OUR UPDATED GDPR PRIVACY POLICY:

General

  • Alfinity Ltd trading as Harley Street Emporium (“we” or “us”) take the privacy of your information very seriously. Our privacy and data protection policy (“Privacy Policy”) is designed to tell you about our practices regarding the collection, use and disclosure of information that you may provide via the Harley Street Emporium website (“Website”).
  • By using this Website or any services we offer, you are consenting to the collection, use, and disclosure of that information about you in accordance with, and are agreeing to be bound by, this Privacy Policy. YOu are also free under the GDPR to exercise your rights to access or have your information removed.

This policy augments our previous privacy policy as listed below. The previous policy has additional elements and we advise that you read them both.

  • GDPR requirements

Harley Street Emporium collects certain information from you in order to process sales, track deliveries and ensure your visit to our site is fully functional, for analytic purposes and for remarketing.

 

  • What data is being collected and why?
  1. For sales purposes we collect your:
  • name
  • address
  • telephone number.

This allows us to send your order, communicate with you about your order, and to track your order. We do not share this information with any third parties unless it is agreed to by you or required by law.

We do not collect your credit card or debit card details – these are taken by our secure payment processors, PayPal or Sage Pay, and that data is held by them and subject to their privacy policies.

You can view their policies here:

https://www.sagepay.co.uk/policies/privacy-policy

https://www.paypal.com/en/webapps/mpp/ua/privacy-full

 

  1. For Booking with Doctors on our site we collect your:
  • name
  • email address
  • telephone number.

We securely pass this information on to the doctor’s clinic via email and they contact you to make the appointment. We do not pass this information to anyone else. We do not have any access to any of your medical information. We may also contact you via email or the phone if we believe we can better direct your booking or if there are any other relevant reasons such as a doctor no longer being listed on our site or no longer providing a particular service or treatment.

 

  1. For site access we collect your login and password.

We need this information in case you need to change or update your preferences or to help you access your account should you lose your details. We do not share this information with anyone.

 

  1. For functionality and remarketing we collect deidentified data from Cookies

For site purposes we use cookies which are small pieces of code that are sent to your computer, tablet or phone. Cookies allow us to collect deidentified data that we can use to compile statistics that give us the information we need to ensure the site functions properly or for remarketing purposes.

Cookies tell us:

  • If people are new or returning visitors from their IP address
  • What type of device is being used so we can ensure the page displays properly
  • How long people spend on the site so we can gauge our engagements levels
  • Which pages people visit, so we can tailor our editorial and ensure it’s relevant to our readers
  • How many people have visited the site
  • How people came to the site – ie which search engine you used, if people were referred from a 3rd party such as social media or content we have on 3rd party sites media outlets such as Outbrain or Taboola, or if they came directly. This allows us to work out where our weak spots and strong spots are an adjust our marketing or editorial content appropriately
  • Which keywords people may have used to access the site so we can tailor our adwords or adjust our SEO efforts.

Cookies do not allow us to access any information on your device or identify you personally.  It is anonymous data that allows us to compile statistics that we can use to make our site better, improve functionality and for remarketing purposes and statistical purposes. We use Google Analytics for our statistics.

 

Removing cookies:

You can remove cookies from your site or disable cookies when you come to the site but this may make your experience on the less enjoyable and you may not have access to all our features.

You can read more about cookies here:

https://www.aboutcookies.org/

Our site, like most websites, includes functionality provided by third parties. An example of this is an embedded YouTube video. Our site includes the following, which use cookies:

  • YouTube
  • Facebook
  • Twitter
  • Instagram

Disabling these cookies is likely to break the functions offered by these third parties. The cookies they use is subject to their privacy policies over which we have no control.

By using our site you consent to our privacy policy and the use of cookies.

 

  1. Facebook pixels, tracking tags

When you visit our site, view one of our emails or book on the contact information for doctors, we may use pixel tags (also called “clear” gifs), tracking links and/or similar technology so we can see which pages are visited on the site.

As per the google analytics we use this information to improve our site and to personalise your experience.

Again this is not information that identifies you personally, only how an individual from a certain IP address moves around the site and what they are interested in. We may use this information to personalise your experience by showing you articles or products that are of interest to you based on the pages you have visited. For example if you visit a page on menopause we may show you related articles, or if you look at acne products we may show you other acne related information or products.

We also use this information for our own internal statistics and site marketing purposes so we can say how many people visited the site, what was the most popular content and how many bookings or doctor contacts were made.

For the shop these analytics show us where people have or haven’t completed sales so we can optimise our functionality and ensure the best possible experience.

 

  1. For our Newsletter or if you have downloaded a PDF from the site

If you have signed up to our newsletter or downloaded a PDF from the site your name and email address is collected.

