12 Days of Beauty Delights | Unlock Today's Offer
Join Les Loyales
INTRODUCTION
We invite you to read this privacy policy (“Privacy Policy”), which describes how Chantecaille Beauté Inc., its affiliates and subsidiaries, including but not limited to, Chantecaille (UK) Ltd. (collectively, “Chantecaille” or “We” or “us” or “Company” or “Chantecaille”) process your Personal Data. We use the term “Personal Data” to describe any information relating to an identified or identifiable individual.
This Privacy Policy covers the following topics:
Personal Data Described in Subdivision (e) of California Civil Code Section 1798.80:
- Billing Information. This includes your delivery address and payment details. Please note that we do not collect your credit card details. This data is not sold or shared.
Business and Commercial Purposes:
Notice of third-party plugins that control collection of Personal Data
Information collected and processed from third party sources:
Profiling: In order to ensure data accuracy and to offer you a better and personalized client experience no matter where and how you interact with us, we link or combine the information that we collect from the different sources and channels outlined above to provide personalized services, content, targeted communications and advertising and for analytics purposes (e.g., we combine data about your purchases in our Digital Platforms with your interactions with our marketing communications so that we can provide you with personalized service, offers and skincare recommendations). This may include combining Personal Data collected also by our affiliates and subsidiaries. All the information we process about you (including information provided by you or collected by us or by third parties) will be linked to your profile. We also may draw inferences from any of your information and interactions with us to enrich and supplement such profile, reflecting your preferences, characteristics, trends, predispositions, aptitudes and attitudes. We will use your identification data such as email address or phone number to link the information to your profile. The above also applies when checking out as a guest on our Site and if you are a prospective client. You have the right to opt out of such profiling by opting out of marketing communications.
4.CHILDREN’S PERSONAL DATA
We recognize the importance of children’s safety and privacy. The Site is not designed to attract children, and is not directed at, or intended for use by, children. We do not request or collect any Personal Data from children, nor do we knowingly sell or ship items ordered through the Site directly to children. By registering with, ordering or purchasing from, or providing information to or from, us, you confirm that you have reached the age of consent in your country of residence or, if you are under the age of consent, that your parent(s) or legal guardian(s) also agree(s) to such registration or order when they can give you such authorization under the law of your country of residence. If you are a parent or legal guardian of a child and you believe a child has provided us with Personal Data, please contact us by using our Contact Us form and we will remove that child’s Personal Data from our files.
5.SHARING OF PERSONAL DATA WITH THIRD PARTIES
In addition to our affiliates and subsidiaries, we may share your Personal Data (where permitted in accordance with applicable laws) with the following third parties for the purposes detailed in this Privacy Policy:
Our third-party service providers who perform services on our behalf based on our instructions. We do not authorize these parties to use or disclose the information except as necessary to perform services on our behalf or to comply with legal requirements. Examples of these third parties include:
Credit Processing Companies and Related Financial Institutions. Credit and debit card payment gateways and processors; the issuing and acquiring banks involved in the funds settlement procedures necessary to charge your cards or financial accounts;
Third parties, where we have your permission to do so (e.g. social network providers, concierge services or our authorized retail partners). Your Personal Data will become subject to the privacy policies of those third parties when your Personal Data is shared with them;
Legal and Investigator Service Providers. We may share your information with judicial, administrative, legal, financial and/or accounting providers, and related government entities and adverse parties. Some instances where this may occur, include, but are not limited to: if we are required to respond to civil and/or criminal investigations, claims or lawsuits, or if we are subject to judicial or administrative process (such as a subpoena) to release your information or to prosecute or defend legal actions, and as we believe is necessary or appropriate to prevent physical harm or financial loss or in connection with an investigation of suspected or actual illegal activity.
