We are committed to treating data privacy seriously. It is important that you know exactly what we do with your Personal Data.
Throughout this document, “we”, “us”, “our”, “ours” refer to IBERIA SKIN BRANDS INDIA PVT. LTD. Wherever we have said ‘you’ or ‘your’, this means YOU
WHO WE ARE
IBERIA SKIN BRANDS INDIA PVT. LTD is a company incorporated and registered under the provisions of the Companies Act, 2013 and having its registered office at G 65 B CABIN 3, BASEMENT, KALKAJI, NEW DELHI, INDIA 110019. IBERIA SKIN BRANDS INDIA PVT. LTD is engaged in the business of facilitating selling, marketing, and retailing cosmetic and beauty products (“Business”) through the e-commerce website domain name https://www.iberiaskinbrands.in and developed and owned by IBERIA SKIN BRANDS INDIA PVT. LTD and/or its parent company, and/or its affiliates (Website and App collectively referred to as “Platform”) or offline stores / events to conduct its Business.
ROLES WE PLAY
We play the role of a Data Controller when we collect and process Personal Data about you.
We play the role of a Data Processor when we collect and process Personal Data on behalf of another Data Controller
We commit to protecting your privacy and hence our Personal Data handling practices are continually reviewed to ensure compliance with the applicable Privacy laws and regulations
PERSONAL INFORMATION GATHERED BY IBERIA
The information we learn and gather from you, personal or otherwise, is used to register you, verify your identity to permit you to use the app, undertake transactions (including to facilitate and process payments), communicate with you, convey any promotional offers, services or updates associated with IBERIA, and generally maintain your accounts with us. We also use this information to customize your experience and improve IBERIA.
INFORMATION YOU GIVE US:
We receive and store any information you provide while using IBERIA, or give us in any other way. You can choose not to provide certain information, but then you might not be able to use IBERIA. We use the information that you provide for such purposes as opening your account, processing your transactions, responding to your requests, and communicating with you
INFORMATION WE COLLECT ABOUT YOU:
We receive and store certain types of information whenever you interact with us. For example, like many websites, we use “cookies,” and we obtain certain types of information when your web browser accesses our Services. We may also receive/store information about your location and your mobile device, including a unique identifier for your device. We may use this information for internal analysis and to provide you with location-based services, such as advertising, search results, and other personalized content.
INFORMATION FROM OTHER SOURCES:
We might receive information about you from other sources, such as updated delivery and address information from our carriers, which we use to correct our records and deliver your next purchase more easily.
CATEGORIES OF PERSONAL DATA
Categories of Personal Data collected and processed by us are as follows:
Demographic & Identity data
- Contact details such as Name, email address, contact number, shipping address, country, date of birth, profile picture
- Open data and public records such as information about YOU that is openly available on the internet
- Details such as Transaction amount, Bank Name, Card Type, Card number.
Online Identifiers and other Technical Data
- Location details such as data we get about your location, IP address, logs, or from where you connect a computer to the internet
- Technical details such as device information, location, and network carrier when you use our mobile applications
- Communications details such as the Metadata and other Personal Data we get from communications done through e-mails, SMS, instant messages and calls
- Usage data details such as data about how you use our website or web-based properties, pages viewed, etc.
PURPOSES OF GATHERING YOUR PERSONAL DATA
We use your personal information to operate, provide, develop, and improve the products and services. These purposes include:
PURCHASE AND DELIVERY OF PRODUCTS AND SERVICES
We use your personal information to take and handle orders, deliver products and services, process payments, and communicate with you about orders, products and services, and promotional offers.
PROVIDE, TROUBLESHOOT, AND IMPROVE IBERIA
We use your personal information to provide functionality, analyse performance, fix errors, and improve the usability and effectiveness of the IBERIA.
RECOMMENDATIONS AND PERSONALIZATION
We use your personal information to recommend features, products, and services that might be of interest to you, identify your preferences, and personalize your experience with IBERIA.
COMMUNICATE WITH YOU
We use your personal information to communicate with you in relation to IBERIA via different channels (e.g., by phone, e-mail, chat).
We use your personal information to display interest-based ads for features, products, and services that might be of interest to you.
