Privacy Policy
1. Introduction
At Phase Hair (“we,” “us,” or “our”), accessible at phase-hair.com, your privacy is of paramount importance to us. We are firmly committed to protecting your personal data and ensuring full compliance with applicable data protection laws, including the European Union’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, process, store, and protect your personal information, and it serves to provide complete transparency regarding your rights and our obligations.
2. Scope and Data Controller
This Privacy Policy applies to all users and visitors of the website phase-hair.com. For the purposes of applicable data protection laws, Phase Hair is the data controller responsible for your personal data. Any references to “you” or “your” refer to the visitors and users of our website, customers, and individuals whose personal data we process in connection with our operations. If you have questions about this Privacy Policy or how your data is handled, please contact us at [email protected].
3. Categories of Personal Data Processed
We may collect, use, store, and transfer the following categories of personal data:
a) Usage Data: Includes information such as your IP address, browser type and version, time zone setting, browser plug-ins, location, operating system, platform, and other technology on the device you use to access phase-hair.com, as well as how you interact with our website.
b) Account Data: Includes personal identifiers such as your full name, billing and shipping addresses, email address, and phone number, which are gathered at account creation or order submission.
c) Profile Data: Encompasses purchase history, product preferences, user behavior, and personal interests defined through interactions with the website and its services.
d) Communication Data: Includes records of your correspondence with us, such as contact form submissions, support requests, service feedback, and any other communications.
e) Technical Data: Covers device-specific data, connectivity status, diagnostic logs, and security parameters that inform our system about the hardware and network you use.
f) Transaction Data: Includes payment card information (processed securely through third parties), order details, delivery addresses, billing records, and refund processing.
g) Preference Data: Marketing and communication preferences you express, including your opt-in status for newsletters, promotional messages, and product recommendation preferences.
4. Legal Bases for Processing
We process personal data only where we have a lawful basis under GDPR, CCPA, and other relevant legislation:
– Contract Performance: To fulfill obligations related to product purchases, service delivery, and order management.
– Legitimate Interests: To analyze usage for service improvements, fraud prevention, and ensuring website functionality.
– Consent: For sending marketing communications and using non-essential cookies.
– Legal Obligation: To comply with statutory requirements, tax law, audit obligations, or regulatory compliance.
5. Your Data Protection Rights
Subject to legal limitations under GDPR or CCPA, you are entitled to exercise the following rights:
– Right to Access: You may request a copy of the personal data we hold about you.
– Right to Rectification: You can request correction of inaccurate or incomplete personal data.
– Right to Erasure: Under certain conditions, you may request deletion of your personal data.
– Right to Restriction: You may request a limitation on how we process your data.
– Right to Portability: You may request that your data be provided to you or another data controller in a structured, commonly used, machine-readable format.
– Right to Object: Where processing is based on legitimate interest or direct marketing, you may object at any time.
To exercise any of the above rights, please contact us at [email protected].
6. Security Measures
We implement appropriate technical and organizational security measures to safeguard your data against unauthorized access, loss, misuse, alteration, or disclosure. These include, but are not limited to:
– SSL/HTTPS encryption for all website data transmission
– Access control protocols
– Multi-factor authentication for administrative access
– Secure data backups and disaster recovery systems
– Staff training on data protection and confidentiality
7. International Transfers
If your data is transferred outside of the European Economic Area (EEA) or your country of residence, we will ensure adequate protection is afforded by implementing safeguards such as:
– Standard Contractual Clauses approved by the European Commission
– Data Protection Agreements with international processors
– Compliance with Privacy Shield frameworks (where applicable)
8. Data Retention
We retain your personal information only for as long as necessary for the purposes for which it was collected and in accordance with applicable laws:
– Usage Data: retained for up to 12 months for analytics and performance review.
– Account and Profile Data: retained for 6 years following account closure or last activity for tax and legal compliance.
– Communication Data: retained for 2 years following last user interaction.
– Transaction Data: retained for 7 years in accordance with accounting obligations.
– Preference Data and Marketing Permissions: maintained until withdrawal of consent or inactivity exceeding 24 months.
9. Cookies and Tracking Technologies
phase-hair.com uses cookies and similar tracking technologies to enhance your website experience. Cookies used fall into the following categories:
– Essential Cookies: Required for core functionality like security, user authentication, and cart processes.
– Functional Cookies: Enable features such as language preferences and saved settings.
– Analytics Cookies: Help us measure and analyze traffic, using tools like Google Analytics.
– Performance Cookies: Optimize page load speeds, responsiveness, and navigation.
10. Cookie Management and Compliance
Before placing non-essential cookies on your device, we request your consent in compliance with GDPR and CCPA. You can manage cookie preferences through:
– The cookie consent banner on your first visit.
– Adjusting settings in your web browser to refuse or delete cookies.
– Opt-out mechanisms supported under the CCPA, such as the “Do Not Sell My Personal Information” link (where applicable).
Please note that disabling certain cookies may impact the website’s functionality.
11. Children’s Privacy
We do not knowingly collect or solicit personal data from individuals under the age of 13. If we become aware that data from a child has been collected without parental or guardian consent, we will take immediate steps to delete such information. If you believe that a minor has provided us with personal information, please contact us promptly at [email protected].
12. Policy Updates
We reserve the right to amend this Privacy Policy at our discretion and at any time to adapt to evolving laws or business practices. Any changes will be reflected on phase-hair.com, and we encourage users to review the policy periodically to remain informed. Where material changes occur, we will provide prominent notice or obtain renewed consent where required by law.
13. Contact Us
For any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact:
Email: [email protected]
Website: https://phase-hair.com
We are fully committed to GDPR and CCPA compliance and to ensuring that your information is handled securely and respectfully. If you believe your rights under data protection laws have been infringed, we encourage you to reach out so we can address your concerns.