Privacy Policy

Your privacy is critically important to us. At Beauty Signature Co, we respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services.

1. Information We Collect

1.1 Information You Provide Directly

We collect information that you voluntarily provide when you:

• Register for an account or create a membership
• Complete our beauty quiz or skin analysis
• Subscribe to our newsletter or marketing communications
• Process payment for subscription services
• Contact our customer support team
• Upload progress photos or journal entries (Concierge tier)
• Provide feedback, reviews, or testimonials

1.2 Personal Information Categories

Category	Examples	Purpose
Identity Information	Name, username, date of birth	Account creation and personalization
Contact Information	Email address, mailing address, phone number	Communication and service delivery
Payment Information	Credit card details, billing address	Processing subscriptions and transactions
Beauty Profile Data	Skin type, concerns, goals, product preferences	Personalized protocol recommendations
Usage Data	Protocol selections, routine adherence, progress tracking	Service improvement and personalization
Visual Content	Progress photos, profile pictures	Progress tracking and AI analysis (Concierge)

1.3 Automatically Collected Information

When you visit our website, we automatically collect certain information through cookies and similar technologies:

• Device Information: IP address, browser type and version, operating system, device type
• Usage Information: Pages viewed, time spent on pages, click patterns, referring URLs
• Location Data: General geographic location based on IP address
• Technical Data: Screen resolution, time zone, language preferences

2. How We Use Your Information

We use your personal information for the following purposes:

2.1 Service Delivery

• Create and manage your account and membership
• Provide personalized beauty protocols and recommendations
• Process and fulfill transactions
• Deliver customized morning and evening routines
• Generate AI-powered beauty insights (Concierge tier)
• Track your progress and analyze results

2.2 Communication

• Send transactional emails (account creation, password resets, receipts)
• Deliver weekly beauty newsletters and content updates
• Provide customer support and respond to inquiries
• Send service announcements and important updates
• Request feedback and reviews

2.3 Marketing and Personalization

• Send promotional offers and special announcements (with your consent)
• Deliver targeted advertising based on your interests
• Personalize your experience on our website
• Recommend products and protocols relevant to your needs

2.4 Service Improvement

• Analyze usage patterns to improve our website and services
• Conduct research and development for new features
• Test and optimize our protocols and recommendations
• Train and improve our AI systems (Concierge tier)
• Identify and fix technical issues

2.5 Legal and Security

• Comply with legal obligations and regulatory requirements
• Prevent fraud, abuse, and unauthorized access
• Protect our rights and intellectual property
• Enforce our Terms of Use
• Respond to legal requests and court orders

3. Information Sharing and Disclosure

3.1 Service Providers

We share information with trusted third-party service providers who assist us in operating our business:

• Payment Processors: Stripe, PayPal (for secure payment processing)
• Email Service: MailerLite (for newsletter and marketing communications)
• Cloud Hosting: [Your hosting provider] (for website infrastructure)
• Analytics: Google Analytics (for website usage analysis)
• Customer Support: [Support platform if applicable]

These providers are contractually obligated to protect your information and use it only for specified purposes.

3.2 Affiliate Partners

When you purchase products through our affiliate links, we may share limited information (purchase confirmation) with our affiliate partners (e.g., Amazon Associates). This enables us to earn commissions at no additional cost to you.

3.3 Business Transfers

In the event of a merger, acquisition, bankruptcy, or sale of assets, your information may be transferred to the acquiring entity. We will notify you before your information becomes subject to a different privacy policy.

3.4 Legal Requirements

We may disclose your information when required by law or in response to:

• Court orders, subpoenas, or legal processes
• Law enforcement or government requests
• Protection of our rights, property, or safety
• Prevention of fraud or illegal activities
• Enforcement of our Terms of Use

3.5 With Your Consent

We may share your information for other purposes with your explicit consent, such as featuring your testimonial or progress photos (with identifying information removed or with your permission).