Business/Asset Purchasers. In the event that we: (i) are subject to negotiations for the sale of our business or part thereof to a third party; (ii) are sold to a third party; or (iii) undergo a re-organization, we may need to transfer some or all of your information to the relevant third party (or its advisors) as part of any due diligence process for the purpose of analyzing any proposed sale or re-organization. We may also need to transfer your information to that re-organized entity or third party after the sale or reorganization for them to use for the same purposes as set out in this Privacy Policy.
If we, or substantially all of our assets, were acquired, or in the unlikely event that we go out of business or enter bankruptcy, user information would be one of the assets that is transferred or acquired by a third party. You acknowledge that such transfers may occur, and that any acquirer may continue to use your Personal Data in accordance with this Privacy Policy and if permitted by applicable laws.
Social media and search engine partners: We aggregate your Personal Data with the information of other customers, creating a dataset of information about the usage of our Digital Platforms, purchase of our products, and other general, grouped information about our customers. Although this dataset is aggregated and anonymised, meaning it cannot directly identify you as an individual, it provides a valuable insight into the use of our Digital Platforms and Points of Sale and we will share it with select third parties. These parties include our group companies.
Further information on how Meta processes Personal Data, including its legal basis and further information on the rights of data subjects can be found here: https://www.facebook.com/about/privacy. We transfer the data within the scope of joint controllership based on the legitimate interest.
Information on the data security conditions can be found here. https://www.facebook.com/legal/terms/data_security_terms and on processing on the basis of standard contractual clauses can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum.
6.COOKIES AND RELATED TECHNOLOGIES
To enhance your online experience with us, our Digital Platforms may use cookies and related technologies. Cookies are bits of electronic information that may be transferred to a visitor’s computer or mobile device to identify specific information about the visitor’s use of the Site, email or other electronic media. We use cookies, for example, to preserve the contents of your virtual shopping bag between visits. The Site uses a browser feature known as a cookie, which assigns a unique identification to your computer. Cookies are typically stored on your computer’s hard drive and are used to help track clicks as you go through the pages within our Site. We may also use cookies to tell us whether you have previously visited the Site. We also use cookies which may be set by third parties with whom we have entered into agreements which may enable us to obtain analytics information about the use of our Site. The cookies that we use can be categorized as follows:
These cookies are necessary for the Site to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies do not store any personally identifiable information.
These cookies allow us to count visits and traffic sources, so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. Whenever technically possible, all information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies, we will not know when you have visited our site. Please note that we use Google Analytics, run by Google Inc for this purpose. To opt out of being tracked by Google Analytics, you can visit the Cookie Preference centre here: or visit https://tools.google.com/dlpage/gaoptout.
These cookies enable the Site to provide enhanced functionality and personalisation. They may be set by us or by third-party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.
Some content or applications, on the Site are served by third parties, including advertisers, ad networks and servers, content providers, and application providers. These third parties may use cookies alone or in conjunction with web beacons or other tracking technologies to collect information about you when you use our Site. The information they collect may be associated with your Personal Data or they may collect information, including Personal Data, about your online activities over time and across different Sites and other online services. They may use this information to provide you with interest-based (behavioral) advertising or other targeted content.
We may also work with third-party platforms, including platforms operated by social networks, such as Google, and Facebook, to show you advertisements or measure the effectiveness of our advertisements. We may convert your email address, telephone number, or other information into a unique value and have these third-party platforms match this unique value with a user on their platform or with other data they may have. This matching enables us to deliver advertisements to you and others on these platforms. To opt-out of using your Personal Data in this way, see Your Choices Regarding Your Information.
Other than as provided herein, we will not use shared local objects (commonly referred to as “FLASH cookies”) in a manner inconsistent with the purposes for which they were designed unless you are specifically notified that we intend to use them for a specific service. FLASH cookies are cookies that are placed on your computer that are not removed through normal browser management tools.
You have the option to accept or reject our cookies at any time in the Cookie Settings preference centre here. By rejecting or disabling cookies, certain Site content or functionality may not be available to you.
