Who Are We?
Stephanie Alexandra Bridal Ltd provides bridal hair and makeup services, occasion makeup, 1:1 lessons and semi-permanent makeup treatments.
We are committed to protecting your personal data and handling it responsibly in accordance with UK GDPR and the Data Protection Act 2018.
If you have any questions about this Privacy Policy or your personal data, please contact:
Email:
enquiries@stephaniealexandra.
co.uk
Who Are We?
What Information We Collect
We may collect and process the following personal data:
Identity & Contact Information
Full name
Postal address
Email address
Telephone number
Location of service
Booking & Service Information
Appointment dates
Venue details
Number of people in booking
Services requested
Consultation notes
Medical & Suitability Information (SPMU Clients Only)
Relevant medical history
Skin conditions
Pregnancy or breastfeeding status
Any information necessary to assess treatment suitability
This information is collected strictly for safety, insurance and professional practice purposes.
Website & Technical Data
IP address
Browser type
Device information
Pages visited
Website usage data (via cookies)
Feedback & Reviews
Testimonials
Client feedback
Images or photographs where consent has been given
Who Are We?
What Information We Collect
How We Collect Your Information
How We Use Your Information
Your information allows us to:
Respond to enquiries
Process bookings and appointments
Deliver contracted services
Assess suitability for semi-permanent makeup treatments
Provide aftercare guidance
Send invoices, reminders and booking confirmations
Improve our services
Share testimonials and images where consent has been provided
We do not sell or trade your personal data.
Who Are We?
What Information We Collect
How We Collect Your Information
How We Use Your Information
Legal Basis for Processing
We process your personal data under the following lawful bases:
Contractual necessity (to fulfil your booking)
Legal obligation (insurance and record keeping requirements)
Legitimate interest (service improvement and administration)
Explicit consent (for medical information and image use)
Medical data for SPMU treatments is processed only with your explicit consent and for safety purposes.
Who Are We?
What Information We Collect
How We Collect Your Information
How We Use Your Information
Legal Basis for Processing
Payment Information
Payments may be made via BACS or Stripe.
We do not store or process your card details directly. Payment information is handled securely by the relevant third-party provider in accordance with their own privacy policies.
Who Are We?
What Information We Collect
How We Collect Your Information
How We Use Your Information
Legal Basis for Processing
Payment Information
Third Party Services
We use trusted third-party systems to operate our business, including:
Dubsado (Client Management System)
Secure email providers
Accounting software
Website hosting platforms
Payment providers
These providers only process your data for the purpose of delivering their service to us and are GDPR compliant.
We do not sell, rent or share your personal data with third parties for marketing purposes.
Who Are We?
What Information We Collect
How We Collect Your Information
How We Use Your Information
Legal Basis for Processing
Payment Information
Third Party Services
Social Media & Photography
Data Retention
We retain personal data only for as long as necessary to:
Fulfil contractual obligations
Comply with insurance requirements
Maintain accurate business records
SPMU treatment records may be retained for extended periods in line with professional and insurance guidelines.
We do not hold data indefinitely without lawful purpose.
Who Are We?
What Information We Collect
How We Collect Your Information
How We Use Your Information
Legal Basis for Processing
Payment Information
Third Party Services
Social Media & Photography
Data Retention
Data Security
We take appropriate technical and organisational measures to protect your personal data from loss, misuse or unauthorised access.
Data is stored securely through encrypted systems and password-protected platforms.
Who Are We?
What Information We Collect
How We Collect Your Information
How We Use Your Information
Legal Basis for Processing
Payment Information
Third Party Services
Social Media & Photography
Data Retention
Data Security
Your Rights
Under UK GDPR, you have the right to:
Request access to your personal data
Request correction of inaccurate data
Request erasure (where legally permissible)
Restrict processing
Object to processing
Lodge a complaint with the Information Commissioner’s Office (ICO)
To exercise your rights, please contact us directly.
Who Are We?
What Information We Collect
How We Collect Your Information
How We Use Your Information
Legal Basis for Processing
Payment Information
Third Party Services
Social Media & Photography
Data Retention
Data Security
Your Rights
Cookies
Changes to This Policy
We may update this Privacy Policy periodically to reflect changes in legal requirements or business practices. The latest version will always be available on our website.