Your personal data includes information such as:
Date of birth
Other data collected could directly or indirectly identify you.
If at any time you have questions about our practices or any of your rights described below, you may reach our Data Protection Officer (“DPO”) and our dedicated team that supports this office by contacting us at email@example.com. This inbox is actively monitored and managed so that we can deliver an experience that you can confidently trust.
What Information Do We Collect?
We collect information so that we can provide the best possible experience when you utilise our Services. Much of what you likely consider personal data is collected directly from you when you:
(1) create an account or purchase any of our Services (ex: billing information, including name, address)
(2) request assistance from our award-winning customer support team (ex: phone number);
(3) complete contact forms, digital forms, business cards collected in branch or request newsletters or other information from us (ex: email, ipad);
(4) participate in contests and surveys, apply for a job, or otherwise participate in activities we promote that might require information about you.
However, we also collect additional information when delivering our Services to you to ensure necessary and optimal performance. These methods of collection may not be as obvious to you, so we wanted to highlight and explain below a bit more about what these might be (as they vary from time to time) and how they work:
Account related information is collected in association with your use of our Services, such as account number, purchases, bookings, promotions, when you need to book your next treatment, information requests, and customer service requests and notes or details explaining what you asked for and how we responded.
Data about Usage of Services is automatically collected when you use and interact with our Services, including metadata, log files, cookie/device IDs and location information. This information includes specific data about your interactions with the features, content and links (including those of third-parties, such as social media plugins) contained within the Services, Internet Protocol (IP) address, browser type and settings, the date and time the Services were used, information about browser configuration and plugins, language preferences and cookie data, information about devices accessing the Services, including type of device, what operating system is used, device settings, application IDs, unique device identifiers and error data, and some of this data collected might be capable of and be used to approximate your location.
Supplemented Data may be received about you from other sources, including publically available databases or third parties from whom we have purchased data, in which case we may combine this data with information we already have about you so that we can update, expand and analyse the accuracy of our records, identify new customers, and provide products and services that may be of interest to you. If you provide us personal information about others, or if others give us your information, we will only use that information for the specific reason for which it was provided to us.
How We Utilise Information
We strongly believe in both minimising the data we collect and limiting its use and purpose to only that (1) for which we have been given permission, (2) as necessary to deliver the Services you purchase or interact with, or (3) as we might be required or permitted for legal compliance or other lawful purposes. These uses include:
Delivering, improving, updating and enhancing the Services we provide to you. We collect various information relating to your purchase, use and/or interactions with our Services. We utilise this information to:
Improve and optimise the operation and performance of our Services (again, including our websites and mobile applications)
Diagnose problems with and identify any security risks, errors, or needed enhancements to the Services
Detect and prevent fraud and abuse of our Services and systems
Collecting aggregate statistics about use of Services
Understand and analyse how you use our Services and what products and services are most relevant to you.
Often, much of the data collected is aggregated or statistical data about how individuals use our Services, and is not linked to any personal data, but to the extent it is itself personal data, or is linked or linkable to personal data, we treat it accordingly.
Sharing with trusted third parties. We may share your personal data with affiliated companies within our corporate family, third parties with which we have partnered to allow you to integrate their services into our own Services, and with trusted third-party service providers as necessary for them to perform services on our behalf, such as:
Processing credit card payments
Conducting contests or surveys
Performing analysis of our Services and customers demographics
Communicating with you, such as email or survey delivery
Third Party Use of Personal Information
We may share your information with third parties when you explicitly authorize us to share your information. Additionally, the Website may use third-party service providers to service various aspects of the Website. Each third-party service provider’s use of your personal information is dictated by their respective privacy policies.
The Website currently uses the following third-party service providers:
At this time, your personal information is not shared with any other third-party applications. This list may be amended from time to time at the Website’s sole discretion. Except when required by law, we will not sell, distribute, or reveal your email addresses or other personal information without your consent; however, we may disclose or transfer personal information collected through the Website to third parties who acquire all or a portion of our business, which may be the result of a merger, consolidation, or purchase of all or a portion of our assets, or in connection with any bankruptcy or reorganization proceeding brought by or against us.
Customer Relationship Management
We only share your personal data as necessary for any third party to provide the services as requested or as needed on our behalf. These third parties (and any subcontractors) are subject to strict data processing terms and conditions and are prohibited from utilising, sharing or retaining your personal data for any purpose other than as they have been specifically contracted for (or without your consent).
