INTRODUCTION

In Valy we are 100% committed to protecting the privacy and security of our users and customers.

In accordance with our principles, and in compliance with the provisions of European Regulation 2016/679 of the European Parliament and of the Council of April 27, 2016, regarding the protection of natural persons with regard to the processing of personal data and the free circulation of such data (GDPR), as well as in compliance with the applicable national data protection regulations, this new privacy policy establishes the following:

  1. WHO IS RESPONSIBLE FOR THE TREATMENT OF YOUR DATA

For all our services, the data controller, that is, the company responsible for your privacy, is Skin Digital Ventures SL., duly registered with CIF-B67331629 and registered office at Plaza Pau Vila 1, Ed. Palau de Mar, Acceso A Planta 1.

  1. YOUR INFORMATION AND YOUR RIGHTS

Your information is solely yours. And as such, you have many rights related to your personal information:

o The right to be informed about how your personal information is used (as right now when reading these words).

o The right to access the personal information we have about you.

o The right to request the correction of inaccurate personal information we have about you.

o The right to request the deletion of your data, or to interrupt its processing or collection, in some cases.

o The right to interrupt direct marketing or newsletter marketing messages, and to withdraw your consent to other content-based processing at any time.

o The right to request that we transfer elements of your data to both you and other service providers.

o The right to file a complaint with the regulatory data protection body (such as Agencia Española de Protección de Datos (Spanish Agency for Data Protection).

If you wish to exercise your rights, file a complaint, or if you simply have any questions, do not hesitate to contact us.

  1. WHAT PERSONAL DATA WE COLLECT AND PROCESS, AND FOR WHAT PURPOSE

In Valy we collect and process only data that you voluntarily provide us with. And you have no reason to give us any personal information, but if you decide not to do so, you may not be able to purchase via our site, and your shopping experience with us may not be the best. But it’s your choice. Which we respect.

Among the data we may collect and process about you, are:

o Your name, address and contact information – This information includes your e-mail address, your mobile phone number, the mailing address for invoicing and the mailing address for delivery. his information is basic for, for example, for enabling us to formalize the purchase contract with you, to send you your orders, to inform you of their status, to send you your invoice/purchase receipt, to notify you of any incident related to your orders or to request additional information if needed to process your purchase. If you so wish, and so express it by giving us your explicit consent during the purchase process, we will use your e-mail to send Newsletters with news or offers. The channels that we will use to be able to notify you if necessary are e-mail, phone call, SMS or WhatsApp. If you do not wish to be contacted by any of these means, please contact us.

o Technical information – This information includes technical details about the device(s) you use to visit our website (type of device, IP address, screen size, page views, source page, page time, etc.) and data regarding how you use our website. This information is basic to enable us to protect our website (and therefore, your personal data), as well as to improve our page and adapt its configuration to your preferences and convenience. We also use this information for analytical purposes, to make our website as user-friendly as possible and to facilitate navigation.

o Your payment information (partially) – Do not be concerned; for your security we neither store on our servers nor have access to the full number of your debit/credit card (only the last 4 digits), nor much less its CVV verification code. As for alternative payment methods such as PayPal, Amazon Pay, Apple Pay or Aplázame, we have only the e-mail linked to the payment and the information the actual service providers provide us with. This information is essential for collecting payments, making refunds and preventing or detecting possible fraud with stolen or lost cards.

o Your purchase history – We keep a history of your purchase history in order to offer you the best customer service, assistance in case of incidents, manage refunds or returns, or suggest products that may be of interest to you (always with explicit authorization on your part).

o Your contact history with us – We keep a history of your contact history, either via e-mail, SMS, WhatsApp or Chat, in order to offer you the best possible customer service, as well as for training our teams.

o Your valuation of our products – When you submit a valuation about one of our products, we store it so that it can be shown to users/customers who may be interested in that product. In this case, we only collect your name and e-mail address, your score of our product and your comments on it. Your email address will never be displayed on the web page. Your name will be displayed (just your first name, not your family name(s)), but if you wish you can invent a nickname or request that the valuation be anonymous at the time of publication.

  1. DO YOU USE COOKIES?

Yes, these help us offer you a better and more personalized user experience.

  1. HOW LONG YOUR DATA IS KEPT FOR

Just long enough. We will not keep your data any longer than strictly necessary to fulfil the purposes for which it is being processed. In order to determine the appropriate period of conservation of your data, we will take into account the quantity, nature and confidentiality of your personal data, the purposes for which we are processing it and whether we can achieve those purposes by other means.