4. Data Security

4.1 Technical Safeguards

• Encryption: SSL/TLS encryption for data transmission
• Secure Storage: Encrypted databases for sensitive information
• Access Controls: Limited employee access on need-to-know basis
• Authentication: Secure password requirements and authentication protocols
• Monitoring: Continuous monitoring for suspicious activity
• Regular Audits: Periodic security assessments and penetration testing

4.2 Payment Security

Payment information is processed by PCI-DSS compliant payment processors (Stripe, PayPal). We do not store complete credit card numbers on our servers.

4.3 Limitations

5. Your Privacy Rights and Choices

5.1 Access and Portability

• Access: Request a copy of your personal information
• Portability: Receive your data in a structured, machine-readable format
• Review: View your profile, protocols, and account information

5.2 Correction and Update

• Update your account information through your dashboard
• Correct inaccurate or incomplete information
• Modify your beauty profile and preferences

5.3 Deletion and Restriction

• Delete Account: Request deletion of your account and associated data
• Restrict Processing: Limit how we use your information
• Object: Object to certain processing activities

Note: We may retain certain information as required by law or for legitimate business purposes (e.g., transaction records, dispute resolution).

5.4 Marketing Communications

• Opt-Out: Unsubscribe from marketing emails via the link in each email
• Preferences: Manage email preferences in your account settings
• No Penalty: Opting out does not affect your membership or services

Note: You will continue to receive transactional emails (receipts, account notifications) necessary for service delivery.

5.5 Cookie Management

• Control cookies through your browser settings
• Opt-out of targeted advertising via industry opt-out tools
• Use browser extensions to block tracking technologies

Note: Disabling cookies may limit website functionality.

5.6 Do Not Track

Our website does not currently respond to "Do Not Track" (DNT) browser signals, as there is no universal standard for DNT compliance.

6. Cookies and Tracking Technologies

6.1 Types of Cookies We Use

Cookie Type	Purpose	Duration
Essential Cookies	Enable core website functionality, login, and security	Session/Persistent
Preference Cookies	Remember your settings and personalization choices	Persistent (1 year)
Analytics Cookies	Understand how visitors use our website	Persistent (2 years)
Marketing Cookies	Deliver relevant advertisements and measure campaigns	Persistent (1 year)

6.2 Third-Party Cookies

We use third-party cookies from:

• Google Analytics: Website analytics and reporting
• Facebook Pixel: Advertising and conversion tracking
• MailerLite: Email marketing and analytics

6.3 Managing Cookies

You can control cookies through:

• Browser Settings: Most browsers allow you to refuse or delete cookies
• Opt-Out Tools: aboutads.info or youronlinechoices.eu
• Google Analytics Opt-Out: Google Analytics Opt-out Browser Add-on

7. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required by law.

7.1 Retention Periods

• Active Accounts: Data retained while your account is active
• Inactive Accounts: Deleted after 3 years of inactivity (with prior notice)
• Transaction Records: Retained for 7 years for tax and accounting purposes
• Marketing Data: Retained until you opt-out or request deletion
• Support Communications: Retained for 3 years for quality assurance

7.2 Deletion Requests

When you request account deletion, we will:

• Delete or anonymize your personal information within 30 days
• Retain limited data as required by law (transaction records, dispute resolution)
• Remove you from all marketing communications
• Notify third-party processors to delete your information

8. Third-Party Links and Services

Our website may contain links to third-party websites, products, or services (including affiliate product links). This Privacy Policy applies only to Beauty Signature Co.

8.1 Third-Party Privacy Practices

• Third-party websites have their own privacy policies
• We are not responsible for third-party privacy practices
• Review privacy policies before providing information to third parties
• We do not control third-party data collection or use

8.2 Affiliate Links

When you click on product affiliate links (e.g., Amazon Associates), we may receive a commission if you make a purchase. Your interaction with those retailers is governed by their privacy policies, not ours.

9. Children's Privacy

If we discover that we have inadvertently collected information from a child under 18, we will:

• Delete the information immediately
• Terminate the account
• Notify the parent or guardian (if contact information is available)

If you believe we have collected information from a child, please contact us immediately at privacy@beautysignature.co.

