Privacy Policy

1. Introduction

This Privacy Policy explains how AESTHETIC SEMINARS LIMITED ("we," "us," or "our") collects, uses, stores, and protects your personal data when you visit our website at virtualsummitcentral.info or register for the "Tattoo as Identity" educational webinar series.

AESTHETIC SEMINARS LIMITED is the data controller responsible for your personal information. We are a company registered in England and Wales under company number 06330373, with our registered office at 55 Loudoun Road, London, NW8 0DL, United Kingdom.

We are committed to protecting your privacy and ensuring that your personal data is handled in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and all other applicable data protection legislation. This policy describes your rights regarding your personal data and how the law protects you.

2. What Data We Collect

We may collect and process the following categories of personal data about you:

Identity Data

• Your full name, as provided through our registration or contact forms

Contact Data

• Your email address, as provided through our registration or contact forms

Technical Data

• Internet Protocol (IP) address
• Browser type and version
• Device type, operating system, and screen resolution
• Time zone setting and geographic location (country/city level only)
• Pages visited, time spent on pages, and navigation paths
• Referring URL (the website that directed you to us)

Usage Data

• Information about how you use our website, including page views, click patterns, and session duration
• Form submission records and timestamps
• Cookie identifiers and similar tracking data

We do not collect any special category data (also known as sensitive personal data), including data relating to health, racial or ethnic origin, political opinions, religious beliefs, trade union membership, genetic data, biometric data, sexual orientation, or criminal convictions.

3. How We Collect Data

We collect personal data through the following methods:

• Direct interactions: When you complete our webinar registration form or contact form, you provide us with your name and email address voluntarily.
• Automated technologies: As you browse our website, we automatically collect Technical Data and Usage Data through cookies, server logs, and analytics tools. Please see our Cookies Policy for further details on the specific cookies we use.
• Analytics tools: We use Google Analytics to understand how visitors interact with our website. Google Analytics collects data through cookies and generates statistical reports about website traffic and user behavior. This data is processed in an aggregated and anonymized form wherever possible.
• Server logs: Our web hosting provider automatically records standard server log files, which include your IP address, browser information, and the pages you requested.

4. Legal Basis for Processing (GDPR Article 6)

We process your personal data only when we have a lawful basis to do so under UK GDPR Article 6. The specific legal bases we rely upon are:

• Consent (Article 6(1)(a)): When you submit our registration form, you consent to receiving webinar-related communications by email. You may withdraw this consent at any time by contacting us at the email address provided below or by using the unsubscribe link in any email we send.
• Legitimate interests (Article 6(1)(f)): We process Technical Data and Usage Data to maintain, improve, and secure our website. Our legitimate interest is ensuring the website functions properly and understanding how visitors engage with our educational content. We have assessed that this processing does not override your rights and freedoms.
• Contract performance (Article 6(1)(b)): When you register for the webinar, we need to process your name and email to deliver the service you have requested, including sending webinar access details and related materials.

5. How We Use Your Data

We use the personal data we collect for the following specific purposes:

• Webinar registration and delivery: To process your registration, send you confirmation emails, provide webinar access links, and deliver any post-webinar materials such as session recordings.
• Communication: To respond to your inquiries submitted through our contact form and to send webinar-related updates exclusively. We do not send general marketing newsletters unless you explicitly opt in to receive them.
• Website analytics: To analyze website traffic patterns, understand which pages are most visited, identify technical issues, and improve the overall user experience of our website.
• Website security: To detect, prevent, and address potential security threats, fraud, or technical problems.
• Legal compliance: To comply with legal obligations, resolve disputes, and enforce our Terms of Use.

We will never use your personal data for automated decision-making or profiling that produces legal effects or similarly significant effects on you.

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected. Our specific retention periods are:

After the applicable retention period expires, we securely delete or anonymize your personal data. If you request deletion of your data before the retention period ends, we will honor your request within 30 days unless we have a legal obligation to retain the data.

7. Data Sharing and Third-Party Recipients

We do not sell, rent, or trade your personal data to any third party. We may share your data only with the following limited categories of service providers who process data on our behalf:

• Hosting provider: Our website is hosted by a reputable hosting company that stores data on secure servers. They process data solely to provide the hosting service and are contractually bound to protect your data.
• Analytics provider (Google Analytics): Google processes anonymized and aggregated usage data to provide us with website performance reports. You can learn more about how Google handles data at Google's Privacy Policy page. You can opt out of Google Analytics by using browser extensions or by rejecting analytics cookies on our site.
• Email service provider: We use a third-party email delivery service to send webinar confirmation emails and access details. This provider processes your name and email address solely for the purpose of delivering our emails and is contractually prohibited from using your data for any other purpose.

