Privacy Policy

 Last Updated: August 9, 2024

The privacy and security of your personal information is extremely important to us. This privacy notice explains how and why we use your personal data, to make sure you stay informed and to ensure you’re confident about giving us your information.

We’ll keep this page updated to show you all the things we do with your personal data. This notice only applies if you interact with Asa skin in any way (customer or employee) visit our website – desktop or mobile, email, call or write to us. In certain circumstances we may also provide an extra privacy notice, which will always refer to this page.

To be clear, we’ll never sell your personal data and will only share it with organisations we work with when it’s necessary and the privacy and security of your data is assured.

In this notice, whenever you see the words ‘we’, ‘us’, ‘our’, ‘Asa skin’, the ‘Site’,  it all refers to the Asa skin brand which is owned by Orisha Limited. For purposes of this Privacy Policy, “you” and “your” means you as the user of the Services, whether you are a customer, website visitor, or another individual whose information we have collected pursuant to this Privacy Policy.

This Privacy Policy describes how Asa skin (the “Site”, “we”, “us”, or “our”) collects, uses, and discloses your personal information when you visit, use our services, or make a purchase from www.asaskin.co.uk (the “Site”) or otherwise communicate with us regarding the Site (collectively, the “Services”).

Please read this Privacy Policy carefully.

Who are ‘we’?

Orisha is a privately owned Limited Company registered in the United Kingdom.

Orisha Ltd (Reg. Co. number 14590179) is a company that owns Asa skin, the beauty brand and a beauty product development house. We carry out commercial trading activities via our website www.asaskin.co.uk  where we promote and sell our current brands and products and share details of our new and upcoming brands.

If you have any questions in relation to this privacy notice or how we use your personal data they should be sent to [email protected].

How we collect and use your personal information

To provide the Services, we collect personal information about you from a variety of sources, as set out below. The information that we collect and use varies depending on how you interact with us.

In addition to the specific uses set out below, we may use information we collect about you to communicate with you, provide or improve the Services, comply with any applicable legal obligations, enforce any applicable terms of service, and to protect or defend the Services, our rights, and the rights of our users or others.

Some features of the Services may require you to directly provide us with certain information about yourself. You may elect not to provide this information, but doing so may prevent you from using or accessing these features.

 

What Personal Information We Collect

Your personal data (any information which identifies you, or which can be identified as relating to you personally for example, name, address, phone number, email address, personal account preferences; transactional data, such as purchase information; and technical data, such as information about cookies) will be collected and used by us.

We’ll only collect the personal data that we need.

We collect personal data in connection with specific activities such as placing an order, conducting research, employment etc.

You can give us your personal data by technical processes such as filling in forms on our website, comments, cookies, analytics, third-party embeds, making a purchase via our website, participating in discussion boards, subscribing to take part in research on our website or other social media functions on our website, entering a competition, promotion or survey or by corresponding with us (by phone, email) or in the future by creating an Asa skin account.  This personal data may include name, title, address, date of birth, age, gender, employment status, email address, telephone numbers, personal description, photographs, usernames and passwords.

Personal data provided by you

This includes information you give when interacting with us; when your placing an order or communicating with us. For example:

  • Personal details (name, date of birth, email, address, telephone, etc)
  • Financial information (payment information such as credit, debit card or PayPal details)
  • Order information including your name, billing address, shipping address, payment confirmation, email address, and phone number.
  • Account information including your username, password, security questions and other information used for account security purposes.
  • Shopping information including the items you view, put in your cart, reviews, referrals or gift cards, or purchases.
  • Customer support information including the information you choose to include in communications with us, for example, when sending a message through the Services.

 

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymised string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service Privacy Policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

 

Information We Collect about Your Usage

We may also automatically collect certain information about your interaction with the Services (“Usage Data”). To do this, we may use cookies, pixels and similar technologies (“Cookies”). Usage Data may include information about how you access and use our Site and your account, including device information, browser information, information about your network connection, your IP address and other information regarding your interaction with the Services.

