Effective Date: April 11, 2025
Website: lumispafacecare.com
At Lumispa Face Care, your privacy matters to us. This GDPR-compliant Privacy Policy explains how we collect, use, store, and protect your personal data when you visit or interact with lumispafacecare.com.
We are committed to ensuring your personal information is handled with transparency and care in accordance with the General Data Protection Regulation (GDPR).
1. Who We Are
Lumispa Face Care is the data controller responsible for your personal data collected through lumispafacecare.com.
If you have any questions or requests related to your personal data, you can contact us at:
Email: [email protected]
2. What Data We Collect
We may collect and process the following types of personal data:
- Name and contact information (such as email address)
- Billing and shipping details
- Account login information (if you create an account)
- Purchase history
- IP address and device/browser information
- Site usage data through cookies and analytics tools
- Communication preferences and interactions
3. How We Use Your Data
We use your personal data for the following purposes:
- To process and fulfill orders
- To respond to inquiries or customer service requests
- To send newsletters, offers, or updates (with your consent)
- To personalize your shopping experience
- To improve our website and services
- To prevent fraud or misuse of our site
4. Legal Basis for Processing
We process your personal data under the following lawful bases:
- Your consent
- Contractual necessity (e.g., to fulfill an order)
- Legal obligation (e.g., tax or accounting requirements)
- Legitimate interest (e.g., improving user experience)
5. Sharing Your Data
We do not sell or rent your personal data. We may share it with trusted third parties only when necessary, such as:
- Payment processors
- Shipping and logistics partners
- IT and hosting service providers
- Legal and regulatory authorities when required
All partners are GDPR-compliant and only process data on our instructions.
6. International Data Transfers
If we transfer your data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or partner compliance with frameworks like the EU-U.S. Data Privacy Framework.
7. Data Retention
We retain your personal data only as long as necessary for the purposes it was collected. For example:
- Order data is retained for accounting and tax compliance
- Newsletter data is kept until you unsubscribe
- Analytics data may be stored for up to 26 months
8. Your GDPR Rights
Under GDPR, you have the right to:
- Access your personal data
- Correct or update inaccurate data
- Request data deletion (“right to be forgotten”)
- Restrict or object to processing
- Data portability (receive a copy of your data)
- Withdraw consent at any time
- Lodge a complaint with a data protection authority
To exercise any of these rights, email us at [email protected]
9. Cookies
We use cookies and similar technologies to improve your experience, remember your preferences, and analyze site traffic. You can manage cookie settings through your browser or our cookie banner.
For full details, see our Cookie Policy.
10. Security
We use secure technologies and best practices to protect your data from unauthorized access, loss, or misuse. This includes SSL encryption, secure payment gateways, and access controls.
11. Changes to This Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page with a revised effective date. We encourage you to review it periodically.
Contact Us
If you have any questions about this Privacy Policy or how we handle your data, contact us at:
Email: [email protected]
Website: lumispafacecare.com
Your trust is important to us. Thank you for choosing Lumispa Face Care.