Privacy Policy

1. Introduction

This Privacy Policy outlines how 1000928292 ONTARIO INC. (“we,” “our,” or “us”), operating through our website elbeauty.ca, collects, uses, stores, and shares your personal data. It also explains your rights under applicable privacy laws, including the General Data Protection Regulation (GDPR) and Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA).

We are committed to ensuring that your privacy is protected. Should we ask you to provide certain information by which you can be identified when using this website, you can be assured that it will only be used in accordance with this privacy policy.

By using elbeauty.ca, you consent to the practices described in this policy. If you do not agree with any part of this Privacy Policy, please refrain from using our website.

2. Data We Collect

We collect the following types of personal information:

a. Personal Identification Information

  • Name
  • Email address
  • Phone number
  • Mailing address
  • Date of birth (if necessary for service eligibility)

b. Service-related Information

  • Details about the services you purchase (e.g., permanent makeup procedures, consultations)

c. Technical Information

  • IP address
  • Browser type and version
  • Device type and operating system
  • Pages visited, time spent, and other usage data related to your browsing activities

d. Payment Information

  • Payment card details are processed securely by third-party payment processors and are not stored on our servers.

3. How We Use Your Data

We collect and process your data for the following purposes:

  • To provide, maintain, and improve our services.
  • To schedule and manage your appointments.
  • To communicate with you, respond to inquiries, or provide customer support.
  • To send you service updates, promotions, or newsletters (you can opt out at any time).
  • To personalize your experience on our website.
  • For marketing and promotional purposes (e.g., testimonials or before-and-after photos), with your explicit consent.
  • To comply with legal obligations (e.g., tax reporting, health regulations).

4. Legal Basis for Processing (for GDPR-covered Users)

We process your personal data based on the following legal grounds:

  • Consent: When you provide consent for us to process your data for specific purposes (e.g., receiving marketing emails).
  • Contractual necessity: When processing is necessary to fulfill a contract with you (e.g., providing beauty services).
  • Legal obligations: When processing is required for compliance with a legal obligation (e.g., maintaining financial records).
  • Legitimate interests: When processing is necessary for our legitimate interests, provided that those interests do not override your rights.

5. How We Share Your Data

We may share your personal information with the following parties:

  • Service providers: Third-party companies that help us operate our website or provide services (e.g., payment processors, booking systems).
  • Legal and regulatory authorities: When required to comply with a legal obligation or protect our rights.
  • Marketing platforms: With your consent, we may share anonymized data for targeted advertising.
  • Business transfers: If we are involved in a merger, acquisition, or sale, your data may be transferred as part of the transaction.

We do not sell your personal data to third parties.

6. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes for which it was collected, including for legal, accounting, or reporting requirements. Personal data related to customer services will be retained for up to 7 years, or as required by Canadian law.

7. Security Measures

We take appropriate security measures to protect your personal information from unauthorized access, use, disclosure, or destruction. These measures include:

  • Encryption of sensitive information.
  • Regular security audits.
  • Restricted access to personal data to authorized personnel only.

However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

8. Your Rights Under GDPR and PIPEDA

If you are located in the European Union or the European Economic Area, you have specific rights under the GDPR, including:

  • Right to access: You have the right to request copies of your personal data.
  • Right to rectification: You can request that we correct any inaccurate or incomplete data.
  • Right to erasure: You can ask us to delete your data under certain conditions.
  • Right to restrict processing: You can request we limit the processing of your personal data.
  • Right to data portability: You can request that we transfer the data we hold to another organization, or directly to you.
  • Right to object: You can object to the processing of your data for direct marketing purposes.
  • Right to withdraw consent: You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

To exercise these rights, please contact us at phi.elmiraarabi@gmail.com. We will respond to your request within 30 days.

9. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to improve your experience. Cookies help us analyze website traffic and personalize your experience by remembering your preferences.

You can control cookie preferences through your browser settings. Please note that disabling cookies may affect website functionality.

10. Third-Party Links

Our website may contain links to third-party websites or services. We are not responsible for the privacy practices or the content of those external websites. We encourage you to review their privacy policies.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page, and the effective date will be updated. Please review this page regularly for any changes.

12. Contact Us

If you have any questions or concerns about this Privacy Policy or how we handle your personal data, please contact us:

1000928292 ONTARIO INC.
Address: 12285 Yonge St, Richmond Hill, ON
Email: phi.elmiraarabi@gmail.com

Thank you for trusting us with your personal data. We are committed to ensuring your privacy and security.

This privacy policy complies with both the GDPR and PIPEDA, ensuring transparency and user control over personal data.