From time to time we may send you updates on what’s new on the site or other information about sales, products or health or aesthetic procedures that you may find interesting.

Your email is stored on Mailchimp, where it will be subject to their security settings. You can review them here:

https://mailchimp.com/legal/privacy/

When you sign up to our newsletter you must be over 16 years of age. If you are not over 16 please ask your parent, caretaker or guardian to sign up on your behalf.

 

External links

Our website contains links to other websites of interest or referenced material. If you use these links you leave our site and are subject to the privacy policies of those sites. We do not have any control over those site and cannot be responsible for the protection and privacy of any information which you may provide while visiting such sites. These sites are not governed by our privacy policy. We advise that you look at the privacy statement applicable to the website in question.

 

Security of data

While no system is ever 100% secure from unscrupulous hackers, we endeavour to ensure any data held on our servers or transmitted by email is done so to industry standards.

Our site is PCI compliant and secured by Elavon.

https://www.elavon.com/security-center/elavon-security/pci.html

We also use Trustwave to secure payments. https://www.trustwave.com/Services/Compliance-and-Risk/PCI-Services/

We are SSL compliant which ensures transactions and data sharing between our site and the server is secure. A padlock sign in the URL indicates that the SSL is active and that data is stored and transmitted securely.

Our site and server are regularly scanned for viruses or other malware than may compromise security.

 

How long do we store data?

Typically for sales or doctor bookings we will store the minimum amount of data (name, email, address and phone number) for seven years. Even though we do not store or have any access to your medical records this is in line with medical record storage requirements and tax requirements.

For our newsletters we will store your data until you tell us you would like it removed. You can do this by emailing info@harleystreetemporium.com or by unsubscribing to your newsletter, or by calling us directly on 07507228214.

You can also make a complaint via the same contact channels.

Any payment data held by any third parties such as Sage Pay or PayPal is subject to their privacy policies and retention lengths as per the links provided above.

 

Your rights

Under the Data Protection Act and the General Data Protection Regulations, you have many rights to enable you to control how organisations use and control your data. These include:

  • The right to be informed
  • The right of access
  • The right of rectification
  • The right to erasure
  • The right to restrict processing
  • The right to data portability
  • The right to object
  • The right not to be subject to automated decision-making including profiling

You may request details of the personal information we hold about at any time.

If you would like a copy of the information held on you please email us at info@harleystreetemporium.com or call on 07507228214.

If you believe that any information we are holding on you is incorrect or incomplete, please let us know us as soon as possible and we will promptly correct any information found to be incorrect.

If you wish any or all of your data to be entirely deleted from our systems, please contact us at the above email address or phone number.

Please note we may need to confirm your identity for us to delete this information.

We hope that our Privacy Policy has explained how we work to ensure all your rights are secured and respected.

We will not share your data unless legally compelled to do so or if you give us permission to do so. We will never sell your information to any third parties.

If you have any questions please feel free to call or email and we will do our best to answer them in a timely manner.