In general, for customers who have made a purchase, the minimum period of conservation of their data in our systems will be the warranty period of our products. In this way, and if the necessary conditions are met, we can offer you a replacement or a refund at no cost whenever necessary.

Remember that at all times you have the right to contact us to rectify or delete your data from our systems.

  1. WHO YOUR DATA IS SHARED WITH AND WHY

We never sell, and never will sell, your personal data to third parties. We want to win and keep your trust, and we believe that this is absolutely basic for that purpose.

That said, and in order to provide you with the best service and the best possible experience, we need the help of the best suppliers, and therefore we believe it is essential to share some of your data with the following types of companies:

o Companies whose business involves activities so that your purchases may arrive, such as payment service providers, warehouses, order packers and transport companies. For example, MRW, Stripe, Aplázame, AmazonPay, Post, Express and DHL, among others.

o Companies whose business involves activities for the support and access of this webpage or any of its functionalities. For example, Shopery, among others.

o Companies whose business involves independently collecting ratings or user opinions. For example, TrustPilot or TrustedShops, among others.

o Professional service providers, such as marketing agencies, advertising partners and hosting companies which help us manage our business. For example, Google, Awin and Refersion, among others.

o Credit reference agencies, security agencies and fraud prevention agencies so that we can tackle fraud.

o Group companies, since various companies in our group are sometimes responsible for different activities.

We may offer third parties global and analytical information about our users or customers, but before doing so, we ensure that they are not identifiable, thanks to a procedure for anonymizing the data.

We guarantee that all third parties with whom we share your data comply with European data protection regulations (GDPR). If you wish to know exactly the list of companies we work with and their privacy policies, please contact us and we will be happy to expand the information on this subject.

The user accepts that all their personal details are fully transferred to Aplázame from the moment the user has started contracting the deferred payment service offered by the latter at the time of choosing the payment method. This acceptance extends to third parties who might have to access the files for the legitimate purposes of the contract.

International data transfer

Sometimes, some of our suppliers may have their servers located outside the European Economic Area (EEA).

Therefore, in compliance with Article 34 point 5 of the LOPD and 66.2 of the RLOPD, we inform you that in the event that the data provided by you is transferred or stored outside the ‌ European Economic Area (EEA), you will be expressly accepting the necessary transfer of international data to the international servers of said Valy providers, with the sole purpose of storing on the servers that data which is strictly necessary to be able to provide the service.

For information purposes, and not limited to those listed here, some of Valy’s suppliers with international servers are Shopify, Google, Stripe, PayPal, Apple Pay, Amazon Pay and MailChimp. All of them comply with European data protection regulations (GDPR), as well as the Privacy Shield regulations, which guarantee an adequate level of protection of data transferred.

If you have any more questions about the international transfer of your data, please contact us and we will be happy to expand the information on this subject.

  1. YOUR PERSONAL DATA IS PROTECTED

The security of your data is our obsession. Therefore, we follow strict security procedures when storing or sharing your personal data with third parties, as well as in order to protect them from accidental loss, damage or destruction. All the data you provide us with is protected with 256-bit SSL encryption technology.

All payment data is transmitted via SSL via a specific network infrastructure and stored in accordance with the PCI DSS Level 1 data security standards of the payment card industry. Remember that at no time do Valy employees have access to your debit or credit card information.

As already mentioned in the previous point, we may share your information with trusted third parties for the purposes stipulated in this privacy policy, but we require that all third parties have the appropriate technical and operational security measures implemented to protect your personal data, in accordance with the data protection laws of Spain and the European Union.

You can be reassured, however if you have any more questions about how we protect your data, please contact us and we will be happy to expand the information on this topic.

  1. CHANGES IN THE PRIVACY POLICY

From time to time we may make changes to this page to reflect how we process your data.

In the event that we make any significant change, we will clarify it on this website, or by any other means of contact such as e-mail, so that you can review the changes before continuing with the use of Valy.

  1. HOW TO CONTACT US

We are always interested in learning the opinions of our users and customers.

If you have any questions or comments concerning our privacy policy, or wish us to stop using your information, or wish to exercise any of the rights indicated above, or have any complaint, do not hesitate to contact us, and we will be happy to answer all your questions.

You can contact us by sending an e-mail to [email protected] or by writing to:

Valy Cosmetics
Plaça Pau Vila 1, Acceso A Planta 1
08039, BARCELONA, Spain