Grace Emmerson – The Best Independent Retailer of Dr Hauschka Skin Care – 0117 904 2296
I, Grace Emmerson, hold some of the information you give me. This document outlines how that information is used and how I keep it secure.
Your personal data is held securely on password-protected devices and is never sold or shared with a third party except in exceptional circumstances.
You provide me with personal data in the following ways:
– During a Dr Hauschka Facial, Body Treatment, Holistic Massage or skin care consultation
– Through email, over the telephone or by post
– By taking credit card and online payment
This may include the following information:
– name, postal and email address, contact details and date of birth.
– details of your treatment or consultation.
I use this information in order to provide you with an efficient service. This means that the legal basis of my holding your personal data is for legitimate interest.
2. How I use your personal data
I act as a data controller for use of your personal data to provide skin care treatment and advice. I act as a data controller and processor in regard to the processing of credit card and online payments.
I undertake at all times to protect your personal data, including any health and contact details, in a manner which is consistent with my duty of professional confidence and the requirements of the General Data Protection Regulation (GDPR) concerning data protection. I will also take reasonable security measures to protect your personal data storage.
I may use your personal data where there is an overriding public interest in using the information e.g. in order to safeguard an individual, or to prevent a serious crime. Also where there is a legal requirement such as a formal court order. I may use your data for marketing purposes such as newsletters subject to you giving me your express consent.
When you subscribe to my newsletter, I keep track of how you engage with my emails, such as which of my emails you open and what links you visit from those emails, so that I can send you information that you’re most interested in.
By subscribing to my newsletter, you agree that I may also collect and process personal information to compare with the platform that I partner with, Facebook.
I may use this information to personalise advertisements on the Facebook platform (including other Facebook products, such as Instagram) to products that you may be interested in.
E.g. if you browse the sales page of Grace Emmerson, or one of my other products, I may use this information to advertise the product to you through the Facebook platform.
You are in control of how this information is used on the Facebook platform, by managing your ad settings on Facebook if you have a Facebook account. You will not receive these advertisements if you do not have an account on any of the Facebook platforms.
You may disable cookies through your web browser settings at any time if you do not wish for this information to be collected. More detailed information about cookie management with specific web browsers can be found at the browsers’ respective websites.
I am lawfully able to use this information due to my legitimate interest to provide you with information related to the products you have expressed an interest in by using Grace Emmerson website or by signing up to my newsletter.
4. Do I share your information with other organisations?
I will keep information about you confidential. I will only disclose your information with other third parties if required by duty or law:
5. Who receives your personal information from me?
If you purchase a product from Grace Emmerson Online, your personal information will be processed by my payment processing partners, Stripe or Paypal. Their privacy policies, including information such as their data retention period, and their Privacy Shield certification, is published on their respective websites.
You have the right to see, amend, delete or have a copy, of data held that can identify you, with some exceptions. You do not need to give a reason to see your data.
If you wish to access your data please contact me at email@example.com and I will respond in a timely fashion. You have the right, subject to exemptions, to ask to have your information deleted or corrected or updated where it is no longer accurate
I only use information that may identify you in accordance with GDPR. This requires me to process personal data only if there is a legitimate basis for doing so and that any processing must be fair and lawful.
I also ensure the information is kept in secure locations, restrict access to information to authorised personnel only, protect personal and confidential information held on equipment such as laptops with a firewall and up to date security systems.
8. How long will I hold confidential information for?
Where personal data is controlled and processed directly by Grace Emmerson, I will retain your personal information for as long as is necessary to continue providing these services I offer and to fulfil the purposes outlined in this privacy and data policy, unless a longer retention period is required by law.
9. Website technical details
I do use electronic forms on my website making use of an available ‘forms module’ which has a number of built-in features to help ensure privacy. I also aim to use secure forms where appropriate.
These cookies are used to collect information about how visitors use our site. We use the information to compile reports and to help us improve the site. The cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from and the pages they visited.
Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit www.allaboutcookies.org
To opt out of being tracked by Google Analytics across all websites visit https://tools.google.com/dlpage/gaoptout
If you have a complaint regarding the use of your personal data please contact Grace Emmerson, 38 Fernbank Rd, Bristol, BS6 6PU or email firstname.lastname@example.org and I will do my best to help you.