LAWFUL BASES OF PROCESSING YOUR PERSONAL DATA
We are permitted to process your Personal Data in compliance with applicable laws and regulations by relying on one or more of the following lawful bases:
- You have explicitly agreed to us processing your Personal Data for a specific reason
- The processing is necessary to perform the agreement we have with you or to take steps to enter into an agreement with you
- The processing is necessary to in compliance with our Legal Obligations
- The processing is necessary for the purposes of a legitimate interest (“Legitimate Interest”) pursued by us, such as
- to provide services to you,
- to evaluate, develop or improve our products and services
Where the processing is based on your consent, you have a right to withdraw your consent at any time. You may withdraw consent by contacting us. Upon receipt of your written request to withdraw your consent, consequences of withdrawal will be communicated to you and, upon your agreement, your request for withdrawal will be processed.
COOKIES AND OTHER TRACKERS USED BY OUR DIGITAL PROPERTIES
Cookies are small text files that are placed on your computer by websites that you visit. Similarly, there are other types of trackers used. Likewise, Mobile Apps use requisite permissions and SDKs. These are used to make Websites & Apps work, or work more efficiently, as well as to provide information to the owners of the website/ App.
Below are the categories of cookies used on our website along with a description of what they are used for
These cookies are needed to run our website, to keep it secure if you are logged on and to obey regulations that apply to us.
If you are a customer, they help us know who you are so that you can log on and manage your accounts. They also help us keep your details safe and private.
These cookies are used for remembering things like:
- Your user ID on the log on page
- Your region or country
- Your preferred language
- Accessibility options like large font or high contrast pages
These cookies tell us how you and our other customers use our website. We combine all this data together and study it. This helps us to:
- Improve the performance of our services
- Improve the products we provide
Most web browsers allow some control of most cookies through the browser settings. Please note disabling the ‘Strictly Necessary’ cookies may cause certain parts of our website to remain inaccessible to you.
We use other tracking mechanisms in addition to the above
- Pixel Tags
- Log Files
- Clickstream analytics
DO NOT TRACK
Some web browsers have a “Do Not Track” feature. This feature lets you tell websites you visit that you do not want to have your online activity tracked. These features are not yet uniform across browsers. Our sites are not currently set up to respond to those signals.
PERSONAL DATA DISCLOSURE
contains third party SDKs that collect personally identifiable information (PII). They use this information to better target users or provide elements of our products & services on behalf of us. These third party sites have separate and independent privacy policies.
IBERIA USES THREE TYPES OF SDKS:
|Analytics||· Analyse in-depth detail about the visitors on our app|
· Settle errors
· Better target users and
· Provide push notifications and digital ads to the users
· Example- Clevertap,Appsflyer
|Payment||· Complete customers’ payment transaction Example – PayU|
|Login||· Help user’s login at IBERIA Example – Google, Facebook.|
Links to the Privacy Policies of the third-party service providers used by our application are given below:
We have appropriate contracts in place with our third-party partners. This means that they cannot do anything with your Personal Data which is outside of the scope permitted by us. They hold it securely and retain it only for the period specified in our contracts with them.
We might also disclose your Personal Data to appropriate authorities if we believe that it is reasonably necessary to comply with a law, regulation, legal process, to protect the safety of any person, to address fraud, security, or technical issues, or to protect our rights or the rights of those who use our products & services.
Reasons for disclosing your Personal Data to other parties:
We may disclose your Personal Data to others where it is lawful to do so including where we or they:
- need to provide you with products or services
- where you have initiated a payment
- have a legal obligation to do so, e.g., to assist with detecting and preventing fraud,
- have requirement in connection with regulatory reporting, litigation or asserting or defending legal rights and interests
- have a legitimate business reason for doing so
- want to send you information and promotional material regarding our products and services,
- have asked you for your consent to share it, and you have agreed
- Improve your online experience for using our product.
