For the purposes of the Data Protection Act 1998, the data controller is:
Three Sisters Hanna Limited (a company registered in England and Wales with company number 008826582 whose registered office is located at Northwood House, 138 Bromham Road, Bedford, MK40 2QW).
Information We Collect
We may obtain personal information about you from various sources. We may collect this information when you provide it at one of our counters, stores, on our site, our social media platforms, our social networking or mobile applications, or at one of our events. When you visit this site, our social media platforms, or social networking or mobile applications, we may also collect certain information by automated means, using technologies such as cookies, web server logs and web beacons.
You may also choose to provide personal information to us in a number of ways, such as when you participate in an offer or promotion, or when you make a purchase on our site, at our counters or in our stores.
The types of personal information we may collect from you and which you may provide to us includes: contact information (such as name, postal address, email address, and mobile or other phone number); age and date of birth; gender; username and password; payment information (such as your payment card number, expiry date, delivery address, and billing address); your online and in-store purchase history; product preferences; your physical characteristics and skincare concerns; photographs that you ask us to take; contact information for friends or other people you would like us to contact; and content you provide (such as photographs, videos, reviews, articles and comments).
Information provided to us by social networks or mobile applications when you visit our social media platforms or use one of our social networking or mobile applications (such as your name, profile picture, likes, location, friend list and other information described in the social networking application sign-up page, or your geo-location details when using one of our mobile applications).
How We Use The Information
We may use the information you provide to send you promotional materials or other communications; provide services to you; process your payment and/or gift card transactions; create and manage your online account (including access to your online and in-store purchase history); respond to your enquiries; communicate with you about, and administer your participation in, special events, prize promotions, programmes, surveys and other offers; operate and communicate with you about our social networking or mobile applications; operate, evaluate and improve our business (including developing new products and services; enhancing and improving our services; managing our communications; analysing our products; performing data analytics; and performing accounting, auditing and other internal functions); and comply with applicable legal requirements, relevant industry standards and our policies.
We also may use the information in other ways for which we provide specific notice at the time of collection.
Information We Collect by Automated Means
When you visit
this site or our online advertisements, or use one of our social networking or
mobile applications, we collect certain information by automated means, using
technologies such as cookies, web server logs and web beacons. Information may
include (i) technical information, such as the Internet protocol (IP) address
used to connect your computer to the Internet, your login information, browser
type and version, time zone settings, language settings, domain, operating
system, platform or other system settings, and (ii) information about your
visit, including the full Uniform Resource Locators (URL) clickstream to,
through and from our site, products you viewed or searched for, page response
times, download errors, length of visits to certain pages, page interaction
information, and methods used to browse away from the page and any phone number
used to call our customer service number.
Technologies We Use
Server Logs and Web Beacons. Cookies are small text files that websites send to
your computer or other Internet-connected device to uniquely identify your
browser or to store information or settings in your browser. Your browser may
tell you how to be notified when you receive certain types of cookies and how
to restrict or disable certain cookies. Please note, however, that without
cookies you may not be able to use all of the features of our website. Read
more about individual cookies we use and how to recognise them here. By continuing
with obtaining information through cookies, our web servers may log details
such as your operating system type, browser type, domain, and other system
settings, as well as the language your system uses and the country and time
zone in which your device is located. The web server logs also may record
information such as the address of the web page that linked you to our site and
the IP address of the device you use to connect to the Internet.
To control which
web servers collect this information, we may place tags on our web pages called
"web beacons". These are computer instructions that link web pages to
particular web servers and their cookies.
Third Party Web
Analytics Services. We may use third party web analytics services on this site,
our social media platforms, or our social networking or mobile applications,
such as those of Google Analytics. The service providers that administer these
services use technologies such as cookies, web server logs and web beacons
(over which we have no control) to help us analyse how visitors use the site.
The information collected through these means (including IP address) is
disclosed to these service providers, who use the information to evaluate use
of the website. To disable the Google Analytics cookie, some browsers indicate
when a cookie is being sent and allow you to decline cookies on a case-by-case
Advertising . We also may contract with third-party advertising networks that
server logs and web beacons on our websites and emails; on third-party websites
and emails; and on our advertising placed on third-party websites (over which
we have no control). They use this information to provide advertisements about
products and services tailored to your interests (including for companies not
affiliated with us). You may see these advertisements on our websites and other
websites. This process also helps us manage and track the effectiveness of our
marketing efforts. To learn more about these and other advertising networks and
their opt-out instructions, click here.
How We Use the Information Collected by
We may use the
information collected through automated means on this site to deliver
personalised content, for market research, data analytics and system
administration purposes, such as to determine whether you've visited us before
or are new to the site, and for compliance with our legal obligations, policies
and procedures, including compliance with relevant industry standards and the
enforcement of our Terms and Conditions. We also may use the information in
other ways for which specific notice is provided at the time of collection.
Information We Share
We do not rent
lists, sell or otherwise disclose personal information we collect about you,
except as described here. We may share your personal information with:
Third party service providers who perform services on our behalf based on our instructions. We do not authorise these service providers to use or disclose the information except as necessary to perform services on our behalf or comply with legal requirements. Examples of these service providers include entities that: process credit card payments; fulfil orders; provide web hosting and marketing services; and provide data cleansing and analytics services (should you wish to opt out of these third party sharing arrangements in the future, you simply need to opt out of e-mail and SMS communications from us); and
parties with your consent (e.g., some of our Facebook applications may share
information collected through those applications with your Facebook friends or
other Facebook users).
