Tiktok Instagram

Privacy Policy

Last updated: [ 29/10/2025 ]

1. Introduction
Skincare Boss Cosmetics (“we”, “us”, “our”) operates https://skincarebosscosmetics.co.uk/ . We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, share and protect your personal data when you visit or purchase from our Site. By using the Site, you accept and consent to the practices described in this Policy.

2. Data controller
The data controller for your personal data is:
Skincare Boss Cosmetics
Kha Worldwide Ltd
35 Calley Down Crescent, New Addington, Croydon, Surrey, United Kingdom, CR0 0EZ
Support@skincarebosscosmetics.co.uk

3. What personal data we collect
We may collect the following personal data:

  • Contact information: name, email address, phone number, postal address.

  • Account information: if you register an account, username, password (hashed), purchase history.

  • Payment & transaction data: payment method details (handled by third-party processor; we do not store full card numbers), billing address.

  • Shipping information: delivery address, special instructions.

  • Marketing & communications preferences: newsletter opt-in or opt-out, marketing consent.

  • Technical and usage data: IP address, browser user-agent, device type, referring URL, pages visited, cookies and similar tracking technologies.

  • Other information you provide: e.g., when you contact customer support, complete surveys, return/exchange items.

4. How and why we use your personal data (purposes & lawful bases)
We use your personal data for the following purposes:

  • To process your orders, payments, shipping and returns. Lawful basis: necessary for contract performance.

  • To create and manage your account, login, authentication. Lawful basis: necessary for contract performance.

  • To communicate with you about your orders, account, customer support. Lawful basis: necessary for contract performance or legitimate interest (e.g., providing service updates).

  • To send you marketing communications (if you have opted in). Lawful basis: your consent.

  • To personalise your experience on the Site (recommendations, offers). Lawful basis: legitimate interest.

  • To improve the Site, analytics, monitor and detect fraud and abuse. Lawful basis: legitimate interest.

  • To comply with legal obligations (e.g., tax, shipping, consumer rights). Lawful basis: legal obligation.

5. Sharing your personal data with third parties
We may share your personal data with:

  • Payment service providers / financial institutions for payment processing and fraud prevention.

  • Shipping and logistics providers for order fulfilment.

  • IT service providers, cloud hosting, data storage, analytics platforms.

  • Marketing automation platforms (if you have opted in).

  • Legal, regulatory or law enforcement bodies where required by law.
    We do not sell your personal data to third parties for their own marketing purposes.

6. International transfers
If any of the third-party service providers we use are located outside the UK or European Economic Area (EEA), we will ensure appropriate safeguards are in place (such as standard contractual clauses) to protect your data in line with the UK GDPR and the Data Protection Act 2018.

7. Cookies & tracking technologies
We use cookies and similar technologies to provide, personalise and improve the Site, to understand how you use it and to serve relevant marketing. Under the Privacy and Electronic Communications Regulations (PECR) we will ask for your consent where required. You can manage cookie preferences via our cookie banner / cookie settings. For more details refer to our Cookie Policy [link].

8. Retention of personal data
We retain your personal data no longer than necessary for the purposes set out in this Policy and in line with our legal and business obligations. For example:

  • Order and transaction data: typically retained for [e.g., 6 years] for tax/accounting and consumer-rights purposes.

  • Account data: retained until you request deletion or we discontinue services, plus a reasonable period for legal defence and fraud protection.

  • Marketing data: retained until you withdraw consent or opt out, plus a short grace period.

9. Your rights
Under the UK GDPR you have certain rights in relation to your personal data, including:

  • Right to access your data and obtain a copy.

  • Right to correct inaccurate or incomplete data.

  • Right to erasure (“right to be forgotten”) where applicable.

  • Right to restrict or object to certain processing.

  • Right to data portability (in some cases).

  • Right to withdraw consent at any time (for marketing and cookies).
    To exercise any of these rights, please contact us at [insert contact email]. We may need to verify your identity before responding.
    You may also lodge a complaint with the Information Commissioner’s Office (ICO) if you believe your data protection rights have been infringed.

10. Security
We implement appropriate technical and organisational measures to protect your personal data from accidental or unlawful destruction, loss, alteration, unauthorised disclosure or access. This includes secure servers, encryption (where applicable), access controls and periodic reviews.

11. Children
Our Site is not directed at children under the age of 16. We do not knowingly collect personal data from children under 16 without parental consent. If we become aware that we have collected data from such a child we will promptly delete it.

12. Changes to this Privacy Policy
We may update this Policy from time to time. Any changes will be published on this page with a revised “Last updated” date. Significant changes may be communicated to you (e.g., via email) if you have an account.

13. Contact us
If you have any questions about this Privacy Policy or our handling of your personal data please contact:
Email: Support@skincarebosscosmetics.co.uk
Address: 35 Calley Down Crescent, New Addington, Croydon, Surrey, United Kingdom, CR0 0EZ