Skinlight

Privacy Policy

The Privacy Policy describes the rules for processing information about you, including personal data and cookies.

1. General Information

This policy applies to the website functioning at the URL: skinlight-esthetical.com.

The website operator and personal data administrator is:
Black Cat Beauty Group
Wał Miedzeszyński 608
Warsaw, Poland

Contact email address: biuro@skinlight.pl

The operator is the administrator of your personal data regarding data provided voluntarily on the website.

The website uses personal data for the following purposes:

  • Managing the newsletter
  • Handling inquiries via the form
  • Fulfilling ordered services
  • Presenting offers or information

The website collects user information and behavior in the following ways:

  • Through data voluntarily entered in forms, which are then entered into the operator’s systems.
  • Through cookies stored on end devices (so-called “cookies”).

2. Selected Data Protection Methods Used by the Operator

Login and personal data entry areas are protected at the transmission layer (SSL certificate). This ensures that personal data and login data entered on the site are encrypted on the user’s computer and can only be read on the target server.

The operator periodically changes its administrative passwords.

To protect data, the operator regularly performs security backups.

An important element of data protection is the regular update of all software used by the operator to process personal data, particularly the regular updates of programming components.

3. Hosting

The website is hosted (technically maintained) on the servers of the operator: seohost.pl

The hosting company ensures technical reliability by maintaining server logs. These logs may include:

  • Resources identified by URL (addresses of requested resources – pages, files)
  • Time of request arrival
  • Time of sending the response
  • Name of the client’s station – identification carried out by the HTTP protocol
  • Information about errors that occurred during the HTTP transaction
  • URL address of the previously visited page (referrer link) – if the transition to the website was made through a link
  • Information about the user’s browser
  • Information about the IP address
  • Diagnostic information related to the self-ordering of services through the website’s recorders
  • Information related to handling emails sent to and by the operator.

4. Your Rights and Additional Information on How Data is Used

In some situations, the administrator has the right to transfer your personal data to other recipients if it is necessary to perform the contract concluded with you or to fulfill obligations imposed on the administrator. This applies to the following groups of recipients:

  • Hosting company on an entrustment basis
  • Postal operators
  • Payment operators
  • Authorized employees and associates who use the data to achieve the purpose of the website
  • Companies providing marketing services to the administrator

Your personal data processed by the administrator will not be retained longer than necessary to perform the related activities specified by separate regulations (e.g., on accounting). For marketing data, it will not be processed for more than 3 years.

You have the right to:

  • Access your personal data
  • Correct your personal data
  • Delete your personal data
  • Restrict the processing of your personal data
  • Transfer your personal data

You have the right to object to the processing indicated in point 3.2 regarding the processing of personal data for the legitimate interests pursued by the administrator, including profiling, but the right to object cannot be exercised if there are valid legitimate grounds for processing, overriding your interests, rights, and freedoms, particularly establishing, pursuing, or defending claims.

You have the right to lodge a complaint with the President of the Personal Data Protection Office, ul. Stawki 2, 00-193 Warsaw.

Providing personal data is voluntary, but necessary for using the website.

Automated decision-making, including profiling, may be carried out concerning you to provide services under the concluded agreement and for direct marketing by the administrator.

Personal data is transferred to third countries within the meaning of personal data protection regulations. This means we transfer them outside the European Union.

5. Information in Forms

The website collects information provided voluntarily by the user, including personal data, if provided.

The website can save information about the connection parameters (time, IP address).

The website, in some cases, may save information facilitating the linking of data in the form with the user’s email address filling the form. In such a case, the user’s email address appears inside the URL of the page containing the form.

Data provided in the form are processed for the purpose resulting from the function of a specific form, e.g., to process a service request or business contact, service registration, etc. Each time the context and description of the form clearly indicate what it is used for.

6. Administrator Logs

User behavior information on the website may be logged. These data are used to administer the website.

7. Important Marketing Techniques

The operator uses statistical analysis of website traffic through Google Analytics (Google Inc. based in the USA). The operator does not transfer personal data to the operator of this service, only anonymized information. The service is based on the use of cookies on the user’s end device. Users can view and edit information resulting from cookies using the tool: Google Ads Preferences

The operator uses remarketing techniques that allow for adjusting advertising messages to the user’s behavior on the website, which may give the illusion that the user’s personal data are being used to track them, but in practice, no personal data is transferred from the operator to the advertising operators. The technological condition for such activities is enabled cookies.

The operator uses the Facebook pixel. This technology causes Facebook (Facebook Inc., based in the USA) to know that a given person registered with them is using the website. In this case, it is based on data for which Facebook itself is the administrator, the operator does not transfer any additional personal data from itself to Facebook. The service is based on the use of cookies on the user’s end device.

The operator uses a solution that examines user behavior by creating heatmaps and recording behavior on the website. These information are anonymized before being sent to the service operator so that it does not know to whom they pertain. In particular, the recordings do not include entered passwords or other personal data.

The operator uses a solution that automates the functioning of the website concerning users, e.g., which may send an email to a user after visiting a specific subpage, if they have agreed to receive commercial correspondence from the operator.

8. Information about Cookies

The website uses cookies.

Cookies (so-called “cookies”) are IT data, in particular text files, which are stored on the end device of the Website User and are intended for using the website pages. Cookies usually contain the name of the website from which they originate, the storage time on the end device, and a unique number.

The entity placing cookies on the end device of the Website User and accessing them is the website operator.

Cookies are used for the following purposes:

  • Maintaining the session of the Website User (after logging in), thanks to which the user does not have to re-enter the login and password on each subpage of the website;
  • Achieving the goals set out above in the “Important marketing techniques” section;

Within the website, two basic types of cookies are used: “session” cookies and “persistent” cookies. Session cookies are temporary files stored on the user’s end device until logging out, leaving the website, or turning off the software (web browser). Persistent cookies are stored on the user’s end device for the time specified in the cookie parameters or until they are deleted by the user.

Web browsing software (web browser) usually allows cookies to be stored on the user’s end device by default. Website users can change settings in this regard. The web browser allows the deletion of cookies. It is also possible to automatically block cookies. Detailed information on this topic is provided in the help or documentation of the web browser.

Restrictions on the use of cookies may affect some of the functionalities available on the website pages.

Cookies placed on the user’s end device may also be used by cooperating entities with the website operator, in particular, this applies to companies: Google (Google Inc. based in the USA), Facebook (Facebook Inc. based in the USA), Twitter (Twitter Inc. based in the USA).

9. Managing Cookies – How to Practically Express and Withdraw Consent?

If the user does not want to receive cookies, they can change the browser settings. We reserve that disabling cookies necessary for authentication, security, maintaining user preferences may hinder, and in extreme cases may prevent the use of websites.

To manage cookie settings, select the web browser you are using from the list below and follow the instructions:

  • Edge
  • Internet Explorer
  • Chrome
  • Safari
  • Firefox
  • Opera

Mobile devices:

  • Android
  • Safari (iOS)
  • Windows Phone