Privacy Policy
1. Introduction
At aterriblebeautyisborn.com (“we,” “our,” or “us”), we are firmly committed to protecting the privacy and personal data of every visitor, customer, and user (“you” or “your”). This Privacy Policy outlines the type of personal data we collect, the purposes for which we use it, how we store and protect it, and your rights under applicable privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We are dedicated to upholding the highest standards of transparency, accountability, and security in all aspects of data processing.
2. Scope of This Policy and Role of Data Controller
This Privacy Policy applies to all personal data collected via aterriblebeautyisborn.com, as well as related services, features, communication channels, and digital interactions. For the purposes of data protection legislation, aterriblebeautyisborn.com is the “data controller” for the personal data we obtain, meaning we determine the purposes and means of its processing.
If you reside in the European Economic Area (EEA) or the United Kingdom (UK), this Privacy Policy reflects our compliance with GDPR. If you are a resident of California, USA, this Policy also serves to inform you of your rights under the CCPA.
3. Categories of Personal Data We Process
We may collect and process the following categories of personal data, depending on your interaction with aterriblebeautyisborn.com:
a. Usage Data
This includes information about how you access and use our website, including your browser type, IP address, device identifier, operating system, access times, pages viewed, referring URLs, interaction data, and session analytics.
b. Account Data
When you register or create an account, we may process information such as your full name, billing and shipping address, email address, and telephone number.
c. Profile Data
This comprises any voluntarily provided information such as purchase history, account preferences, saved items, feedback, and behavioral data gathered through user navigation or product engagement.
d. Communication Data
When you contact us (e.g., via email, contact forms, or live chat), we collect data related to those communications, such as the content, channel, date, and time.
e. Technical Data
We collect technical information about your device and systems used to interact with our services, including internet connection data, time zone settings, browser plug-ins, and diagnostic logs.
f. Transaction Data
For purchases and order fulfillment, we process data such as your order history, product selections, payment method details (excluding full credit card numbers, which are processed securely by third-party processors), and shipping information.
g. Preference Data
This includes marketing preferences, communication consents, language selections, product interests, and related data to personalize your user experience.
4. Legal Bases for Processing
We process your personal data based on one or more of the following lawful bases:
– Your Consent (GDPR Art. 6(1)(a)): For example, when you sign up for newsletters or opt into marketing communications.
– Contractual Necessity (GDPR Art. 6(1)(b)): To fulfill our obligations in service provision, including order management and account maintenance.
– Legitimate Interests (GDPR Art. 6(1)(f)): For operational management, fraud prevention, website security, usage analysis, and service improvement.
– Legal Obligation (GDPR Art. 6(1)(c)): To comply with applicable legal or regulatory obligations.
For residents of California, we process personal information as defined by the CCPA and provide the right to opt out of the “sale” of your personal information (as defined by the law).
5. Your Rights
If you are located in the EEA, UK, or California, you have the right to exercise the following data subject rights:
– Right of Access: Obtain a copy of the personal data we hold about you.
– Right to Rectification: Correct inaccuracies in your personal data.
– Right to Erasure: Request deletion of your personal data under certain conditions.
– Right to Restrict Processing: Request a temporary or permanent halt on data processing.
– Right to Data Portability: Receive your data in a structured, commonly-used machine-readable format.
– Right to Object: Object to our use of your personal data based on legitimate interests or direct marketing purposes.
– Right Not to Be Subject to Automated Decision-Making: Including profiling, unless necessary for a contract or with your explicit consent.
To exercise any of these rights, please contact us at [email protected]. For California residents, verified requests under CCPA will be handled within the timelines stipulated by law.
6. Security Measures
We employ robust organizational and technical measures to protect your data, including:
– Secure Sockets Layer (SSL) encryption for data in transit
– Access control protocols with restricted permissions
– Regular security audits and vulnerability scanning
– Secure backups and disaster recovery procedures
– Staff training and internal policies on data handling and confidentiality
Despite these safeguards, no system can be guaranteed 100% secure. We urge users to take sensible precautions, including using strong passwords and protecting their accounts from unauthorized access.
7. International Transfers
Where your personal data is transferred outside of the EEA or UK, we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission. For transfers to the United States or other third countries, we assess all vendors for privacy adequacy and specific regional compliance requirements.
8. Data Retention
We retain personal data only for as long as necessary for the purposes for which it was collected. Unless a longer retention period is required by law, we generally adhere to the following retention guidelines:
– Usage and Technical Data: retained for up to 26 months for analytics and service optimization.
– Account and Profile Data: retained during account activity and up to 6 years following account deletion to comply with legal obligations.
– Communication Data: retained for up to 2 years for support trails and quality assurance.
– Transaction Data: retained for 7 years for tax and audit purposes.
– Preference and Consent Data: stored until revoked by the user.
9. Cookie Policy
aterriblebeautyisborn.com uses cookies and similar technologies to enhance your user experience, monitor site performance, and deliver personalized content. We categorize cookies as follows:
– Essential Cookies: Enable basic site functionality such as secure logins and shopping cart retention.
– Functional Cookies: Remember your preferences and settings to improve usability.
– Analytics Cookies: Help us understand user behavior and measure traffic (e.g., Google Analytics).
– Performance Cookies: Facilitate site optimization by tracking load times, errors, and responsiveness.
10. Cookie Management and Compliance
Users are provided with clear options to manage cookie preferences via our Consent Management Platform (CMP), in accordance with GDPR and CCPA. Upon your first visit to aterriblebeautyisborn.com, you will be prompted to accept or customize your cookie settings.
You can revoke or modify your consent at any time by accessing the footer link entitled “Cookie Settings” or by adjusting your browser settings. Disabling non-essential cookies may affect some functionality of the website.
11. Children’s Privacy
Our services are not directed at children under the age of 13. We do not knowingly collect, store, or process personal data from children under 13 without verifiable parental consent. If you believe that your child has provided personal information to aterriblebeautyisborn.com, please contact us immediately at [email protected] so that we may take appropriate action.
12. Policy Updates
We may update this Privacy Policy from time to time to reflect changes in our services, applicable laws, or privacy practices. All updates will be posted on this page, and where required by law, we will notify you via prominent notice or direct communication. Continued use of aterriblebeautyisborn.com following such changes indicates your agreement with the revised policy.
13. Contact Us
Should you have any questions, requests, or concerns regarding this Privacy Policy or the handling of your personal data, please contact our privacy team at:
Email: [email protected]
Website: https://aterriblebeautyisborn.com
We uphold a privacy-first commitment and make every effort to honor your rights and expectations in line with global data protection laws. For any privacy concerns, you are encouraged to reach out directly to our team.