In addition, we
may disclose information about you (i) if we are required to do so by law or
legal process, (ii) to law enforcement authorities or other government
officials, or (iii) when we believe disclosure is necessary or appropriate to
prevent physical harm or financial loss, or in connection with an investigation
of suspected or actual fraudulent or illegal activity.
We also reserve
the right to transfer personal information we have about you in the event that
(i) we sell or buy any business or assets, in which case we may disclose your
personal data to the prospective seller or buyer of such business or assets, or
(ii) we sell or transfer all or a portion of our business or assets to a third
party. Should such a sale or transfer occur, we will use reasonable efforts to
direct the transferee to use personal information you have provided to us in a
transfer, you may contact the entity to which we transferred your personal
information with any enquiries concerning the processing of that information.
We offer you
certain choices in connection with the personal information we collect from
you, such as how we use the information and how we communicate with you. To
update your preferences, ask us to remove your information from our mailing
lists or submit a request, please contact us as specified below.
You can at any
time tell us not to send you marketing communications (i) by email by clicking
on the unsubscribe link within the marketing emails you receive from us or (ii)
by SMS by following the “STOP” instructions provided with the message. You also
may opt out of receiving marketing emails and/or SMS from us by sending an
email or following the unsubscribe link in instructions.
Social Networking Application Opt-Out
To remove or
delete our apps from your social networking account, follow the instructions
from the social network.
Geo-Location Information through Mobile Applications
When you use one of our mobile applications, you may be asked for your geo-location. You may choose not to share your geo-location details by adjusting your mobile device's location services settings. To decline from sharing your geo-location details, follow the instructions on your mobile device on changing the relevant settings; otherwise, please contact your service provider or device manufacturer.
You may withdraw
any consent you previously provided to us, or object at any time on legitimate
grounds, to the processing of your personal information. We will consider your
request and, as required by applicable law, apply your preferences going
forward, within a reasonable amount of time. Even where you withdraw your
consent, we may still process your personal data for limited purposes, for
example, to give effect to your request, or to safeguard our business. In some
circumstances, withdrawing your consent to our use or disclosure of your
personal information will mean that you cannot take advantage of some of our
products or services.
Reviewing, Updating and Modifying Personal
applicable law, you may have the right to request access to and receive details
about the personal information we maintain about you, update and correct inaccuracies
in your personal data, and have the information blocked or deleted, as
appropriate. The right to access personal information may be limited in some
circumstances by local law requirements. You may request to review, change or
delete your personal information by sending an email to firstname.lastname@example.org
We may transfer
the personal information we collect about you to countries other than the
country in which the information was originally collected (which may include
countries outside the European Economic Area ("EEA") (including the
USA)). It may also be processed by staff operating outside the EEA who work for
us or one of our suppliers. Such staff may be engaged in, among other things,
the fulfilment of your order, the processing of your payment details and the
provision of support services. By submitting your personal data, you agree to
this transfer, storing or processing. We will take all steps reasonably
necessary to ensure that your data is treated securely and in accordance with
How We Protect Personal Information
appropriate administrative, technical and physical safeguards designed to
protect the personal information you provide against accidental, unlawful or
unauthorised destruction, loss, alteration, access, disclosure or use.
Links To Other Websites
Our website may
provide links to other websites for your convenience and information. These
websites may operate independently from us. Linked sites may have their own
privacy notices or policies, which we suggest you review if you visit any
linked websites. To the extent any linked websites you visit are not owned or
controlled by us, we are not responsible for the sites' content, any use of the
sites, or the privacy practices of the sites.
Most web browsers allow some control of most cookies through the browser settings. Company web users who do not wish to have web cookies placed on their computers should set their browsers to refuse web cookies before accessing the website, with the understanding that certain features of the website may not function properly without the aid of the web cookies. Website users who refuse web cookies assume all responsibility for any resulting loss of functionality. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit www.aboutcookies.org or www.allaboutcookies.org
Policy may be updated periodically and without prior notice to you to reflect
changes in our personal information practices. We will post a prominent notice
and indicate at the top of the Policy when it was most recently updated.
How To Contact Us and Access to Information
If you have any
update information we have about you or your preferences, please contact us by
email at email@example.comYou also may write to: Customer Care Centre, Three Sisters
Hanna Limited, Northwood House, 138 Bromham Road, Bedford, MK40 2QW.
Protection Act 1998 gives you the right to access information held about you.
Your right of access can be exercised in accordance with that Act. Any access
request may be subject to a fee of £5 to meet our costs in providing you with
details of the information we hold about you.
No failure to
exercise and no delay on our part in exercising any of our rights, remedies,
powers or privileges under these Terms & Conditions (of which this Privacy
construed or operate as a waiver, nor shall any single or partial exercise of
any right, remedy, power or privilege preclude any other or further exercise
thereof or the exercise of any other right, remedy, power or privilege on our
Law, Jurisdiction And Language
This Site, any
content contained herein and any contracts entered into as a result of usage of
this Site are governed by English law. The parties to any such contract agree
to submit to the exclusive jurisdiction of the courts of England and Wales. All
contracts are concluded in English.