Skin Essentials by HER

Privacy Policy

Your privacy is important to us. This policy explains how Skin Essentials by HER collects, uses, and protects your personal information.

Last updated: January 7, 2026
Table of Contents
Privacy Policy Overview

At Skin Essentials by HER, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our clinic, use our services, or interact with our website.

Important Notice

By using our services or providing us with your personal information, you consent to the collection and use of information in accordance with this policy.

Data Collection Practices

Information We Collect

Personal Information

  • • Full name and contact details
  • • Date of birth and age
  • • Email address and phone number
  • • Home address
  • • Emergency contact information

Medical Information

  • • Medical history and conditions
  • • Current medications and allergies
  • • Treatment records and progress
  • • Before and after photographs
  • • Consultation notes

Technical Information

  • • IP address and browser type
  • • Device information
  • • Website usage patterns
  • • Cookies and tracking data
  • • Social media interactions

Financial Information

  • • Payment method details
  • • Billing address
  • • Transaction history
  • • Insurance information
  • • Payment preferences
How We Use Your Information

Treatment & Care

Providing medical and aesthetic treatments, maintaining medical records, and ensuring continuity of care.

Communication

Sending appointment reminders, treatment updates, and important health information.

Service Improvement

Analyzing usage patterns to improve our services and website functionality.

Legal Compliance

Meeting regulatory requirements and maintaining proper medical documentation.

Marketing

Sending promotional materials and updates about new services (with your consent).

Security

Protecting against fraud, unauthorized access, and ensuring clinic security.

Cookie Usage

We use cookies and similar tracking technologies to enhance your browsing experience and analyze website traffic. Here’s how we use different types of cookies:

Essential Cookies

Required for basic website functionality, security, and user authentication.

Always Active

Analytics Cookies

Help us understand how visitors interact with our website to improve user experience.

Optional

Marketing Cookies

Used to deliver relevant advertisements and track campaign effectiveness.

Optional

Managing Cookie Preferences

You can control cookie settings through your browser preferences or our cookie consent banner. Note that disabling certain cookies may affect website functionality.

Third-Party Sharing Policies

Our Commitment

We do not sell, trade, or rent your personal information to third parties. Your medical information is strictly confidential and protected by law.

Limited Sharing Scenarios

Healthcare Providers

With your consent, we may share medical information with referring doctors or specialists involved in your care.

Legal Requirements

When required by law, court order, or regulatory authorities for legal compliance.

Service Providers

Trusted third-party services (payment processors, appointment systems) under strict confidentiality agreements.

Emergency Situations

In medical emergencies where disclosure is necessary to protect your health and safety.

Data Security Measures

We implement comprehensive security measures to protect your personal and medical information from unauthorized access, disclosure, alteration, or destruction.

Technical Safeguards

SSL/TLS encryption for data transmission
Encrypted database storage
Regular security updates and patches
Firewall and intrusion detection systems
Multi-factor authentication

Physical & Administrative

Secure facility access controls
Staff privacy training and agreements
Regular security audits and assessments
Secure document disposal procedures
Incident response and breach protocols

Data Breach Response

In the unlikely event of a data breach, we will notify affected individuals and relevant authorities within 72 hours as required by law, and take immediate steps to secure the data and prevent further unauthorized access.

Your Rights & Controls

You have several rights regarding your personal information. We are committed to helping you exercise these rights in accordance with applicable privacy laws.

Right to Access

Request a copy of the personal information we hold about you.

Right to Rectification

Request correction of inaccurate or incomplete information.

Right to Erasure

Request deletion of your personal data (subject to legal requirements).

Right to Portability

Receive your data in a structured, machine-readable format.

Right to Object

Object to processing of your data for marketing or other purposes.

Right to Restrict

Request limitation of processing under certain circumstances.

How to Exercise Your Rights

To exercise any of these rights, please contact us using the information provided in the Contact section. We will respond to your request within 30 days.

Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, and protect our legitimate interests.

Medical Records

Retained for 7-10 years as required by medical regulations and professional standards.

Legal Requirement

Marketing Data

Retained until you withdraw consent or for 3 years from last interaction.

Consent Based

Website Data

Analytics and cookies retained for 2 years or until you clear browser data.

Technical

Secure Disposal

When data is no longer needed, we securely delete or anonymize it using industry-standard methods to ensure it cannot be recovered or reconstructed.

International Data Transfers

Your personal information is primarily stored and processed in the Philippines. However, some of our service providers may be located in other countries.

Data Protection Standards

When we transfer data internationally, we ensure adequate protection through:

  • • Adequacy decisions by relevant authorities
  • • Standard contractual clauses
  • • Binding corporate rules
  • • Certification schemes and codes of conduct
Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

How We Notify You

  • • Email notification to registered users
  • • Prominent notice on our website
  • • In-clinic notifications for significant changes
  • • Updated "Last Modified" date on this page

Your Options

  • • Review changes before they take effect
  • • Contact us with questions or concerns
  • • Withdraw consent if you disagree
  • • Request data deletion if applicable
Contact Information

If you have any questions about this Privacy Policy or wish to exercise your privacy rights, please contact us using the information below:

Clinic Address

Skin Essentials by HER
Granda Building, Road 8 Project 6
Quezon City, Metro Manila
Philippines 1100

Phone

0995-260-3451
+63 2 8123 4567

Email

info@skinessentialsbyher.com

Privacy Officer

For specific privacy concerns or data protection inquiries, you can contact our designated Privacy Officer directly.

Email: dpo@skinessentialsbyher.com

Response Time: Within 30 days

Business Hours

Monday - Friday: 9:00 AM - 7:00 PM

Saturday: 9:00 AM - 5:00 PM

Sunday: 10:00 AM - 5:00 PM

Holidays: By appointment only