 

Cookies

Like many websites, we use Cookies on our Site. We use Cookies to power and improve our Site and our Services (including to remember your actions and preferences), to run analytics and better understand user interaction with the Services (in our legitimate interests to administer, improve and optimise the Services). We may also permit third parties and services providers to use Cookies on our Site to better tailor the services, products and advertising on our Site and other websites.

If you leave a comment on our site you may opt in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Most browsers automatically accept Cookies by default, but you can choose to set your browser to remove or reject Cookies through your browser controls. Please keep in mind that removing or blocking Cookies can negatively impact your user experience and may cause some of the Services, including certain features and general functionality, to work incorrectly or no longer be available. Additionally, blocking Cookies may not completely prevent how we share information with third parties such as our advertising partners.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

 

Information from third parties

We may in the future, buy anonymous external data (e.g. census data, Experian MOSAIC, etc) and combine it with your personal data at an aggregated level to build profiles which may help us work out what you’re most likely to want to hear from us about and how.

We may obtain information about you from third parties, including from vendors and service providers who may collect information on our behalf, such as:

  • Companies who support our Site and Services.
  • Our payment processors, who collect payment information (e.g., bank account, credit or debit card information, billing address) to process your payment in order to fulfil your orders and provide you with products or services you have requested, in order to perform our contract with you.
  • When you visit our Site, open or click on emails we send you, or interact with our Services or advertisements, we, or third parties we work with, may automatically collect certain information using online tracking technologies such as pixels, web beacons, software developer kits, third-party libraries, and cookies.

Any information we obtain from third parties will be treated in accordance with this Privacy Policy. Also see the section below, Third Party Websites and Links.

WooCommerce

Using Woo Commerce, we collect information about you during the checkout process on our store, including products viewed, location, IP address, browser type, and shipping address. When you purchase from us, we collect your name, billing address, shipping address, email address, phone number, and payment details. This information is used to process payments, prevent fraud, and fulfil your orders.

What we collect and store

While you visit our site, we’ll track:

  • Products you’ve viewed: we’ll use this to, for example, show you products you’ve recently viewed
  • Location, IP address and browser type: we’ll use this for purposes like estimating taxes and shipping
  • Shipping address: we’ll ask you to enter this so we can, for instance, estimate shipping before you place an order, and send you the order!

We’ll also use cookies to keep track of basket contents while you’re browsing our site.

When you purchase from us, we’ll ask you to provide information including your name, billing address, shipping address, email address, phone number, credit card/payment details and optional account information like username and password. We’ll use this information for purposes, such as, to:

  • Send you information about your account and order
  • Respond to your requests, including refunds and complaints
  • Process payments and prevent fraud
  • Set up your account for our store
  • Comply with any legal obligations we have, such as calculating taxes
  • Improve our store offerings
  • Send you marketing messages, if you choose to receive them

If you create an account, we will store your name, address, email and phone number, which will be used to populate the checkout for future orders.

We generally store information about you for as long as we need the information for the purposes for which we collect and use it, and we are not legally required to continue to keep it.

We will also store comments or reviews, if you choose to leave them.

Who on our team has access

Members of our team have access to the information you provide us and can access:

  • Order information like what was purchased, when it was purchased and where it should be sent, and
  • Customer information like your name, email address, and billing and shipping information.

Our team members have access to this information to help fulfil orders, process refunds and support you.

Payments

We accept payments through WooCommerce and PayPal.

When processing payments, some of your data will be passed to PayPal, including information required to process or support the payment, such as the purchase total and billing information.

Please see the PayPal Privacy Policy for more details.

How we use your personal data

We’ll only use your personal data on relevant lawful grounds as permitted by the EU General Data Protection Regulation (from 25 May 2018)/UK Data Protection Act and Privacy of Electronic Communication Regulation.

