Privacy
Policy.

EDIT London (“EDIT”, “we”, “us” or “our”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store and protect your personal and health information when you book, attend or enquire about our services. It applies to all clients, prospective clients and visitors to our website.

We process your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

EDIT London is the data controller responsible for your personal information.

Studio: 33 Cavendish Square, Marylebone, London W1G 0PW, United Kingdom
Telephone / WhatsApp: +44 7403 076825
Email: Hello@thebodyedit.london

We may collect and process the following categories of personal data:

• Identity & contact details — name, date of birth, address, telephone number, email address.
• Health information — medical history, current medications, allergies, pregnancy status, relevant surgical history and any condition affecting suitability for treatment.
• Treatment records — consultation notes, treatment plans, progress observations and aftercare provided.
• Clinical photography — before, during and after images of treated areas, captured as part of your treatment record.
• Payment information — card details and transaction records, processed securely by our payment provider.
• Booking & communication history — appointment history, correspondence with us by email, WhatsApp, telephone or in person.
• Website data — cookies and analytics data when you visit our website (see Cookies below).

We use your personal data to:

• Assess your suitability for treatment and deliver your services safely.
• Maintain accurate clinical records and monitor progress between sessions.
• Manage your bookings, payments, deposits and account.
• Communicate with you about appointments, aftercare and any changes to your booking.
• Respond to enquiries and complaints.
• Comply with our legal, regulatory and insurance obligations.
• With your separate consent, send marketing communications about new treatments, offers or events.

We rely on the following lawful bases under UK GDPR:

• Contract — to deliver the services you have booked with us.
• Legal obligation — to meet our regulatory, accounting and insurance requirements.
• Legitimate interests — to run, improve and protect our practice, provided this does not override your rights.
• Consent — for clinical photography, marketing communications and any sensitive (special category) health data we hold about you.

You can withdraw your consent at any time by contacting us at Hello@thebodyedit.london.

We do not sell your personal data. We share it only where necessary, with:

• Our team of qualified specialists involved in your care.
• Our booking platform (Fresha) and payment provider, who process data on our behalf.
• IT, email, hosting and analytics providers who support our operations under written agreements.
• Your treating surgeon or doctor, where you have asked us to coordinate post-surgical care.
• Regulators, law enforcement or insurers where we are legally required to do so.

We keep your personal and clinical records for as long as is necessary to provide your services and to meet our legal, regulatory and insurance obligations. Clinical records are typically retained for a minimum of 8 years after your last appointment, in line with industry guidance. Marketing preferences are kept until you ask us to remove them.

We use appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, alteration or disclosure. Access to clinical records is restricted to authorised members of our team. Payment data is handled by PCI-compliant providers; we do not store full card details on our systems.

Under UK GDPR you have the right to:

• Access the personal data we hold about you.
• Request correction of inaccurate or incomplete information.
• Request erasure of your data, subject to our legal and clinical retention obligations.
• Restrict or object to our processing in certain circumstances.
• Request a copy of your data in a portable format.
• Withdraw consent at any time where we rely on consent.
• Lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

To exercise any of these rights, please contact us at Hello@thebodyedit.london. We will respond within one month of your request.

Our website uses cookies and similar technologies to make the site work, to remember your preferences and to help us understand how visitors use our pages. You can control cookies through your browser settings. Disabling cookies may affect some parts of the site.

We may update this Privacy Policy from time to time. The version published on our website at the moment you interact with us is the version that applies. Material changes will be highlighted at the top of this page.

For any questions about this Privacy Policy or how we handle your information, please contact us at Hello@thebodyedit.london or write to us at 33 Cavendish Square, Marylebone, London W1G 0PW.