Brightstar Aesthetic Clinic we, respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, share, and safeguard your information when you visit our website, book our services, or interact with us in any way.

1. Information We Collect

We may collect the following categories of personal data:

  1. Personal Identification Information
    • Full Name
    • Date of Birth
    • Gender
    • Contact Number
    • Email Address
    • Mailing/Billing Address
  2. Medical Information (for patient care only)
    • Medical history relevant to treatments
    • Allergies or conditions disclosed by patients
    • Treatment records, photos, and progress notes
  3. Technical Information
    • IP address
    • Browser type and version
    • Device information
    • Cookies and tracking technologies
  4. Financial Information
    • Transaction history

2. How We Use Your Information

We use collected data for the following purposes:

  • To provide, personalize, and improve our aesthetic treatments and services
  • To communicate with you about appointments, follow-ups, and promotional offers
  • To process payments securely
  • To maintain accurate medical records for your safety and compliance with healthcare regulations
  • To improve our website and digital services through analytics
  • To comply with legal, regulatory, and professional obligations

3. Legal Basis for Processing (GDPR Compliance)

If you are located in the EU/UK, we process your personal data under the following legal grounds:

  • Consent – when you voluntarily provide data
  • Contractual necessity – to provide you with requested services
  • Legal obligation – to meet healthcare or tax regulations
  • Legitimate interests – to improve services and maintain clinic operations

4. Data Sharing & Disclosure

We do not sell or rent your personal data. However, we may share it in the following cases:

  • Healthcare professionals within our clinic (only on a need-to-know basis)
  • Third-party service providers (payment processors, IT providers, analytics tools) bound by confidentiality agreements
  • Legal authorities if required by law, court order, or regulatory obligation

5. Data Storage & Security

  • All records (digital and physical) are stored securely.
  • Digital records are encrypted, password-protected, and stored on secure servers.
  • Physical medical records are kept in locked, restricted-access areas.
  • We implement firewalls, SSL encryption, and regular audits to prevent unauthorized access.

6. Cookies & Tracking

We use cookies and similar technologies to:

  • Improve site performance
  • Remember your preferences
  • Analyze visitor behavior
  • Deliver relevant ads (if applicable)

You may disable cookies in your browser settings, but some site features may not function properly.

7. Data Retention

  • Medical records: Retained in accordance with healthcare regulations (usually 7–10 years).
  • Contact details: Retained until you request deletion or after a reasonable period of inactivity.
  • Financial data: Retained for tax and accounting compliance.

8. Your Rights

Depending on your location (e.g., GDPR, CCPA), you may have the following rights:

  • Right to access your personal data
  • Right to correct inaccurate data
  • Right to request deletion (“right to be forgotten”)
  • Right to restrict or object to processing
  • Right to data portability
  • Right to withdraw consent at any time
  • Right to lodge a complaint with a data protection authority

9. Children’s Privacy

Our services are not intended for individuals under 18. We do not knowingly collect data from minors without parental/guardian consent.

10. International Data Transfers

If your data is transferred outside your country (e.g., to cloud providers), we ensure compliance with international data protection laws (GDPR-approved safeguards, Standard Contractual Clauses, etc.).

11. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for their privacy practices.

12. Updates to this Policy

We may update this Privacy Policy from time to time. Any updates will be posted on our website with the “Last Updated” date.

13. Contact Us

If you have any questions, requests, or concerns about this Privacy Policy, please contact us at:

Brightstar Aesthetic Clinic
📍 Address: Plot no, 21-C 12th Commercial St, D.H.A. Phase 2 Phase 2 Commercial Area Ext, Karachi, Karachi, 05444
📧 Email: contact@brightstaraesthetics.com
📞 Phone: +92 304 346 9343