Dermamelan Face & Intimate 10% off | all this month | Learn More

Privacy Policy

Last Updated: February 24, 2026

1. INTRODUCTION

This Privacy Policy describes how Jay's Medispa ('we', 'us', or 'our') collects, uses, and protects your information when you visit our clinic at Level 1, 9A Birkenhead Avenue, use our website at jaysmedispa.co.nz, or interact with our digital advertisements. We operate in accordance with the New Zealand Privacy Act 2020 and the Health Information Privacy Code 2020.

2. THE INFORMATION WE COLLECT

We collect personal information that you voluntarily provide to us, as well as data collected automatically through digital tools.

  • Personal Identifiers: Name, phone number, email address, and mailing address.

  • Sensitive Health Information: In order to provide safe appearance medicine (such as cosmetic injectables), we collect medical history, allergies, and clinical photographs. This is collected only with your explicit consent during consultation.

  • Digital Tracking Data: We automatically collect data via cookies and the Meta Pixel. This includes your IP address, browser type, and your interaction with our website.

3. META BUSINESS TOOLS & ADVERTISING

Our website utilizes the Meta Pixel and Conversions API.

  • Purpose: These tools allow us to measure the effectiveness of our advertising and deliver more relevant content to you on Facebook and Instagram.

  • Data Usage: Meta may use this data to provide measurement services and target ads. We do not transmit specific clinical health outcomes or sensitive medical choices to Meta.

  • Opt-Out: You can opt-out of interest-based advertising through the Digital Advertising Alliance or your Meta Ad Preferences.

4. HOW WE USE YOUR INFORMATION

  • Clinical Care: To assess suitability for treatments and maintain medical records.

  • Communication: To send appointment reminders, receipts, and (where opted-in) marketing promotions.

  • Legal Compliance: To comply with New Zealand’s Medicines Act 1981 and Therapeutic and Health Advertising Code.

5. SHARING AND DISCLOSURE

We do not sell your personal or health data. We may share information with:

  • Medical Professionals: Only when necessary for your clinical safety or if required by a prescribing doctor.

  • Third-Party Providers: Trusted partners who manage our booking system (e.g., Timely/Fresha) or marketing tools, all of whom are contractually bound to privacy standards.

  • Legal Authorities: If required by Medsafe, the Ministry of Health, or a court order.

6. DATA RETENTION & SECURITY

  • Marketing Data: Generally retained for 12 months following your last interaction.

  • Health Records: Mandatory Requirement. As a health provider, we are legally required under the Health (Retention of Health Information) Regulations 1996 to retain your medical treatment records for a minimum of ten (10) years from the date of your last treatment.

  • Security: We use industry-standard encryption and secure medical-grade software to protect your sensitive data.

7. YOUR RIGHTS (NEW ZEALAND PRIVACY ACT 2020)

You have the right to:

  • Request access to any personal or health information we hold about you.

  • Request a correction to your information.

  • Withdraw consent for marketing communications at any time.

  • Note: While you may request data deletion, we cannot delete clinical health records before the 10-year legal retention period has expired.

8. CONTACT US

If you have any questions or wish to exercise your rights, please contact our Privacy Officer:

  • Email: [email protected]

  • Address: Lvl 1, 9A Birkenhead Avenue, Birkenhead, Auckland 0626

  • Phone: 09 418 0743

Scroll to Top