Welcome to the K1 Derma Lab, a business name for the company - K1 Beauty Aesthetics Ltd. For purposes of this information, “Site” refers to the Company’s website, which can be accessed at https://www.k1dermalab.site. “Service” refers to the Company’s services accessed via the Site, in which users can book for consultations and aesthetics treatment. The terms “we,” “us,” and “our” refer to the Company. “You” refers to you, as a user of our Site or our Service.
K1 Derma Lab values your privacy and is committed to protecting your personal data. This Privacy Policy outlines how K1 Derma Lab collects, uses, stores, and protects the information you provide when using our website (www.k1dermalab.site) or engaging with our services.
We are committed to protecting your privacy. We handle your personal information with transparency and care. This Privacy Notice explains how we collect, use and protect personal data when you use our website inquiry form and when we provide services. It also outlines how we safeguard your data. Our practices follow the UK General Data Protection Regulation (UK GDPR) and other applicable laws.
Privacy Notice
Last Updated: 22 June 2026Who we are
K1 Derma Lab, a business name for the company - K1 Beauty Aesthetics Ltd with company registration number 14812611 and head office at 368 Green Street (rear unit), London. We are the data controller for personal data collected through the website enquiry form and for clients we serve.
What data we collect
Depending on how you interact with our website and services, we may collect:
Name
Email address
Phone number
Subject of your inquiry and your message
Your interests (e.g., microneedling / mesotherapy / IV NT)
Consent information provided in the form
Booking information submitted via our booking system (e.g., appointment details)
For clients, we may also collect additional information you provide during consultations and administration of your treatment, including information needed for record-keeping and insurance purposes.
Why we use your data (Purposes)
We process personal data for the following purposes:
Responding to enquiries and contacting you about your request. Legal basis: processing is necessary to take steps at your request prior to entering into a contract, and/or our legitimate interests in responding to enquiries.
Booking and appointment administration (including managing service delivery) Legal basis: necessary to provide services you request and/or to take steps at your request.
Client administration and record-keeping. Legal basis: legitimate interests and/or legal obligations relating to business administration and accounting/record-keeping.
Insurance and record retention. Legal basis: legal obligations and/or legitimate interests in maintaining records relevant to insurance claims and risk management.
Legal basis
- Steps taken at your request prior to entering a contract (where applicable)
- Necessary to provide services you request
- Legitimate interests for business administration/communications
- Legal obligations for record-keeping and insurance
Who we share your data with (processors)
- Google Workspace (Gmail) and Google Drive for managing enquiries/communications
- SumUp booking system for appointment booking administration
- WhatsApp Business for appointment queries and reminders (only where you engage with us via that channel)
- Proton Drive for client administration and storage of records for insurance record retention
- (Other providers only if you use them—update this list if anything changes)
International transfers
Some of our service providers may process personal data outside the UK. Where this occurs, we put in place appropriate safeguards to protect your personal data, which may include UK-approved transfer mechanisms (such as UK International Data Transfer Agreements) or other appropriate contractual measures.
Security
We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, or disclosure. No method of transmission over the internet is completely secure; however, we use safeguards such as encryption and access controls where appropriate.
Retention
Lead/inquiry data (no client relationship): We keep this data for up to 2 years to manage and respond to enquiries and, where appropriate, follow up. If a business relationship is formed, the retention period for client records applies.
Client records (including insurance/record-keeping): We retain relevant client records for 7+ years where required for insurance, legal, and/or accounting purposes.
We may retain data longer if required by law, for dispute resolution, if you request that we keep it, or if necessary for legitimate business interests.
Your rights
Under UK GDPR and the Data Protection Act 2018, you have the right to:
access your personal data
correct inaccurate data
request erasure in certain circumstances
restrict or object to processing in certain circumstances
data portability where applicable
withdraw consent where processing is based on consent (without affecting lawfulness before withdrawal)
Complaints
If you have concerns about how we process your personal data, you can lodge a complaint with the Information Commissioner’s Office (ICO).
Contact
privacy-k1dermalab@pm.me
—
Cookie Policy
Last Updated: 22 June 2026
This website is hosted on Google Blogger. This Cookie Policy explains how cookies are used on this site and how you can manage them.
1. What Are Cookies?
Cookies are small text files placed on your device (computer, smartphone, or tablet) when you visit a website. They are widely used to make websites work efficiently and provide information to the site owners.
2. How This Website Uses Cookies
Because this site runs on the Google Blogger platform, certain essential cookies are used automatically to keep the site functional and secure.
Essential & Functional Cookies: Google uses these cookies to operate the blogging platform, ensure system security, and remember system-level preferences.
Analytics (If applicable): Google may collect anonymous, aggregated traffic data (such as page views) to help us understand how visitors interact with the site. This does not identify you personally.
The Blogger Banner: Google automatically displays a cookie consent banner to visitors in the UK and EU. Your preference (accept/decline) is remembered via a cookie so you aren't asked on every visit.
3. Third-Party Cookies
We use a standard HTML inquiry form to collect service inquiries which processes data into a secure Google Cloud environment as detailed in the Privacy Notice. The form itself does not track your browsing habits across the web.
4. How to Control and Delete Cookies
You have the right to decide whether to accept or reject cookies.
The Default Banner: You can customize your choices using the default Google banner that appears when you first visit the site.
Your Browser Settings: You can set or amend your web browser controls to accept or refuse cookies. If you choose to reject cookies, you may still use our website, though some functionality might be limited.
For more details on how Google manages data on its platform, you can review the Google Privacy & Terms.
Contact
privacy-k1dermalab@pm.me
---