Privacy Policy

This privacy policy describes how Aura Skin SG ("we," "us," or "our") collects, uses, and shares your personal information when you use our online platform and associated services. We are committed to protecting your privacy and handling your data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR).

Information We Collect

We collect information you provide directly to us when you interact with our service. This includes:

• Personal identification information such as your name.
• Contact information such as your postal address and potentially phone number (though we are limited in how we can contact you electronically as per our policy).
• Account information, including login credentials and preferences.
• Information related to your skin type, conditions, history, and lifestyle details you provide during consultations, skin analysis, or when purchasing products to enable us to provide personalized services and recommendations.
• Information you provide when filling out forms, participating in surveys, or communicating with us.

We also automatically collect certain information when you access and use our online platform. This may include:

• Usage data, such as the pages you view, the features you use, and the time and duration of your visit.
• Device information, such as your IP address, browser type, and operating system.

How We Use Your Information

We use the information we collect for various purposes, including:

• To provide, operate, and maintain our services, including processing transactions, fulfilling orders, and managing your account.
• To personalize your experience on our platform, such as providing tailored skincare recommendations and product suggestions.
• To communicate with you about your orders, services, and inquiries (note: electronic communication is limited).
• To improve our online platform, services, and offerings based on usage patterns and feedback.
• To understand how users access and use our services.
• To comply with legal obligations and protect our rights.
• To conduct internal business operations, such as data analysis, fraud prevention, and security.

Legal Basis for Processing

We process your personal information based on several legal grounds:

• Consent: Where you have given your explicit consent to process your personal data for a specific purpose, particularly for sensitive data like health or skin condition information. You have the right to withdraw your consent at any time.
• Performance of a Contract: Where processing is necessary for the performance of a contract with you, such as providing services you requested or fulfilling an order.
• Legal Obligation: Where processing is necessary to comply with a legal obligation.
• Legitimate Interests: Where processing is necessary for our legitimate interests or those of a third party, provided these interests do not override your fundamental rights and freedoms. This may include improving our services, preventing fraud, and ensuring the security of our platform.

Sharing Your Information

We may share your information with third parties in the following circumstances:

• Service Providers: We may share information with third-party vendors and service providers who perform services on our behalf, such as payment processing, data analysis, IT services, and customer support. These service providers are contractually bound to protect your information and use it only for the purposes for which it was disclosed.
• Legal Requirements: We may disclose your information if required to do so by law, in response to a court order, subpoena, or other legal process, or if we believe it is necessary to investigate, prevent, or take action regarding illegal activities, suspected fraud, situations involving potential threats to the safety of any person, or as evidence in litigation.
• Business Transfers: In the event of a merger, acquisition, restructuring, or sale of all or a portion of our assets, your information may be transferred as part of that transaction.

We do not sell your personal information to third parties.

Data Security

We implement appropriate technical and organizational measures to protect your personal information against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

Data Retention

We retain your personal information for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements. The retention period will vary depending on the type of information and the purpose for which it is used.

Your Data Protection Rights

In accordance with applicable data protection laws, you have certain rights regarding your personal data:

• The right to access your personal data.
• The right to request rectification of inaccurate or incomplete data.
• The right to request erasure of your personal data under certain conditions.
• The right to restrict the processing of your personal data under certain conditions.
• The right to object to the processing of your personal data under certain conditions.
• The right to data portability, allowing you to receive your personal data in a structured, commonly used, and machine-readable format.
• The right to withdraw consent at any time where processing is based on consent.
• The right to lodge a complaint with a supervisory authority.

To exercise any of these rights, please contact us using the physical address provided below.

Cookies and Similar Technologies

Our online platform may use cookies and similar tracking technologies to enhance your user experience, analyze usage patterns, and manage our services. You can control the use of cookies through your browser settings.

Links to Other Websites

Our online platform may contain links to third-party websites or services that are not operated by us. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services. We encourage you to review the privacy policies of any third-party sites you visit.

Children's Privacy

Our online platform and services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe your child has provided us with personal information, please contact us using the physical address below.

Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any significant changes by posting the updated policy on our online platform.

Contact Us

If you have any questions about this privacy policy or our data practices, please contact us by postal mail at the following address:

Aura Skin SG
77 Robinson Road
#10-05
Singapore 068896
Singapore