protection Regulation) grants you as a 'data suject' certain rights. These rights are:
For further information regarding your rights, please refer to the Information Comissioner's Office (ICO) website: https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/
If you believe any data we hold about you to be incorrect or inaccurate and wish to rectify this please email email@example.com with the following information so we can identify you on our systems and rectify this:
You also have the option of setting your own contact preferences and updating your contact informaiton via our mobile apps (iOS or Android) or by clicking on the 'set preferences' link provided in any transactional email from our company.
A copy of your data can be requested at any time using one of the following methods:
If writting or emailing the data processor as referenced in point 1, please include your full name, contact information and client ID (if known) in order for us to locate your data.
We may also request proof of identification such as a valid passport or driving licence in order to verify you are who you claim to be. If you are acting on someone else's behalf, we will require reasonable proof and confirmation that you hold the legal authority to act on their behalf with regards to your request.
We aim to provide a copy of this data within 28 calender days of the date your request was received.
We take data security seriously, which is why we use industry-leading software provided by a supplier with a proven track record in data security and data integrity. Our website is hosted securly over the HTTPS protocal and all communication regarding your data is encrypted via the TLS protocol.
Should any of the personal data that we store and control be lost, stolen or breached and where this constitutes a high risk to your rights as granted under the GDPR, we will contact you without undue delay from the date on which we gained knowledge of the breach.
If you wish to make a complaint with regards to the way in which we are processing and/or storing your personal data, please contact the Information Comissioner's Office (ICO) via their website, www.ico.org.uk