Privacy Policy

Last updated: April 2026

This privacy policy explains how The Novo Clinic collects, uses and protects your personal information when you enquire about our treatments through our Instagram or Facebook advertising. We are committed to protecting your privacy and handling your data in line with UK GDPR and the Data Protection Act 2018.

Who we are

The Novo Clinic is a medical aesthetics clinic based in Chelmsford, Essex, owned and operated by Dr Lamy Sheikh. For the purposes of UK GDPR, The Novo Clinic is the data controller for the information you provide.

Contact: the.novo.clinic@outlook.com

Clinic address: Chelmsford, Essex, United Kingdom

What information we collect

When you submit an enquiry through one of our Instagram or Facebook lead forms, we collect:

  • Your full name

  • Your email address

  • Your phone number

  • The treatment you are interested in

  • Any additional information you choose to share with us (for example, your goals or concerns)

How we use your information

We use the information you provide to:

  • Respond to your enquiry by phone, email or SMS

  • Arrange and confirm a consultation with Dr Lamy Sheikh

  • Provide information about the treatment you asked about

  • Keep records of our communication with you

  • Send you relevant follow-up information about The Novo Clinic, where you have agreed to receive it

We will not use your information for any other purpose without telling you first.

Our legal basis for processing your data

Under UK GDPR we rely on the following legal bases:

  • Consent: you have submitted your details through the lead form asking us to contact you about our treatments.

  • Legitimate interests: to follow up on your enquiry and provide the service you have asked about.

  • Legal obligation: where we are required to keep records for regulatory, medical or tax reasons if you go on to become a patient.

Who we share your information with

We do not sell your personal information. We share it only with:

  • Pabau: our clinic management and booking system, which stores patient enquiries and appointments securely.

  • Meta Platforms Ireland Ltd (Facebook and Instagram): the platform through which you submitted your enquiry. Meta acts as an independent controller for the data it collects about you on its platform.

  • Vitara Digital: our digital marketing agency, which supports the clinic with advertising and lead management under a data processing agreement.

  • Email, SMS and telephone providers used by the clinic to contact you.

Any third parties we share your data with are bound by contract to protect your information and to use it only for the purposes we have agreed.

How long we keep your information

If you enquire but do not become a patient, we will keep your details for up to 24 months so we can respond to any follow-up contact from you, after which we will delete them.

If you become a patient of the clinic, your information becomes part of your medical record. We keep medical records in line with NHS and professional body guidance, which is typically a minimum of eight years from the date of your last treatment.

How we protect your information

We use appropriate technical and organisational measures to keep your information safe. This includes secure, password-protected systems, encrypted communications where available, and restricted access so that only people who need to see your information can do so.

Your rights

Under UK GDPR you have the right to:

  • Access the personal data we hold about you

  • Ask us to correct information that is inaccurate or incomplete

  • Ask us to delete your information, where there is no good reason for us to keep it

  • Ask us to restrict or stop processing your information

  • Object to us using your information for direct marketing

  • Withdraw your consent at any time, where consent is our legal basis

To exercise any of these rights, email us at the.novo.clinic@outlook.com. We will respond within one month.

Marketing communications

If you agree, we may send you occasional updates about treatments, offers and events at The Novo Clinic. You can unsubscribe at any time by clicking the link in any email, replying STOP to any SMS, or emailing us directly.

Meta Pixel and advertising

When you interact with our ads or website, Meta may collect information about your activity using tools such as the Meta Pixel. This helps us measure the performance of our advertising and reach people likely to be interested in our services. You can manage how Meta uses your data in your Facebook or Instagram account settings.

Complaints

If you are unhappy with how we have handled your information, please contact us first so we can try to resolve the issue. You also have the right to complain to the Information Commissioner's Office (ICO) at ico.org.uk or on 0303 123 1113.

Changes to this policy

We may update this privacy policy from time to time. The latest version will always be available on our website, with the date at the top of this page showing when it was last changed.