Privacy Policy

SECTION 1 - PERSONAL INFORMATION COLLECTED

When you make a purchase from our shop, as part of our buying and selling process, we collect the personal information you provide, such as your name, address and e-mail address. When you browse our shop, we also automatically receive the Internet Protocol (IP) address of your computer, which enables us to obtain more details about the browser and operating system you are using. E-mail marketing (where applicable): With your permission, we may send you emails about our shop, new products and other updates.

SECTION 2 - CONSENT

How do you obtain my consent? When you provide us with your personal information to complete a transaction, verify your credit card, place an order, schedule a delivery, or return a purchase, we will assume that you consent to our collection and use of your information for this purpose only. If we ask you to provide your personal information for any other reason, such as marketing purposes, we will ask you directly for your express consent, or we will give you the opportunity to decline. How do I withdraw my consent? If, after you have given us your consent, you change your mind and no longer consent to our contacting you, collecting your information or disclosing it, you may notify us by contacting us by email: contact.ohmyskinuk@gmail.com

ARTICLE 3 - DISCLOSURE We may disclose your personal information if we are required to do so by law or if you breach our Terms and Conditions.

SECTION 4 - SHOPIFY

Our shop is hosted on shopify. They provide us with the online e-commerce platform that allows us to sell our services and products to you. Your data is stored in Shopify's data storage system and databases, and in the general Shopify application. Your data is stored on a secure server protected by a firewall. Payment: If you make your purchase through a direct payment gateway, then Shopify will store your credit card information. This information is encrypted in accordance with the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction information is retained for as long as necessary to complete your order. Once your order is finalized, your purchase transaction information is deleted. All direct payment gateways are PCI-DSS compliant, managed by the PCI Security Standards Council, which is a joint effort of companies such as Visa, MasterCard, American Express and Discover. The PCI-DSS requirements ensure the secure processing of credit card data by our shop and its service providers. For more information, please see the Shopify Terms of Use.

SECTION 5 - SERVICES PROVIDED BY THIRD PARTIES

Generally, the third party providers we use will only collect, use and disclose your information to the extent necessary to perform the services they provide to us. However, some third party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies regarding the information we are required to provide to them for your purchase transactions. With respect to these providers, we recommend that you read their privacy policies carefully so that you can understand how they will handle your personal information. You should keep in mind that some suppliers may be located or have facilities located in a different jurisdiction than you or us. So if you decide to proceed with a transaction that requires the services of a third party supplier, then your information may be governed by the laws of the jurisdiction in which that supplier is located or the jurisdiction in which its facilities are located. For example, if you are located in Canada and your transaction is processed through a payment gateway located in the United States, your information used to complete the transaction may be disclosed under United States law, including the Patriot Act. Once you leave our shop site or are redirected to a third party website or application, you are no longer governed by this Privacy Policy or our website's Terms and Conditions of Sale and Use. Links You may leave our website by clicking on certain links on our website. We assume no responsibility for the privacy practices of such other sites and recommend that you read their privacy policies carefully.

ARTICLE 6 - SECURITY

To protect your personal information, we take reasonable precautions and follow industry best practices to ensure that it is not lost, misappropriated, accessed, disclosed, altered or destroyed in an inappropriate manner. If you provide us with your credit card information, it will be encrypted through the use of Secure Sockets Layer (SSL) and stored with AES-256 encryption. While no method of transmission over the Internet or electronic storage is 100% secure, we follow all the requirements of the PCI-DSS and implement additional generally accepted industry standards. COOKIES The following is a list of cookies that we use. We have listed them here so that you can choose whether or not to allow them. session_id, a unique session identifier, allows Shopify to store information about your session (referrer, landing page, etc). _shopify_visit, no data retained, persists for 30 minutes since last visit. Used by our website provider's internal statistics tracking system to record the number of visits. shopify_uniq, no data held, expires at midnight (depending on the location of the visitor) the next day. Calculates the number of visits to a shop per unique customer. cart, unique identifier, persists for 2 weeks, stores your shopping cart information. _secure_session_id, unique session identifier storefront_digest, unique identifier, undefined if the shop has a password, it is used to know if the current visitor has access.

SECTION 7 - AGE OF CONSENT

By using this site, you represent that you are at least the age of majority in your state or province of residence, and that you have given us your consent to allow any minor in your care to use this website.

SECTION 8 - CHANGES TO THIS PRIVACY POLICY

We reserve the right to change this Privacy Policy at any time, so please check back frequently. Changes and clarifications will take effect immediately upon posting on the website. If we make changes to the content of this policy, we will notify you here that it has been updated, so that you will know what information we collect, how we use it, and under what circumstances, if any, we disclose it.

SECTION 9 - KLARNA

In order to offer you Klarna's payment options, we may need to transfer your personal data to Klarna, including your contact details and order details, so that Klarna can assess whether you are eligible for them and tailor them to your needs. Your personal data transferred will be treated in accordance with Klarna's privacy policy.