Last Updated: Jun 4, 2024
ZO Skin Health, Inc. and our affiliated entities (“ZO”, “us,” “our” or “we”) has developed this privacy policy ("Privacy Policy") to explain how ZO collects, uses, and discloses certain information. It applies to individuals (“users,” “you” or “your”) who visit zoskinhealth.com (the “Site”), set up an account through the Site, and/or make purchases through the Site or other sites, apps or services that link to this Policy (collectively, along with other functionalities of the Site, the “Services”). This Privacy Policy does not apply to any information collected by websites other than the Site.
We encourage you to read this Privacy Policy carefully to understand how we handle your information. By using the Services, you acknowledge that you have read and understand this Policy and that we collect, use, and disclose your information as set forth below. If you do not agree to this Privacy Policy, do not use the Services. If you have any questions regarding this Privacy Policy or our privacy practices, please email us at moc.htlaehniksoz@ycavirp.
We collect the personal information you provide to us when you purchase our products or visit our website. The categories of information we may collect include:
We may collect personal information about you from third-party sources, including Ad Networks.
The categories of information we may collect include:
Ad Networks
We do not retain data for any longer than is necessary for the purposes described in this Policy.
We generally retain data according to the guidelines below.Type of Data | Retention Period |
---|---|
Cookies and online data we collect while you use our website, including Online Identifiers, Internet Activity | We delete or anonymize data concerning your use of our website until the consumer opts out. |
Data we collect in order to process and ship orders you place with us, including Name, Email address, Postal address, Telephone number, Purchases, Credit or debit card number, Direct communications with your consumers | We keep personal information related to products and services you purchase for as long as the personal data is required for us to fulfill our contract with you and/or until the consumer opts out. We may keep data beyond this period in anonymized form. |
Data we collect when you contact us for customer support and other inquiries, including Name, Email address, Postal address, Telephone number, Purchases, Credit or debit card number, Direct communications with your consumers | We keep customer feedback and correspondence until the consumer opts out, to help us respond to any questions or complaints. We may keep data beyond this period in anonymized form. |
Data we collect when you sign up for promotional and marketing communications, including Name, Email address, Postal address, Telephone number, Online Identifiers, Internet Activity, Purchases, Inferences created from other personal information collected | Where you have signed up to receive promotional and marketing communications from us, we will retain any data collected until you opt out or request its deletion. We may keep data beyond this period in anonymized form. We will further retain a record of any opt-outs in order to prevent sending you future communications. |
Data we collect when you review our products, answer surveys, or send feedback, including Name, Email address, Purchases | We retain review, survey, and feedback data for up to 10 years following your last contact with us. We may keep data beyond this period in anonymized form to help improve our products and services. |
Data we collect in connection with privacy requests, including Name, Email address, Online Identifiers, Purchases, General location data | We retain records related to privacy requests as long as necessary to comply with our legal obligations. |
Data we collect for security purposes, including Name, Email address, Online Identifiers | We retain security-related data as long as necessary to comply with our legal obligations and to maintain and improve our information security measures. |
We process personal information for the following business and commercial purposes:
We may disclose personal information about you for business and commercial purposes when you purchase our products or visit our website:
Personal Information Category | Categories of Service Providers | Categories of Third Parties |
---|---|---|
Personal Identifiers | Ad Networks, Business Operations Tool, Commerce Software Tools, Contractors, Customer Support Tools, Cybersecurity Providers, Data Analytics Providers, Governance, Risk & Compliance Software, IT Infrastructure Services, Payment Processors, Sales & Marketing Tools, and Website Operations Tool | Affiliates, Payment Processors, and Shipping Services |
Internet Activity | Ad Networks, Business Operations Tool, Commerce Software Tools, Contractors, Cybersecurity Providers, Data Analytics Providers, IT Infrastructure Services, Payment Processors, Sales & Marketing Tools, and Website Operations Tool | Ad Networks and Affiliates |
Commercial Information | Ad Networks, Business Operations Tool, Commerce Software Tools, Contractors, Customer Support Tools, IT Infrastructure Services, Payment Processors, Sales & Marketing Tools, and Website Operations Tool | Affiliates and Payment Processors |
Financial Information | Business Operations Tool, Commerce Software Tools, Contractors, and Payment Processors | None |
Location Information | Ad Networks, Business Operations Tool, Contractors, Data Analytics Providers, IT Infrastructure Services, Payment Processors, Sales & Marketing Tools, and Website Operations Tool | None |
Consumer Communications | Business Operations Tool, Contractors, Customer Support Tools, and Sales & Marketing Tools | None |
Inferences from Other Data | Contractors and Website Operations Tool | None |
This section provides additional information for people in the European Economic Area (EEA) or United Kingdom (UK). The terms used in this section have the same meaning as in the General Data Protection Regulation and the UK Data Protection Act (GDPR). The term “personal information” as used in this notice has the same meaning as “personal data” in the GDPR.
