As a very valued customer of Harley Skin & Laser already you will be aware, that the General Data Protection Regulation (GDPR) will be taking effect on Friday 25th May 2018.

Due to this we are updating our Privacy Policy so that you can see and be aware of what we do with your data.

We are not changing how we process your data or what we do with it but we just want to make it clear and let you know the options you have to manage your details with us.

With this new legislation you have rights, (please see below) which we will adhere to, keep them updated when informed by you.


You have the right for us to do the following things:

For us to rectify any of your personal data that we hold and that may be inaccurate or incomplete, you also have the right to access any of this data too.
For us to restrict processing of your data, however we do need some basic data if we are to process your orders.
For us to forget you, (the right to delete any of your personal data that we may have.)
For us to inform you of the use of your data and how we obtain this
You have the right to object, on how we use your information and data
You have the right to ask us for a copy of your information


Under the new GDPR legislation, we must always have a lawful use for using personal data. This will be because your data is necessary for us to complete your order/ contract with you, and because you have consented with us using your personal data, or it is in your interests to use it. We need to have this information to complete your order.

If you have consented we would love to send you our promotional offers some only available to our customers.

Please be assured that we have never and do not sell, or exchange your personal information with any third parties, except to help prevent fraud, or if required to do so by law.

If you fill out our website form, your details are captured by secure methods.

If you opt in to our offers emails you can easily unsubscribe by calling us, emailing us or unsubscribing on the mailer/e-shot.

If you visit our website we do have other links on there to which we have no control over and we are not responsible for their protection and privacy.

We do have “cookies” on our website which is normal so that we can track who visits our website and the type of businesses who visit too.

You can “OK” for the use of the “cookie” or you can stop this by not disabling cookies in your browser!

We will respond to a Subject Access Request (a copy of your data) within 30 days. We will ask for you to complete a form and will require identification before we will allow this to leave us. Please contact us directly.

We will report any breach of our systems which put client personal data at risk within 72 hours to the ICO

We will act within the requirements of GDPR whether we are acting as the Data Controller or Data Processor

Should you wish to contact us to discuss anything further please call us.

If you have any complaints on how we use your data you have the rights to make a complaint with the ICO,