Personal data provided to us will be used for the purpose or purposes outlined in any fair processing notice in a transparent manner at the time of collection or registration where appropriate, in accordance with any preferences you express. If asked by the police, or any other regulatory or government authority investigating suspected illegal activities, we may need to provide your personal data.

Your personal data may be collected and used to help us complete your order or request. Below are the main uses of your data:

Marketing communications

Your privacy is important to us, so we’ll always keep your details secure. We’d like to use your details to keep in touch about things that you may be interested in, but we will not do this without your specific consent.

If you choose to hear from us we may send you information based on what is most relevant to you or things you’ve told us you like. We may also show you relevant content online. This might be about products or competitions we think you might want to hear about.

We’ll only send these to you if you agree to receive them and we will never share your information with companies outside Orisha Limited inclusion in marketing. (We may however share cookie data with third parties to help with our own advertising targeting). If you agree to receive marketing information from us, you can change your mind at a later date.

Personal data provided to us may also be profiled to help us with advertising targeting. Or we may use your personal data to find online users with a similar profile to yourself who may be interested in our products or services.

We may sometimes use third parties to capture some of our data on our behalf, but only where we are confident that the third party will treat your data securely, in accordance with our terms and in-line with the requirements set out in the GDPR.

Providing Products and Services. 

We use your personal information to provide you with the Services in order to perform our contract with you, including to process your payments, fulfil your orders, to send notifications to you related to your account, purchases, returns, exchanges or other transactions, to create, maintain and otherwise manage your account, to arrange for shipping, facilitate any returns and exchanges and other features and functionalities related to your account.

Security and Fraud Prevention. 

We use your personal information to detect, investigate or take action regarding possible fraudulent, illegal or malicious activity. If you choose to use the Services and register an account, you are responsible for keeping your account credentials safe. We highly recommend that you do not share your username, password, or other access details with anyone else. If you believe your account has been compromised, please contact us immediately. If you are an EEA resident, the legal basis for these data processing activities is our legitimate interest in keeping our website secure for you and other customers, according to Art. 6 (1) (f) GDPR.

Communicating with You and Service Improvement. 

We use your personal information to provide you with customer support and improve our Services. This is in our legitimate interests in order to be responsive to you, to provide effective services to you, and to maintain our business relationship with you according to Art. 6 (1) (f) GDPR.

How you can change your contact preferences.

We’d love to keep in touch, but we understand that you might change your mind in the future. If you want to stop hearing from us we ensure it’s as east to opt out as opt in. All of our email marketing contains an unsubscribe link which will remove you from our email list immediately. Alternatively, you can email us directly at [email protected] and we’ll ensure that you are removed from all mailing lists.

Please note that you will continue to receive contact from us when required to provide relevant information in relation to services provided by us to you, for example order confirmation, order and delivery updates or feedback on our services.

We’ll always act upon your choice of how you want to receive communications (for example, by email, post or phone).

Recipients of data (third-party processing)

We may at times, pass your personal data on to third-party service providers contracted to us in the course of dealing with you. These may include for example but not limited to, couriers, fulfilment houses, credit card processing companies or other services required in the fulfilment of your order. In addition, this may also include marketing and advertising services. Any third parties that we may share your data with are obliged to keep your details securely, and to use them only to fulfil the legal purpose of our business. When they no longer need your data to fulfil this service, they will dispose of the details securely. We only use sub-contracted processors who have demonstrated sufficient guarantees of compliance.

If we wish to pass your sensitive personal data onto a third party we will only do so once we have obtained your consent unless we are legally required to do otherwise.

Retention period

We will endeavour to keep your information accurate and up to date, and not keep it for longer than is necessary. We are required to retain information in accordance with the law, such as information needed for income tax and audit purposes. How long certain kinds of personal data should be kept may also be governed by specific business-sector requirements and agreed practices.

