Privacy Policy

Last updated:

Introduction

Candlevraromaer respects your privacy and is committed to protecting your personal data. This privacy policy explains how we collect, use, and safeguard your information when you use our personal styling services.

Information We Collect

When you engage with our styling services, we may collect the following information:

  • Name and contact details including email address and phone number
  • Information about your style preferences and wardrobe needs
  • Body measurements and sizing information when relevant to our services
  • Communication preferences and correspondence history
  • Payment information processed through secure third-party payment processors

How We Use Your Information

We use your personal information to:

  • Provide personalized styling consultation and services
  • Communicate with you about appointments, services, and recommendations
  • Process payments and manage service bookings
  • Improve our services and customer experience
  • Send you relevant styling tips and updates with your consent

Legal Basis for Processing

In accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws, we process your personal data based on the following legal grounds:

  • Consent: When you provide explicit consent for specific processing activities, such as receiving marketing communications or styling tips
  • Contract Performance: To fulfill our contractual obligations when you book and use our styling services
  • Legitimate Interests: To improve our services, analyze website usage, and ensure website security, where such processing does not override your rights and freedoms
  • Legal Obligation: To comply with applicable laws and regulatory requirements

Data Sharing and Third Parties

We may share your personal data with the following third-party service providers:

  • Google Analytics: We use Google Analytics to analyze website traffic and user behavior. Google Analytics collects information such as pages visited, time spent on pages, and referral sources. For more information, see Google's Privacy Policy at policies.google.com/privacy
  • Google Ads Conversion Tracking: We use Google Ads Conversion Tracking to measure the effectiveness of our advertising campaigns. This service may collect data about your interactions with our ads and website
  • Google Ads Remarketing: We use Google Ads Remarketing to show you relevant advertisements based on your previous visits to our website. You can opt out of personalized advertising through Google's Ad Settings
  • Google Maps API: We use Google Maps API to display location information on our contact page. When you interact with the map, Google may collect location data. See Google's Privacy Policy for more details
  • Payment Processors: We use secure third-party payment processors to handle payment transactions. These processors have their own privacy policies and security measures

All third-party service providers are contractually obligated to protect your data and use it only for the purposes we specify. We do not sell your personal data to third parties for marketing purposes.

International Data Transfers

Your personal data may be transferred to and processed in countries outside of Australia, including the United States and other countries where our third-party service providers operate. These countries may have different data protection laws than your country of residence.

When we transfer your data internationally, we ensure appropriate safeguards are in place to protect your information, including:

  • Standard contractual clauses approved by relevant data protection authorities
  • Verification that recipients have adequate data protection measures in place
  • Compliance with applicable international data transfer regulations

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this privacy policy, unless a longer retention period is required or permitted by law. Our data retention periods are as follows:

  • Service-related data: Retained for the duration of our business relationship and for up to 7 years after your last service booking for legal and accounting purposes
  • Marketing communications: Retained until you withdraw your consent or unsubscribe from our communications
  • Website analytics data: Retained for up to 26 months as per Google Analytics default settings, or as configured in our analytics account
  • Legal obligations: Some data may be retained longer if required by applicable laws, regulations, or legal proceedings

When personal data is no longer needed, we will securely delete or anonymize it in accordance with our data retention policies.

Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children without parental consent. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us immediately. If we become aware that we have collected personal information from a child without parental consent, we will take steps to delete such information from our systems.

Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the internet is completely secure.

Your Rights

You have the following rights regarding your personal data:

  • Right of Access: Request access to your personal data and receive a copy of the data we hold about you
  • Right to Rectification: Request correction of inaccurate or incomplete personal data
  • Right to Erasure: Request deletion of your personal data when it is no longer necessary or when you withdraw consent
  • Right to Restrict Processing: Request limitation of how we process your personal data in certain circumstances
  • Right to Data Portability: Receive your personal data in a structured, commonly used format and transfer it to another service provider
  • Right to Object: Object to processing of your personal data based on legitimate interests or for direct marketing purposes
  • Right to Withdraw Consent: Withdraw your consent at any time where processing is based on consent

To exercise any of these rights, please contact us using the information provided in the Contact Us section. We will respond to your request within 30 days in accordance with applicable data protection laws.

Policy Updates

We may update this privacy policy from time to time to reflect changes in our practices, services, or legal requirements. When we make material changes to this policy, we will:

  • Update the "Last updated" date at the top of this policy
  • Notify you by email if you have provided us with your email address
  • Display a prominent notice on our website for significant changes

We encourage you to review this privacy policy periodically to stay informed about how we protect your personal data. Your continued use of our services after any changes indicates your acceptance of the updated policy.

Contact Us

If you have questions about this privacy policy or wish to exercise your rights, please contact us at service@candlevraromaer.world or visit our contact page.

We use cookies to enhance your browsing experience. By continuing to use this site, you consent to our use of cookies.