Who We are and How to Contact Us
Beauty Pie Limited is the company responsible for your personal data (the “data controller”).
We have a privacy team which is responsible for personal data. If you have any questions or if you wish to exercise your legal rights please contact us using the details below:
Email address: email@example.com
Postal address: Beauty Pie Limited, The Foundry, 2 Smith Square, 77 Fulham Palace Road, London, W6 8AF
Attention: Data Privacy Team
This version was last updated on 04th August 2020. Sometimes we may make changes to this policy to reflect how we process your data. If those changes are important, we will make this clear on our website, or by other means such as email.
Information We May Collect From You
We also collect, use and share information that cannot be used to identify you. If we combine or connect this with your personal data so that it can identify you, we treat the combined data as personal data which will be used in accordance with this policy.
Identity data: includes name, title, date of birth, interests, photographs, audio/visual material, personal descriptions
Contact data: includes billing address, delivery address, email address and phone numbers
Financial data: includes bank account and payment card details
Transaction data: includes details about your order history and payments
Technical data: includes IP address browser, time zone setting, computer location, data on the connection of you to the Website, browser plug-in types, platform and operating system]
Usage Data: includes information about how you use our website, products and services
Marketing and Communications Data: includes your preferences in receiving marketing from us
We do not collect any sensitive personal data, for example your race, ethnicity or religious beliefs.
Where we need to collect personal data by law, or under the terms of a contract we have with you and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you. In this case, we may have to cancel a product or service you have with us but we will notify you if this is the case at the time.
How is Your Personal Data Collected?
We use different methods to collect data from and about you including through:
Direct interactions: you may give us your Identity, Contact and Financial Data by filling in forms or corresponding with us. This includes information you provide when you:
Subscribe to our service
Search for or Purchase a Product
Register to receive marketing
Participate in competitions, reviews, feedback, contests, promotions, discussions or other social functions
Create an account
Contact us (including but not limited to text, video and audio chat and conversations, contributions you make to our website and social media interactions)
Third parties: we may receive personal data about you from various third parties as set out below:
Analytics providers based inside the EEA
Advertising networks based inside the EEA
Search information providers based inside the EEA
Contact, Financial and Transaction Data from providers of technical, payment and delivery services based inside the EEA
Digital customer experience delivery providers based inside the EU
Affiliate network publishers (such as partners who run competitions for us) based inside the EEA
Social media providers based [inside the UK]
Please contact us if you need further details.
How We Use Your Personal Data
We use your personal data in a number of different ways, and only when the law allows us to. Most commonly, we use personal data:
Where we need to perform a contract with you.
Where it is necessary for us to run our business (our “legitimate interests”).
Where we need to comply with a legal obligation.
Where you consent to us doing so. You have the right to withdraw your consent at any time by emailing firstname.lastname@example.org
We have set out below in more detail a description of all the ways we use personal data, and the reasons why we do so. There may be times where there is more than one reason why we are using your data. Please Contact us if you need details about the specific reason we are relying on to process your personal data.
|Purpose||Type of data||Why?|
|To register you as a new customer / member||So that we can perform a contract with you (to process your registration, grant you access to services, grant you access to members-only sections of the website, process any requests)|
|To take payments, give refunds, deliver your order and provide customer service|
|To enable you to take part in a competition, complete a survey or find out what you like|
|To enable you to register an account with us and participate in online activities such as reviews, testimonials, endorsements, chats, consultations and webinars||So that we can run our business (to allow you to participate in interactive features of our site, study how customers use our products/services, to develop them and give you what you want)|
|To run, improve and protect our business and this website and to prevent and detect fraud|
|To measure and understand how our website is used and understand the effectiveness of the website and marketing||So that we can our business (to improve our website and service)|
|To personalise our website for you|
|To show adverts to you and make recommendations for you|
Marketing, Promotions and Offers
We try to give you choices around marketing and advertising. Generally, we do not rely on consent as a legal basis for processing your personal data although we will get your consent before sending third party direct marketing communications to you via email or text message. You have the right to withdraw consent to marketing at any time by contacting us.
You can stop receiving our marketing messages at any time by following the unsubscribe link in a promotional email, or by e-mailing us at email@example.com.
When you opt out of receiving these messages, this will not apply to personal data provided because of a product purchase. Bear in mind it might take a few days while we process your request.
