PRIVACY POLICY

Dr Kania Clinic (“we”, “us”, or “our”) is committed to safeguarding your privacy and ensuring that your personal information is collected, used, and stored in compliance with the UK General Data Protection Regulation (GDPR) and the Data Protection Act 2018.

This Privacy Policy explains how we handle your personal data, your rights, and how you can contact us about data protection matters.

Dr Kania Clinic acts as the Data Controller, meaning we determine the purposes and methods of processing your personal information.

OUR DATA PROTECTION PRINCIPLES

We ensure that your personal data is:

  • Used lawfully, fairly, and transparently.

  • Collected for specific and legitimate purposes only.

  • Accurate, relevant, and limited to what is necessary.

  • Kept up to date and retained only for as long as necessary.

  • Processed and stored securely to protect against loss or unauthorised access.

DATA PROTECTION OFFICER (DPO)

For any questions or concerns regarding this Privacy Policy or how your data is used, please contact:

📧 contact@drkania.co.uk
📞 +44 (0)7935 133 150

You also have the right to contact the Information Commissioner’s Office (ICO) regarding data protection matters.

INFORMATION WE COLLECT

We may collect, store, and process the following categories of personal information:

  • Personal Details: Name, title, address, telephone number, and email.

  • Date of Birth and Gender.

  • Medical or Professional Information: Details relevant to your consultation or treatment.

  • Financial Data: Payment details and invoicing information.

  • Marketing Preferences: Communication and subscription preferences.

  • Technical Data: IP address, browser type, and site usage data (via analytics).

HOW WE COLLECT YOUR DATA

We obtain data through:

  • Direct Interactions: When you contact us via email, phone, or fill out consultation forms.

  • Digital Interactions: When you use our website or engage via social media, including through cookies and analytics tools.

HOW WE USE YOUR DATA

We process personal information to:

  • Provide consultations, advice, and clinical services.

  • Manage appointments, communication, and aftercare.

  • Process payments and maintain business records.

  • Send updates, wellness insights, or marketing materials (with consent).

  • Comply with legal or regulatory obligations.

Your data will not be used for unrelated purposes without your prior consent.

LAWFUL BASIS FOR PROCESSING

We process your personal data under one or more of the following legal bases:

  • Performance of a Contract: To provide the services you request.

  • Legal Obligation: To comply with UK law and regulatory requirements.

  • Legitimate Interests: For business efficiency, communication, and patient management.

  • Consent: For marketing or non-essential communications, where you have opted in.

DATA SHARING

We only share your information with trusted third parties when necessary and always under GDPR-compliant data processing agreements.

Current Third-Party Processors:

ProcessorPurposePrivacy PolicyPabauPatient management and appointment schedulingPabau Privacy PolicyHubSpotCRM, contact forms, and marketing managementHubSpot Privacy PolicyGoogle AnalyticsWebsite performance trackingGoogle Privacy Policy

All third parties are required to maintain confidentiality and process data only for authorised purposes.

DATA SECURITY

We implement technical and organisational safeguards to protect your information from unauthorised access, alteration, loss, or disclosure.
Access to your data is restricted to authorised staff and professionals, all of whom are bound by confidentiality obligations.

DATA RETENTION

We retain your personal information only as long as necessary to fulfil the purposes for which it was collected, including any legal, accounting, or reporting requirements.

Retention periods depend on the type and sensitivity of the data and applicable regulatory guidance for medical records.

YOUR RIGHTS

Under data protection law, you have the right to:

  • Access your personal data.

  • Request Correction of inaccurate information.

  • Request Erasure (“Right to be Forgotten”) where applicable.

  • Restrict or Object to processing.

  • Request Data Portability.

  • Withdraw Consent at any time (for marketing communications).

To exercise your rights, please contact:
📧 contact@drkania.co.uk

COOKIES

Our website uses cookies to improve functionality, analyse usage, and enhance your experience.

Types of Cookies We Use:

  • Essential Cookies – Required for website functionality.

  • Analytics Cookies – Track site usage and performance.

  • Functional Cookies – Remember user preferences.

  • Marketing Cookies – Deliver relevant content via HubSpot or Google.

You can manage cookie preferences in your browser or via our cookie consent banner.

THIRD-PARTY LINKS

Our website may include links to third-party websites. We are not responsible for their content, data collection, or privacy practices, and users should review those sites’ privacy policies before providing personal information.

CHANGES TO THIS POLICY

We may update this Privacy Policy periodically to reflect legal or operational changes.
The most recent version will always be available on www.drkania.clinic, along with the date of the last revision.

CONTACT INFORMATION

Dr Kania Clinic
Belgravia | Knightsbridge | London, United Kingdom
📧 contact@drkania.co.uk
📞 +44 (0)7935 133 150

COMPLAINTS

If you have concerns about how your data has been handled, please contact us directly.

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO):

Information Commissioner’s Office
Wycliffe House, Water Lane
Wilmslow, Cheshire, SK9 5AF
📞 0303 123 1113
🌐 www.ico.org.uk

LAST UPDATED: October 2025