PRIVACY POLICY
Skin Room Perth
Effective Date: 04/06/2026
Your Privacy and Skin Room Perth (ABN 91 641 673 270) (collectively and individually referred to as "Skin Room Perth", "we", "us" or "our").
WHO WE ARE AND HOW YOU CAN CONTACT US
We are Skin Room Perth and we are based in WA, Australia. We are committed to protecting your privacy and respecting and upholding your rights when you use this Site. This Privacy Policy applies to the products and/or services we provide on our Site www.skinroomperth.com ("Site") and our social media channels, and explains how we collect, hold, use and disclose data and comply with the requirements of the Privacy Act 1988 (Cth). This Privacy Policy constitutes part of our Website Terms and Conditions. This Privacy Policy does not cover information that you submit on other websites, even if we communicate with you on those sites. For example, if you post something on Instagram, Facebook, Pinterest, X, or YouTube, that information is governed by the privacy policies on those websites, and is not governed by this Privacy Policy.
You can contact us for privacy related questions by emailing us at hello@skinroomperth.com or by using the contact form at www.skinroomperth.com/contact.
We will only use your personal information (including, if applicable, sensitive information) in compliance with Australian Privacy Laws (Privacy Act 1988 (Cth)), Australian Privacy Principles and, to the extent applicable, with the EU General Data Protection Regulation (GDPR) and any replacement legislation, regulation, or guidelines governing the use, storage or transmission of data.
OUR ROLE IN YOUR PRIVACY
If you are a customer, subscriber or visitor on our Site, this Privacy Policy will apply to you.
OUR RESPONSIBILITIES
As we are the providers of the products and services on this Site, we determine how and why your data is processed. We do not sell or rent your details to any third parties. We are committed to protecting your privacy and we want you to know exactly what information is collected and how we use it.
YOUR RESPONSIBILITIES
Please read this Privacy Policy and our Website Terms and Conditions at www.skinroomperth.com/terms. If you provide us with any data relating to a third party, you confirm that you have the right to authorise us to process that data on your behalf in accordance with this Privacy Policy.
WHEN AND HOW WE COLLECT DATA
From the moment you visit our Site, we are collecting data. Sometimes you might provide this data by completing a form or setting up an account; otherwise we might collect it automatically. We may also collect data when you:
- Register as a client with our clinic
- Provide us with your medical history, current health issues and concerns
- Provide information about your medical history, medications, allergies, or other relevant clinical details during intake or consultation, including via secure online forms
- Purchase a gift card for redemption on our Site
- Interact with us on social media
- Complete any sign-up forms or send us a direct message via social media or email
- Participate in events, promotions, giveaways or surveys
- Voluntarily submit your data to us for any reason
- Accept our cookies and tracking technologies
TYPES OF DATA WE MAY COLLECT
To provide our services, operate our website, and meet our legal obligations, we may collect the following types of personal information:
- Contact details (name, address, email)
- Financial information (bank details when making a purchase)
- Medical information from your third-party medical providers, with your consent
- Data about the products or services you purchase
- Data about your experience with our Site
- Photos of treatment areas, taken before and after your procedure, for treatment planning or clinical documentation (with your express consent)
- Data that identifies you (IP address, browser type, time zone, geolocation, operating system) - we do not link this with personal data
- Data on how you use our Site (URL clicks, page views, time on pages)
USE AND DISCLOSURE OF YOUR DATA
We will use your data for the purposes it was collected, including:
- Operating our Site
- Providing you with skin and aesthetic services
- Providing you with products, information and services
- Customer support
- Detecting and preventing fraud
- Improving our Site
- Market research and customer feedback
- Providing information about events, products or services that may be of interest
- Marketing (with your consent)
We may also use and disclose your personal data for secondary purposes such as quality assurance, research and education, administrative and billing purposes, and as required by law.
SENSITIVE INFORMATION
We may collect sensitive information about our clients with their consent and only for the purposes directly related to treatment. This includes personal details, medical history, current health conditions, test results, and other information required for the provision of care.
We use sensitive information solely for the purpose of providing aesthetic treatments, including treatment planning, documentation, and ensuring continuity of care. We may also use it for administrative purposes such as appointment scheduling and billing.
We only disclose sensitive information to other healthcare professionals and organisations involved in your care, on a need-to-know basis and with your consent, except where the law requires otherwise. We do not disclose sensitive information to third parties for marketing or commercial purposes.
META INSIGHTS
We use Meta Insights and Meta Analytics to understand how you interact with our content on our Facebook page. This helps us measure user engagement and improve our services. For details on how Meta collects and uses your data, please review Meta's Privacy Policy. You have the right to modify your ad preferences within your Facebook settings under "Ad Preferences".
CHOOSING NOT TO PROVIDE PERSONAL DATA
You can choose not to provide us with personal data. However, if you do this, we will not be able to provide you with our products or services. You can still visit and browse our Site.