We may contact you directly or through a third-party service provider regarding products or services you have signed up or purchased from us, such as necessary to deliver transactional or service-related communications. We may also contact you with offers for additional services we think you’ll find valuable if you give us consent, or where allowed based upon legitimate
interests. You don’t need to provide consent as a condition to purchase our goods or services. These contacts may include:
Text (SMS) messages
Automated phone calls or text messages.
You may also update your subscription preferences with respect to receiving communications from us and/or our partners via email firstname.lastname@example.org.
If you make use of a service that allows you to import contacts (ex. using email marketing services to send emails on your behalf), we will only use the contacts and any other personal information for the requested service. If you believe that anyone has provided us with your personal information and you would like to request that it be removed from our database, please contact us at email@example.com.
Compliance with legal, regulatory and law enforcement requests. We cooperate with government and law enforcement officials and private parties to enforce and comply with the law. We will disclose any information about you to government or law enforcement officials or private parties as we, in our sole discretion, believe necessary or appropriate to respond to claims and legal process (such as subpoena requests), to protect our property and rights or the property and rights of a third party, to protect the safety of the public or any person, or to prevent or stop activity we consider to be illegal or unethical.
To the extent we are legally permitted to do so, we will take reasonable steps to notify you in the event that we are required to provide your personal information to third parties as part of legal process. We will also share your information to the extent necessary to comply with the Information Commissioner’s Office (ICO) or regulations and policies when you register a domain name with us.
Targeted advertisements. Targeted ads or interest-based offers may be presented to you based on your activities on our webpages, and other websites, and based on the products you currently own. These offers will display as varying product banners presented to you while browsing. We also partner with third parties to manage our advertising on our webpages and other websites. Our third-party partners may use technologies such as cookies to gather information about such activities in order to provide you with advertising based upon your browsing activities and interests, and to measure advertising effectiveness. If you wish to opt out of interest-based advertising, click here. Please note you will continue to receive generic ads.
You have the following rights in relation to your data:
Right to access – the right to request (i) copies of the information we hold about you at any time. Or (ii) that we modify, update or delete such information. If we provide you with access to the information, we hold about you, we will not charge you for this, unless you request is “manifestly unfounded or excessive.” Where are legally permitted to do so, we may refuse your request.
If we refuse your request, we will tell you the reasons why.
Right to correct – the right to have your Data rectified if it is inaccurate or incomplete.
Right to erase – the right to request that we delete or remove your Data from our systems.
Right to restrict our use of Data – the right to “block” us from using your Data or limit the way in which we can use it.
Right to data portability – the right to request that we move, copy or transfer your Data.
Right to object – the right to object to our use of your Data including where we use it for our legitimate interests.
To make enquiries, exercise any of your rights set out above, or withdraw your consent to the processing of your Data (where consent is our legal basis for processing your Data), please contact us via this email address: firstname.lastname@example.org
How We Secure, Store and Retain Your Data
We follow generally accepted standards to store and protect the personal data we collect, both during transmission and once received and stored, including utilization of encryption where appropriate.
We retain personal data only for as long as necessary to provide the Services you have requested and thereafter for a variety of legitimate legal or business purposes. These might include retention periods:
mandated by law, contract or similar obligations applicable to our business operations;
for preserving, resolving, defending or enforcing our legal/contractual rights; or
needed to maintain adequate and accurate business and financial records.
If you have any questions about the security or retention of your personal data, you can contact us at email@example.com
Our Services are available for purchase only for those over the age of 13. Our Services are not targeted to, intended to be consumed by or designed to entice individuals under the age of 13. If you know of or have reason to believe anyone under the age of 13 has provided us with any personal data, please contact us.
‘Do Not Track’ Notifications
Some browsers allow you to automatically notify websites you visit not to track you using a “Do Not Track” signal. There is no consensus among industry participants as to what “Do Not Track” means in this context. Like many websites and online services, we currently do not alter our practices when we receive a “Do Not Track” signal from a visitor’s browser. To find out more about “Do Not Track,” you may wish to visit www.allaboutdnt.com.
Data Protection Authority
If you are a resident of the European Economic Area (EEA) and believe we maintain your personal data subject to the General Data Protection Regulation (GDPR), you may direct questions or complaints to our lead supervisory authority, the UK Information Commissioner’s Office, as noted below:
ICO helpline on 0303 123 1113
By Mail: info@firstname.lastname@example.org
By Phone: 0207 403 9827
We will respond to all requests, inquiries or concerns within thirty (30) days.