Section 11: Compliance & Safety
Section 11: Compliance & Safety
This section covers essential compliance and safety features in Luminate that help you meet UK legal requirements and protect both your salon and your clients.
Tutorials in This Section
11.1 Skin Test Management - Patch Tests and Safety
UK salons must perform patch tests before certain colour services. This comprehensive guide covers creating skin test records, setting up the test questionnaire, using QR codes for customers to complete tests remotely, staff sign-off requirements, tracking test validity and expiry, and preventing bookings without valid tests. Essential reading for any salon offering colour services.
Time: 20-25 minutes
11.2 GDPR Compliance - Data Protection and Privacy
GDPR gives customers rights over their data, and as a salon owner you're responsible for compliance. Learn how Luminate helps you meet data protection requirements: managing customer consent, handling data access requests, anonymising customer data (the right to be forgotten), protecting staff data, and understanding what records are retained. This guide explains your legal obligations and how Luminate supports them.
Time: 15-20 minutes
11.3 Managing Customer and Staff Data Retention
When customers stop visiting or staff members leave, you can't simply delete their records - you may need them for financial, tax, or legal purposes. Learn the difference between deactivating (hiding from lists while preserving data) and anonymising (permanently removing personal information while keeping business records). This guide explains when to use each approach and walks you through both processes.
Time: 10-15 minutes
Recommended Reading Order
- Tutorial 11.1 - Start here to understand how Luminate handles the critical safety requirement of colour patch testing
- Tutorial 11.2 - Learn about your broader GDPR obligations and how to manage customer data rights
- Tutorial 11.3 - Understand the practical day-to-day management of old or departed customer and staff records
Key Concepts
| Term | Definition |
|---|---|
| Skin Test / Patch Test | A skin allergy test performed before hair colouring to check for reactions to hair dye chemicals |
| GDPR | General Data Protection Regulation - UK/EU law governing personal data protection |
| Deactivation | Hiding a record from active lists while preserving all data (reversible) |
| Anonymisation | Permanently removing personal data while keeping business records (irreversible) |
| Right to be Forgotten | GDPR Article 17 - an individual's right to request deletion of their personal data |
| Subject Access Request | GDPR Article 15 - an individual's right to request all data you hold about them |
Who Should Read This Section
| Role | Recommended Tutorials |
|---|---|
| Owners | All tutorials - you're responsible for compliance |
| Admins | All tutorials - you may handle data requests |
| Managers | 11.1 (skin tests), 11.3 (understand deactivation) |
| Staff | 11.1 (if performing colour services) |
| Receptionists | 11.1 (understand skin test requirements when booking) |
Next Steps
After completing Section 11, consider reviewing:
- Section 3: Customer Management - How customer profiles and consent work
- Section 4: Staff Management - Managing staff records and access
- Section 13: Salon Settings & Configuration - Where compliance settings are configured
- Section 15: Troubleshooting & Support - Getting help with compliance questions
Last Updated: January 2026