Kasie Beauty (we) are committed to protecting and respecting your privacy.
This policy, together with any other documents referred to in it, sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us.
Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.
By visiting this website, you are accepting and consenting to the practices described in this policy.
Along with our business and internal computer systems, this website is designed to comply with the following national legislation with regards to data protection and user privacy:
- UK Data Protection Act 1988 (DPA)
- EU Data Protection Directive 1995 (DPD)
- EU General Data Protection Regulation 2018 (GDPR)
This site’s compliance with the above legislation, all of which are stringent in nature, means that this site is likely compliant with the data protection and user privacy legislation set out by many other countries and territories as well.
- Information we collect from you
We will collect and process the following categories of data about you:
- Information you give us. This is information about you that you give us by filling in forms on the website, interacting with the Site or by corresponding with us e-mail or otherwise. It includes information you provide when you sign up to our newsletter service, or enter a comment on a post.
The information you give us will include your name, e-mail address , as well as preliminary information about your website (example blog or business url).
- Information we collect about you. This is information that we collect upon your consent when you visit the site and during your time on the Site. It typically involves technical information and is often collected using small data files called “cookies”. This information helps us to provide you with a good experience when you browse the Site and also to indicate where the Site requires improvement.
Our website uses Google Analytics to collect information about how visitors use our website. We anonymise this data at the point of collection and automatically delete user and event data that is older than two years.
Contact Forms and Emails
Should you choose to contact us using email or a posted comment, none of the data that you supply will be stored by this website or passed to / be processed by any of the third party data processors defined in section 6.0. Instead the data will be collated into an email and sent to us over the Simple Mail Transfer Protocol (SMTP). Our own SMTP servers are protected by TLS (sometimes known as SSL) meaning that the email content is encrypted using SHA-2, 256-bit cryptography before being sent across the internet. The email content is then decrypted by our local computers and devices. However, not all mail servers are secured in such a way. Therefore, we would suggest that you always consider email as an insecure medium and not include personal, confidential or otherwise sensitive information within an email.
If you choose to join our email newsletter, the email address that you submit to us will be forwarded to MailChimp who provide us with email marketing services. We consider MailChimp to be a third party data processor. The email address that you submit will not be stored within this website’s own database or in any of our internal computer systems.
Your email address will remain within MailChimp’s database for as long as we continue to use MailChimp’s services for email marketing or until you specifically request removal from the list. You can do this by unsubscribing using the unsubscribe links contained in any email newsletters that we send you or by requesting removal via email. When requesting removal via email, please send your email to us using the email account that is subscribed to the mailing list.
If you are under 16 years of age you MUST obtain parental consent before joining our email newsletter.
While your email address remains within the MailChimp database, you will receive periodic (approximately one per month) newsletter-style emails from us.
- Uses made of the information
All information about you that we collect or receive, whether of a personal or technical nature, may be used by us in the following ways:
- To Send information, respond to inquiries, and/or other requests or questions
- To provide you with information you have consented to, about other goods and services that we offer that are similar or relevant to those that you have already enquired about, such contact will only be made by email from which you can opt out at any time; To notify you about changes to our services;
- To administer the Site and for internal operations, including troubleshooting, system and security updates, data analysis, testing, research, statistical and survey purposes, if consented to via cookie consent;
- To improve the Site to ensure that content is presented in the most effective manner for you and for your computer, where consent is obtained via cookies;
- To allow you to participate in interactive features of our service, when you choose to do so, if consent was obtained via cookies;
- As part of our efforts to keep the Site safe and secure;
- To measure or understand the effectiveness of advertising we serve to you and others, and to deliver relevant advertising to you; and
- To comply with our record keeping and information storage obligations and policy (please see the “Where We Store Your Personal Data” section below for more details).
Our Third Party Data Processors
We use a number of third parties to process personal data on our behalf. These third parties have been carefully chosen and all of them comply with the legislation set out above. Both of these third parties are based in the USA and are EU-U.S Privacy Shield compliant.
- How we store your personal information
If you submit a query on this website some personal information will be sent by email, as outlined above.
Pseudonymisation is a recent requirement of the GDPR which many web application developers are currently working to fully implement. We are committed to keeping it as a high priority and will implement it on this website as soon as we are able to.
All information that you provide to us is stored on a third party secure server, and we will take reasonable steps to protect your information in accordance with this policy, including (without limitation):
- Installing a secure firewall;
- Using anti-virus protection software;
- Encrypting data; and
- Carrying out regular back-ups.
All data sent via website forms is passed through a third party relay service and deleted after 30 days. All traffic (transferral of files) between this website and your browser is encrypted and delivered over HTTPS.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of any data transmitted to the Site; and any such transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
- Your rights
You have the following rights under law in respect of your personal information:
- The right to be informed about the collection and use of your personal information;
- The right of access to your information to verify the legality of our use of it;
- The right to request that inaccurate or incomplete information about you is rectified;
- The right to request the deletion or removal of your information where there is no further reason for us to use it (such as you have withdrawn your consent or we no longer provide your children with education);
- The right to restrict the use of your information;
- The right to obtain and reuse the information that we have about you for your own purposes;
- The right to object to certain uses (such as for marketing purposes); and
- The right not to be subject to a decision that has a legal effect on you that has been based on an automated decision.
Should you wish to exercise any of these rights, you may do so at any time by writing to us at the address given below.
If you feel that your rights have been breached in any way, you should contact (insert name of person) at the address given above or lodge an official complaint with the Information Commissioner’s Office via their website (https://ico.org.uk) or by writing to: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF.
The Site may, from time to time, contain links to and from the websites of our advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
- Data Breaches
We will report any unlawful data breach of this website’s server or of any of our third party data processors to any and all relevant persons and authorities within 72 hours of the breach if it is apparent that personal data stored in an identifiable manner has been stolen.