Privacy Policy, Peter Joannou Male Grooming
Last updated: 12 January 2026
This Privacy Policy explains how Peter Joannou Male Grooming collects, uses, stores, and shares personal data when you visit our website, contact us, book an appointment, or attend a consultation.
1. Who we are, and how to contact us
Peter Joannou Male Grooming and Barber Shop is the data controller for the personal data described in this policy.
Contact details:
Peter Joannou Male Grooming and Barber Shop
40 Middle St, Brighton, East Sussex BN1 1AL
Telephone: 01273 328799
Website: https://www.peterjoannou.co.uk/
If you want to exercise your data protection rights, or you have a privacy question, please contact us using the details above.
2. The personal data we collect
Depending on how you interact with us, we may collect the following categories of personal data:
Identity and contact data, such as your name, email address, telephone number, and preferred contact method.
Booking and service data, such as appointment date and time, services booked, notes relevant to delivering the service, and communications with you.
Payment data, where applicable, such as payment status and transaction references. We do not aim to store full card details. Card payments are typically handled by our payment provider.
Consultation data for specialist scalp services, such as details you provide about your goals and suitability, and photographs you choose to share, for example to discuss appearance based outcomes and track progress over time.
Website usage and device data, such as IP address, browser type, pages visited, and cookie preferences.
Marketing preferences, such as whether you opt in or opt out of marketing communications.
3. How we collect your data
We collect personal data in the following ways:
Directly from you, for example when you fill in a contact form, call us, message us, book, attend a consultation, or communicate with us on social media.
Automatically through your use of our website, using cookies and similar technologies.
From service providers we use to run our business, for example booking, website hosting, and analytics providers.
4. How we use your data, and our lawful bases
UK data protection law requires that we have a lawful basis for processing your personal data. The lawful bases we commonly rely on include contract, legitimate interests, consent, and legal obligation.
We use your personal data for the following purposes:
To respond to enquiries and provide customer support. This is usually necessary for our legitimate interests in running the business, and providing good service.
To manage bookings and deliver services you request. This is usually necessary to perform a contract with you, or to take steps at your request before entering into a contract.
To take and store consultation notes, and where relevant, photographs you choose to share, so we can deliver a consultation led service and keep an accurate record. This is usually based on our legitimate interests. If any information is treated as special category data, for example health related information you choose to share, we will only process it where a valid condition applies, typically your explicit consent, or where it is necessary for reasons of substantial public interest and permitted by law.
To take payment, manage accounts, and keep records. This is usually necessary for contract, and for legal obligations, for example tax and accounting.
To improve our website, services, and customer experience, using analytics and performance monitoring. This is usually based on legitimate interests, and where cookies or similar technologies require consent, we will request it via our cookie controls.
To send marketing communications where permitted. We will only send electronic marketing where the rules allow, such as with your consent, or where the soft opt in applies and you can opt out at any time.
5. Cookies and similar technologies
Our website may use cookies and similar technologies to help it function, to remember preferences, and to understand how the site is used. Where required, we will ask for your consent before placing non essential cookies. You can change your cookie preferences at any time using the controls on our website, if available, or via your browser settings.
6. Who we share your data with
We may share your data with trusted suppliers who help us run the business, such as:
Booking and calendar providers.
Payment providers.
Website hosting and website support providers.
Analytics providers.
Professional advisers, such as accountants, where necessary.
Regulators or law enforcement, where required by law.
We only share what is necessary, and we expect providers to protect your data and use it only for the services they provide to us.
7. International transfers
Some of our service providers may store or process data outside the UK. Where this happens, we will take steps required by law to ensure appropriate safeguards are in place, such as recognised transfer mechanisms and contractual protections.
8. How long we keep your data
We keep personal data only for as long as necessary for the purposes set out in this policy, including legal, accounting, and operational reasons. Typical retention periods include:
Enquiry records, up to 12 months after the last contact, unless you become a client or you ask us to delete them sooner where we can.
Appointment and transaction records, commonly up to 6 years, to meet tax and accounting requirements.
Marketing records, until you opt out, or where appropriate, after a period of inactivity.
If you ask for deletion, we will consider the request in line with the rights described below and any legal obligations to retain certain records.
9. Your rights under UK GDPR
You have rights in relation to your personal data. These include the right to be informed, access, rectification, erasure, restriction, data portability, objection, and rights related to automated decision making.
To make a request, contact us using the details in section 1. We may need to confirm your identity before we respond.
10. Marketing choices
You can opt out of marketing at any time by using the unsubscribe link in our emails, or by contacting us. If you opt out, we may still send service messages that are needed to manage your bookings or respond to you.
11. Keeping your data secure
We take reasonable technical and organisational measures to protect personal data against loss, misuse, unauthorised access, and disclosure. No system is completely secure, but we work to protect your data and limit access to those who need it for business purposes.
12. Children
Our services and website are intended for adults. If you believe a child has provided personal data to us, please contact us and we will address it appropriately.
13. Complaints
We hope we can resolve any privacy concern directly. If you are unhappy with how we handle your data, you have the right to complain to the Information Commissioner’s Office, the UK regulator for data protection.
14. Changes to this policy
We may update this policy from time to time to reflect changes in our practices, or for legal and regulatory reasons. The latest version will be published on our website, and the date at the top will show when it was last updated.