We will generally process personal data for a period of six years. After this period, the data will be anonymised and used for reference purposes only.

Please be aware that no security measures are perfect or impenetrable, and we cannot guarantee “perfect security.” In addition, any information you send to us may not be secure while in transit. We recommend that you do not use insecure channels to communicate sensitive or confidential information to us.

 

Your rights as a data subject

At any point while we are in possession of or processing your personal data, you, the data subject, have the following rights:

  • The right to be informed
    • We will inform you of what personal information we collect and how this is used. This privacy notice is how we inform you of this information.
    • We will inform you of any changes to the way we process your data.
  • The right of access: You have the right to request a copy of the information that we hold about you.
  • The right of rectification: You have a right to correct data that we hold about you that is inaccurate or incomplete.
  • The right to erasure: In certain circumstances you can ask for the data we hold about you to be erased from our records.
  • The right to restrict processing: Where certain conditions apply to have a right to restrict the processing.
  • The right to data portability: You have the right to have the data we hold about you transferred to another organisation.
  • The right to object: You have the right to object to certain types of processing such as direct marketing.
  • Rights in relation to automated decision making and profiling: You also have the right not to be subject to automated processing or profiling.
  • Withdrawal of Consent: Where we rely on consent to process your personal information, you may have the right to withdraw this consent.
  • Appeal: You may have a right to appeal our decision if we decline to process your request. You can do so by replying directly to our denial.
  • Managing Communication Preferences: We may send you promotional emails, and you may opt out of receiving these at any time by using the unsubscribe option displayed in our emails to you. If you opt out, we may still send you non-promotional emails, such as those about your account or orders that you have made.

Profiling

We know it’s important to our customers that we use our resources appropriately. So, we use automated profiling and targeting to help us understand our customers and make sure that:

  • our communications (e.g. emails) and services (e.g. our website) are relevant, personalised and interesting to you
  • our services meet the needs of our customers
  • we use our resources responsibly and keep our costs down

We use specific tools to profile how you interact with us online, for example, Adobe Analytics, and Google Analytics. Much of the information we collect is aggregated, however we may also collect some personal data for the use of personalising your experience, optimising our marketing campaigns, and to ensure the site is functioning as intended.

The personal information that is collected includes transactional information (i.e. order number). We will also collect data on individual user activity when they create or log into an Asa skin account. This information takes the form of an encrypted string. If you’ve agreed that we can contact you for marketing purposes, we may also gather additional information about you from external sources, for example: updates to address and contact information, or publicly available information regarding your wealth, earnings and employment at an aggregate level. This analysis may be carried out by us or by third party organisations working for us. We may also host encrypted personal data on third party websites (e.g. social media platforms) to ensure that you only see relevant, personalised and interesting content from those organisations.

Third Party Websites and Links

Our Site may provide links to websites or other online platforms operated by third parties. If you follow links to sites not affiliated or controlled by us, you should review their privacy and security policies and other terms and conditions. We do not guarantee and are not responsible for the privacy or security of such sites, including the accuracy, completeness, or reliability of information found on these sites. Information you provide on public or semi-public venues, including information you share on third-party social networking platforms may also be viewable by other users of the Services and/or users of those third-party platforms without limitation as to its use by us or by a third party. Our inclusion of such links does not, by itself, imply any endorsement of the content on such platforms or of their owners or operators, except as disclosed on the Services.

Complaints

In the event that you wish to make a complaint about how your personal data is being processed by us, you have the right to lodge a complaint directly with our data protection representative: [email protected]

In the event you wish to make a compliant on how your initial complaint has been handled, you have the right to lodge a complaint directly with the supervisory authority. The contact details are:

Information Commissioner’s Office

Wycliffe House Water Lane Wilmslow Cheshire SK9 5AF

www.ico.org.uk

UK Calls – 0303 123 1113

Outside UK – +44 1625 545 700

Shopping Basket