pRIVACY POLICY

Privacy Notice

Last Updated: 23 April 2026

BACKGROUND

We respect the privacy of our clients and all visitors to our website:
www.pinstateacupuncture.co.uk (“Our Site”).

Pin-State Acupuncture (“we”, “us”, “our”), operated by Kelly Mason, Clinical Acupuncturist, will only collect and use personal data in ways that are described in this Privacy Notice, and in accordance with our obligations under UK Data Protection Legislation.

1. Definitions and Interpretation

In this Privacy Notice:

“Client”
Means any individual who engages our services, attends treatments, workshops, or purchases products from us.

“Data Protection Legislation”
Means all applicable UK data protection and privacy laws, including:

UK GDPR
Data Protection Act 2018
Privacy and Electronic Communications Regulations 2003 (as amended)
Any other applicable laws relating to personal data

2. Information About Us

Pin-State Acupuncture is operated by:
Kelly Mason, Clinical Acupuncturist

We act as the data controller responsible for your personal data.

📧 Email: pinstateacupuncture@gmail.com

3. Third-Party Links

Our Site may include links to third-party websites.

We do not control these websites and are not responsible for how they handle your personal data. You should review their privacy policies before using them.

4. Your Personal Data

Personal data is any information that can identify you directly or indirectly, including:

Name and contact details
Online identifiers (such as IP address)

It does not include anonymised data.

It is important that the personal data we hold about you is accurate and up to date. Please inform us if your details change.

If you do not provide certain information when requested, we may not be able to provide our services to you.

5. Your Rights

Under Data Protection Legislation, you have the right to:

Be informed about how your data is used
Access your personal data
Correct inaccurate or incomplete data
Request deletion of your data (where legally permitted)
Restrict or object to processing
Request transfer of your data (data portability)
Withdraw consent at any time
Lodge a complaint with the Information Commissioner’s Office (ICO)

We do not use your data for automated decision-making or profiling.

📍 ICO Website: www.ico.org.uk

6. What Data We Collect

Depending on how you interact with us, we may collect:

6.1 Contact Information

Name
Address
Email
Phone number
Emergency contact (for treatments)

6.2 Health Information (Special Category Data)

Where relevant to treatment, we may collect:

Medical history
Current health conditions
Medications
Lifestyle factors

This is only collected with your explicit consent and for safe, appropriate treatment.

6.3 Communication Data

Emails, messages, and correspondence with us

6.4 Website Usage Data

Pages visited
Time spent on site
Navigation behaviour

6.5 Technical Data

IP address
Browser type
Device information

6.6 Cookies & Tracking

Please see our Cookie Policy for full details.

7. How We Use Your Personal Data

We use your data under lawful bases including:

Contractual Necessity

To provide treatments and services
To manage bookings and appointments

Legitimate Interests

To run and improve our business
To maintain records
To ensure IT security

Legal Obligations

For tax, regulatory, and compliance purposes

Consent

For health data collection
For marketing communications (where opted in)

You can withdraw consent at any time.

8. Marketing

We may contact you about services, offers, or updates only if you have opted in.

You can unsubscribe at any time using the link in emails or by contacting us.

We do not send spam or unsolicited marketing.

9. Data Retention

We only keep your data for as long as necessary.

Client records may be retained for up to 7 years for legal and insurance purposes
Data may be kept longer in case of legal claims
Anonymous data may be retained for research or analysis

10. Data Security

We take appropriate steps to protect your data, including:

Secure digital systems
Password-protected and restricted access
Encrypted storage where applicable
Secure record-keeping for treatment notes

We only collect the data necessary for our services.

11. Sharing Your Data

We may share your data with trusted third parties where necessary, such as:

Booking or clinic management systems
Payment processors
Website and analytics providers
Professional advisers (e.g. accountants, insurers)

We may also share data:

If required by law
In safeguarding situations
In the event of legal claims

All third parties are required to handle your data securely and lawfully.