10. International Data Transfers

10.1 Where We Process Data

Beauty Signature Co is based in the United States. If you are accessing our services from outside the U.S., your information may be transferred to, stored, and processed in the United States or other countries where our service providers operate.

10.2 Safeguards

We ensure appropriate safeguards are in place for international transfers:

• Standard Contractual Clauses approved by regulatory authorities
• Service providers with adequate data protection practices
• Compliance with applicable data protection laws (GDPR, CCPA, etc.)

11. State-Specific Privacy Rights

11.1 California Residents (CCPA/CPRA)

Your Rights:

• Right to Know: Request disclosure of personal information collected, sources, purposes, and third parties with whom it's shared
• Right to Delete: Request deletion of your personal information (subject to exceptions)
• Right to Opt-Out: Opt-out of the "sale" or "sharing" of personal information (we do not sell personal data)
• Right to Correct: Request correction of inaccurate personal information
• Right to Limit: Limit use of sensitive personal information
• Right to Non-Discrimination: Not be discriminated against for exercising your rights

How to Exercise Your Rights:

• Email: privacy@beautysignature.co with "California Privacy Request" in the subject
• Response time: Within 45 days (extendable by 45 days if needed)
• Verification: We may request information to verify your identity
• Authorized Agent: You may designate an authorized agent to make requests on your behalf

Categories of Personal Information Collected (Past 12 Months):

• Identifiers (name, email, address)
• Commercial information (purchase history, membership tier)
• Internet activity (browsing behavior, protocol selections)
• Geolocation data (general location based on IP)
• Professional information (if provided)
• Inferences (beauty preferences, skin concerns)

11.2 Virginia Residents (VCDPA)

Virginia residents have rights under the Virginia Consumer Data Protection Act:

• Access, correct, delete, and obtain a copy of personal data
• Opt-out of targeted advertising and sale of personal data
• Appeal our decision regarding your rights request

Email: privacy@beautysignature.co with "Virginia Privacy Request"

11.3 Colorado Residents (CPA)

Colorado residents have similar rights under the Colorado Privacy Act. Contact us at privacy@beautysignature.co with "Colorado Privacy Request."

11.4 European Union Residents (GDPR)

Your Rights:

• Right of Access: Obtain confirmation of processing and a copy of your data
• Right to Rectification: Correct inaccurate or incomplete data
• Right to Erasure ("Right to be Forgotten"): Request deletion of your data
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a structured, machine-readable format
• Right to Object: Object to processing based on legitimate interests or direct marketing
• Right to Withdraw Consent: Withdraw consent at any time (does not affect prior processing)
• Right to Lodge a Complaint: File a complaint with your supervisory authority

Legal Basis for Processing:

• Consent: For marketing communications and non-essential services
• Contractual Necessity: To provide services you've subscribed to
• Legitimate Interests: For service improvement, fraud prevention, and business operations
• Legal Obligations: To comply with applicable laws

Contact us at: privacy@beautysignature.co with "GDPR Request"
Response time: Within 1 month (extendable by 2 months for complex requests)

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

12.1 Notification of Changes

We will notify you of material changes by:

• Posting the updated policy on this page with a new "Last Updated" date
• Sending an email notification to your registered email address
• Displaying a prominent notice on our website
• In-app notification (for Concierge tier members)

12.2 Your Acceptance

Your continued use of the Service after changes take effect constitutes acceptance of the revised Privacy Policy. If you do not agree with changes, you must discontinue use of the Service and may request account deletion.

12.3 Review Regularly

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

13.1 Privacy Rights Requests

When submitting a privacy rights request, please include:

• Your full name and email address associated with your account
• Specific right(s) you wish to exercise
• Description of your request
• Verification information (we may ask for additional details to confirm your identity)

14. Consent

By using our website and services, you acknowledge that you have read, understood, and agree to this Privacy Policy and our Terms of Use.