Privacy Policy
Last updated: 11 May 2025
CentellaSkin (“we,” “our,” “us”) respects your privacy and is committed to protecting the personal data you share with us. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit centellaskin.com (the “Site”) or purchase our products.
1. Who We Are
Data Controller: CentellaSkin, 25 rue des Cosmétiques, 75000 Paris, France
Email: privacy@centellaskin.com
2. What Information We Collect
| Type of data | Examples | When collected |
|---|---|---|
| Identity | name, username | account registration, checkout |
| Contact | billing / shipping address, e‑mail, phone | checkout, support |
| Transaction | order numbers, products, totals | purchase history |
| Payment | tokenised card data, PayPal ID (handled by Stripe / PayPal) | at payment gateway |
| Technical | IP address, browser, device, OS | site browsing, cookies |
| Usage | page views, clicks, referring URLs | analytics cookies |
| Marketing preferences | newsletter opt‑in status | sign‑up forms |
We do not intentionally collect special categories of personal data (e.g., health or biometric data).
3. How We Collect Data
- Directly from you – forms, checkout, e‑mails, chat.
- Automatically – cookies, server logs, pixels.
- From third parties – payment providers, social‑login services, marketing partners (with your consent).
4. Why We Use Your Data (Legal Basis – GDPR)
| Purpose | Legal basis |
|---|---|
| Process and deliver orders | Contract performance |
| Manage account, returns, warranty | Contract performance |
| Respond to queries, live‑chat, e‑mail support | Legitimate interest (customer care) |
| Fraud detection and security | Legitimate interest |
| Send transactional e‑mails (order confirmation, shipping update) | Contract performance |
| Send newsletters and special offers | Consent (opt‑in; you may unsubscribe anytime) |
| Improve the Site, analytics, A/B testing | Legitimate interest |
| Comply with legal obligations (tax, accounting) | Legal obligation |
5. Cookies & Tracking Technologies
We use first‑ and third‑party cookies for:
- Essential (cart, checkout, login)
- Analytics (Google Analytics 4, Matomo)
- Advertising (Meta Pixel, Google Ads) – only if you consent
- Social media embeds (Instagram, YouTube previews)
You can manage or disable non‑essential cookies via our Cookie Banner or your browser settings. See our full Cookie Policy for details.
6. Sharing Your Data
We never sell your personal data. We share only as necessary to run our business:
- Payment processors: Stripe, PayPal (card & wallet payments)
- Logistics: La Poste / Colissimo, DHL, UPS (shipping labels, tracking)
- IT & marketing tools: Klaviyo (email), Cloudflare (CDN), Google Analytics
- Professional advisers: accountants, legal counsel (under NDA)
- Authorities: if required by law or court order
All partners are contractually obliged to keep your data confidential and secure, and—when outside the EEA—protected by Standard Contractual Clauses or an adequacy decision.
7. Data Retention
We keep:
- Order records: 10 years (French accounting law)
- Customer accounts: until you request deletion or after 5 years of inactivity
- Marketing data: until you unsubscribe or your consent expires (3 years)
- Cookies: 13 months maximum (per CNIL recommendation)
8. Security
We employ HTTPS/TLS encryption, PCI‑DSS–compliant payment gateways, two‑factor admin logins, firewalls, and regular vulnerability scans. No internet transmission is 100 % secure, but we follow industry best practices to minimise risks.
9. Your Rights (EU/EEA & UK)
You can:
1. Access the personal data we hold about you.
2. Correct or update inaccuracies.
3. Request deletion (“right to be forgotten”).
4. Restrict or object to processing.
5. Port your data to another provider.
6. Withdraw consent at any time (for marketing).
7. Lodge a complaint with CNIL (France) or your local authority.
Contact us at privacy@centellaskin.com; we will respond within 30 days.
10. Children
The Site is not directed at children under 16. We do not knowingly collect personal data from minors. If you believe a child has provided us data, please contact us for deletion.
11. Third‑Party Links
Our Site may contain links to external sites (e.g., skincare blogs, social media). We are not responsible for their privacy practices or content.
12. Changes to This Policy
We may update this Privacy Policy from time to time. The “Last updated” date will change accordingly. Significant changes will be notified via e‑mail or a banner on the Site.
13. Contact
If you have questions, data requests, or complaints, please reach out:
CentellaSkin – Privacy Team
Unit 10, Astra Business Park, Guinness Rd, Trafford Park, Stretford, Manchester M17 1SU, United Kingdom
Email: privacy@centellaskin.com
By continuing to use our Site, you acknowledge that you have read and understood this Privacy Policy.
