Gloots Face & Body Therapies is a registered data controller under the Office of the Information Commissioner (ICO).
We respect your right to privacy, and have put in place security measures for your personal data, along with ensuring that your personal data is managed in accordance with applicable data privacy regulations.
We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online.
1. What Information We Collect
We may collect the following information:
- Name and payment details
- Contact information including email address
- Demographic information such as postcode, preferences and interests
- Other information relevant to customer surveys and/or offers.
This personal data is needed to provide (and improve) our service to you.
1 (a) Information you provide us with
When using the site, you may provide personal data that we collect to process your order / service, obtain payment and improve our products and services.
Examples of personal data include name, email address, mailing address, and phone number.
You may provide us with Personal Data in various ways on our website, for example, when you use our Contact / Consultation form or telephone / email us directly to enquire about our services
1 (b) Automatically collected information
When you visit our website, we automatically collect information from the device that you use, this uses various technology such as cookies. Examples of automatically collected information includes: IP address, web browser, device type, and the web pages/websites visited before using the site. We may also use technology to collect information regarding a user’s interaction with email messages that we send out, such as open & click data.
1 (c)Information from other sources
We may collect information, including personal data, from third parties and sources, such as our partners, advertisers, and integrated services. If we associate or combine information from other sources with Personal Data that we collect through this website, we will treat this information as Personal Data in accordance with this policy.
2, How We Use the Information We Collect
We use the information we collect for a variety of ways in providing our service, including the following:
2 (a) Operations
We use information to operate and enhance all features of this website, Internal record keeping, sending promotional emails, market research and to provide services
and information requested by visitors of the website.
2 (b) Improvements to the Website
We use information to understand and analyse the preferences and user behaviour of visitors to this website. This allows us to improve the functionality of the service we provide and develop new services and features. All data used for this purpose is processed in an
2 (c) Communications
We may use contact information to contact users of the website for administrative purposes, and with updates relating to the products and services we offer. You have the right to opt out of any promotional communication as per the section below, under ‘Your Rights’.
2 (d) Cookies and Tracking Technology
We use automatically collected information and other information collected on this website
through cookies and similar tracking technology. This helps us to:
Personalise our service, such as remembering a user’s information inputted on the website in previous visits, so that the user will not have to re-enter the information during subsequent visits.
Provide personalised advertisements, content, and information
Monitor and analyse the effectiveness of the website, and third party marketing activities
Monitor aggregate site usage metrics such as total number of visitors to the website or pages viewed.
Track your entries and submissions on the website.
2 (e) Analytics
This data is collected in a non-identifiable form and we do not use this information to attempt to identify users of the website.
3. How Long We Hold Your Data for
generally retained for a short period of time, except in cases where the information is used for website security, improving the website functionality, and in the cases in which we are legally obligated to retain information for longer time periods.
4. How We Protect Your Data
We take security very seriously and are committed to keeping your information safe. Whilst
we endeavour to ensure the security of our systems and the information we hold, no service is guaranteed to be completely secure. If you have any concerns that your personal information has been put at risk, please contact us immediately at firstname.lastname@example.org.
5. When Your Information is shared with others
We will never sell your personal information. We may share it with others in the following ways:
5 (a) When you make something public
Information that you choose to include in a publicly available area of the website, such as a comment on our blog posts, will be available to any user who has access to that content.
5 (b) When we use other companies to provide a service
We work with third party services who help us provide our services, for example, third party advertising, data management, and reporting tools, technical advisors. These third parties may have access to or process personal data as part of providing these services to us. We limit the information provided to only what is reasonably necessary in order to perform these functions, and require them to handle your personal information as if we were handling it directly.
5 (c) Non-personally identifiable information
We utilise aggregated, or otherwise non-personally identifiable information for a number of
purposes, including measuring and analysing site usage, system administration, and
improving our site. We may also disclose this non-personally identifiable information to third parties, including advertisers, vendors, and researchers.
5 (d) Compliance with Law
We may disclose personal information if required to do so by law, or to otherwise cooperate with law enforcement or governmental agencies.
We reserve the right to disclose personal data in order to take precautions against liability, or protect ourselves or others from fraudulent or unlawful uses or activity.