Use of Web Beacons, Clear-GIFs, Pixel Tags and JavaScript. We may use “pixel tags” (also called “action pixels,” “web beacons” or “clear gifs”) and/or JavaScript plug-ins, placed on our Site and in our emails to you. Both pixel tags, which are small graphic images (typically that you cannot see), and JavaScript plug-ins, which are code on a Site or in an email message, are used for such things as recording web pages and advertisements clicked-on by a user, or for tracking the performance of email marketing campaigns. These devices help us analyze our customers’ online behavior and measure the effectiveness of our Site and our marketing. We also work with third-party service providers that help us track, collect, and analyze this information. Third-party entities with whom we have agreements may place these devices on the Site and/or in emails to use information obtained from them such as pages viewed, items purchased, emails opened and items upon which you may click in emails. These third-party providers may also place cookies onto your computer. Those third-party cookies enable us to obtain aggregated information (i.e., information where your Personal Data has been removed) and user statistics about you and your preferences.
Server Logs and Widgets. A web “server log” is a record of activity created by a computer that delivers certain content to your browser. Certain activities that you perform on our Site may record information in server logs, such as if you enter a search term into a search box located on the Site. The server log may record the search term(s), or the link you clicked on to bring you to our Site. The server log may also record information about your browser, such as your IP address and the cookies set on your browser.
A “widget” is generally an application that can be embedded in a webpage. Widgets can provide real-time information to the webpage. Widgets are often provided by third parties and we may provide widgets on our Site. Widgets may enable the third parties that provide them to collect data about users visiting the Site.
Search Queries on Our Site. We may provide you with options to search for information on our Site. If you enter information in a search query box, we may store that information and we may aggregate that information with other information we may have about the browser and/or IP address from which the search query originated.
“Do Not Track” Signals. Some web browsers have “Do Not Track” or similar features that allow you to tell each Site you visit that you do not want your activities on that Site tracked. At present, we do not respond to “Do Not Track” signals and consequently, will continue to collect information about you even if your browser’s “Do Not Track” feature is activated. To learn more about DNT signals, please see http://allaboutdnt.com.
7.WHAT ARE YOUR RIGHTS RELATED TO YOUR PERSONAL DATA
You have the following rights in relation to your Personal Data:
Right to object
You have the right to object to the processing of your Personal Data when such processing is based on legitimate interests. Nevertheless, we may have legitimate reasons to continue processing your Personal Data. You also have the right to object to the processing of your Personal Data for direct marketing purposes at any time as indicated under Section 8 “Your Choices Regarding Your Personal Data”.
Your exercise of these rights is subject to certain exemptions to safeguard the public interest (e.g. the prevention or detection of crime) and our interests (e.g. the maintenance of legal privilege).
To exercise of any of the rights above, you may submit your request through our Contact Us form.
8.YOUR CHOICES REGARDING YOUR PERSONAL DATA
Opt-out of email promotions. If you do not wish to receive emails about special offers and other promotions from us, click the unsubscribe link located in our emails.
Updating your Personal Data. We ask that you keep the Personal Data that you provide to us current and that you correct any information you have provided us. You can update your Personal Data in your account on our Site, by contacting us using our Contact Us form. You represent and warrant that all Personal Data you provide us is true and correct.
Opt-out of text notifications. By subscribing to Chantecaille’s text notifications, you agree to receive automated marketing text messages from us about our products and services at the phone number you provided when you subscribed, and that the messages may be sent via automatic telephone dialing system or other technology. Message frequency is recurring. Consent is not a condition of purchase. Message and data rates may apply. Reply STOP to optout and HELP for customer support. You may receive an additional text message confirming your decision to opt-out. You understand and agree that attempting to opt-out by any means other than texting the opt-out commands above is not a reasonable means of opting out.
