Information Text
At Dr. MomHand Organic Cosmetics (“the Company”, “we”), just as we carefully preserve the wonders nature offers us with our PHYTO-RESONANCE™ technology, we also protect the personal data you entrust to us in the digital world with the same transparency and care.
This Privacy Notice has been prepared in accordance with Articles 13 and 14 of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018 to inform you about how your personal data is collected, for what purposes it is processed, and what your legal rights are when you visit, register, or shop on the website www.drmomhand.com (“Site”).
1. IDENTITY OF THE DATA CONTROLLER
Under UK GDPR legislation, the "Data Controller" for your personal data is our company, registered in the United Kingdom.
|
Company Name: |
Dr. MomHand Organic Cosmetics |
|
Registered Address: |
71-75 Shelton Street, Covent Garden, London, United Kingdom |
|
Email: |
uk@drmomhand.com |
|
Telephone: |
+44 7848 99 6901 |
2. WHICH OF YOUR PERSONAL DATA DO WE PROCESS?
To provide you with a seamless shopping experience, we adhere to the principle of "data minimization" and only process the following data that is necessary:
|
Data Category |
Scope |
|
Your Personal Information |
Your name and surname |
|
Your Contact Information |
Your email address, phone number, delivery and billing addresses. |
|
Your Financial and Transaction Information |
Your order details, invoice amounts, products you purchased |
|
Your Technical and Digital Footprint Information |
Your IP address, device/browser information, and browsing activity on the Site |
Important: Your credit card numbers are never saved by us; they are only processed in real-time by PCI-DSS certified payment institutions.
3. FOR WHAT PURPOSES AND ON WHAT LEGAL BASIS DO WE PROCESS YOUR DATA?
Your personal data is processed under the following legal grounds, as set out in Article 6 of the UK GDPR:
Performance of a Contract (Art 6(1)(b) UK GDPR)
To process your orders, ship them, verify your payments, manage return and exchange requests, and fulfill the requirements of the membership agreement.
Fulfillment of Our Legal Obligations (Art 6(1)(c) UK GDPR)
In accordance with UK Tax Office (HMRC) rules, this is for the purpose of maintaining business records, issuing invoices, and complying with consumer rights laws.
Our Legitimate Interests (Article 6(1)(f) UK GDPR)
We use data analysis to ensure the cybersecurity of our website, prevent fraud, provide customer service support, and improve the quality of our services.
Your Explicit Consent (Article 6(1)(a) UK GDPR)
Only with your explicit consent will we send you emails (newsletters) about exclusive discounts, new product announcements, and promotions.
4. WITH WHOM DO WE SHARE YOUR DATA?
Your data will not be shared or sold to any unauthorized third parties under any circumstances.
To deliver your order and manage our legal processes, we only share your data with the following "Data Processors":
|
Data Processor |
Purpose of Sharing |
|
Logistics and Cargo Companies |
To deliver your products to you |
|
International Secure Payment Infrastructure Providers |
Collect your payment securely. |
|
Cloud (Hosting) Service Providers |
Ensuring the secure operation of our website. |
|
UK Government Agencies (HMRC etc.) |
Fulfillment of legal obligations |
International Data Transfer: Because our site provides global service, your data may be transferred to secure servers outside the United Kingdom. In this case, the transfer is legally protected by International Data Transfer Agreements (IDTA/SCC) that comply with UK GDPR standards.
5. HOW LONG DO WE STORE YOUR DATA?
Your personal data will only be stored for the period required by the purpose for which it was collected.
|
Data Type |
Storage Time |
Rest |
|
Order data including tax and accounting records |
6 years from the end of the commercial year |
HMRC legal regulations |
|
Marketing endorsement data |
Until you withdraw your consent |
Explicit consent (Art. 6(1)(a)) |
Data that has reached the end of its retention period will be permanently destroyed.
6. WHAT ARE YOUR LEGAL RIGHTS UNDER THE UK GDPR?
Under UK law, you have full control over your data. As a Data Subject, your rights include:
|
You are right |
English Equivalent |
Explanation |
|
Right of Access |
Right of Access |
To find out whether your personal data is being processed and to request access to a copy. |
|
Right of Correction |
Right to Rectification |
Requesting correction of your missing or incorrect data. |
|
Right to Erase |
Right to Erasure |
Requesting the deletion of your data that is not subject to legal retention (Right to be Forgotten) |
|
Limitation and Portability |
Right to Restriction & Portability |
Requesting that the processing of your data be restricted or transferred. |
|
Withdrawal of Consent |
Right to Withdraw Consent |
You can withdraw your consent at any time, without giving any reason, for transactions based on your explicit consent. |
7. HOW CAN YOU CONTACT US?
To exercise your rights mentioned above or to have any questions regarding the processing of your data, you can always contact us at uk@drmomhand.com. Your requests will be processed free of charge within the legal period of 1 (one) month.
|
Company: |
Dr. MomHand Organic Cosmetics |
|
Address: |
71-75 Shelton Street, Covent Garden, London, United Kingdom |
|
Email: |
uk@drmomhand.com |
|
Telephone: |
+44 7848 99 6901 |
Right to complain: If you are not satisfied with our practices regarding the processing of your data, you have the legal right to complain directly to the Information Commissioner's Office (ICO), the UK Data Protection Authority (www.ico.org.uk).