MARKETING
We will always let you know before we collect any data what the intended use is, and will obtain your consent if we intend to use it for marketing. You can opt out at any time by:
- Completing the contact form at www.skinroomperth.com/contact
- Unsubscribing via the link in any email we send you
SMS MARKETING AND NOTIFICATIONS
By providing your phone number and opting in to SMS marketing, you agree to receive text messages from us regarding purchases, promotions, and updates. Message and data rates may apply. You can opt out at any time by replying STOP to any of our messages. Once opted out, you will no longer receive SMS marketing, but may still receive essential transactional messages regarding your bookings.
YOUR RIGHTS
You can exercise your rights at any time by contacting us at www.skinroomperth.com/contact.
Accessing information we hold about you: We will provide the information within 30 days of your request, unless doing so would adversely affect the rights and freedoms of others. We will tell you if we cannot comply and why.
Inaccurate information: You can contact us to correct any information we hold about you that you believe is inaccurate.
The right to be forgotten: You have the right to request your data be erased. We will delete all information we hold about you, except where we are required to retain it due to legal obligations.
Making a complaint: If you have any complaints regarding how your data is handled, please contact us via www.skinroomperth.com/contact. If you are not satisfied with our response, you may seek a review by contacting the Office of the Australian Information Commissioner (OAIC) at https://www.oaic.gov.au.
If you are located in the European Union and feel your data has been mishandled, you may lodge a complaint with your local data protection authority via the European Data Protection Board at https://edpb.europa.eu/about-edpb/board/members_en.
SECURITY OF THE DATA WE COLLECT
We maintain reasonable and appropriate physical, electronic and procedural safeguards to help protect your data. This includes firewalls, password-protected accounts, storage with reputable third-party providers, restricting access to those who need it, and using PCI DSS compliant payment providers. We do not store your payment details.
DATA BREACH RESPONSE AND NOTIFICATION
In the event of a data breach likely to result in serious harm, we will comply with our obligations under the Notifiable Data Breaches scheme under the Privacy Act 1988 (Cth). This includes promptly assessing the breach, taking reasonable steps to contain and remediate it, and notifying affected individuals and the OAIC where required by law.
WHERE WE STORE DATA
We use service providers based in Australia. Where applicable, data shared with overseas organisations is shared only with countries or under privacy frameworks approved by the Australian Government, and we take steps to ensure it remains protected in line with Australian privacy laws.
HOW LONG WE STORE DATA
We will retain your data for as long as reasonably necessary for the purposes for which it was collected, and as required by Australian law. Once we no longer require your information for those purposes, we will securely delete or anonymise it.
THIRD PARTIES WHO ACCESS YOUR DATA
We share data with third parties in the following circumstances:
- Other companies in our group, as necessary to operate our Site
- Suppliers and service providers working for us, including payment processors
- Our professional and legal advisors
- Third parties engaged in fraud prevention and detection
- Law enforcement or government authorities
- Payment processors such as Stripe or PayPal
- Social media and analytics platforms such as Facebook, Instagram and Google
- Email and marketing platforms for keeping you informed of promotions, newsletters and updates
- Third-party booking and clinical documentation platforms to manage appointment history and clinical records
USE OF ARTIFICIAL INTELLIGENCE (AI)
We may use secure, third-party AI-powered software to assist with non-clinical tasks such as consultation transcription, administrative record-keeping, and clinical note drafting. All data processed through AI systems is handled in accordance with this Privacy Policy and applicable privacy laws. No AI tools are used to provide medical diagnoses or make treatment decisions.
PAYMENT SECURITY
All credit card authorisations are handled by secure third-party gateway providers. Your complete credit card number cannot be viewed by us or any outside party. All transaction data is encrypted for storage within our third-party gateway suppliers' bank-grade data centres. Our third-party gateway provider is authorised to process payments on behalf of all major Australian banks.
AGE OF CONSENT
By using this site, you warrant that you are at least the age of majority in your State or Territory of residence. Our Site should not be used by anyone under the age of majority, and we do not knowingly collect data from minors.
COOKIES AND HOW TO BLOCK THEM
Our Site uses cookies and similar technologies to provide certain functionality. Cookies are data files placed on your device and may include an anonymous unique identifier. You can turn off cookies by activating the relevant setting in your browser. For more information about cookies, visit http://www.allaboutcookies.org. Note that blocking all cookies may prevent you from accessing all parts of our Site.
WEB BEACONS
We may use web beacons in our emails to track behaviour such as who opened the emails and who clicked links. We use this information to improve the performance of our email campaigns. You can opt out of any emails by clicking the unsubscribe link.
GOVERNING LAW
This Privacy Policy and your use of this Site is governed in all respects by the laws of Australia.
UPDATES TO OUR PRIVACY POLICY
We may update this Privacy Policy from time to time. The Effective Date at the top of this page will always reflect the current version. Please check back periodically to ensure you have the latest version.