Privacy policy

This policy explains how Hair Obsession ("we", "us", "our") collects, uses and looks after your personal information, and the rights you have over it. We are committed to protecting your privacy and handling your information openly and securely. For the purposes of data protection law, Hair Obsession is the data controller responsible for your personal information, and you can reach us using the details at the end of this policy.

The information we collect

We only collect information we need to look after you and provide our services. Depending on how you interact with us, this may include:

• Your name and contact details, such as your phone number and email address.
• Appointment details, including the services you have booked and your visit history.
• Notes about your hair and preferences, so we can give you the best possible service.
• Health and sensitivity information where it is relevant to a treatment, for example for patch testing before a colour service.
• Payment information when you pay for a service. Card payments are handled securely by our payment provider, and we do not store your full card details.
• Messages you send us by WhatsApp, phone, email or social media.

We collect most of this information directly from you, when you book, visit or get in touch.

How we use your information

We use your information to:

• Book and manage your appointments and provide our services, to perform our agreement with you.
• Contact you about your appointments, including reminders and any changes.
• Keep records of the services and products we have provided, to manage our business and meet our legal, accounting and insurance obligations.
• Keep you safe during treatments, including patch testing and recording any allergies or sensitivities.
• Send you offers or news, but only where you have agreed to receive them.
• Answer your questions and respond to your messages.

Depending on the purpose, we rely on one of the following lawful bases: performing our agreement with you, our legitimate interest in running the salon well, your consent, or compliance with a legal obligation.

Health and sensitive information

Some treatments, particularly colour services, require us to ask about allergies, sensitivities and how your skin reacts to a patch test. This is special category information under data protection law, and we treat it with extra care. We only collect it where it is necessary for your safety and the safe provision of your treatment, and we rely on your explicit consent to do so. You can ask us to remove this information at any time, although we may not be able to carry out certain treatments without it.

Marketing

We will only send you marketing messages if you have asked us to, or agreed to receive them. You can opt out at any time by telling us in the salon, replying to a message, or contacting us using the details below. Opting out will never affect the service we provide to you.

Sharing your information

We will never sell your personal information. We only share it where necessary, for example with:

• Trusted providers who help us run the salon, such as our payment provider and any booking or messaging tools we use, who act on our instructions.
• Professional advisers, such as our accountant or insurer, where reasonably required.
• Authorities or regulators, where we are required to share it by law.

Any provider we use is required to keep your information secure and only use it for the purposes we have agreed.

Our website, cookies and third parties

Our website is deliberately simple. It does not have a contact form, and it does not use its own tracking or advertising cookies. It does rely on a small number of third-party services:

• Hosting. The site is hosted by Cloudflare, which processes limited technical information such as your IP address to deliver it securely and reliably.
• Fonts. We use Google Fonts to display the site's typefaces, which may involve your browser contacting Google's servers.
• Maps. Our contact page includes an embedded Google Map. If you use it, Google may collect information in line with its own privacy policy.
• Links. We link to WhatsApp, Instagram and Facebook. If you follow those links, each service will handle your information under its own privacy policy.

These third parties are responsible for their own use of your information. If we add analytics or other tools in the future, we will update this policy first.

How long we keep your information

We keep your information only for as long as we need it. Client and appointment records are generally kept for up to six years after your most recent visit, so that we can manage our business and meet our legal, accounting and insurance obligations, after which they are securely deleted or anonymised. Marketing consents are kept until you opt out.

Your rights

Under data protection law you have the right to:

• Ask for a copy of the personal information we hold about you.
• Ask us to correct information that is wrong or incomplete.
• Ask us to delete your information, where there is no good reason for us to keep it.
• Ask us to restrict or object to how we use your information.
• Ask us to transfer your information to another provider, where this applies.
• Withdraw your consent at any time, where we rely on it.

To exercise any of these rights, please contact us using the details below. We will respond within one month, and there is normally no charge.

Keeping your information secure

We take appropriate steps to keep your information safe and to prevent it being lost, misused or accessed without authorisation, and we limit access to those who need it to do their job.

Children's privacy

We provide services to children, such as children's cuts, with the involvement of a parent or guardian. Where we collect a child's information, we do so with the consent of, and through, their parent or guardian.

Changes to this policy

We may update this policy from time to time. The latest version will always be on this page, with the date it was last updated shown at the top.

How to contact us

If you have any questions about this policy, or would like to exercise any of your rights, please contact us:

• Hair Obsession, 82A High Street, Hurstpierpoint, Hassocks, West Sussex, BN6 9PX
• Email: info@hairobsession.co.uk
• Phone: 01273 831007

If you are not happy with how we have handled your information, you have the right to complain to the Information Commissioner's Office (ICO), the UK regulator for data protection, at ico.org.uk or on 0303 123 1113. We would always appreciate the chance to put things right first, so please do come to us.