Cookie and similar tracking technologies. You have the option to accept or reject our cookies at any time in the Cookie Settings preference center here. You can set your browser to refuse all or some browser cookies, or to alert you when cookies are being sent. To learn how you can manage your Flash cookie settings, visit the Flash player settings page on Adobe’s website.
Targeted advertising. If you do not want us to use information that we collect or that you provide to us to deliver advertisements according to our advertisers’ target-audience preferences, you can opt-out at any time in at any time in the Cookie Settings preference center here.
You can opt out of receiving targeted ads from members of the Network Advertising Initiative (“NAI”) on the NAI’s website, located at: www.networkadvertising.org. To learn more about interest-based advertising visit www.aboutads.info/choices/. Please note that any opt-out choice you exercise will apply to interest-based advertising, but will still allow the collection and use of data for other purposes, including research, analytics and internal operations. You may continue to receive advertising, but that advertising may be less relevant to your interests.
9.INTERNATIONAL DATA TRANSFERS
Your information may be transferred to, stored and/or processed outside of the country in which you reside and may be maintained on servers and systems located within the United States or other countries. Please note that the data protection laws in the United States and those other countries might not be as strict as those required by your country.
Where your Personal Data is transferred to countries outside the EU, the UK and/or countries that do not offer an adequate level of data protection in accordance with the authorities in your country of residence, we will take steps to ensure your information is adequately protected in compliance with applicable laws, such as the EU and UK approved standard contractual clauses, or put in place other measures under applicable laws to ensure that such transfer provides adequate safeguards.
A copy of the relevant mechanism can be obtained for your review on request by using our Contact Us form
10.HOW WE PROTECT YOUR PERSONAL DATA
We are committed to protecting the Personal Data we collect and keeping your Personal Data secure is very important to us. We take steps to ensure that your Personal Data is protected against unauthorized or unlawful processing and against accidental loss, damage or destruction or disclosure and we limit access to your Personal Data to persons who reasonably need access to it, to provide products or services to you. However, no set of security measures is completely effective against all security threats.
Our Site may contain links to other websites. We are not responsible for the privacy prapctices, advertising, products, or the content of such other websites. None of the links should be deemed to imply that we endorse or have any affiliation with the third-party websites being linked to.
If you create an account with us, you will be asked to provide an account username and password as part of our security procedures. You must treat such information as confidential and you must not disclose it to any third party.
11.HOW LONG WE STORE YOUR PERSONAL DATA
Your Personal Data will be retained for a certain period of time based on the following criteria: (i) as long as necessary to fulfil the purposes outlined in this Privacy Policy; (ii) any applicable legal requirements; or (iii) any request for deletion from you in applicable situations.
12.US PRIVACY DISCLOSURES
A. Your Rights and choices
If you are a California resident, you may take advantage of the following privacy rights:
If you are a Virginia resident, you may take advantage of certain privacy rights pursuant to Virginia Code 59.1-577. For example, you may request to access, correct, or delete your Personal Data. Because we “sell” Personal Data and engage in “targeted advertising” as these terms are defined in Virginia law, you may also exercise your right to opt-out of such sales or targeted advertising. You have the right to appeal a denial of your privacy rights.
B. How to submit a request
To take advantage of your right to know, delete, or correct under California or Virginia law, or to submit an appeal of a denial of your privacy rights, please use the following methods: Calling us at: 1.877.673.7080 Emailing us at: [email protected] Contact Us form Contact Us – Chantecaille
We may request certain information to verify your identity before we can respond to your access and deletion requests. We will confirm receipt of your request within 10 business days and will respond to your request within 45 calendar days, after proper verification, unless we need additional time, in which case we will let you know.
To take advantage of your right to opt out of the sale or sharing of Personal Data, please submit your request on the “Do Not Sell or Share My Personal Information” link which also is on our Site footer or contact us using the contact methods detailed above.
We will not discriminate against you because you exercise any of your rights described in this section. We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.