Our Previous Privacy Policy

  1.  General
    • Alfinity Ltd trading as Harley Street Emporium (“we” or “us”) take the privacy of your information very seriously. Our privacy and data protection policy (“Privacy Policy”) is designed to tell you about our practices regarding the collection, use and disclosure of information that you may provide via the Harley Street Emporium website (“Website”).
    • By using this Website or any services we offer, you are consenting to the collection, use, and disclosure of that information about you in accordance with, and are agreeing to be bound by, this Privacy Policy.
  2. Ways that we collect information
    • We may collect and process the following personal information or data (information that can be uniquely identified with you) about you:
      • Certain information required to register with our Website or to access other services provided by us, including your name, address and date of birth;
      • Your e-mail address and a password;
      • Information provided in connection with bookings you make through the Website;
      • A record of any correspondence between you and us;
      • Your replies to any surveys or questionnaires that we may use for research purposes;
      • Details of accounting or financial transactions including transactions carried out through our Website or otherwise (this may include information such as your credit card, debit card or bank account details);
      • Details of your visits to our Website and the resources that you access;
      • Information we may require from you when you report a problem with our Website.
    • We only collect such information when you choose to supply it to us. You do not have to supply any personal information to us but you may not be able to take advantage of all the services we offer without doing so.
    • Information is also gathered without you actively providing it, through the use of various technologies and methods such as Internet Protocol (IP) addresses and cookies. These methods do not collect or store personal information.
    • An IP address is a number assigned to your computer by your Internet Service Provider (ISP), so you can access the Internet. It is generally considered to be non-personally identifiable information, because in most cases an IP address can only be traced back to your ISP or the large company or organisation that provides your internet access (such as your employer if you are at work).
    • We use your IP address to diagnose problems with our server, report aggregate information, and determine the fastest route for your computer to use in connecting to our site, and to administer and improve the site.
  3. Use and Disclosure
    • We may use this information to:
      • ensure that the content of our Website is presented in the most effective manner for you and for your computer and customise the Website to your preferences;
      • assist in making general improvements to our Website;
      • carry out and administer any obligations arising from any agreements entered into between you and us;
      • allow you to participate in features of our Website and other services;
      • contact you and notify you about changes to our Website or the services we offer (except where you have asked us not to do this);
      • collect payments from you;
      • analyse how users are making use of our Website and for internal marketing and research purposes.
    • We do not disclose any information you provide via the Website to any third parties except:
      • If we are under a duty to disclose or share your personal data in order to comply with any legal obligation (for example, if required to do so by a court order or for the purposes of prevention of fraud or other crime);
      • in order to enforce any terms of use that apply to any of our Website, or to enforce any other terms and conditions or agreements for our services that may apply;
      • to protect the rights, property, or safety of Harley Street Emporium, our Website’s users, or any other third parties. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.
    • Other than as set out above, we shall not disclose any of your personal information unless you give us permission to do so.
  4. Cookies
    • A cookie is a piece of data stored locally on your computer and contains information about your activities on the Internet. The information in a cookie does not contain any personally identifiable information you submit to our site.
    • On our Website, we use cookies to track users’ progress through the Website, allowing us to make improvements based on usage data. We also use cookies if you log in to one of our online services to enable you to remain logged in to that service. A cookie helps you get the best out of the Website and helps us to provide you with a more customised service.
    • Once you close your browser, our access to the cookie terminates. You have the ability to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. To change your browse settings you should go to your advanced preferences.
    • We are required to obtain your consent to use cookies. We have a clear cookies notice on the home page of the Website. If you continue to use the Website having seen the notice then we assume you are happy for us to use the cookies described above.
    • If you choose not to accept the cookies, this will not affect your access to the majority of information available on our Website. However, you will not be able to make full use of our online services.
  5. Web Statistics

We use log files generated by our web servers to analyse site usage and statistics but the files do not identify any personal information. Log file analysis helps us to understand usage patterns on our website and to make improvements to our service.

  1. Access to and correction of personal information
    • We will take all reasonable steps in accordance with our legal obligations to update or correct personally identifiable information in our possession that you submit via this Website.
    • The Act gives you the right to access information held about you. Your right of access can be exercised in accordance with the Act. Any access request may be subject to a fee of £10 to meet our costs in providing you with details of the information we hold about you. If you wish to see details of any personal information that we hold about you please contact us by way of our contact page.
    • We take all appropriate steps to protect your personally identifiable information as you transmit your information from your computer to our Website and to protect such information for loss, misuse, and unauthorised access, disclosure, alteration, or destruction. We use leading technologies and encryption software to safeguard your data, and operate strict security standards to prevent any unauthorised access to it.
    • Where you use passwords, usernames, or other special access features on this site, you also have a responsibility to take reasonable steps to safeguard them.
  2. Other websites
    • This Website contains links and references to other websites. Please be aware that this Privacy Policy does not apply to those websites.
    • We cannot be responsible for the privacy policies and practices of sites that are not operated by us, even if you access them via the Website that is operated by us. We recommend that you check the policy of each site you visit and contact its owner or operator if you have any concerns or questions.
    • In addition, if you came to this Website via a third party site, we cannot be responsible for the privacy policies and practices of the owners or operators of that third party site and recommend that you check the policy of that third party site and contact its owner or operator if you have any concerns or questions.
  3. Transferring your information outside of Europe
    • As part of the services offered to you through our Website, the information you provide to us may be transferred to, and stored at, countries outside of the European Union (“EU”). By way of example, this may happen if any of our servers are from time to time located in a country outside of the EU or one of our service providers is located in a country outside of the EU. We may also share information with other equivalent national bodies, which may be located in countries worldwide. These countries may not have similar data protection laws to the UK. If we transfer your information outside of the EU in this way, we will take steps with the aim of ensuring that your privacy rights continue to be protected as outlined in this privacy policy.
    • If you use our Website while you are outside the EU, your information may be transferred outside the EU in order to provide you with those services.
    • By submitting your personal information to us you agree to the transfer, storing or processing of your information outside the EU in the manner described above.
  4. Notification of changes to our Privacy Policy

We will post details of any changes to our Privacy Policy on the Website to help ensure you are always aware of the information we collect, how we use it, and in what circumstances, if any, we share it with other parties.

  1. Contact us

If at any time you would like to contact us with your views about our privacy practices, or with any enquiry relating to your personal information, you can do so by way of our contact page, email or telephone.