Privacy Policy


Zen Therapies/Bespoke Skin Clinic (“we”) (“us”), are committed to protecting and respecting your privacy. This Policy (together with any documents referred to in it) sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it. By visiting you are accepting and consenting to the practices described in this Policy.  This Privacy Policy should also be read in conjunction with our Cookie Policy and Terms & Conditions.

For the purpose of the General Data Protection Regulation (the “GDPR”), which applies in the UK on May 25, 2018, subsequent Data Protection Act of 2018 and other data protection laws applicable in the UK, the data controller is Zen Therapies / Bespoke Skin Clinic, 69 Screeby Road, Fivemiletown, Co.Tyrone, BT75 0LG.


We may collect personal data, that includes your name, date of birth, address, email address, contact information, emergency contact and doctor information, financial information (payment information such as credit or debit card or direct debit details), demographic information such as preferences and interests, as well as other information relevant to customer surveys and/or offers.


We may collect and process the following data about you:

  • Information you provide when you use our website, or any other processor service (for example, Sumup). This includes information you provide when you book a treatment, class, workshop or course, purchase any other product or service or enter a competition or promotion. We may also ask you for information if you report a problem with our website.

  • Information you provide when you contact us by email, through our contact forms on our website or social media platforms, by telephone, in writing or in person, including all studio registration and membership forms. We may keep a copy of that correspondence or communication.

  • Details of your visits to the website and the resources that you access as set out in IP Addresses & Cookies section below.

  • details of the choices you make on our website indicating whether you wish to receive information on other products and services. Some of this information is retained in “cookie” files on your computer. Cookies are small text files that are placed on your machine to help the site provide a better user experience. In general, cookies are used to retain user preferences, store information for things like shopping baskets, and provide anonymised tracking data to third party applications like Google Analytics. As a rule, cookies will make your browsing experience better. However, you may prefer to disable cookies on this site and on others. The most effective way to do this is to disable cookies in your browser. We suggest consulting the Help section of your browser or taking a look at links attached, which offers guidance for all modern browsers


  • We use information held about you in the following ways:

  • to provide customer support e.g. responding to your enquiries;

  • to carry out our obligations arising from any contracts entered into between you and us and to provide you with the information, goods and services that you request from us;

  • to send you a welcome email, to verify your account when you register with the site or sign-up at one of our events and other emails for the purposes of providing any services or products to you, including in relation to account management or system maintenance or setting consent preferences. Please note when you sign up via booking system you will always be sent certain emails e.g. purchase receipts, booking & cancellation confirmations etc. even if you have not opted in to receive emails;

  • for internal record keeping and to improve our goods and services;

  • to notify you about changes to our goods, services or class & workshop schedules;

  • to provide you with information of product and services we offer that are similar to those that you have already purchased or other goods or services we believe may be of interest to you. We will not share your data with third parties for marketing purposes unless we have procured your express consent to do so;

  • to ensure that content from our site is presented in the most effective manner for you and for your computer; to administer our site for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes.

  • We will only use financial or credit card information to discharge our legal / regulatory duties and to process payments made by you for our products and services or due to you by agreement (e.g. refunds); or to investigate financial transactions with our bank or payment processor.


We can process personal data on various legal bases:

  • For processing operations for which we obtain your consent for a specific processing purpose, Article 6(1)(a) of the GDPR is our legal basis. For example, purchase of a class pass or consent to marketing emails.

  • If the processing of personal data is necessary for the performance of a contract with yourself, for example, when processing operations are necessary to provide you with our products or services, the processing is based on Article 6(1)(b) of the GDPR. This includes processing required from your inquiries concerning our products or services.

  • As an entity established under the laws of Northern Ireland, we are obliged to comply with UK laws and guidance provided by UK regulatory bodies and where we are subject to a legal obligation by which processing of personal data is required, our processing is based on Article 6(1)(c) of the GDPR.

  • Finally, we can base our processing operations on Article 6(1)(f) of the GDPR: in specific situations, we require your data to pursue our legitimate interests in a way which might reasonably be expected as part of running our business and which does not materially impact your rights, freedom or interests.


We may use third party services to process your personal data, for example, our cloud-based booking software, payment gateway Sumup or processor service provider for email marketing Wix. The third-party providers used by us will collect, process and disclose your information to the extent necessary to allow them to perform the services they provide to us.  Each such third party will act as a data controller in relation to the data that we supply to it and will have their own privacy policy, which will govern that third party’s use of your personal data which we recommend you read.

Certain providers may be located in, or have facilities that are located in, a different jurisdiction than either you or us for example, Sumup and wix, which means your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.

We may also disclose your personal information to third parties: in the event that we consider selling, buying or similar with any business entity; in the event of an insolvency situation or to protect our rights, our property, our customers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection, credit risk reduction or bad debt collection.


Where you have chosen a password to access certain parts of our booking site, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.


You have a number of rights in relation to our use of your personal information and can request us to do various things with this information. For example, at any time you can ask us for a copy of your personal information, ask us to correct mistakes, change the way we use your information, or even delete it. You may also instruct us not to process your personal information for marketing purposes. In practice, you will usually either expressly agree in advance to our use of your personal information for marketing purposes, or we will provide you with an opportunity to opt out of the use of your personal information for marketing purposes. In response to these requests, we’ll either do what you’ve asked, or confirm why we cannot if due to a legal or regulatory issue. Please see your full rights here.


Our property has Closed Circuit Television (CCTV) and you may be recorded when you visit the studio. CCTV is used to provide security and protect both our visitors and our staff. CCTV will be only be viewed when necessary (e.g. to detect or prevent crime) and footage is stored for set period of time after which it is recorded over.  Zen Therapies/Bespoke Skin Clinic complies with the Information Commissioner’s Office CCTV Code of Practice and we put up notices so you know when CCTV is used.


We reserve the right to modify this privacy policy at any time, so please review it frequently. Changes and clarifications will take effect immediately upon their posting on the website. If we make material changes to this policy, we will notify you here that it has been updated, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we use and/or disclose it.
If our company is acquired or merged with another company, your information may be transferred to the new owners so that we may continue to sell services to you.

This Policy was last reviewed and updated on 8th February 2021.


In the event that there is a change to your personal information, for example your contact details, please let us know of this by contacting us so that we can keep your information up to date and accurate. If you have any concerns regarding our processing of your personal data, please contact us in the first instance. Our contact details are: Zen Therapies / Bespoke Skin Clinic email:, or by writing to 69 Screeby Road, Fivemiletown, Co.Tyrone, BT75 0LG.