Privacy Policy for Goldie Skn

Effective Date: October 17, 2025

At Goldie Skn ("we," "us," or "our"), we value your privacy. This Privacy Policy explains how we collect, use, share, and protect your information when you visit goldieskn.com (the "Site"), book services, or engage with our esthetician services, including microneedling with our FDA-approved device. By using our Site or services, you agree to these practices.

This policy complies with the California Consumer Privacy Act (CCPA) for California residents and the General Data Protection Regulation (GDPR) for users in the European Economic Area (EEA).

1. Information We Collect

We collect the following to provide and enhance our services:

  • Personal Information: Name, email, phone number, mailing address, payment details (processed securely via third-party providers).

  • Health Information: Skin type, medical history, allergies, or treatment preferences shared during consultations/bookings (treated as sensitive under GDPR).

  • Usage Data: IP address, browser type, pages visited, time/date of access (via cookies or analytics tools like Google Analytics).

  • Communication Data: Messages from contact forms, emails, or calls.

We do not collect data from children under 13 without parental consent (per COPPA).

2. How We Collect Information

  • Directly: Through forms, bookings, purchases, or communications.

  • Automatically: Via cookies, web beacons, or analytics tools. You can opt out of non-essential cookies via browser settings.

  • Third Parties: From payment processors (e.g., Stripe) or marketing partners, with your consent.

3. How We Use Your Information

We use your information to:

  • Process bookings, payments, and provide customized skin care services (e.g., microneedling).

  • Send appointment reminders, updates, or promotions (opt-out available).

  • Improve our Site/services via analytics.

  • Comply with legal obligations and prevent fraud.

  • Market services, with explicit consent (GDPR) or opt-out option (CCPA).

Data is retained only as needed for these purposes or legal requirements (e.g., 7 years for financial records).

4. How We Share Your Information

We do not sell your information. We may share it with:

  • Service Providers: Appointment platforms, payment processors, or email tools (e.g., Mailchimp), under confidentiality agreements.

  • Legal Authorities: If required by law or to protect rights/safety.

  • Business Transfers: During mergers, acquisitions, or asset sales.

  • Third-Party Links: Our Site may link to external sites (e.g., social media); their privacy practices are not our responsibility.

Under CCPA, California residents can opt out of data “sales” (sharing for value); we do not sell data but honor opt-out requests.

5. Your Privacy Rights

Depending on your location, you have the following rights:

Right

Description

How to Exercise

Access

View your personal data.

Email privacy@goldieskn.com

Correction

Update inaccurate data.

Use Site contact form.

Deletion

Request data removal (subject to legal exceptions).

Submit verifiable request (CCPA: twice per 12 months).

Opt-Out of Sharing/Sale (CCPA)

Stop sharing for targeted ads.

Click “Do Not Sell or Share My Personal Information” in Site footer.

Objection/Withdraw Consent (GDPR)

Object to processing or withdraw consent.

Email us; processed within 1 month.

Portability (GDPR/CCPA)

Receive data in a structured format.

Request via email.

Non-Discrimination (CCPA)

No penalties for exercising rights.

N/A

CCPA: California residents have these rights if we meet CCPA thresholds (e.g., data of 100K+ consumers). Verify identity via email/phone. We respond within 45 days.

GDPR: EEA residents can restrict processing. We process based on consent, contract necessity, or legitimate interests. Data transfers outside EEA use Standard Contractual Clauses.

Contact privacy@goldieskn.com to exercise rights. No fees unless requests are excessive. EEA users may contact their data protection authority if unresolved.

6. Data Security

We use encryption, firewalls, and access controls to protect your data. No system is 100% secure; report suspected breaches to us immediately.

7. Cookies and Tracking

We use cookies for functionality, analytics, and ads. Manage preferences via our cookie banner or browser settings. Essential cookies cannot be disabled.

8. International Data Transfers

For EEA users, data may transfer to the US with GDPR-compliant safeguards (e.g., Standard Contractual Clauses).

9. Changes to This Policy

We may update this policy. Significant changes will be posted on the Site and notified via email. Continued use implies acceptance.

10. Contact Us

For questions, email privacy@goldieskn.com or use our Site’s contact form. For CCPA/GDPR complaints, contact us first.

Note: This is a general policy. Consult a legal professional to ensure compliance with specific laws or regulations.