Discover free eBooks, guides and med spa templates on our new resources page
Explore our popular products
Centralised bookings and availability
Self-service booking, anytime
Consult notes drafted automatically
Secure access to bookings & payments
Custom clinical forms & notes
Secure in-clinic and online payments
Secure video consultations built in
Buy now, pay later is now available in Pabau
Elevate your care to the next level
Centralized client data & history
Automated SMS and email reminders
Flexible memberships & care plans
Reach goals with data-driven decisions
Secure treatment photo comparisons
Clear post-treatment care guidance
Fast clinical notes via dictation
Order and review labs in one place
Create & manage prescriptions easily
Premium patient care tools for smarter workflows and personalised experiences.
Schedule & collect payments with ease
Manage classes and attendance
Take payments at reception
Manage claims and reimbursements
Send quotes for approval
No-show, cancel, payment rules
Run your clinic on the go
Auto-fill cancelled slots
Manage your clinic with confidence
Group staff by roles
Track staff commissions easily
Track hours and attendance
Stay secure, efficient and compliant.
Clinic-wide performance reports
Real-time clinic metrics
Stock levels and suppliers
Pabau Insights Plus gives clinics real-time visibility into bookings, revenue, and practitioner performance, helping them make smarter decisions and grow efficiently.
Push your growth to the next level
Turn visitors into leads
Track and convert enquiries
Targeted email and SMS sends
Automated clinic processes
Reward repeat visits automatically
Sell vouchers upfront
Run diary-filling promotions
Collect reviews and feedback
Pabau Marketing Plus helps clinics attract, engage, and retain patients with built-in tools for workflows, campaigns, automations, and follow-ups, all connected directly to their booking and patient data.
Medical-led wellness and preventive care
Surgical and non-surgical aesthetic care
Specialist care for reproductive, hormonal, and sexual health
Non-surgical and regenerative care for movement and recovery
Clinical mental health and behavioral care
Read case studies from our satisfied clients
Compare Pabau with alternative systems
Learn why this holistic care and aesthetic medicine clinic chose Pabau to power patient care and performance.
At Hambrand Technology Company, we take data protection seriously and are committed to ensuring compliance with the General Data Protection Regulation (GDPR), which governs how personal data is processed within the EU and beyond. Here, we outline how we manage GDPR to protect your personal data and support your compliance efforts.
The GDPR is a regulation that aims to protect the personal data of individuals within the EU, requiring businesses to handle this data with care, transparency, and security. Non-compliance can result in significant penalties.
Hambrand Technology Company acts as a data processor while our clients (you) act as the data controllers. As a processor, we handle personal data on your behalf under your instructions, ensuring it is processed in line with GDPR requirements.
We provide a comprehensive Data Processing Agreement (DPA) that outlines the responsibilities and obligations of both parties in compliance with Article 28 of the GDPR. This agreement governs how we process data on your behalf and ensures that we meet the highest standards of data protection.
We work only with GDPR-compliant vendors who meet the same stringent standards we apply to ourselves. Any third parties involved in data processing are carefully vetted and subject to data protection agreements to ensure compliance.
As a global company, we may transfer data outside the European Economic Area (EEA). However, we ensure that any international data transfers are protected by appropriate safeguards, such as Standard Contractual Clauses (SCCs), to guarantee GDPR-compliant data protection levels.
In the unlikely event of a data breach, we have a detailed Data Breach Response Plan in place. This ensures we can identify, contain, and report breaches to relevant supervisory authorities within the required 72-hour window, and notify affected data subjects where necessary.
