Privacy Policy
At Lip Care Center (“we”, “us”, “our”), accessible at lipcarecenter.com, we are firmly committed to safeguarding the privacy and personal data of our visitors, customers, and stakeholders. This Privacy Policy explains how we collect, use, disclose, store, and protect your personal data, in compliance with applicable international laws including the European Union General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). Your trust and privacy are at the heart of our commitment to ethical and transparent data handling.
1. Scope of this Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through lipcarecenter.com, and associated channels such as customer service communications, marketing campaigns, and retail transactions. Lip Care Center is the data controller for all personal information collected, meaning we determine the purposes and means of processing your personal data.
2. Categories of Data Processed
We may collect and process the following categories of personal information:
– Usage Data: includes details on how you interact with our website, such as your device’s IP address, browser type, geographic location, referral source, length of visit, page views, and navigation paths.
– Account Data: includes full name, billing and delivery address, email address, phone number, and any account credentials you provide when registering or transacting on our website.
– Profile Data: includes your interests, preferences, purchase history, feedback, and customer behavior data to better tailor our offerings.
– Communication Data: includes the contents of any messages or inquiries you send, including support requests, emails, and message history with our representatives.
– Technical Data: includes information about the device you use to access lipcarecenter.com, such as operating system, screen resolution, language settings, and time zone configuration.
– Transaction Data: includes records of products or services you have purchased, payment details (excluding full payment card details), delivery and billing information.
– Preference Data: includes your preferences in receiving marketing from us, communication settings, and indicated areas of interest.
3. Legal Bases for Data Processing
We process your data on the following lawful bases:
– Consent: where you have given explicit permission for us to process your personal data for specific purposes, especially in relation to marketing materials or cookies not strictly necessary for site functionality.
– Contract: where processing is necessary for the performance of a contract (e.g., when you purchase a product or register an account).
– Legal Obligation: where processing is required to comply with legal obligations under applicable law.
– Legitimate Interests: where processing is necessary for purposes such as website security, fraud prevention, marketing research, and improving customer service, provided such interests are not overridden by your data protection rights.
4. Your Rights
Under GDPR and CCPA, you may exercise the following rights, subject to verification procedures:
– Right of Access: obtain confirmation regarding whether we process your personal data and access that data.
– Right to Rectification: correct or update inaccurate or incomplete data.
– Right to Erasure (“Right to be Forgotten”): request deletion of your data when processing is no longer necessary, or you withdraw consent.
– Right to Restriction: request the limitation on the processing of your data under certain conditions.
– Right to Portability: receive a digital copy of the personal data you provided, in a structured, commonly used format.
– Right to Object: object to certain types of processing, including direct marketing and processing based on legitimate interests.
– Right Not to Be Subject to Automated Decision-Making: we do not subject users to decisions based solely on automated processing that has legal or similarly significant effects.
Requests to exercise your rights may be submitted to [email protected].
5. Security Measures
We employ robust technical and organizational safeguards to protect your data:
– Data is encrypted in transit and at rest using industry-standard technologies.
– Access to user data is strictly limited to authorized personnel under confidentiality agreements.
– Routine backups are maintained to ensure data integrity and continuity.
– Staff receive regular training on data protection principles and secure data handling.
6. International Data Transfers
Where data may be transferred outside the European Economic Area (EEA) or other regions with differing data protection laws, such transfers will only occur:
– Under Standard Contractual Clauses approved by the European Commission or other applicable regulators.
– Where the destination jurisdiction ensures adequate data protection standards.
– Only to trusted third-party service providers who demonstrate compliance with applicable data protection and privacy laws.
7. Data Retention
We retain personal data only for as long as is necessary to fulfill the purposes for which it was collected. Retention periods vary by category:
– Usage and Technical Data: retained up to 24 months for analytics and performance optimization.
– Account and Profile Data: retained while the account remains active and up to 6 years thereafter for legal and administrative purposes.
– Transaction Data: retained for 6 years in accordance with legal accounting and tax recordkeeping obligations.
– Communication Data: retained for 3 years to ensure continuity in support and service quality.
– Preference Data: retained unless and until user preferences are changed or consent is withdrawn.
8. Cookie Policy
lipcarecenter.com uses cookies and similar technologies for several purposes:
– Essential Cookies: These are strictly necessary for basic website functions and cannot be disabled.
– Functional Cookies: Enable enhanced functionality and personalization, such as remembering login details and language preferences.
– Analytical Cookies: Help us understand how users engage with the website and improve performance.
– Performance Cookies: Collect data to analyze system usage or technical errors and optimize user experience.
9. Cookie Management and Legal Compliance
Visitors are presented with a GDPR- and CCPA-compliant banner upon first visit, allowing them to accept or manage cookie preferences. You may also configure your personal cookie preferences at any time using your browser settings or our on-site cookie management tool. Withdrawal of consent will not affect the lawfulness of data collection prior to such withdrawal.
10. Children’s Privacy
We do not knowingly collect or process personal data from children under the age of 13. If we become aware that we have inadvertently collected such information, we will promptly delete it. Parents or guardians who believe we may have collected information from a child under 13 may contact us at [email protected].
11. Updates to this Policy
We reserve the right to update this Privacy Policy from time to time to reflect changes in legal requirements, our services, or data processing practices. Any updates will be posted on lipcarecenter.com. Where required by law, users will be notified of material changes and, where applicable, asked for renewed consent.
12. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact our Data Protection Officer by email at:
We are committed to ensuring compliance with applicable data protection laws and providing you with transparency and control over your personal information.
By using lipcarecenter.com, you acknowledge and agree to the practices described in this Privacy Policy. Your privacy remains our priority.