The personal data we collect and how we share it is described above in our Privacy Policy.
We may disclose your personal information to the following third party controllers for business purposes:Barry Girsh, Google Pay, ZO Accounts, Apple Pay, PayPal - Pay with PayPal, Venmo, Pay Later, Instagram Ads, Facebook Ads, Google Ads, Ascender. To understand how these parties handle your data, please refer to their respectiveprivacy policies.
We use cookies to improve your experience on our site and to allow us and third parties to personalize the marketing content you see on other websites and social media. Website visitors from European Privacy Law regions can control cookie settings. Manage your region specific consent settings here.
We use these cookies for things like security, logins, site errors, and processing payments. We can't turn these necessary cookies off, but you can control them in your browser.
Cookie Name | Provider | Duration |
---|---|---|
__cf_bm | Cloudflare | 31 Mins |
__cq_dnt | First Party | Session |
__cq_seg | First Party | 30 Days |
__cq_uuid | First Party | 1 Year 30 Days |
_cfuvid | Cloudflare | Session |
_GRECAPTCHA | Google Cloud | 5 Months 27 Days |
_sp_id | First Party | 1 Year |
_sp_ses | First Party | 31 Mins |
cqcid | First Party | Session |
cquid | First Party | Session |
dw_dnt | First Party | Session |
dwac_ | First Party | Session |
dwanonymous_ | First Party | 5 Months |
dwsid | First Party | Session |
screenSize | First Party | 1 Year |
sid | First Party | Session |
source | First Party | 30 Days |
uuid | First Party | 1 Year 30 Days |
yotpo_pixel | Yotpo | 1 Day |
These cookies tell us how you use our sites and apps, and provide information to help us improve your experience.
Cookie Name | Provider | Duration |
---|---|---|
2c.cId | Nosto | 1 Year 1 Month 4 Days |
We use these cookies to enhance functionality and personalize content for you. For example, they allow us to remember you when you return to our website or app. If you do not allow these cookies then some or all of these services may not function properly.
Cookie Name | Provider | Duration |
---|---|---|
nostojs | Nosto | 1 Year 1 Month 4 Days |
pixel | Yotpo | 1 Year |
These cookies help us decide which products, services and offers may be relevant for you. We use this data to customize the marketing content you see on websites, apps and social media, and to measure your interactions with that content. We might use these cookies to advertise our products to you when you visit other websites.
Cookie Name | Provider | Duration |
---|---|---|
__kla_id | Klaviyo | 1 Year 1 Month 4 Days |
AMP_9bdc728a74 | Klaviyo | 1 Year |
We process personal data on the following lawful bases:
Where we process personal data on the basis of our legitimate interests, we pursue the following interests: Analyzing Data, Creating Customer Profiles, Delivering Targeted Ads, Fulfilling Customer Orders, Improving our Products & Services, Internal Business Operations, Managing Event & Guest Data, Operating Our Website or Mobile Apps, Meeting Compliance & Legal Requirements, Preventing Fraud, Processing Payments, Providing Customer Support, Sending Promotional Communications, Storing and Managing Data, and Tracking Purchases & Customer Data.
We may send the personal data of individuals in the EEA/UK to third countries, including the United States, where it may be stored or processed, for example on our service providers’ cloud servers. When we transfer personal data, we rely either on Adequacy Decisions as adopted by the European Commission (EC) or the UK Information Commissioner's Office (ICO) on the basis of Article 45 of Regulation (EU) 2016/679 (GDPR), the EU-US Data Privacy Framework and UK-US Data Bridge agreements, Standard Contractual Clauses (SCCs) issued by the EC or International Data Transfer Agreements (IDTAs) approved by the ICO. Data protection authorities have determined that the SCCs and IDTAs provide sufficient safeguards to protect personal data transferred outside the EEA/UK. You may read more about international data transfer mechanisms at the following links:
Individuals in the EEA/UK have the following rights regarding their personal data.Make a Privacy Request by clicking here. Once you submit a request, we will verify your identity and process your request in most cases within 30 days.
Right to access. You have the right to request a copy of the personal data we hold about you.
Right of portability. You have the right to ask us to transfer your data to another party.
Right to rectification. You have the right to request that we rectify any incorrect information we have about you.
Right of erasure. You have the right to request that we erase (delete) any personal information we hold about you.
Right to withdraw consent. You have the right to withdraw your consent at any time when we rely on your permission to process your personal data.
Right to object. You have the right to object to our use of data about you.
Right to lodge a complaint with a supervisory authority. You have a right to lodge a complaint with a supervisory authority. For more information, you can visit theInformation Commissioner’s Office website at https://ico.org.uk/, or see a list of EU Data Protection Authorities athttps://www.gdprregister.eu/gdpr/dpa-gdpr/.
ZO Skin Health