Privacy Policy
This policy aims to protect your personal data. If you have any questions or concerns about our use of your personal data, please contact us and we will help you.
By using this website and/or our services, you consent to the processing of your personal data as described in this Privacy Policy.
Contents
1. Definitions used in this Policy
2. Principles of data protection we respect
3. What are your rights regarding your personal data
4. What personal data we collect about you
5. How we use your personal data
6. Who else has access to your personal data
7. How we retain your data
8. Information about cookies
9. Supervisory Authority
Definitions
Personal data - any information relating to the identification of an individual.
Processing - any act or set of acts which is performed on personal data or a set of personal data.
Data Subject - the natural person whose personal data is being processed.
Child - a natural person under 16 years of age.
We/us - "Derma Aesthetic" Ltd.
Privacy principles
We promise to comply with the following privacy principles:
- Principle of legality, good faith and transparency. Our data processing activities are lawful. We always consider your rights before processing your personal data. If you request, we will provide you with information about the processing of your data.
- Principle of purpose limitation. Our personal data processing activities are consistent with the purpose for which we collect the data.
- Data minimization principle. We collect and process only the minimum personal data necessary for the relevant purpose.
- Storage limitation principle. We will not keep your personal data longer than necessary.
- Data integrity principle. We will do everything in our power to ensure data accuracy.
- Data Privacy Principle. We will do everything in our power to ensure that your personal data is protected against unauthorised or unlawful processing, accidental loss, destruction or damage.
Rights of the data subject
The data subject has the following rights:
1. Right to information - this means you have the right to know whether your personal data is being processed, what data is being collected, where it was obtained and why, and also who is processing it.
2. Right of access - this means you have the right to receive the data we have collected from and about you. This includes your right to request and receive a copy of your personal data collected by us.
3. Right to rectification - this means that you have the right to request the rectification or erasure of your personal data that is inaccurate or incomplete.
4. Right to erasure - this means that in certain circumstances you can ask for your personal data to be erased from our records.
5. Right to restrict processing - this means that you have the right to restrict the processing of your personal data under certain conditions.
6. Right to object - this means that in certain cases you have the right to object to the processing of your personal data, for example in the case of direct marketing.
7. The right not to be subject only to automated processing - this means that you have the right to object to automated processing, including profiling, so that you are not subject to decision-making based solely on automated processing. You can exercise this right where profiling results in legal effects that concern you or significantly affect you.
8. Right to portability - you have the right to receive your personal data in a machine-readable format, or if possible, to transfer it directly from one processor to another.
9. Right to complain - if we refuse your request under your Right of Access, we will tell you the reasons for this refusal. If you are not satisfied with the way we have handled your request, we ask you to contact us.
10. Right to help from relevant supervisory authorities - this means you have the right to help from supervisory authorities and the right to other legal redress, such as claims for damages.
11. Right to withdraw consent - you have the right to withdraw any consent given by you for the processing of your personal data.
What personal data we collect about you
Information you have provided to us
This can be your email address, name, postal or home address, etc. Basically, this is the information we need to provide you with a relevant product/service or to improve your stay with us. We retain the information you provide so that you can carry out various activities on our site, including commenting. This information includes, for example, your name and email address.
Information that is automatically collected about you
This includes information that is automatically stored by cookies or other tools about your internet session. For example, this is information about your shopping cart, your IP address, your shopping history (if any), etc. This information is used to improve your customer experience with us. When you use our services or view content on our website, your actions may be included in a log.
Information from our partners
We collect information from our trusted partners confirming that they have a legal basis to share this information with us. This is information that you have provided to them directly or that they have collected for you on another lawful basis.
Publicly available information
We may collect information about you that is publicly available.
How we use your personal data
- provide you with our services. This includes, for example, registering your account; providing other products and services you have requested; providing promotional products at your request and communicating with you regarding those products and services; communicating with you; notifying you when services change;
- improve your customer experience;
- compliance with an obligation under law or contract.
We use your personal data on a lawful basis and/or with your consent.
In connection with the conclusion of a contract or the performance of contractual obligations, we process your personal data for the following purposes:
- to identify you;
- to provide you with a service or to send/offer you a product;
- to contact you to make a sale or to make an invoice;
We process your personal data on the basis of legitimate interest for the following purposes:
- to send you personalised offers (from us and/or our strictly selected partners);
- to administer and analyse our customer database (purchasing behaviour and history) to improve the quality, variety and availability of the products/services we offer/provide;
- compile customer satisfaction questionnaires;
Unless you inform us otherwise, we consider it part of our legitimate interest to offer you products/services that are similar or identical to your purchase/visit history.
With your consent, we process your personal data for the following purposes:
- send you newsletters and campaign offers (from ourselves or our strictly selected partners);
- for other purposes for which we have requested your consent;
We process your personal data in order to comply with obligations arising under the law and/or use your personal data for opportunities granted by law. We reserve the right to anonymise the personal data we collect and use it in this way. We will only use data outside the scope of this Policy where it is anonymised. We retain payment/billing information and other information collected from you for as long as is necessary for accounting purposes or other legal obligations, but no longer than provided by law.
We may process your personal data for additional purposes that are not mentioned here, but are relevant to the original purpose for which the data was collected. To do so, we have endeavoured to:
- ensure that the relationship between the purposes, context and nature of the personal data is appropriate for subsequent processing;
- that the subsequent processing does not harm your interests, and to provide appropriate protection for the processing.
We will inform you about further processing and its purposes.
Who else has access to your personal data
We do not share your personal data with strangers. Personal data about you is in some cases provided to our trusted partners in order to provide a service to you or to improve your experience as our customer. We share your data with:
Our processing partners
- ***
Our business partners:
- ***
Related third parties:
- ***
- ***
We only work with data processing partners who can provide an adequate level of protection for your personal data. We disclose your personal data to third parties or government authorities where we are legally obliged to do so. We may disclose your personal data to third parties if you have consented to this or if there are other lawful grounds to do so.
How we protect your personal data
We make every effort to protect your personal data. We use security protocols when communicating and transferring data (such as HTTPS). We use anonymisation and pseudonymisation where appropriate. We monitor our networks for possible weaknesses and attacks.
Although we make our best efforts, we cannot guarantee the security of the information. But we promise to notify the relevant authorities of any data leaks. We will also notify you if there is a threat to your rights or interests. We will do everything we reasonably can to prevent a security breach and to assist the authorities if one does occur.
If you have an account with us, please keep your username and password confidential.
Children
We do not intend to collect or knowingly collect information from children. Our services are not directed at children and they are not our target customers.
"Cookies and other technologies we use
"A cookie is a small text file that is stored on your computer. "Cookies store information that is used to help the site work. Only we can access the cookies created by our website. You can control cookies from your browser. If you choose to disable cookies, this may prevent you from carrying out certain features you may wish to use on our site.
We use cookies for the following purposes:
- Necessary cookies - these cookies are necessary for you to be able to use certain important features of our website, such as logging in with a username and password. Such cookies do not collect any personal information.
- Functional cookies - these cookies provide functionality that makes using our service more convenient and enable more personalised features. For example, they may remember your name and password in the comment fields so that you do not need to enter this information each time you post a comment with us.
- Analytical cookies - these cookies are used to track the use and performance of our website and services
- Advertising cookies - these cookies are used to deliver ads that are relevant to you and your interests. In addition, they are used to limit the number of times you see an advertisement. They are usually placed on the site by advertising networks with the permission of the website operator. These cookies remember that you have visited a site and the information is passed on to other organisations such as advertisers. Often targeting or advertising cookies are linked to functionality on the site provided by the other organisation.
You can remove cookies stored on your computer through your browser settings.You can also control some third-party cookies using security-enhancing platforms such as optout.aboutads.info or youronlinechoices.com. If you would like further information about cookies, please visit allaboutcookies.org.
We use Google Analytics to measure traffic on our website. Google have their own privacy policy which you can view via their website or here. If you wish to be excluded from Google Analytics, visit Google Analytics opt-out page.
Supervisory authority
We reserve the right to make changes to this Privacy Policy.
The last amendment to the Policy was made on 21.05.2018.