All third-party service providers are required to take appropriate security measures to protect your personal data in line with our policies and applicable law. We do not allow them to use your data for their own purposes. They may only process your personal data for specified purposes and in accordance with our documented instructions.

We may also disclose your personal data if required to do so by law, in response to a valid legal request from a public authority (such as a court or government agency), or to protect our rights, property, or safety.

8. International Data Transfers

Some of our third-party service providers, particularly Google Analytics, may process your data outside the United Kingdom or the European Economic Area (EEA). When your data is transferred internationally, we ensure that appropriate safeguards are in place to protect your information in accordance with UK GDPR requirements.

These safeguards include:

• Transfers to countries that have received an adequacy decision from the UK Secretary of State, meaning they provide an equivalent level of data protection.
• Standard Contractual Clauses (SCCs) approved by the Information Commissioner's Office (ICO), which contractually oblige the recipient to protect your data to UK standards.

9. Your Rights Under GDPR

Under UK GDPR Articles 15 through 22, you have the following rights regarding your personal data:

• Right of access (Article 15): You have the right to request a copy of the personal data we hold about you, along with information about how we process it.
• Right to rectification (Article 16): You have the right to request that we correct any inaccurate personal data we hold about you, or complete any incomplete data.
• Right to erasure (Article 17): You have the right to request that we delete your personal data in certain circumstances, such as when the data is no longer necessary for the purpose it was collected, or when you withdraw your consent.
• Right to restriction of processing (Article 18): You have the right to request that we restrict the processing of your personal data in certain situations, such as when you contest the accuracy of the data.
• Right to data portability (Article 20): You have the right to receive the personal data you provided to us in a structured, commonly used, and machine-readable format, and to transmit that data to another controller.
• Right to object (Article 21): You have the right to object to our processing of your personal data when we rely on legitimate interests as our legal basis. We will stop processing unless we can demonstrate compelling legitimate grounds that override your interests.
• Right to withdraw consent: Where we rely on consent as our legal basis, you have the right to withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing carried out before the withdrawal.

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within 30 days. We may ask you to verify your identity before processing your request to ensure the security of your data.

If you believe that we have not handled your personal data properly, you have the right to lodge a complaint with the UK Information Commissioner's Office (ICO). You can contact the ICO through their website at ico.org.uk or by calling their helpline at 0303 123 1113.

10. Cookies

Our website uses cookies to enhance your browsing experience and to collect analytical data about website usage. Cookies are small text files stored on your device by your web browser.

Types of Cookies We Use

• Essential cookies: These are necessary for the website to function correctly. They enable core features such as remembering your cookie consent preference. These cookies are session-based and expire when you close your browser.
• Analytics cookies: These help us understand how visitors interact with our website by collecting information about pages visited, time spent on the site, and navigation patterns. Analytics cookies are retained for up to 13 months.

We do not use advertising or marketing cookies. We do not use cookies to track your activity across other websites.

Managing Your Cookie Preferences

When you first visit our website, a cookie consent banner appears allowing you to accept or reject non-essential cookies. You can change your preferences at any time by clearing your browser cookies and revisiting the site, or by adjusting cookie settings in your browser.

For more detailed information, please review our Cookies Policy.

11. Children's Privacy

Our website and webinar series are not directed at individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware that we have inadvertently collected personal data from a child under 16, we will take immediate steps to delete that data. If you are a parent or guardian and believe your child has provided personal data to us, please contact us at [email protected] so we can take appropriate action.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or operational needs. When we make material changes, we will update the "Last Updated" date at the top of this page.

If we make significant changes that affect how your personal data is processed, we will provide notice through a prominent announcement on our website at least 14 days before the changes take effect. For registered webinar participants, we may also send notification via email.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your data.

13. Contact Details

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal data, please contact us using the following details:

We aim to respond to all privacy-related enquiries within 30 calendar days. If your request is complex or involves a large volume of data, we may notify you that we need an additional 60 days to respond, in accordance with UK GDPR provisions.