Privacy Policy

Last updated: November 7, 2025

Introduction

Bloom Aesthetics ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our website or use our services.

Information We Collect

Personal Information

We may collect the following types of personal information:

  • Contact Information: Name, email address, phone number, and mailing address
  • Health Information: Medical history, current medications, allergies, and treatment preferences
  • Appointment Information: Booking details, treatment history, and preferences
  • Payment Information: Billing address and payment card details (processed securely through our payment processor)
  • Communication Records: Records of your communications with us, including emails and phone calls

Automatically Collected Information

When you visit our website, we automatically collect certain information:

  • IP address and device information
  • Browser type and version
  • Pages visited and time spent on our website
  • Referring website addresses
  • Cookies and similar tracking technologies (see our Cookie Policy)

How We Use Your Information

We use your personal information for the following purposes:

  • Providing Services: To deliver cosmetic and aesthetic treatments, schedule appointments, and manage your care
  • Communication: To respond to inquiries, send appointment reminders, and provide treatment information
  • Improvement: To improve our services, website functionality, and patient experience
  • Marketing: To send promotional materials and updates (with your consent)
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes
  • Safety: To protect the safety and security of our patients, staff, and premises

Legal Basis for Processing (Australian Privacy Law)

Under the Australian Privacy Act 1988, we process your personal information based on:

  • Consent: You have given explicit consent for specific purposes
  • Contract: Processing is necessary to fulfill our service contract with you
  • Legal Obligation: We must process your information to comply with Australian law
  • Legitimate Interests: Processing is in our legitimate business interests, provided it doesn't override your rights

Information Sharing and Disclosure

We do not sell your personal information. We may share your information with:

  • Healthcare Providers: Other medical professionals involved in your care (with your consent)
  • Service Providers: Third-party vendors who assist with our operations (e.g., payment processors, appointment scheduling software)
  • Legal Authorities: When required by law or to protect our legal rights
  • Business Transfers: In the event of a merger, sale, or transfer of our business assets

Data Security

We implement appropriate technical and organizational measures to protect your personal information, including:

  • Secure server infrastructure with encryption
  • Access controls and authentication procedures
  • Regular security assessments and updates
  • Staff training on data protection and confidentiality
  • Secure disposal of physical and electronic records

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

Data Retention

We retain your personal information for as long as necessary to:

  • Provide you with our services
  • Comply with legal obligations (including medical record retention requirements)
  • Resolve disputes and enforce our agreements

Medical records are retained in accordance with Australian healthcare regulations, typically for a minimum of 7 years.

Your Privacy Rights

Under Australian privacy law, you have the right to:

  • Access: Request access to the personal information we hold about you
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your personal information (subject to legal retention requirements)
  • Restriction: Request restriction of processing in certain circumstances
  • Objection: Object to processing of your personal information
  • Data Portability: Request a copy of your data in a portable format
  • Withdraw Consent: Withdraw consent for marketing communications at any time

To exercise these rights, please contact us using the details below.

Marketing Communications

With your consent, we may send you marketing communications about our services, promotions, and updates. You can opt out at any time by:

  • Clicking the "unsubscribe" link in our emails
  • Contacting us directly
  • Updating your communication preferences

Children's Privacy

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

Third-Party Websites

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on our website with an updated "Last updated" date. Your continued use of our services after changes constitutes acceptance of the updated policy.

Complaints

If you have concerns about how we handle your personal information, please contact us first. If you are not satisfied with our response, you may lodge a complaint with:

Office of the Australian Information Commissioner (OAIC)
Website: www.oaic.gov.au
Phone: 1300 363 992
Email: enquiries@oaic.gov.au

Contact Us

If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us:

Bloom Aesthetics
45 Murray St, Perth WA 6000
Australia
Phone: +61 8 6188 2347
Email: contact@bloomaesthetics.com.au