We may (like many other businesses) show you our advertising when you visit other sites. Where this takes place, it may be based on information that we hold about you (for example, where you browse products on our website) and non-personally identifiable information. To make this work, we work with ad exchanges and digital marketing networks and utilise technologies such as cookies and pixels. To learn more about Interest-Based Advertising or to opt-out of this type of advertising by those third parties that are members of self-regulatory programs such as the Network Advertising Initiative, please visit the NAI’s website which will allow you to opt out of Interest-Based Advertising by one, or all, NAI members.
Change of Purpose
We will only use your personal data for the purposes for which we collected it, unless we consider that we need to use it for another reason and that reason is compatible with the original purpose. If you wish to get an explanation as to how the processing for the new purpose is compatible with the original purpose, please Contact us.
If we need to use your personal data for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.
Please note that we may process your personal data without your knowledge or consent, in compliance with the above rules, where this is required or permitted by law.
Sharing Your Information
We do not sell your data – we are committed to respecting your privacy.
However we may have to share your personal data with some companies where it is an essential part of providing our services, as set out below:
Companies in the Beauty Pie group: Sometimes different companies in our group are responsible for different activities
IT service providers and web developers: These help us run our business
Payment processors: These provide payment services
Customs, regulators, fraud prevention, law enforcement agencies and other governmental authorities: These help protect you and our business
Shipping and warehousing providers: These get your purchases to you
Customer service agencies: These help us monitor and improve our website, online experience, products or services
Promotional service providers: These provide promotional services and include advertisers, advertising networks, analytics providers and search engine providers that require the data to select and serve relevant adverts to you and others, or assist us in the improvement and optimisation of our Website
Professional advisers including lawyers, bankers, auditors, and insurers: These provide consultancy, banking, legal, insurance and accounting services
Companies approved by you: These include social media sites
We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.
This website is not intended for children and we do not knowingly collect data relating to children.
If you are under 13, please do not send any information to us.
If we become aware that we have collected Personal Information from a child under the age of 13 without parental or guardian consent, we will delete that information.
If you are under 18 but over 13 please make sure you ask your parents or guardians for permission before sending any information to us.
Your Information and Europe
Some of our suppliers are based outside the EEA so their processing of your personal data will involve a transfer of data outside the EEA. Whenever we transfer your personal data out of the EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:
We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission.
Where we use certain service providers, we may use specific contracts approved by the European Commission which give personal data the same protection it has in Europe.
Where we use providers based in the US, we may transfer data to them if they are part of the Privacy Shield which requires them to provide similar protection to personal data shared between Europe and the US.
Please Contact us if you want further information on the specific mechanism used by us when transferring your personal data out of the EEA.
We have put in place security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. We also limit access to your personal data to a ‘need to know’ basis. They will only process your personal data on our instructions and they are subject to a duty of confidentiality. We always use industry-standard encryption technologies when transferring and receiving consumer data exchanged with our Website.
Unfortunately, no data transmission over the Internet can be guaranteed to be 100% secure and we have no control over the public network through which personal information may be sent to our website. Once we receive your transmission, we will do our best to protect its security on our systems. We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
Ordering online using your credit card details can be just as safe as ordering goods over the telephone. Where we have one, our Website will display any issued Secure Server Digital Certificate by a relevant online Certification Authority such as VeriSign.
How We Long We Keep Data For
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for.
We always consider the amount, nature, and sensitivity of the personal data, the potential risk unauthorised use of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means.
You have rights relating to your personal data. These may include a right to:
Request access to your personal data.
Request correction of your personal data.
Request erasure of your personal data.
Object to processing of your personal data.
Request restriction of processing your personal data.
Request transfer of your personal data.
Complain to your regulator – in the UK, the Information Commissioner's Office
Some of these rights (such as the right to withdraw consent) can be exercised by clicking links we provide in messages. Others (such as the right to request correction of your data) can be exercised by amending details on your profile.
If you wish to exercise any of your rights, please contact us at firstname.lastname@example.org and clearly explain the information you are requesting.
We may need to request specific information from you to help us confirm your identity. This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it.
We try to respond to requests within one month. Occasionally it may take us longer than a month if your request is complex or you have made several requests. In this case, we will notify you and keep you updated.