12. International Transfers

Some service providers may store data outside the UK.

Where this happens, we ensure appropriate safeguards are in place to protect your data in line with UK law.

13. Controlling Your Data

You can:

Opt out of marketing at any time
Request access to your data
Ask us to update or delete your data

You may still browse parts of our Website without providing personal data.

14. Accessing Your Data (Subject Access Requests)

You have the right to request a copy of your personal data.

📧 Email: pinstateacupuncture@gmail.com
Subject line: “Subject Access Request”

No fee is usually charged
We aim to respond within 1 month

pRIVACY POLICY

Privacy Notice

Last Updated: 23 April 2026

BACKGROUND

We respect the privacy of our clients and all visitors to our website:www.pinstateacupuncture.co.uk (“Our Site”).

Pin-State Acupuncture (“we”, “us”, “our”), operated by Kelly Mason, Clinical Acupuncturist, will only collect and use personal data in ways that are described in this Privacy Notice, and in accordance with our obligations under UK Data Protection Legislation.

1. Definitions and Interpretation

In this Privacy Notice:

“Client”Means any individual who engages our services, attends treatments, workshops, or purchases products from us.

“Data Protection Legislation”Means all applicable UK data protection and privacy laws, including:

UK GDPR

Data Protection Act 2018

Privacy and Electronic Communications Regulations 2003 (as amended)

Any other applicable laws relating to personal data

2. Information About Us

Pin-State Acupuncture is operated by:Kelly Mason, Clinical Acupuncturist

We act as the data controller responsible for your personal data.

📧 Email: pinstateacupuncture@gmail.com

3. Third-Party Links

Our Site may include links to third-party websites.

We do not control these websites and are not responsible for how they handle your personal data. You should review their privacy policies before using them.

4. Your Personal Data

Personal data is any information that can identify you directly or indirectly, including:

Name and contact details

Online identifiers (such as IP address)

It does not include anonymised data.

It is important that the personal data we hold about you is accurate and up to date. Please inform us if your details change.

If you do not provide certain information when requested, we may not be able to provide our services to you.

5. Your Rights

Under Data Protection Legislation, you have the right to:

Be informed about how your data is used

Access your personal data

Correct inaccurate or incomplete data

Request deletion of your data (where legally permitted)

Restrict or object to processing

Request transfer of your data (data portability)

Withdraw consent at any time

Lodge a complaint with the Information Commissioner’s Office (ICO)

We do not use your data for automated decision-making or profiling.

📍 ICO Website: www.ico.org.uk

6. What Data We Collect

Depending on how you interact with us, we may collect:

6.1 Contact Information

Name

Address

Email

Phone number

Emergency contact (for treatments)

6.2 Health Information (Special Category Data)

Where relevant to treatment, we may collect:

Medical history

Current health conditions

Medications

Lifestyle factors

This is only collected with your explicit consent and for safe, appropriate treatment.

6.3 Communication Data

Emails, messages, and correspondence with us

6.4 Website Usage Data

Pages visited

Time spent on site

Navigation behaviour

6.5 Technical Data

IP address

Browser type

Device information

6.6 Cookies & Tracking

Please see our Cookie Policy for full details.

7. How We Use Your Personal Data

We use your data under lawful bases including:

Contractual Necessity

To provide treatments and services

To manage bookings and appointments

Legitimate Interests

To run and improve our business

To maintain records

To ensure IT security

Legal Obligations

For tax, regulatory, and compliance purposes

Consent

For health data collection

We respect the privacy of our clients and all visitors to our website:
www.pinstateacupuncture.co.uk (“Our Site”).

“Client”
Means any individual who engages our services, attends treatments, workshops, or purchases products from us.

“Data Protection Legislation”
Means all applicable UK data protection and privacy laws, including:

Pin-State Acupuncture is operated by:
Kelly Mason, Clinical Acupuncturist

📧 Email: pinstateacupuncture@gmail.com
Subject line: “Subject Access Request”