StarAesthetic: Crafting Confidence, Enhancing Beauty.

Get in Touch

Privacy Policy

Effective Date: 19/09/2025
Last Updated: 19/09/2025

The Star Aesthetic Medical Centre (“we”, “our”, or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website https://www.staraesthetic.site and use our services.

Please read this Privacy Policy carefully. By using our website or services, you consent to the collection and use of your information as described in this policy.

1. Information We Collect

Personal Information

We may collect the following personal information when you:

  • Book appointments or consultations
  • Create an account on our website
  • Purchase products or services
  • Subscribe to our newsletter
  • Contact us via phone, email, or forms

Information collected includes:

  • Full name
  • Contact details (phone number, email address, postal address)
  • Date of birth and age
  • Gender
  • Identity number (for medical records compliance)
  • Payment information (credit card details, billing address)
  • Emergency contact information

Medical Information

As a medical aesthetic practice, we collect health-related information including:

  • Medical history and current medications
  • Allergies and medical conditions
  • Previous cosmetic treatments
  • Treatment goals and preferences
  • Before/after photographs (with consent)
  • Treatment records and outcomes
  • Consultation notes

Automatically Collected Information

When you visit our website, we may automatically collect:

  • IP address and browser type
  • Device information and operating system
  • Pages visited and time spent on site
  • Referring website information
  • Cookies and similar tracking technologies

2. How We Use Your Information

Primary Uses

We use your personal information to:

  • Provide medical aesthetic services and treatments
  • Process appointments and manage scheduling
  • Process payments and maintain billing records
  • Communicate about treatments, appointments, and follow-ups
  • Maintain accurate medical records
  • Ensure continuity of care
  • Comply with legal and regulatory requirements

Secondary Uses

With your consent, we may use information to:

  • Send marketing communications and promotional offers
  • Provide information about new treatments and services
  • Send appointment reminders and follow-up care instructions
  • Improve our website and services
  • Conduct client satisfaction surveys
  • Share testimonials and before/after photos (with explicit consent)

Medical Record Keeping

Your medical information is maintained for:

  • Treatment planning and continuity of care
  • Legal and regulatory compliance
  • Quality assurance and improvement
  • Insurance and billing purposes
  • Emergency medical situations

3. Information Sharing and Disclosure

We DO NOT sell, trade, or rent your personal information to third parties.

Limited Sharing Scenarios

We may share your information only in the following circumstances:

Medical Professionals

  • Referring doctors or specialists (with your consent)
  • Medical laboratories for testing (when required)
  • Emergency medical personnel (in medical emergencies)

Service Providers

  • Payment processors for transaction processing
  • Appointment scheduling software providers
  • Email service providers for communications
  • Website hosting and maintenance providers
  • Accounting and legal services

Legal Requirements

  • When required by law or court order
  • To protect our rights and safety
  • To comply with medical reporting requirements
  • In response to lawful government requests

Medical Referrals

Before sharing medical information with other healthcare providers, we will:

  • Obtain your written consent
  • Share only relevant treatment information
  • Ensure recipient maintains confidentiality standards

4. Data Security and Protection

Security Measures

We implement appropriate technical and organizational measures to protect your information:

  • Encrypted data transmission (SSL certificates)
  • Secure servers and databases
  • Access controls and staff training
  • Regular security assessments
  • Secure disposal of confidential documents
  • Password-protected systems

Medical Record Security

Patient medical records are protected through:

  • Restricted access on need-to-know basis
  • Digital encryption and secure storage
  • Physical security for paper records
  • Regular backup and recovery procedures
  • Staff confidentiality agreements

Data Breach Response

In the event of a data breach, we will:

  • Immediately assess and contain the breach
  • Notify affected individuals within 72 hours
  • Report to relevant authorities as required
  • Take corrective action to prevent future breaches

5. Your Rights and Choices

Under South African data protection laws, you have the right to:

Access and Correction

  • Request copies of your personal information
  • Correct inaccurate or outdated information
  • Update your contact preferences
  • Access your medical records (subject to medical professional judgment)

Consent Management

  • Withdraw consent for marketing communications
  • Opt out of promotional emails and SMS
  • Refuse photography for marketing purposes
  • Limit information sharing (where legally permissible)

Data Portability

  • Request transfer of your medical records to another provider
  • Receive your information in a commonly used format
  • Direct transfer to specified healthcare providers

Deletion Requests

Please note: Medical records must be retained for legal compliance periods and cannot be deleted while you remain a patient or during statutory retention periods.

For non-medical information, you may request deletion of:

  • Marketing preferences and communications
  • Website account information
  • Non-essential personal data

6. Cookies and Website Technologies

Cookie Usage

Our website uses cookies to:

  • Remember your preferences and settings
  • Analyze website traffic and performance
  • Provide personalized content
  • Enable certain website functionality

Cookie Types

  • Essential Cookies: Required for website operation
  • Analytical Cookies: Help us understand website usage
  • Marketing Cookies: Used for promotional communications
  • Preference Cookies: Remember your choices and settings

Managing Cookies

You can control cookies through your browser settings:

  • Block all cookies (may affect website functionality)
  • Delete existing cookies
  • Receive notifications when cookies are set
  • Allow cookies from specific websites only

7. Third-Party Services

External Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to read their privacy policies before providing personal information.

Social Media

Our social media pages are governed by the respective platform’s privacy policies. Information shared on social media may be publicly visible.

8. International Transfers

Your personal information is primarily stored and processed in South Africa. If we transfer information internationally, we ensure:

  • Adequate protection measures are in place
  • Compliance with South African data protection laws
  • Appropriate safeguards for your privacy rights

9. Retention Periods

Medical Records

Medical records are retained for:

  • Minimum 6 years after last treatment (as per HPCSA guidelines)
  • Longer periods if required by law
  • Indefinitely for ongoing patient relationships

Other Information

  • Financial records: 5 years
  • Marketing communications: Until you unsubscribe
  • Website analytics: 26 months
  • Security logs: 12 months

10. Children’s Privacy

Our services are intended for adults (18+ years). We do not knowingly collect personal information from children under 18 without parental consent. If treating minors:

  • Parental/guardian consent is required
  • Additional privacy protections apply
  • Special handling of sensitive information

11. Updates to This Policy

We may update this Privacy Policy periodically to reflect:

  • Changes in our practices
  • New legal requirements
  • Technology updates
  • Service improvements

Notification of Changes

Material changes will be communicated through:

  • Website notification banner
  • Email to registered clients
  • Posted notice in our clinic
  • Updated “Last Modified” date

12. Contact Information

Privacy Questions or Concerns

For questions about this Privacy Policy or to exercise your privacy rights, contact us:

The Star Aesthetic Medical Centre
Privacy Officer
22 Ennisdale Dr.
Durban North, 4051
Phone: 031 573 1325
Email: [insert privacy email]

Data Protection Authority

If you believe we have not addressed your privacy concerns adequately, you may contact: Information Regulator South Africa
Website: www.justice.gov.za/inforeg
Email: inforeg@justice.gov.za

13. Consent

By using our website and services, you consent to:

  • Collection and use of your information as described
  • Processing of your medical information for treatment purposes
  • Communication via your provided contact methods
  • Use of cookies and similar technologies on our website

You may withdraw your consent at any time by contacting us, though this may affect our ability to provide certain services.

This Privacy Policy is governed by the laws of South Africa, including the Protection of Personal Information Act (POPIA) and healthcare regulations.

For the most current version of this Privacy Policy, please visit our website or contact our clinic directly.