This privacy policy was last updated on 28 September, 2024.

 

Miss Mafia Lashes (“we”, “our”, “us”) takes your privacy seriously, and we want you to know how we collect, use, share and protect your information.

This policy pertains to the personal data collected in connection with your interactions, usage, and experience on our website at www.missmafialashes.com (site). As outlined below, our data practices are dependent upon the way you engage with our Services.

 

If you do not want us to share personal data or feel uncomfortable with the ways we use information to deliver our Services, please do not use our Services.

 

Purpose

The purpose of this Privacy Policy is to inform users of our site of the following:

  1. The personal data we will collect;
  2. Use of collected data;
  3. Who has access to the data collected;
  4. The rights of Site Users; and
  5. The Sites cookie policy.

We gather personal data when, but not limited to, you create an account, publish content, reach out to our customer service team, interact with us on social media, or engage in any form of interaction with our platform.

 

Additionally, we may collect information pertaining to your past, present, or future physical or mental health and treatment. 

 

This Privacy Policy is in addition to the Terms of Service which can be found here.

Our Responsibilities

We are required by law to:

  1. Safeguard the confidentiality and security of your personal information.
  2. Adhere to the duties and practices outlined in this policy.
  3. Notify you promptly in the event of a breach that may compromise the privacy or security of your personal information.
  4. Refrain from selling your information without obtaining your explicit authorization.

Your Rights

Under most legislation including GDPR, dependant on where you live, you may have certain rights afforded to you when it comes to your privacy.  These rights are not absolute and may only apply in certain circumstances.  You may exercise your right to any of these rights where indicated on our site or by contacting us.

You have the following rights:

  1. Right to be informed;
  2. Right of access;
  3. Right to rectification;
  4. Right to erasure;
  5. Right to restrict processing;
  6. Right to data portability;
  7. Right to object; and
  8. Right to give instructions concerning the use of your data after your death

 

CONSENT

By using our site users agree that they consent to:

  1. The conditions set out in this Privacy Policy.

When the legal basis for us processing your personal data is that you have provided your consent to that processing, you may withdraw your consent at any time.  If you withdraw your consent, it will not make processing which we completed before you withdrew your consent unlawful.

 

You can withdraw your consent by advising us in writing and sending it to:-

 

Attention: Privacy Data Officer

Email: social@missmafialashes.com

LEGAL BASIS FOR PROGRESSING

We collect and process personal data about users in the EU only went we have a legal basis for doing so under Article 6 of the GDPR.

We rely on the following legal bases to collect and process the personal data of users in the EU:

  1. Users have provided their consent to the processing of their data for one or more specific purposes;
  2. Processing of user personal data is necessary for us or a third party to pursue a legitimate interest. Our legitimate interest is not overridden by the interests or fundamental rights and freedoms of users. 
  3. Processing of user personal data is necessary for us to take, at the request of a user, steps before entering a contract or for the performance of a contract to which a user is a party. If a user does not provide the personal data necessary to perform a contract the access to the service may be restricted or denied.
  4. Processing of user personal data is necessary to protect the life of the user or another natural person; and
  5. Processing of user personal data is necessary to a task carried out in the public in or in the exercise of our official authority.

 

PERSONAL DATA WE COLLECT

We only collect data that helps us achieve the purpose set out in this Privacy Policy.  We will not collect any additional data beyond the data listed below without notifying you first.

Data Collected Automatically

When you visit and use our Site, we may automatically collect and store the following information:

  1. IP address;
  2. Location;
  3. Hardware and software details;
  4. Clicked links; and
  5. Content viewed.

 

Data Collected in a Non-Automatic Way

We may also collect the following data when you perform certain functions on our site and app:

  1. First and Last name;
  2. Age;
  3. Date of birth;
  4. Sex;
  5. Email address;
  6. Phone number;
  7. Address;
  8. Payment information; and
  9. Any Auto filled data.

 

We gather data from you creating an account to use our services for yourself or a minor in which you are granting consent to use our Services.  We gather information such as but not limited to, your first and last name, date of birth, sex, email address, address and purchase history.

We gather technical data and information from software or systems hosting the Services, and from the systems, applications and devices that are used to access the Services.

We gather data concerning the content you contribute, such as articles, comments, or engagement with other users’ content. Additionally, we collect insights into your usage patterns within the Services, encompassing the Partner Content you explore, follow, and your interactions with such Partner Content.

Additionally, if you create or log into your account through a social media site or third-party service (like Facebook or Google), we will have access to certain information from that service, such as your name, email address, and profile picture, in accordance with the authorization procedures determined by such social media site or third-party service.

HOW WE USE PERSONAL DATA

Data collected on our site will only be used for the purposes specified in this Privacy Policy or indicated on the relevant pages of our products and check out page. We will not use your data beyond what we disclose in this Privacy Policy.

We use your data for multiple purposes, including but not limited to providing services, managing accounts, offering support, ensuring safety, and security, communicating with you, responding to legal requests, improving services, complying with legal obligations, and detecting and addressing fraudulent or harmful activities.

 

WHO WE SHARE PERSONAL DATA WITH

Employees

We may disclose user data to any member of our organisation who reasonably needs access to user data to achieve the purposes set out in this Privacy Policy.

Third Parties

Where reasonable and practicable to do so, we will collect your Personal Information only from you. However, in some circumstances we may be provided with information by third parties. In such a case we will take reasonable steps to ensure that you are made aware of the information provided to us by the third party.

