What personal data we collect and why we collect it
Your privacy is important to us. We are committed to protecting your privacy. We will only use the information that we collect about you lawfully (in accordance with the Data Protection Act 1998 and GDPR).
We may collect information about you for 1 reason: to respond to any queries which you may have.
The type of information we may collect about you includes:
- your name
- email address or phone number
- IP Address
We will never collect information about you without your explicit consent.
The information we hold will be accurate and up to date. You can check the information that we hold about you by emailing us. If you find any inaccuracies we will delete or correct it promptly.
Some of the services on this website allow you to send us an email. We will use the information you provide, such as email address or phone number, only to respond to your inquiry. Keep in mind that email transmissions are not encrypted by default, so we suggest you do not send sensitive information such as Social Security numbers, credit card numbers, or bank account information via such contact forms.
If such information is required, it will be via a web page that clearly states the page and its transmission of information is secure and encrypted. All electronic messages received from visitors are deleted when no longer needed.
The personal information which we hold will be held securely in accordance with our internal security policy and the law.
We may use technology to track the patterns of behavior of visitors to our site. This can include using a “cookie” which would be stored on your browser. You can usually modify your browser to prevent this happening. The information collected in this way can be used to identify you unless you modify your browser settings.
The IP address of visitors, user ID of logged in users, and username of login attempts are conditionally logged to check for malicious activity and to protect the site from specific kinds of attacks. Examples of conditions when logging occurs include login attempts, log out requests, requests for suspicious URLs, changes to site content, and password updates. This information is retained for 60 days.
Who we share your data with
Where we send your data
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Website Analytics & Cookies
Our website uses Google Analytics, a service which transmits website traffic data to Google servers in the United States. Google Analytics does not identify individual users or associate your IP address with any other data held by Google. We use reports provided by Google Analytics to help us understand website traffic and webpage usage.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
Security logs are retained for 60 days.
Personal contact information, such as what you provide when filling out a contact form, will be deleted when it is no longer needed.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
Visitor comments may be checked through an automated spam detection service.
How we protect your data
Keeping your information safe:
Spa Hands of Gold cares about the security of your information, and uses commercially reasonable safeguards to preserve the integrity and security of all information collected. However, Spa Hands of Gold cannot ensure or warrant the security of any information you transmit or guarantee that information may not be accessed, disclosed, altered, or destroyed.
Compromise of information:
In the event that any information under our control is compromised as a result of a breach of security, Spa Hands of Gold will take reasonable steps to investigate the situation and where appropriate, notify those individuals whose information may have been compromised and take other steps, in accordance with any applicable laws and regulations.
Data Controller Information:
Spa Hands of Gold processes personal data both as the Processor and as the Controller.
How to Contact Us: