(Last Updated October 17, 2021)
This policy (together with our Terms and Conditions) sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it. By continuing to visit our website www.hmn-skincare.com and other HMN Skincare services, you accept and consent to the practices described in this policy.
When you interact with the Site or its Services, HMN Skincare may collect Personal Data and other information from you, as further described below.
3.Personal Information We Collect About You (PIPEDA)
According to the Personal Information Protection and Electronic Documents Act, 2000 (PIPEDA), “personal information” means information about an identifiable individual. The information you provide to HMN Skincare is considered personal information it is possible to relate it back to you through your name, address, e-mail address, telephone number and any other information that can identify you. If information cannot be related to an identifiable individual it is considered anonymous. Whenever possible, HMN Skincare works with anonymous information. This privacy statement does not apply to anonymous information.
4.Personal Data you provide to us
5.Non-Identifiable or Aggregated Data
When you interact with HMN Skincare through our Site or Services, we receive and store certain personal non-identifiable information. This information is collected passively and cannot presently be used to specifically identify you as a person. We may store such information or such information may be included in information databases that are owned and maintained by HMN Skincare, its affiliates, agents or service providers. We also use “cookies” to collect personal non-identifiable information, such as your IP address, browser type, domain name, and the HMN Skincare website pages that you visit. More information concerning cookies is provided below.
From time to time, we may use one or more third-party online advertising networks to serve ads on our behalf, onto the Internet. Said third-party network may collect anonymous information about your visits to our website and record your interaction with our ads. This accomplished with features such as cookies, action tags, web beacons, and/or GIF tags located within HMN Skincare. Occasionally, we may share anonymous information with third-party networks, in an aggregate form, to help us analyze and improve our website for future use. These third-party networks may also use information about your visit to our website and other websites in order to provide ads about goods and services that may strike your interest.
If you have elected to receive marketing emails from us, we retain information about your marketing preferences for a reasonable period of time from the date you last expressed interest in our services, such as when you last opened an email from us or ceased using your our materials. We retain information derived from cookies and other tracking technologies for a reasonable period of time from the date such information was created.
9.Children Under Age
HMN Skincare is directed to adults and does not knowingly collect personal from children under the age of 13. If you are a child under the age of 13, you must have your parent’s or guardian’s consent, and provide said consent to HMN Skincare. If you are the parent or guardian of child under the age of 13 and you believe your child has provided personal information HMN Skincare, please email us at firstname.lastname@example.org.
The information we collect on HMN Skincare may be used to fulfill your requests or communicate special offers and other HMN Skincare promotions to you. When you contact us, we give you the opportunity to receive notifications about special offers and other HMN Skincare promotions.
We retain your data for as long as you have an account. When you close an account, we will delete your personal information. We may retain logs of automatically collected information (for internal analytics); your email address; your tax information; communications with you; and your transactional information (for auditing, tax, and financial purposes). When we no longer have a business reason for retaining data, we will delete or anonymize it.
If we receive legal process pertaining to your account, we will retain your data for as long as we in good faith believe is necessary to comply with the legal process. Similarly, if we believe that your account has been involved in wrongdoing, we may preserve your data to defend or assert our rights.
13.Do Not Track Disclosures
Various third parties are developing or have developed signals or other mechanisms for the expression of consumer choice regarding the collection of information about an individual consumer’s online activities over time and across third-party web sites or online services (e.g., browser do not track signals). Currently, HMN Skincare do not monitor or take any action with respect to these signals or other mechanisms.
We may share the information collected on HMN Skincare website with agents or contractors who provide support for HMN Skincare’ internal operations. Said parties may receive personally identifiable information- as such is needed to perform their duties. Please be assured that said parties may not use the information for any other purpose. If you do not want us to share such information, please email us at email@example.com.
15.Where we store your information
HMN Skincare has a data privacy officer who is responsible for ensuring that your personal information is collected, used, disclosed (shared) and retained in compliance with applicable privacy regulations.
However, the data that we collect from you may be transferred to, and stored at, a destination outside the European economic area (“EEA”) that may not be subject to equivalent data protection law.
16.Securing Personal Data
HMN Skincare takes reasonable steps to protect Personal Data via the Site from loss, misuse, and unauthorized access, disclosure, alteration, or destruction. But unfortunately, no electronic transmission of information via the internet is ever fully secure- carefully decide whether you want to send us information electronically before actually doing so.
17.Your Rights As A Data Subject
In some jurisdictions (for example, the member states of the European Union) you may be entitled to certain rights in and to your personal data, subject to certain conditions and exceptions contained in applicable law. These rights may include the following:
- Request us to confirm whether your personal data is processed by us, and if we do, to obtain access to your personal data and certain information about it.
- Require the correction of your personal data if it is inaccurate or incomplete.
- Direct us to stop processing your personal data under certain circumstances.
- Erase or delete your personal data, for example, where the data is no longer needed to achieve the purpose for which it was collected.
- Restrict the further processing of personal data
- Request us not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you (we currently do not engage in such processing and will notify you prior to doing so).
- Request to receive your personal data for transmission to, or to directly transmit to, another data controller in a structured, commonly-used and machine-readable format.
To protect your privacy and the security of your personal data, we will take reasonable steps to verify your identity before complying with such rights requests.
19.Payment Processing and Payment Processor
Payments made on the HMN Skincare website are made a payment gateway provider. You will be providing credit or debit card information directly to a payment gateway provider which operates a secure server to process payment details, encrypting your credit/debit card information and authorising payment.
20.Legal bases for processing EEA users Data
If you are an individual in the European economic area (EEA), we collect and process information about you only where we have legal bases for doing so under applicable EU laws. The legal bases depend on the services you use and how you use them. This means we collect and use your information only where:
- We need it to provide you the services, including to operate the services, provide customer support and personalized features and to protect the safety and security of the services;
- It satisfies a legitimate interest (which is not overridden by your data protection interests), such as for research and development, to market and promote the services and to protect our legal rights and interests;
- You give us consent to do so for a specific purpose; or
- We need to process your data to comply with a legal obligation.
If you have consented to our use of information about you for a specific purpose, you have the right to change your mind at any time, but this will not affect any processing that has already taken place. Where we are using your information because we or a third party (e.g. your employer) have a legitimate interest to do so, you have the right to object to that use though, in some cases, and this may mean no longer using the services
21.Your right to withdraw consent
Where the processing of your personal information by us is based on consent, you have the right to withdraw that consent without detriment at any time by contacting us. You can exercise the rights listed above at any time by contacting us. If your request or concern is not satisfactorily resolved by us, you may contact our data protection officer, via email: firstname.lastname@example.org.
He can provide further information about your rights and our obligations in relation to your personal data, as well as deal with any complaints that you have about our processing of your personal data.
22.Opting out of messages from us
To opt-out of any future promotional messages from us, you should unsubscribe in the body of the promotional message that was sent to you (found at the bottom of the email) or send an unsubscribe request to us at email@example.com. We will process your request within a reasonable time after receipt.
23.Opting out of interest-based advertising
The online advertising industry provides a service through which you may opt-out of receiving targeted ads from certain data partners and other advertising partners that participate in self-regulatory programs. We comply with the Self-Regulatory Principles for Online Behavioral Advertising set forth by the Digital Advertising Alliance (DAA) and the European Interactive Digital Advertising Alliance (“EDAA”). You can opt-out of targeted advertising from certain providers at www.aboutads.info/consumers. Please note that by opting out, you will continue to see generic advertising that is not tailored to your specific interests and activities.
Data portability is the ability to obtain some of your information in a format you can move from one service provider to another (for instance, when you transfer your mobile phone number to another carrier). Depending on the context, this applies to some of your information, but not to all of your information. Should you request it, we will provide you with an electronic file of your basic account information and the information you create on the spaces you under your sole control, like your personal bitbucket repository.
25.Additional EU Disclosures
If you are situated in the EU and have any complaints regarding our privacy practices as data controller, you have the right to make a complaint at any time to your local Supervisory Authority. We would, however, appreciate the chance to address your concerns before you approach your Supervisory Authority so please contact us in the first instance. If you are situated in the EU and have a complaint, please contact our privacy team
26.Provision of Personal Data and failure to provide Personal Data
Where we need to collect Personal Data by law, or under the terms of a contract we have with you and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you (for example, to provide you with our services). In this case, we will not be able to provide services to you
27.How long we keep information
How long we keep information we collect about you depends on the type of information, as described in further detail below. After such time, we will either delete or anonymize your information or, if this is not possible (for example, because the information has been stored in backup archives), then we will securely store your information and isolate it from any further use until deletion is possible.
28.Complaint to a Data Protection Authority
You have the right to submit a complaint concerning our data processing activities to our data protection officer
29.Complaints or Queries
If you have any queries regarding our data collection and protection practices or your rights, please do not hesitate to contact our data protection officer, at firstname.lastname@example.org.