Privacy Policy

1. Introduction

SKYN Lounge Au Pty Ltd (ABN 99 696 535 001, ACN 696 535 001) ("we", "us", "our") is committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website (skynloungeaupty.space), use our services, or interact with us in any way.

We are bound by the Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth) and any applicable health records legislation in the State of Victoria.

2. Information We Collect

We may collect the following types of personal information:

• Identity information: Name, date of birth, gender
• Contact information: Email address, phone number, postal address
• Health information: Medical history, skin conditions, allergies, medications, treatment records, and clinical photographs (classified as sensitive information under the Privacy Act)
• Financial information: Payment details processed through our secure payment gateway
• Technical information: IP address, browser type, device information, and website usage data collected via cookies and analytics tools
• Communication records: Records of your correspondence with us including emails, phone calls, and online enquiries

3. How We Collect Information

We collect personal information:

• Directly from you when you fill in forms, book appointments, complete consultations, or communicate with us
• During the course of providing treatments and services
• From third parties such as referring practitioners (with your consent)
• Automatically when you use our website through cookies and similar technologies

Where we collect sensitive information (including health information), we will obtain your express consent prior to collection, unless an exception under the Privacy Act applies.

4. How We Use Your Information

We use your personal information for the following purposes:

• To provide, personalise, and improve our skincare treatments and services
• To manage your appointments and bookings
• To maintain accurate treatment and medical records
• To process payments and manage billing
• To communicate with you about your treatments, aftercare, and appointments
• To send you marketing communications (only with your consent, and you may opt out at any time)
• To comply with legal and regulatory obligations
• To improve our website, services, and customer experience
• To protect our legal rights and prevent misuse of our services

5. Disclosure of Your Information

We may disclose your personal information to:

• Our employees, contractors, and practitioners who require access to provide your treatments
• Third-party service providers (e.g., payment processors, IT providers, booking systems) who are contractually bound to protect your information
• Medical practitioners or health professionals when clinically necessary (with your consent)
• Government agencies or regulatory bodies when required by law
• Professional advisers (e.g., lawyers, accountants) as necessary

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

6. Data Security

We take reasonable steps to protect your personal information from misuse, interference, loss, unauthorised access, modification, and disclosure. Our security measures include:

• Secure, encrypted storage of electronic records
• Access controls and authentication measures
• Regular security assessments and updates
• Staff training on privacy and data protection obligations
• Secure disposal of personal information when no longer required

7. Data Retention

We retain your personal information only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. Health records are retained in accordance with the Health Records Act 2001 (Vic) and applicable retention requirements. When personal information is no longer needed, we will take reasonable steps to destroy or de-identify it.

8. Cookies and Website Analytics

Our website uses cookies and similar tracking technologies to enhance your browsing experience and collect analytical data. You can manage your cookie preferences through your browser settings. Types of cookies we use:

• Essential cookies: Required for the website to function properly
• Analytics cookies: Help us understand how visitors interact with our website
• Functional cookies: Remember your preferences and settings

9. Your Rights

Under the Australian Privacy Principles, you have the right to:

• Access: Request access to the personal information we hold about you
• Correction: Request correction of inaccurate, incomplete, or outdated personal information
• Opt out: Opt out of receiving marketing communications at any time
• Complain: Lodge a complaint if you believe we have breached the Australian Privacy Principles

To exercise any of these rights, please contact us using the details provided below. We will respond to your request within a reasonable timeframe (generally within 30 days).

10. Overseas Disclosure

Some of our third-party service providers (such as cloud hosting or payment processors) may store data on servers located outside Australia. Before disclosing your personal information overseas, we take reasonable steps to ensure that the overseas recipient handles your information in accordance with the Australian Privacy Principles, or that you have consented to the transfer.

11. Children's Privacy

Our services are not directed to individuals under the age of 18 without parental or guardian consent. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child without appropriate consent, we will take steps to delete that information.

12. Notifiable Data Breaches

In accordance with the Notifiable Data Breaches (NDB) scheme under Part IIIC of the Privacy Act 1988, we will notify the Office of the Australian Information Commissioner (OAIC) and affected individuals if a data breach is likely to result in serious harm.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically. Your continued use of our services after any changes constitutes your acceptance of the updated policy.

14. Complaints

If you believe we have breached the Australian Privacy Principles, you may lodge a complaint with us. We will investigate and respond to your complaint within 30 days. If you are not satisfied with our response, you may lodge a complaint with:

Office of the Australian Information Commissioner (OAIC)
Website: www.oaic.gov.au
Phone: 1300 363 992

15. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your privacy rights, please contact us: