Data protection

Privacy Policy

Lifecycle Aesthetic Ltd is committed to protecting your privacy. This policy explains how we collect, use, store, and protect your personal data across the UK and EU, in line with the EU GDPR, UK GDPR, and the Data Protection Act 2018.

Last updated: 23 June 2026

Lifecycle Aesthetic is an information and coordination platform. It is not a clinic and does not provide medical procedures. All medical decisions must be made directly with your chosen provider.

1. Overview

Lifecycle Aesthetic ("we", "us", "our") is committed to protecting your privacy. We operate a UK & EU directory of credential-checked aesthetic clinics and provide tools for users to request consultations, compare quotes, and review clinics.

We follow the principles of:

  • GDPR (EU).
  • UK GDPR.
  • Data Protection Act 2018.
  • Purpose limitation.
  • Data minimisation.
  • Explicit consent.
  • Transparency.

This Privacy Policy explains how we collect, use, store, and protect your personal data.

2. What we are (and are not)

Lifecycle Aesthetic is:

  • An information and coordination platform.
  • A governance-aligned verification system.
  • A directory of aesthetic clinics.

Lifecycle Aesthetic is not:

  • A clinic.
  • A medical provider.
  • A diagnostic service.
  • A regulated healthcare body.

We do not provide medical advice or treatment.

3. Personal data we collect

We collect only the data necessary to operate the platform.

Data you provide directly

  • Name.
  • Email address.
  • Phone number (optional).
  • Consultation or quote request details.
  • Review submissions.
  • Clinic documentation (for clinic owners).

Data collected automatically

  • IP address.
  • Device information.
  • Browser type.
  • Usage analytics.
  • Cookies (see Cookie Policy).

Clinic verification data

For clinics and practitioners:

  • Credentials.
  • Insurance documents.
  • Registration numbers.
  • Governance policies.
  • Identity verification.

All verification data is processed under strict confidentiality.

4. How we use your data

We use your data to:

  • Operate the platform.
  • Coordinate consultation and quote requests.
  • Verify clinic documentation.
  • Display clinic listings.
  • Publish verified patient reviews.
  • Maintain platform security.
  • Comply with legal obligations.

We do not:

  • Sell personal data.
  • Use personal data for advertising.
  • Share data with third parties for marketing.

5. Legal basis for processing

We process personal data under the following GDPR bases:

Consent

  • Enquiry submissions.
  • Review submissions.
  • Marketing opt-ins.

Legitimate interest

  • Platform security.
  • Fraud prevention.
  • Service improvement.

Contractual necessity

  • Transmitting enquiries to clinics.
  • Managing clinic accounts.

Legal obligation

  • Regulatory compliance.
  • Data protection requirements.

6. How enquiries work

When you request a consultation or quote:

  • Your enquiry is sent directly to the clinic.
  • The clinic becomes the data controller for that interaction.
  • We do not participate in medical decision-making.
  • We do not access clinical advice or treatment information.

We only store the minimum data required to transmit the enquiry.

7. How clinic verification works

Clinics upload documentation for governance review. We store:

  • Credentials.
  • Insurance.
  • Registration.
  • Governance policies.

This data is used solely for verification and compliance mapping. We do not share clinic documents publicly.

8. Data sharing

We share data only with:

  • Clinics you choose to contact.
  • Service providers who support platform operations (e.g. hosting, analytics).
  • Regulators or authorities when legally required.

We do not share data with advertisers or unrelated third parties.

9. Data retention

We retain data only as long as necessary:

  • User accounts: until deletion.
  • Enquiry data: 12–24 months.
  • Verification documents: until clinic account closure.
  • Analytics data: anonymised after processing.

You may request deletion at any time.

10. Your rights (GDPR)

You have the right to:

  • Access your data.
  • Correct inaccurate data.
  • Request deletion.
  • Restrict processing.
  • Object to processing.
  • Request data portability.
  • Withdraw consent.

To exercise your rights: privacy@lifecycleaesthetics.com.

11. Data security

We use:

  • Encrypted storage.
  • Secure transmission (TLS).
  • Access controls.
  • Audit logs.
  • GDPR-aligned infrastructure.

No system is perfectly secure, but we take all reasonable measures to protect your data.

12. International transfers

We store data within the UK/EU where possible. If data is transferred outside the EEA, we use:

  • Standard Contractual Clauses (SCCs).
  • GDPR-compliant safeguards.

13. Children

The platform is not intended for individuals under 18. We do not knowingly collect data from minors.

14. Changes to this policy

We may update this Privacy Policy to reflect:

  • Legal changes.
  • Regulatory updates.
  • Platform improvements.

We will notify users of material changes.

15. Contact

For privacy enquiries: legal@lifecycleaesthetics.com.

Lifecycle Aesthetic Ltd. Registered in the United Kingdom.

Questions about this policy?

Our governance team is available to clarify how Lifecycle Aesthetic handles data, verification, and coordination.

Contact our team