SMA COSMETICS – Privacy Policy

Effective Date: 04/Sep/2025
Last Updated: 04/Sep/2025

At SMA Cosmetics (“we,” “our,” “us”), we value your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your data when you visit smacosmetics.co.uk, make a purchase, or interact with our services.

By using our website or providing your personal information, you agree to the terms of this Privacy Policy.

1. Information We Collect

We may collect the following types of personal and non-personal information:

a) Personal Information You Provide

• Name, billing/shipping address, email address, phone number.
• Payment details (processed securely by our payment providers; we do not store full card information).
• Account details when you register or log in.
• Messages, inquiries, or feedback you send us.

b) Automatically Collected Information

• IP address, browser type, operating system.
• Device information and browsing behavior on our website.
• Referrals (how you found our website).
• Analytics data from tools such as Google Analytics, Mixpanel, and Mouseflow.

c) Information from Third Parties

• Social media logins or interactions (e.g., “Log-in with Facebook,” “Like/Follow” buttons).
• Advertising platforms such as Google Ads and Facebook Ads for campaign performance and retargeting.

2. How We Use Your Information

We use your personal information for the following purposes:

1. Order Processing & Fulfillment
   • To process payments, ship products, and provide customer support.
2. Account Management
   • To create and maintain your account, including log-ins and security verification.
3. Customer Support
   • To respond to inquiries, complaints, and requests.
4. Marketing & Advertising
   • To send promotions, special offers, and newsletters (you may unsubscribe anytime).
   • To deliver personalized advertising via platforms such as Google Ads and Facebook Ads.
5. Analytics & Performance
   • To improve our website, monitor performance, and understand customer behavior.
6. Legal & Compliance
   • To comply with applicable laws, tax, fraud prevention, and security requirements.

3. Legal Basis for Processing

We process personal data under the following legal bases (as required by GDPR):

• Contractual necessity: To process your orders and provide requested services.
• Legitimate interests: To improve our services, secure our website, and market our products.
• Consent: For newsletters, promotions, and non-essential cookies.
• Legal obligation: To comply with applicable UK and EU laws.

4. Sharing Your Information

We do not sell your personal data. However, we may share it with trusted third parties for the following purposes:

• Payment processors (e.g., PayPal, Stripe) to securely handle payments.
• Shipping and logistics providers to deliver your orders.
• Analytics providers (Google Analytics, Mixpanel, Mouseflow) to analyze usage.
• Advertising partners (Google Ads, Facebook Ads) for targeted campaigns.
• Service providers who help us operate our website and IT systems.

All third parties are required to handle your data securely and in compliance with GDPR.

5. Cookies & Tracking Technologies

We use cookies and similar technologies to:

• Remember your preferences and settings.
• Improve website performance.
• Deliver targeted advertisements.
• Analyze visitor behavior.

For more details, please see our [Cookies Policy].

6. Data Retention

We will keep your personal information only for as long as necessary:

• To provide services and fulfill purchases.
• To comply with tax, accounting, and legal obligations.
• To resolve disputes and enforce our agreements.

After this period, your data will be securely deleted or anonymized.

7. Your Data Protection Rights

Under UK GDPR and EU GDPR, you have the right to:

• Access the personal data we hold about you.
• Request corrections of inaccurate or incomplete data.
• Request deletion of your data (“right to be forgotten”).
• Restrict or object to processing of your data.
• Request data portability (transfer of your data).
• Withdraw consent for marketing communications.
• File a complaint with the Information Commissioner’s Office (ICO) if you believe your rights have been violated.

To exercise your rights, please contact us (see Section 10).

8. Data Security

We implement appropriate technical and organizational measures to protect your data, including:

• Secure Sockets Layer (SSL) encryption.
• Secure payment gateways (we do not store card details).
• Restricted access to personal information.
• Regular monitoring for vulnerabilities and threats.

However, no method of online transmission or storage is 100% secure. While we take all precautions, we cannot guarantee absolute security.

9. International Data Transfers

Your data may be processed or stored outside the UK or EU, including in countries that may not offer the same level of protection. In such cases, we ensure appropriate safeguards (such as Standard Contractual Clauses) are in place.

10. Contact Us

If you have any questions about this Privacy Policy or how we handle your data, please contact us:

• By email: help@smacosmetics.co.uk
• By website: smacosmetics.co.uk/contact-us
• By phone: +44 (0) 7340 004001
• By post mail:
  NIGIN HAIR BOUTIQUE
  77 Market St
  Watford WD18 0PR
  United Kingdom

11. Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or services. The updated version will always be posted on this page with a revised “Last Updated” date.