Other Disclosures

We will not sell or share your data with other third parties, except in the following cases:

  1. If the law requires it;
  2. If it is required for any legal proceeding;
  3. To prove or protect our legal rights; and
  4. To buyers or potential buyers of this company in the even that we seek to sell the company.

If you follow hyperlinks from our Service to another site, please note that we are not responsible for and have no control over their privacy policies and practices.

 

HOW LONG WE STORE PERSONAL DATA

Your Personal Information is stored in a manner that reasonably protects it from misuse and loss and from unauthorized access, modification, or disclosure.

When your Personal Information is no longer needed for the purpose for which it was obtained, we will take reasonable steps to destroy or permanently de-identify your Personal Information. However, most of the Personal Information is or will be stored in client files which will be kept by us for a minimum of 7 years.

 

SECURITY MEASURES AND USER RESPONSIBILITIES

We employ commercially reasonable measures to safeguard the confidentiality and integrity of personally identifiable and health information that you share with us. It’s important to note, however, that no security measures can claim absolute perfection or imperviousness, and we cannot guarantee the complete security of your information.

 

While we take diligent precautions to ensure user data security and user protection, inherent risks may persist. The Internet, in general, can be susceptible to insecurity intermittently, and therefore, we cannot assure the security of user data beyond what is reasonably practical. We commit to our role in protecting your information, but it is equally crucial for you to exercise vigilance in safeguarding your own information.

Furthermore, it’s essential to recognize that we lack control over the actions of individuals with whom you or any other user may choose to share information. Hence, exercising caution in granting access to others and judiciously selecting the information you share becomes imperative.

HOW WE PROTECT YOUR DATA

We prioritize the security and confidentiality of your information and have implemented robust measures to ensure its protection. Our commitment to safeguarding your data includes the following key practices:

 

  1. Encryption: We use advanced encryption technologies to secure the transmission and storage of your data, ensuring that it remains confidential and protected from unauthorized access.
  2. Access Controls: Strict access controls are in place, limiting access to your information only to authorized personnel who require it for specific purposes. This helps prevent unauthorized use or disclosure.
  3. Secure Infrastructure: Our systems and infrastructure are designed with security in mind, incorporating industry best practices to create a secure environment for your data.
  4. Regular Audits: We conduct regular security audits and assessments to identify and address potential vulnerabilities, maintaining the integrity of our protective measures.

While we take these proactive steps to protect your data, it’s important for you to play a role in maintaining security. Please review our user responsibilities section to understand how you can contribute to keeping your information safe.

 

CHILDREN

Users must be at least 16 years old to access our website. We do not intentionally gather personal information from children under the age of 16. Personal data is collected only for individuals aged 16 and above, and this information is obtained with explicit consent from their parents or guardians.

 

MAKING A COMPLAINT – PRIVACY

Individuals may file a complaint with the data protection officer if they are dissatisfied with a decision regarding their confidential information or if they think that their confidential information may have been inappropriately used or disclosed.

 

COOKIE POLICY

A cookie is a small file, stored on a user’s hard drive by a website.  Its purpose is to collect data relating to the user’s browsing habits.  You can choose to be notified each time a cookie is transmitted.  You can also choose to disable cookies entirely in your internet browser, but this may decrease the quality of your user experience.

We use the following types of cookies with the Service:

  1. Functional Cookies

Functional Cookies are used to remember the selection you make on our site or app so that your selections are saved for your next visits;

  1. Analytical Cookies

Analytical Cookies allow us to improve the design and functionality of our Site and App by collecting data on how you access our site and app, for example data on the content you access, how long you stay on our site and app etc

  1. Targeting Cookies

Targeting cookies collect data on how you use the site and app and your preferences.  This allows us to personalize the information you see on our site for you;

  1. Third-Party Cookies

We may use third-party cookies. Third-Party cookies are created by a website other than ours. 

 

INTERNATIONAL DATA TRANSFERS

Miss Mafia Lashes is headquartered in the United States, and our information processing and storage predominantly occur on servers situated within the United States. However, depending on factors like user and service provider locations, we may also store data on servers and equipment in various countries.

By accessing or using our Services, or by providing information to us, you explicitly consent to the processing, transfer, and storage of information both within the U.S. and in other countries. It’s important to acknowledge that the rights you possess under local law may not be identical in all jurisdictions.

For the transfer of personal data from users in the EU, EEA and UK, we rely on the Standard Contractual Clauses approved by the European Commission for such transfers or other transfer mechanisms deemed ‘adequate’ under applicable laws.

 

MODIFICATIONS

This Privacy Policy may be amended from time to time in order to maintain compliance with the law and to reflect any change to our data collection process.  When we amend this Privacy Policy we will update with “Effective Date: at the top of this Privacy Policy. We recommend that our users periodically review our Privacy Policy to ensure that they are notified of any updates.  If necessary, we may notify users by email of changes to this Privacy Policy.

 

COMPLAINTS

If you have any complaints about how we process your personal data, please contact us through the methods listed in the Contact Information section of our site or app, so that we can, where possible, resolve the issue.  If you feel that we have not addressed your concern in a satisfactory manner, you may contact a supervisory authority.  You also have the right to directly make a complaint to the supervisory authority.

 

CONTACT INFORMATION

If you have any questions, concerns or complaints, you can contact our data protection officer at:

Email: social@missmafialashes.com

Close