Pavilion Hair & Beauty - Your Privacy
Changes are taking place to protect us from the misuse of our private data. It is very important we help you to become aware of your rights with regard to the data we at Pavilion Hair & Beauty hold and how it is used.
The General Data Protection Regulations (GDPR) are taking a step towards you having more control over how your data is used and how you want to be contacted not just from Pavilion Hair & Beauty but on every other website which provides services to EU citizens.
We will not share your Personal Data except with organisations such as your credit card company which needs the information to approve your payment on your card or where we are required to do so for legal purposes. Any Personal Data is stored securely on our personal computers and servers at www.pavilionhairandbeauty.co.uk or on paper/card held in a secure location. You may have also contacted us via Facebook, Facebook Messenger or Instagram and therefore some personal details may also be held there.
You always have the right to request your data is removed from our databases etc. or to see what data we hold for you. Just send an email to: firstname.lastname@example.org with your request.
What data do we collect about you?
"Personal Data" is any personal information which relates to an individual who can be identified from that data. We will not collect any Personal Data unless you have chosen to provide it to us. You agree that the Personal Data which you supply to us will be true, complete and accurate in all respects, and you agree to notify us immediately of any changes. We will deal with your Personal Data in compliance with the Data Protection Act (1998). Please note this applies only to Pavilion Hair & Beauty and not to other companies or organisations’ websites and social media platforms to which we may link. Pavilion Hair & Beauty is not responsible for the content, or the privacy practices employed by other sites.
We may process certain types of Personal Data about you as follows:
Your names, marital status, title, date of birth and gender
Your billing address, delivery address, email address and telephone numbers
Your financial data which may include your bank account and payment card details
Transaction data which may include details about payments between us and other details of purchases made by you
Technical data which may include your internet protocol addresses, browser type and version, browser plug-in types and versions, time zone setting and location, operating system and platform and other technology on the devices you use to access this site
Profile data which may include your username and password, your interests, preferences, feedback and survey responses
Usage Data may include information about how you use our website, products and services
Marketing and communications data may include your preferences in receiving marketing communications from us, any third parties and your communication preferences
How we collect your Personal Data?
We may collect data about you through a variety of different methods including (but not limited to):
Direct interaction: you may provide data by completing forms on our website or by communicating with us by post, phone, email or otherwise, including when you:
order our products or services
claim an offer, promotion or deal
subscribe to our service, newsletter or other publications
request resources or marketing materials be sent to you
enter a competition, prize draw, promotion or survey
leave a review, give us feedback or comments on our Facebook page
send a message to us via Facebook Messenger
follow us on Instagram or other social media platforms
Automated interaction: As you use our website, we may automatically collect anonymous technical data about your equipment, browsing actions and usage patterns. We collect this data by using cookies, server logs and similar technologies.
Third parties: We may receive anonymous data regarding your interactions with our website or social media platforms from various third parties and public sources. This may include (but is not limited to) Google Analytics.
We will only use Personal Data for the purpose it was collected for and will seek your consent if we need to use it for other purpose.
Financial details will only be used once and will not be stored after use. Financial processing may be completed by a third party such as PayPal. We abide by their security as applicable by their terms and conditions and UK Law.
How do we use the Personal Data collected?
We will collect and process Personal Data for the purposes of providing our services to you and the other purposes mentioned below. Personal Data may also be processed by other organisations on our behalf for the purpose of providing our services to you.
We may hold Personal Data relating to the transactions you enter into with us. We may disclose Personal Data to a party to the transaction, but only to assist your transaction, subject to your approval.
We may send letters and e-mail messages to you about new products and services which we consider may be of interest to you.
To correct or view your Personal Data, you can write to us at Pavilion Hair and Beauty, 136 Queens Road, Aberdeen, AB15 8BR, United Kingdom. A fee may be payable for viewing Personal Data.
Who do we share your Personal Data with?
We may disclose necessary Personal Data, acting in good faith, if we believe such action is necessary, for example:
To service providers for the purpose of opening, operating and servicing your account
To conform with a legal requirement or a request from authorities with which we will fully cooperate with
To protect and defend our rights or property
To enforce our Terms and Conditions, or to act to protect the interests of our registered customers or others
We expect all third parties to whom we transfer your data to respect the security of your Personal Data and to treat it in accordance with the law. We only allow such third parties to process your Personal Data for specified purposes and in accordance with our instructions.
You should be aware that when accessing social media platforms such as (but not limited to) Facebook, Instagram, Pinterest and YouTube via our website, you may pass on your Personal Data.
Safeguarding your Personal Data
We have taken suitable measures to safeguard and secure any Personal Data that we collect. We comply with, and safeguard, your rights under the GDPR (General Data Protection Regulation) at all times.
Other than the parties mentioned above, we will not transfer your Personal Date to a third party unless legally obliged to do so, where we are complying with legal obligations, involved in legal proceedings, a court order or a governmental authority.
We will advise you at the first reasonable opportunity of any security breach in the unlikely event that your Personal Data is compromised.
How long do we retain your Personal Data?
We will only retain your Personal Data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for Personal Data, we consider the amount, nature, and sensitivity of the Personal Data, the potential risk of harm from unauthorised use or disclosure of your Personal Data, the purposes for which we process your Personal Data and whether we can achieve those purposes through other means, and the applicable legal requirements.
By law we have to keep basic information about our customers (including contact details, financial and transactional data) for six years after they cease to be customers for tax purposes.
Your legal rights
We take your privacy very seriously. Demands from a third party company or legal authority requesting your Personal Data will only be honoured if the acting authority presents a relevant court order.
Under certain circumstances, you have rights under data protection laws in relation to your Personal Data. These include the right to:
request access to your Personal Data
request correction of your Personal Data
request deletion of your Personal Data
withdraw consent to hold your Personal Data
You can see more about these rights at the Information Commissioners Office website.
Personal Data stored outside the European Economic Area (EEA)
Countries outside of the EEA do not always offer the same levels of protection to your Personal Data, so European law has prohibited transfers of Personal Data outside of the EEA unless the transfer meets certain criteria.
Some of our third party service providers may be based outside the European Economic Area (EEA) so their processing of your Personal Data will involve a transfer of data outside the EEA. Whenever we transfer your Personal Data out of the EEA, we will do our best to ensure a similar degree of security by ensuring at least one of the following safeguards is implemented:
we will only transfer your Personal Data to countries that have been deemed to provide an adequate level of protection for Personal Data by the European Commission; or
where we use certain service providers, we may use specific contracts or codes of conduct or certification mechanisms approved by the European Commission which give Personal Data the same protection it has in Europe; or
where we use providers based in the United States, we may transfer data to them if they are part of the EU-US Privacy Shield which requires them to provide similar protection to Personal Data shared between the Europe and the US.
If none of the above safeguards is available, we may request your explicit consent to the specific transfer. You will have the right to withdraw this consent at any time.
If you wish to restrict or block the cookies which are set by us, you can do so by editing your browser settings. The ‘Help’ function within your browser should tell you how to do so:
For further information on how to delete cookies on your browser, visit www.aboutcookies.org
For further information on how to delete cookies on the browser of your mobile device, you will need to refer to your handset manual.