Toggle Nav

Hair Loss Subscription
Privacy Policy

Philip Kingsley Hair Loss Subscription Service Privacy Notice and Policy

Philip Kingsley Products Limited ("we" and "us") collects, processes and is responsible for personal data relating to our customers, those interested in our products and others. Our use of personal data is regulated by the General Data Protection Regulation (GDPR) which applies across the European Union.

We are responsible as ‘controller’ of that personal data for the purposes of data protection legislation.

We are a limited company with our register address at 54 Green Street, London, W1K 6RU and company number 02834292.

We are registered at the Information Commissioner’s Office (ICO) (www.ico.org.uk) and our registration number is ZA494613. You have the right to make a complaint at any time to the Information ICO.

We would be grateful for the chance to deal with any data protection issues you may have before you approach the ICO so please contact us at [email protected] in the first instance.

This Privacy Notice and Policy applies to all processing of customer and potential customer’s personal data.

What Personal Data do we collect and use?

Collected by us from you and your use of our products and services, in-store and online:

Identity Data, includes your name, username or similar identifier.

Contact Data, includes billing and delivery address, email address and telephone numbers.

Transaction Data, includes details about payments, refunds and what you have purchased from us.

Profile Data, includes username and password, purchases or orders made by you, your interests, preferences, feedback, communications you’ve sent to us or we’ve sent to you.

Medical Data, including, where provided by you or on your behalf your medical history.

Marketing and Communications Data, includes your preferences in receiving marketing from us and our third parties and your communication preferences.

Information collected automatically (We collect this personal data by using cookies and other similar technologies. We may also receive Technical Data about you if you visit other websites employing our cookies. Please see our cookie policy for further details) or from your use of our services or Information collected from other sources:

Technical Data, includes details of your visits to our sites, internet protocol (IP) address, login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system, platform and other technology on the devices you use.

Usage Data, includes how you use our website, communications (including email and social media), products and services.

User Generated Content or similar voluntary information, including social media images, videos, comments and messages featuring, mentioning or tagging Philip Kingsley.

We do not usually collect any Special Categories of personal data (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.

What do we do with Personal Data and our lawful basis for doing so

We use personal data in a lawful way, usually this will be:

To perform a contract we have entered or about to enter in to with you.

Where it is in our (or a third party’s) legitimate interests and your interests, do not override that interest.

To comply with a legal or regulatory obligation.

Generally, we do not rely on consent as a legal basis for processing your personal data. If we do rely on consent then you may withdraw that consent at any time.

Where we process your medical data we do so either: with your explicit consent (which may be withdrawn at any time); because the processing is necessary for medical diagnosis (and processed under the responsibility of a professional subject to the obligation of professional secrecy); or processing is necessary for the establishment, exercise or defence of legal claims


Activity.

Data.

Lawful basis.

New Website

 

Identity Data

Contact Data

Profile Data

Perform a contract

Website Order

 

Identity Data

Contact Data

Transaction Data

Profile Data

Medical Data

Perform a contract

Website Newsletter Signup

 

Contact Data,

Marketing and Communications Data

Profile Data

Legitimate interest – To promote our products and services to those interested. This is done in compliance with obligations/rights within Electronic Privacy and Communications Regulations and GDPR.

When holding this data and marketing to data subject we give consideration to:

  • Whether recipients would expect us to use their details in this way.
  • The potential nuisance factor of unwanted marketing messages; and
  • The effect our chosen method and frequency of communication might have on individuals.

Website Order Logistics

 

Identity Data

Contact Data,

 

Perform a contract

Logistics Orders Shipping

 

Identity Data

Contact Data,

 

Perform a contract

General Enquiries Process

 

Identity Data

Contact Data

Perform a contract

Web Service Providers

 

Identity Data

Contact Data

To run and maintain the website

Occasional Telephone Orders Process

Identity Data

Contact Data

Transaction Data

Perform a contract

Social Media

User Generated Content

Legitimate interest – To promote products and services.

Salon Contacts Process

 

Identity Data

Contact Data

 


Website Tracking

Technical Data

Usage Data

Legitimate interest – To analyses the use of our website. This is subject to our balancing your privacy interests and is in compliance with relevant regulations.


We may process your personal data for more than one lawful ground depending on the specific purpose for which we are using your data. Please contact us if you need details about the specific legal ground we are relying on to process your personal data where more than one ground has been set out in the table above. For the most part, we’ll be using your data to fulfil our contract with you.

How we share your Personal Data

We may share your personal data with the parties set out below for the purposes set out:

  • Other companies in our group where that company carries out the activity set out in the table above.
  • Our independent medical prescriber (a qualified doctor) to check your medical records.
  • Our independent dispensing service (pharmacy) provider to dispense your prescription.
  • Our logistics provider to fulfil your order.

Further details of these parties may be available on request.

Third parties to whom we may choose to sell, transfer or merge parts of our business or our assets. Alternatively, we may seek to acquire other businesses or merge with them. If a change happens to our business, then the new owners may use your personal data in the same way as set out in this privacy policy.

We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

Change of Purpose

We will usually only use your personal data for the purposes for which we collected it or if that use is compatible with the original purpose. If you wish to get an explanation as to how the processing for the new purpose is compatible with the original purpose, please contact us [email protected].

If we need to use your personal data for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.

Please note that we may process your personal data without your knowledge or consent, in compliance with the above rules, where this is required or permitted by law.

Marketing

We may use your Identity, Contact, Technical, Usage and Profile Data to help us what may be of interest to you. This is how we decide which products, services and offers may be relevant for you.

If you are a consumer, you will receive marketing communications from us only if you have requested information from us or purchased goods or services from us, in each case, you have not opted out of receiving that marketing.

Each time we send you a marketing communication we will give you the opportunity to object to this marketing. If you do object we will stop sending you marketing communication and will retain your details to ensure we do not market to you again. You may also object to marketing by contacting [email protected].

Cookies

You can set your browser to refuse all or some browser cookies or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly.

For more information about the cookies we use, including third-party cookies, please see our Cookie Policy.

Your Legal Rights

Under certain circumstances, you have rights under data protection laws in relation to your personal data including the right to receive a copy of the personal data we hold about you and the right to make a complaint at any time to the Information Commissioner's Office, the UK regulator for data protection issues (www.ico.org.uk).