C. Agent Requests
You may authorize someone to make a privacy rights request on your behalf (an authorized agent). Authorized agents will need to demonstrate that you’ve authorized them to act on your behalf or must demonstrate they have power of attorney pursuant to applicable probate law. Chantecaille retains the right to request confirmation directly from you confirming that the agent is authorized to make such a request, or to request additional information to confirm the agent’s identity. An authorized agent is prohibited from using a consumer’s Personal Data, or any information collected from or about the consumer, for any purpose other than to fulfil the consumer’s requests, for verification, or for fraud prevention.
D. Data Protection Disclosures
Categories of Personal Data Disclosed for Business Purposes
In the last 12 months, we have disclosed the following categories of Personal Data for a business purpose (such as with our service providers or processors, whose use of Personal Data we disclose is limited to providing certain service to us pursuant to a written contract):
Categories of Personal Data Sold or Shared
We do not knowingly sell your Personal Data for monetary consideration and have not done so in the past 12 months and we will try always to share your Personal Data with third parties in a way that it is not considered a sale, for example with our service providers processing your Personal Data on our behalf. However, the meaning of “sale” under California law is very broad and it may include the sharing of Personal Data with companies that provide services to us, such as companies that help us to market or advertise our products, including the collection of your information done by third parties on our Site via cookies or similar technologies in order to provide you with personalized advertisement.
In the last 12 months, we have sold or shared the following categories of Personal Data with advertising networks, advertising platforms, and social media companies for the purposes described in this Privacy Policy, including for targeted advertising.
We do not knowingly sell or share Personal Data about persons under the age of 16.
E. Financial Incentive
When you provide us with contact information and identifiers such as your name, phone number, date of birth and email address within the enrollment in our loyalty program, we will provide certain perks to you, such as rewards and exclusive offer as detailed above. These perks may be considered a “financial incentive” in exchange for Personal Data under the California law and by enrolling in the loyalty program, you opt-in to those financial incentives. You may withdraw from a financial incentive at any time by contacting us using the Contact Us form Contact Us – Chantecaille. Generally, we do not assign monetary or other value to your Personal Data, however, California law requires that we assign such value in the context of financial incentives. In such context, the value of the Personal Data is related to the estimated cost of providing the relevant financial incentive(s) for which the information was collected. The disclosure of the value described herein is not intended to waive, nor should be interpreted as a waiver to, our proprietary or business confidential information, including trade secrets, and does not constitute any representation with regard to generally accepted accounting principles or financial accounting standards.
13.CHANGES TO OUR PRIVACY POLICY
We reserve the right to change this Privacy Policy at any time, in whole or in part, at our discretion and without prpior notice. In the event we make material changes to this Privacy Policy, we will post any such changes or amendments in our then current Privacy Policy on the Site, which will supersede all prior versions. Therefore, please review this Privacy Policy from time to time so that you are aware when any changes are made to this Privacy Policy. In any event, your continued use of the Site after such change constitutes your acceptance of any such change(s) and the policy as updated.
14.DATA CONTROLLERS AND CONTACT
If you have any questions about this Privacy Policy or privacy matters generally or to make a complaint about our compliance with applicable privacy laws, please contact us using the Contact Us page of our website or contacting us at [email protected] and we will be happy to assist you.
We will acknowledge and investigate any complaint you make (including a complaint that we have breached your rights under applicable privacy laws). We hope that we can satisfy queries. However, you have the right to lodge a complaint with the relevant data protection authority, in particular in the country of your habitual residence or place of the alleged infringement.
Data controllers
Chantecaille Beaute Inc. 584 Broadway, Suite 1111 New York, New York 10012 USA
The Chantecaille group companies will also act as local data controllers:
United Kingdom
Chantecaille (UK) Ltd. 1st Floor Sheraton House, Lower Road, Chorleywood, Hertfordshire, England, WD3 5LH
Shipping, taxes, and discounts calculated at checkout.