Privacy Policy

Privacy Policy for https://med-spa.storysurge.net

Introduction

At https://med-spa.storysurge.net (hereinafter referred to as ‘Med Spa’, ‘we’, ‘our’, or ‘us’), we are committed to protecting the privacy and data security of our users. This comprehensive Privacy Policy outlines our practices regarding the collection, handling, and protection of personal information in adherence to various international privacy laws, including but not limited to:

  • Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA)
  • Quebec Law 25 on the protection of personal data
  • The General Data Protection Regulation (GDPR) of the European Union
  • Brazil’s General Data Protection Law (LGPD)
  • California Consumer Privacy Act (CCPA/CPRA) and Colorado Privacy Act (CPA) in the United States
  • Utah, Connecticut, Virginia, South Africa, and other state privacy laws.

Scope

This policy covers all aspects of our online presence, including but not limited to:

  • Our official website at https://med-spa.storysurge.net
  • Mobile applications and services offered by Med Spa
  • Any third-party platforms or services that we link to or integrate into our platform

Please note that this policy does not extend to privacy practices of third-party sites, applications, or services accessed through links on our platform. Each of these third parties has its own privacy policies governing their data collection and usage.

Processing Activities

This Privacy Policy guides interactions when users:

  • Utilize our mobile apps and online services as authorized users
  • Visit and engage with our websites linked to this policy
  • Communicate with us via emails, newsletters, phone calls, or text messages

Personal Data Collection

Med Spa collects various categories of personal data, including but not limited to:

  • Account Information: Details related to your user account creation and management.
  • Payment Information: Credit card details and billing addresses used for transactions.
  • Financial Information: Bank account numbers or investment portfolios (if shared).
  • Purchase Information: Order history, product preferences, and shopping behavior.
  • Mobile Device Identifiers: Unique device IDs, IP addresses, and mobile network information to enhance user experience.
  • Location Data: GPS coordinates and location services data for mapping and personalized content.
  • Feedback: Comments, reviews, and suggestions provided by users to improve our services.
  • Social Media Information: Details from social media platforms when users interact with our content or share their profiles.
  • Product Information: Preferences, ratings, and reviews related to our products or services.

We collect this data through various methods: user inputs during registration or account creation, interactions with our applications and websites, automated technologies (like cookies), and information provided by third parties.

Cookies

Med Spa employs cookies to enhance user experience and for analytical purposes:

  • Strictly Necessary Cookies: Ensure basic functionalities of our website, such as logging in.
  • Preference Cookies: Remember users’ preferences, language settings, and display options.
  • Analytics Cookies: Track site usage, analyze traffic, and measure the effectiveness of our online content.

Users can manage their cookie choices through our Cookie Manager, allowing them to control non-essential cookies.

Retention and Deletion

We retain personal data only for as long as necessary or required by law. The retention periods vary based on the type of data and its purpose:

  • Account information and transaction records may be kept for up to 7 years due to legal and tax obligations.
  • Financial and payment data is retained securely for a minimum of 5 years after the last transaction.
  • Personalized content and preferences are stored until you delete your account or request removal.

Once the retention period expires, or when you request deletion, we ensure that the data is securely deleted or anonymized from our systems and those of our service providers.

Security Measures

Med Spa has implemented robust security measures to safeguard personal data:

  • Data Encryption: All sensitive data is encrypted during transmission and at rest using industry-standard encryption protocols.
  • Secure Third-Party Processing: We engage secure third-party service providers for processing transactions, analytics, and other services, ensuring they adhere to strict privacy standards.
  • Access Controls: Our systems have access controls in place, limiting data access only to authorized personnel who require it to perform their duties.

Children’s Privacy

We do not knowingly collect or solicit personal information from children under the age of 18. If we learn that we’ve collected such data by mistake, we will take steps to delete or anonymize it without delay.

Your Rights (Subject to Local Laws)

Depending on your location, you have certain rights regarding your personal data:

  • Access: You can request access to the personal data we hold about you and its processing details.
  • Rectification: The right to correct any inaccurate or incomplete personal data.
  • Erasure (Right to be Forgotten): Request the deletion of your data where there is no compelling reason for its retention.
  • Object: Object to the processing of your data for specific purposes, such as direct marketing.
  • Data Portability: The ability to receive your personal data in a structured format and transfer it to another controller.

Please review applicable local laws or regulations for specific rights regarding data privacy and protection.

Changes to Privacy Policy

Med Spa reserves the right to update or modify this Privacy Policy at any time. We will notify users of significant changes via email or by posting a prominent notice on our website. Continued use of our services after such changes constitute your acceptance of the updated policy.

For further questions or concerns regarding this Privacy Policy, please contact us at [Privacy Officer’s Contact Information].