6 Global Business
As a global business, Gloots Face & Body Therapies shares your personal data internally and with selected third-parties. For example, we share your personal data with third-party service providers, other third-parties, as well as in case of business transfers or legal disclosure.
As a global business, Gloots Face & Body Therapies shares your personal data internally and with selected third-parties in the following circumstances:
Third-party service providers. In order to carry out your requests, respond to your inquiries, fulfil your orders, honour coupons, provide you with samples, enable you to participate in sweepstakes or make various other features, services and materials available to you through our websites we share your personal data with third-party service providers that perform functions on our behalf, such as companies that: host or operate Gloots Face & Body Therapies website, process payments, analyse data, provide customer service, postal or delivery services, and sponsors or other third-parties that participate in or administer our promotions. They have access to personal data needed to perform their functions but may not use it for other purposes. Further, they must process this personal data in accordance with this Privacy Notice and as permitted by applicable data protection laws and regulations.
Other third-parties. Your personal data will also be used by us or shared with our sponsors, advertisers, advertising networks, advertising servers, social media networks, and analytics companies or other third-parties in connection with marketing, promotional, data enrichment (to find out more about our privacy key terms follow the link and other offers, as well as product information.
6 (a) Business transfers.
Your personal data will be used by us or shared with the joint data controllers for internal reasons, primarily for business and operational purposes. As we continue to develop our business, we may sell or purchase assets, subsidiaries or business units. In such transactions, your personal data generally is one of the transferred business assets but remains subject to the promises made in any pre-existing Privacy Notice (unless, of course, you consent otherwise). If another entity acquires us, our businesses or substantially all or part of our assets, or assets related to the Gloots Face & Body Therapies website, your personal data will be disclosed to such entity as part of the due diligence process and will be transferred to such entity as one of the transferred assets. Also, if any bankruptcy or reorganization proceeding is brought by or against us, all such personal data will be considered an asset of ours and as such it is possible they will be sold or transferred to third-parties.
6 (b) Legal disclosure.
We may transfer and disclose your personal data to third-parties:
To comply with a legal obligation;
When we believe in good faith that an applicable law requires it;
At the request of governmental authorities conducting an investigation;
To verify or enforce our and other applicable policies;
To detect and protect against fraud, or any technical or security vulnerabilities;
To respond to an emergency; or otherwise
To protect the rights, property, safety, or security of third-parties, visitors to the Gloots Face & Body Therapies website or the public.
6 (c) International data transfers
Gloots Face & Body Therapies shares personal data internally or with third-parties for purposes described in this Privacy Notice.
Gloots Face & Body Therapies will only send personal data collected within the European Economic Area (EEA) to foreign countries in circumstances such as:
To follow your instructions;
To transfer it within Gloots Face & Body Therapies;
To comply with a legal duty; or
To work with our agents and advisers who we use to help run our business and services.
If we do transfer personal data to outside of the EEA, Gloots Face & Body Therapies will make sure that it is protected in the same way as if it was being used in the EEA. We’ll use one of the following safeguards:
Transfer to a non-EEA Country whose privacy legislation ensures an adequate level of protection of personal data to the EEA one;
Put in place a contract with the foreign third-party that means they must protect personal data to the same standards as the EEA; or
Transfer personal data to organisations that are part of specific agreements on cross-border data transfers with the European Union
(e.g., Privacy Shield, a framework that sets privacy standards for data sent between the United States and the European countries).
7. Your Rights
You have the right to:
• Request a copy of the information we hold on you
• Ask us to correct, delete your information, or only use it for certain purposes.
• To change your mind at any time and ask us to stop using your information, for
example, by unsubscribing from marketing emails or opting out of cookies.
The exceptions to these rights include: When access to personal data would reveal personal information about another individual, or if we are legally prevented from disclosing such information. In addition, we may retain data even if you withdraw your consent, where we can demonstrate that we have a legal requirement to process your data.
we may update from time to time. If we modify the notice, we will indicate the version and
date of the latest revision at the top of this page. If we believe that the changes are material, we will let you know about these by either/or:
- posting the changes to this site
- sending you an email to inform you of the changes.
the current version of the policy.
9. How to Contact
10. By email: