Privacy Policy SkinMedicSkinCare
SkinMedicSkinCare respects your privacy and is committed to protecting your personal data. This privacy policy will inform you about how we collect and process your personal data through your use of our website and services, as well as inform you about your privacy rights and how the law protects you.
This privacy policy should be read in conjunction with our Terms and Conditions available on our website.
Contents
1. Important Information and Who We Are
2. The Data We Collect About You
3. How Your Personal Data Is Collected
4. How We Use Your Personal Data
5. Disclosures of Your Personal Data
6. International Transfers
7. Data Security
8. Data Retention
9. Your Legal Rights
1. Important Information and Who We Are
Purpose of this Privacy Policy
This privacy policy aims to provide you with information on how SkinMedicSkinCare collects and processes your personal data through your use of this website.
This website is not intended for children and we do not knowingly collect data relating to children under the age of 18.
Controller
SkinMedicSkinCare (company details: [insert company registration number here]) is the data controller and responsible for your personal data (collectively referred to as “we”, “us” or “our” in this privacy policy).
If you have any questions about this policy or would like to exercise your legal rights, please contact us using the details below:
Contact Details:
Full name of legal entity: SkinMedicSkinCare
Email: [insert data protection email, e.g. privacy@chocolate-wildcat-877022.hostingersite.com]
Postal address: [insert business address]
You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). However, we would appreciate the opportunity to deal with your concerns first, so please contact us before approaching the ICO.
Changes to this Privacy Policy
We may update this policy from time to time. Please check back regularly for updates. This version was last updated on [insert date].
Third-Party Links
Our website may include links to third-party websites, plug-ins and applications. Clicking on those links may allow third parties to collect or share data about you. We are not responsible for their privacy policies and encourage you to read them.
2. The Data We Collect About You
We may collect, use, store and transfer different kinds of personal data about you, including:
Identity Data: name, title, date of birth.
Contact Data: billing/shipping address, email address, telephone number.
Financial Data: payment card details.
Transaction Data: details about payments and purchases made from us.
Technical Data: IP address, browser type and version, time zone setting, operating system, and other technology on devices used to access the site.
Usage Data: information about how you use our website and services.
Marketing and Communications Data: preferences in receiving marketing from us and communication preferences.
We also collect and use Aggregated Data (statistical or demographic data) which is not considered personal data in law, unless it can directly or indirectly identify you.
If you fail to provide personal data when required, we may be unable to provide you with products or services.
3. How Your Personal Data Is Collected
We collect personal data about you in several ways:
Direct interactions – when you fill in forms, create an account, place an order, contact us via email/phone, or subscribe to marketing.
Automated technologies – as you use our website, we automatically collect Technical Data through cookies and similar technologies. (See our Cookie Policy for more details).
Third-party sources – including analytics providers (e.g. Google Analytics), advertising networks, and payment/delivery providers.
4. How We Use Your Personal Data
We will only use your personal data when the law allows us to. Most commonly, we use it in the following circumstances:
To perform the services under our contract with you.
Where necessary for our legitimate business interests, provided your rights do not override those interests.
To comply with a legal or regulatory obligation.
Examples of purposes include:
Registering you as a new customer.
Processing and delivering your orders, including payments, fees and charges.
Providing customer service and consultations.
Sending service updates and policy changes.
Administering and protecting our website (troubleshooting, data analysis, system maintenance).
Marketing communications (with your consent, where required).
Marketing
You may receive marketing communications from us if you have opted in. You can unsubscribe at any time by clicking the opt-out link in any message or contacting us at [insert email].
We will never share your personal data with third parties for marketing purposes without your express opt-in consent.
5. Disclosures of Your Personal Data
We may share your personal data with:
Service providers (IT support, hosting, analytics providers such as Google Analytics, newsletter providers such as Klaviyo).
Payment processors and delivery/courier services.
Regulatory bodies where legally required.
Third parties in the event of a business transfer, merger or sale.
All third parties are required to respect the confidentiality of your data and process it in accordance with the law.
6. International Transfers
We do not routinely transfer your data outside the European Economic Area (EEA). If this becomes necessary, we will ensure your data is protected with appropriate safeguards in compliance with GDPR.
7. Data Security
We have put in place appropriate technical and organisational security measures to prevent your personal data from being lost, misused, accessed in an unauthorised way, altered or disclosed.
Only employees and third parties with a business need-to-know will have access to your personal data and they are subject to confidentiality obligations.
8. Data Retention
We will retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including for legal, tax and accounting requirements.
In some cases, you can request that we delete your personal data sooner (see Your Legal Rights below).
9. Your Legal Rights
Under certain circumstances, you have rights under data protection law to:
Request access to your personal data.
Request correction of your personal data.
Request erasure of your personal data.
Object to processing of your personal data.
Request restriction of processing.
Request transfer of your personal data.
Withdraw consent at any time (where consent was the legal basis of processing).
If you wish to exercise any of these rights, please contact us at [insert email].
No fee required – You will not normally have to pay a fee, unless your request is clearly unfounded, repetitive or excessive.
Time to respond – We aim to respond to all legitimate requests within one month.
✅ This version is ready to be published on your client’s website. Just fill in:
company registration details (if applicable),
business address,
dedicated contact email for privacy/data requests,
date of the last update.
