- Effective Date: 04-05-2022
- Last Updated: 21-05-2022
Any Third Party working with or for us, and who have access to personal information, shall be expected to read and comply with this policy. No Third Party shall access or process personal information held by us without our prior written permission. “Third Party or Third Parties”, as the case may be, may include but not limited to all the agents, associates, directors, personnel, consultants, contractors and subcontractors, vendors, suppliers, service providers, professionals, group of companies, affiliates, holding company, subsidiary, parent organizations, working for us or associated with us.
2. HOW DO WE COLLECT THE INFORMATION?
From you directly and through this Website, we may collect information through the Website when you visit or access or use or register yourself on this Website. The data we collect depends on the context of your interactions with our Website. We may receive information from other sources, including and not limited to public databases, joint marketing partners, social media platforms, or Third Parties. Such information also may include information about your interactions with the products offered by us or any Third Party on the Website.
3. INFORMATION WE COLLECT:
We may collect your data for processing your purchase on the Website and any possible later claims, and to provide you with our services. We may collect personal information including, but not limited to, your name, date of birth, email address, postal address, delivery address (if different), telephone number, mobile number, gender, product reviews; transactional and billing information including payment details, payment card details, or bank account details; Records of your interactions with us (e.g. if you contact our customer service team, interact with us on social media). Other information necessary to provide the Website, for example we may access your location if you give us your consent.
Our Website may allow you the option of adding additional information such as information about your skin type, skin tone, skin concern, make up focus and hair concerns. We treat this information with particular sensitivity, as we understand it can reveal information about your health or ethnicity, for example. You do not have to provide this information to us, and can delete it or update it at any time.
We may collect information primarily to provide better services to all of our customers. When you visit our Website, some information is automatically collected. This may include information such as the Operating Systems (OS) running on your device, full Uniform Resource Locators (URL) clickstream to, through, and from our Website (including date and time); cookie number, products and/or content you viewed or searched for, page response times, download errors, length of visits to certain pages; page interaction information (such as scrolling, clicks, and mouse-overs), Internet Protocol (IP) address, access times, browser type, and language, and the Website you visited before our Website. We may also collect information about how you use our products or services. We may also collect information that you voluntarily provide, such as information included in response to a questionnaire or a survey conducted by us.
4. USE OF INFORMATION:
Depending on how you use our Site, your interactions with us, and the permissions you give us, the purposes for which we use your personal data may include:
- To fulfil your order on the Website;
- To manage and respond to any queries or complaints to our customer support;
- To personalise the Website to you and show you content we think you will be most interested in, based on your purchase history and your browsing activity;
- To improve and maintain the Website, and monitor its usage;
- For market research, e.g. we may contact you for feedback about our products;
- To send you marketing messages and show you targeted advertising, where we have your consent or are otherwise permitted to do so;
- For security purposes, to investigate fraud and where necessary to protect ourselves and third parties;
- To comply with our legal and regulatory obligations.
This information helps us to constantly improve, personalize and customize the services we provide you.
5. DATA SHARING:
6. DATA SECURITY:
We take due care to protect your data. We maintain physical, electronic, and procedural safeguards in connection with the collection, storage, and disclosure of personal data. We take reasonable steps to help protect your personal information in an effort to prevent loss, misuse, and unauthorized access, disclosure alteration, and destruction.
Information you provide to us is shared on our secure servers. We have implemented appropriate physical, technical and organizational measures designed to secure your information against accidental loss and unauthorized access, use, alteration, or disclosure. In addition, we limit access to personal data on a need-to-know basis to those employees or Third Parties that have a legitimate business need for such access.
If you are concerned about your data you have the right to request access to the personal data which we may hold or process about you. You have the right to require us to correct any inaccuracies in your data free of charge. At any stage, you also have the right to ask us to stop using your personal data for direct marketing purposes.
