Effective date: 02 May 2025

Website: rebeccaisabelskincare.co.uk
These policies also apply to visitors using barefacedfacts.com, which redirects to our primary website.

Who we are

Our website address is https://rebeccaisabelskincare.co.uk.

We are committed to protecting your privacy and complying with the UK General Data Protection Regulation (UK GDPR) and EU GDPR. This Privacy Policy explains what personal data we collect, why we collect it, and how we use it.

Information We Collect

We collect and process the following data:

  • Comments:
    When visitors leave comments, we collect the data shown in the comments form, IP address, and browser user agent string to help detect spam.
    An anonymised string (hash) may be sent to the Gravatar service. See Automattic’s Privacy Policy.
  • Media uploads:
    If you upload images, avoid including embedded location data (EXIF GPS), as visitors can download and extract this data.
  • Cookies:
  • We use cookies for:
    • Saving your name, email, and website when you comment (1 year).
    • Managing login sessions and screen display choices.
    • Tracking basket contents during checkout.
    • Analysing website performance (via Google Analytics, if consented).
  • Embedded content:
    Articles may include embedded content (e.g., videos, images) from other websites. These sites may collect data, use cookies, and track interactions.
  • Ecommerce and orders:
  • When you place an order, we collect:
    • Name, billing and shipping addresses, email, phone, payment details.
    • Account information (if you create one). We use this to:
    • Process orders, payments, and refunds.
    • Send order updates.
    • Meet legal obligations (tax, accounting).
    • Improve our store and customer service.

Legal Bases (GDPR)

We process your data under:

  • Your consent.
  • Contractual necessity (to fulfil orders).
  • Legal obligations (e.g., taxes).
  • Legitimate interests (site improvements, analytics).

How Long We Retain Data

  • Comments and metadata: indefinitely.
  • Order data: 6 years (for legal/accounting purposes).
  • User accounts: as long as the account is active.
  • Analytics data: as defined in Google Analytics retention settings.

Who Has Access

Our team (admins, shop managers) can access:

  • Order info (what, when, where).
  • Customer info (name, email, billing/shipping address).

Who We Share Data With

We do not sell, trade, or rent your data. We may share it with:

  • Trusted services for order processing, payments, email delivery, and analytics.
  • PayPal, for payments. See PayPal’s Privacy Policy.
  • Google Analytics, if you consent, to track site usage.

Your Rights (GDPR)

You can:

  • Access your data.
  • Request correction or deletion.
  • Object to or restrict processing.
  • Receive an exported copy of your data.
  • Withdraw consent (where processing is based on consent).

To exercise these rights, email us at: contact@rebeccaisabelskincare.co.uk

Data Security

We take appropriate measures to secure your data, including HTTPS encryption, secure payments, and trusted third-party providers.

Affiliate Disclosure

We may participate in affiliate programmes. If you click a link and make a purchase, we may earn a small commission at no extra cost to you.

Where Your Data Is Sent

  • Comments may be checked by an automated spam detection service.
  • Payments are securely processed by PayPal.

Cookies and Tracking Tools

We use cookies and third-party tools like Google Analytics to analyse performance. You can manage cookie preferences through your browser or consent banner.

Contact Us

For questions or privacy concerns, email: contact@rebeccaisabelskincare.co.uk