Who we are

ADAM Medical Aesthetics is operated by A&J Sphynx, registered on the UK Government’s Companies House. If you have any questions about how we handle your personal data, please contact our Data Protection Officer:

• Name: James Swinburne
• Email: info@GoToAdam.com
• Phone: 0161 920 6108

What data we collect and why

We collect contact and health information for the following purposes:

• To arrange, confirm, and remind you about appointments
• To discuss your treatment and provide follow-up care
• To safely administer treatments and follow UK nursing regulation
• To prescribe medications where required
• To send you offers, promotions, and updates about our treatments and services via text message and email — you may opt out at any time
• For anonymised statistical analysis to improve our services
• To provide a personalised service (for example, recording your profession or your relationship to another client)
• We do not use tracking or advertising cookies. Our contact page includes a Google Maps embed which may set cookies managed by Google — see Google’s privacy policy for details.

Lawful basis for processing

We process your personal data on the lawful bases of legitimate interest and contract, as defined under the UK General Data Protection Regulation (UK GDPR). Specifically:

• As a registered nurse independent prescriber, we are required by The Code (UK nursing regulator) to document medical procedures we perform
• The Human Medicines Act 2012 may require us to collect personal data for any prescription to be lawful
• We may record relevant health data (such as chronic conditions) to ensure safe treatment
• We use your contact details to manage appointments and respond to enquiries

Who we share your data with

We may share your data with the following third parties, all of whom are subject to written data processing agreements:

• alldayPA — our telephone answering service. If you call us on 0161 920 6108, alldayPA may collect your name and contact details to enable us to call you back. They do not share your data with anyone else.
• Pharmacies — to fulfil any prescriptions issued during your treatment.
• Cloud storage providers — we may store your data securely in the cloud to enable safe, reliable access. All third-party providers are bound by written contracts and regularly audited.

International data transfers

We may store backups of text message and email conversations on third-party servers located abroad. Text message backups are encrypted both in transit and in storage. Email backups are encrypted in transit, which is standard industry practice. All servers used maintain high levels of physical and digital security. Please contact us if you would like more information.

How long we keep your data

We retain your personal data for eight years after your last treatment or contact with us, in line with the Department of Health’s Records Management: Code of Practice guidance on health records.

Your rights

As a data subject under UK GDPR, you have the following rights:

• Right of access — request a copy of the data we hold about you
• Right of rectification — ask us to correct inaccurate or incomplete data
• Right to erasure — request that we delete your data in certain circumstances
• Right to restrict processing — limit how we use your data where conditions apply
• Right to portability — request your data be transferred to another organisation
• Right to object — object to certain types of processing, including direct marketing
• Rights related to automated processing — including profiling

To exercise any of these rights, please contact us at info@GoToAdam.com or call 0161 920 6108. If you are unsatisfied with our response, you may contact the Information Commissioner’s Office (ICO), the UK’s data protection regulator.