We will keep your personal data for as long as we need it for the purposes set out above, and so this period will vary depending on your interactions with us. For example, where you have made a purchase with us, we will keep a record of your purchase for the period necessary for invoicing, tax and warranty purposes. We may also keep a record of correspondence with you (for example if you have made a complaint about a product) for as long as is necessary to protect us from a legal claim. Where we no longer have a need to keep your information, we will delete it. Please note that where you unsubscribe from our marketing communications, we will keep a record of your email address to ensure we do not send you marketing emails in future. However, we may retain your information if there is a legal obligation to retain the information; if required to comply with any applicable statutory or regulatory retention requirement by law; if we believe it may be necessary to prevent fraud or future abuse; to enable us to exercise our legal rights and/or defend against legal claims; or for other legitimate purposes.
8. YOUR RIGHTS:
You have certain rights in respect of your personal data, including the right to access and correct your personal data. You have the right to object to your personal data being used for certain purposes, including to send you marketing and advertising purposes. You also have the right to request erasure of your personal data, for example; where our purposes for processing your personal data have come to an end; where you object to our processing of your personal data based on legitimate interests and we have no overriding legitimate grounds to continue to process your personal data; and where our processing was based on your consent which you have withdrawn.
We will comply with any requests to exercise your rights in accordance with applicable law. Please be aware, however, that there are a number of limitations to these rights, and there may be circumstances where we are not able to comply with your request. To make any requests regarding your personal data, or if you have any questions or concerns regarding your personal data, you should contact us at email@example.com. You are also entitled to contact your local supervisory authority for data protection.
9. CALIFORNIA PRIVACY RIGHTS:
Consumers residing in California are afforded certain additional rights with respect to their personal data under the California Consumer Privacy Act (“CCPA”). If you are a California resident, this section applies to you.
Sale of Personal Data: California law requires that we provide transparency about personal data we “sell,” which for purposes of the CCPA broadly means scenarios in which we have shared personal data with third parties in exchange for monetary or other valuable consideration. We do not, and will not, sell your identifying information such as your name, email address, phone number or postal address.
Your Rights: Subject to certain limitations, you have the right to request: more information about the categories and specific pieces of personal data we have collected and disclosed for a business purpose in the last 12 months; deletion of your personal data; and that we stop selling your personal data. You may make these requests by emailing at firstname.lastname@example.org. Once we receive your request, we will verify it by asking you to provide information or your recent interactions with us, such as information regarding a recent purchase. If you would like to use an authorized agent to exercise your rights, we may request evidence that you have provided such agent with power of attorney or that the agent otherwise has valid written authority to submit requests on your behalf. We will not discriminate against you if you exercise your rights under the CCPA.
10. EUROPEAN UNION DATA PROTECTION RIGHTS:
Subject to applicable law and in accordance with the European Union General Data Protection Regulations (EU GDPR), we acknowledge and undertake to comply on a best effort basis with the rights available to its User(s) of European nationality/ EU residents set out below:
- the right to know the purposes for which the User Information shall be collected and used;
- the right to access information that personally identifies the User(s);
- the right to rectify incorrect information;
- the right to delete or remove information after discontinuation of the Service(s);
- the right to data portability;
- the right to restrict data or information from being processed; and
- the right to opt out of providing or sharing information with us.
The User(s) to whom the EU GDPR applies, understand and acknowledge that these rights shall at all times be subject to applicable law and are not an exhaustive list of the rights available pursuant to the EU GDPR. The relevant User(s) shall exercise any of these rights by raising a personal and direct request with us at email@example.com.
11. LINKS TO THIRD-PARTY WEBSITES/APPS:
We may change this policy from time to time. If we make any changes to this policy, we will change the "Last Updated" date above. You agree that your continued use of our services after such changes have been published to our services will constitute your acceptance of such revised policy.
We provide all users with the opportunity to opt-out of receiving non-essential communications from us after setting up an account. If you do not wish to receive promotional communications from us, then please unsubscribe by clicking on the unsubscribe link in the email or contact us at firstname.lastname@example.org. Following a subscription or signing up to our newsletter, you will receive newsletters on your email from us until you cancel the newsletter again. Cancellation is possible at any time by emailing it to us or through other ways as prescribed by us.
15. CONTACT FOR GRIEVANCES OR QUERIES OR REQUESTS:
If you have any concerns about privacy or grievances with us, please contact us at email@example.com with a detailed description and we will try to resolve the issue for you.