To whom your Personal Data may be disclosed:
We may disclose your Personal Data for the above purposes to other parties including:
- Other group companies and any subcontractors, agents or service providers who work for us or provide services to us or group companies (including their employees, sub-contractors, service providers, directors, and officers)
- Law Enforcement Authorities, Government Authorities, courts, dispute resolution bodies, our regulators, auditors, and any party appointed or requested by our regulators to carry out investigations or audits of our activities
- Statutory and regulatory bodies and authorities (including the government) investigating agencies and entities or persons, to whom or before whom it is mandatory to disclose the Personal Data as per the applicable law, courts, judicial and quasi-judicial authorities and tribunals, arbitrators, and arbitration tribunals
- Overseas regulators
- Anybody else that we have been instructed to share your Personal Data with by you
CROSS-BORDER DATA TRANSFER
You understand and accept that these countries may have differing (and potentially less stringent) laws relating to the degree of confidentiality afforded to the information it holds and that such information can become subject to the laws and disclosure requirements of such countries, including disclosure to governmental bodies, regulatory agencies, and private persons, as a result of applicable governmental or regulatory inquiry, court order or other similar process. In addition, several countries have agreements with other countries providing for exchange of information for law enforcement, tax and other purposes.
We are committed to protecting your Personal Data in our custody. We take reasonable steps to ensure appropriate physical, technical, and managerial safeguards are in place to protect your Personal Data from unauthorised access, alteration, transmission, and deletion. We work to protect the security of your personal information during transmission by using encryption protocols. We use multi-layered controls to help protect our infrastructure, constantly monitoring and improving our applications, systems, and processes to meet the growing demands and challenges of security. We ensure that the third parties who provide services to us under appropriate contracts, take appropriate security measures to protect your Personal Data in line with our policies.
RETENTION AND DISPOSAL OF DATA
LINKS TO OTHER WEBSITES
Our website is directed to be used by adults only. If you are not an adult, while you may look at our site, you should not make a purchase, register, or submit Personal Data to us. We or our associates /affiliates do not knowingly collect information from minors.
Intellectual And Industrial Property Rights Iberia Skin Brands Pvt Ltd
As owner or assignee, is holder of all the intellectual and industrial property rights of its Web page, as well as the items contained in the same (such as, images, sound, audio, video, software or texts, trademarks or logos, colour combinations, structure and design, selection of materials used, computer programs needed for its operation, access, use, etc.), owned by IBERIA SKIN BRANDS INDIA PVT. LTD. or its licensors. All rights are reserved. Pursuant to the provisions of Articles 8 and 32.1, subsection two, of the Law on Intellectual Property, the reproduction, distribution and public communication, including the making available modality, of all or part of the contents of this Web page, for promotional purposes, in any form or by any technical means is strictly prohibited without authorization from IBERIA SKIN BRANDS INDIA PVT. LTD. The USER undertakes to respect the Intellectual and Industrial Property rights owned by IBERIA SKIN BRANDS INDIA PVT. LTD. You may display the items on the Website, and may print, copy and store them in the hard disk of your computer or in any physical medium, solely and exclusively for private and personal use. The USER shall refrain from deleting, altering, eluding or manipulating any type of protection device or security system that may be installed in the Web pages of IBERIA SKIN BRANDS INDIA PVT. LTD.
Exclusion Of Guarantees and Responsibility Iberia Skin Brands India Pvt. Ltd.
Shall under no circumstances be liable for any damage of any nature that may be caused, interalia, by: errors or omissions in the contents, non-availability of the Website or the transmission of virus or malware in the contents, despite having adopted all the necessary technological means to avoid this.
YOUR RIGHTS AS A CUSTOMER
We understand that when you interact with IBERIA, you have rights over your Personal Data. These rights involve providing reasonable steps to allow you to access your personal data, correct any errors among others. If you are not satisfied with our response or have unresolved concerns, you can get in touch with us to resolve the issue by means of firstname.lastname@example.org.
For any further queries and complaints related to privacy under applicable laws and regulations, you could reach us at:
Contact Email Address: email@example.com
IN ACCORDANCE WITH INFORMATION TECHNOLOGY ACT 2000 AND RULES MADE THERE UNDER, THE NAME AND CONTACT DETAILS OF THE GRIEVANCE OFFICER ARE PROVIDED BELOW
GRIEVANCE/ NODAL OFFICER – CUSTOMER SERVICES
Name: Ravikant Manjhi
NOTIFICATION OF CHANGES