Privacy Policy

Last updated: [DATE]

1. Who we are

HairBridge UK is a trading name of Web Retail Ventures Ltd, part of Ocean Group. We are the data controller for personal data collected through this website.

Company number: [XXXXXXXX]
Registered address: [Your Registered Address]
Email: info@hairbridgeuk.co.uk

2. What data we collect

When you submit our enquiry form, we collect:

  • Your name, email address, and phone number
  • Any message you choose to include
  • Your consent choice and the timestamp of that consent
  • Marketing attribution data (UTM parameters from the page URL — these do not contain personal data)

If you accept cookies, we also collect anonymised usage data via Google Analytics 4 (see our Cookie Policy).

3. Why we collect it (lawful basis)

We process your personal data based on consent (UK GDPR Article 6(1)(a)). You give this consent by ticking the checkbox on our form. You can withdraw consent at any time by emailing us.

4. Who we share it with

If you consent, we share your enquiry details with:

  • Hairmony Clinic (Istanbul, Turkey) — so they can provide your consultation and treatment plan.

Turkey is not covered by a UK adequacy decision, but we take steps to ensure your data is protected during transfer, including obtaining your explicit consent for the transfer and ensuring Hairmony handles your data appropriately.

We do not sell your data or share it with any other third parties for marketing purposes.

5. How long we keep it

We retain your enquiry data for up to 24 months from the date of your last interaction with us, unless you ask us to delete it sooner. After this period, your data is securely deleted.

6. Your rights

Under UK GDPR, you have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate data
  • Request deletion of your data
  • Withdraw consent at any time
  • Object to processing
  • Lodge a complaint with the ICO (ico.org.uk)

To exercise any of these rights, email us at info@hairbridgeuk.co.uk.

7. Security

We use industry-standard security measures to protect your data, including encrypted connections (HTTPS) and secure storage. Access to personal data is restricted to authorised team members only.

8. Changes to this policy

We may update this policy from time to time. The "Last updated" date at the top will always reflect the most recent version.