Privacy Policy
DORATA Hairdressing, situated at 16 Hart Street, Henley-on-Thames, Oxon RG9 2AU is committed to safeguarding and preserving the privacy of all visitors.
​
This Privacy Policy explains what happens to any personal data you provide to us, or that we collect from you whilst you visit our site and how we use cookies on this website.
​
If you have any questions regarding your personal data, please contact DORATA Hairdressing on telephone 01491 414176 or by email to gdpr@dorata.co.uk. Written requests should be sent to the General Manager at the address above.
We update this Policy from time to time so please review this Policy regularly.
​
Purpose of this Privacy Notice
​
This privacy notice aims to give you information on how we collect and process the personal data you provide when you:
​
-
visit one of our salons
-
visit our website (regardless of where you visit it from)
-
sign up to our rewards card
-
register for online bookings
-
make an appointment by telephone, email or via our website contact form
-
use the DORATA Hairdressing mobile App or
-
sign up to the DORATA Hairdressing newsletter
Access to this website is not intended for children and we do not knowingly collect data relating to children.
It is important you read this privacy notice together with any other privacy notice or fair processing notice we may provide on specific occasions when we are collecting or processing personal data about you so you are fully aware of how and why we are using your data.
​
Information we may collect
​
We may collect, use, store and transfer various personal data about you, which may include the following:
​
-
Identity Data: first name, last name, username or similar identifier, title, date of birth and gender.
-
Contact Data: billing address, delivery address, email address and telephone numbers.
-
Transaction Data: details about payments to and from you and other details of products and services you have purchased from us.
-
Technical Data: internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access this website.
-
Profile Data: your username and password, purchases or orders made by you, points on your rewards card, preferences, feedback and survey responses.
-
Allergy Test Data: allergy test information and details of any medical conditions that might affect services
-
Usage Data: information about how you use our website, products and services.
Marketing and Communications Data includes your preferences in receiving marketing from us and our third parties and your communication preferences.
Except for health information and Allergy Test Data, we do not collect any special categories of personal data about you. Nor do we collect any information about criminal convictions and offences.
During the running and maintenance of our website we may collect and process the following data about you:
* Information about your use of our site including details of your visits such as pages viewed and the resources you access. Such information includes traffic data, location data and other communication data.
* Information you provide voluntarily. For example, when you register for information, make a booking or make a purchase.
* Information you provide when you communicate with us by any means.
As you interact with our website, we may automatically collect Technical Data about your equipment, browsing actions and patterns. We collect this personal data by using cookies, server logs and other similar technologies.
We receive, collect and store any information you enter on our website or provide us in any other way. We may collect the Internet protocol (IP) address used to connect your computer to the Internet login e-mail address password computer and connection information and purchase history. We may use software tools to measure and collect session information, including page response times, length of visits to certain pages, page interaction information, and methods used to browse away from the page. We also collect personally identifiable information (including name, email, password, communications) payment details (including credit card information), comments, feedback, product reviews, recommendations, and personal profile.
How we collect information
​
We use different methods to collect data from and about you. This may be through:
​
Direct interactions: You may provide us with your Identity, Contact, Transaction, Profile and Allergy Test Data by visiting our salon or completing forms or corresponding with us by post, telephone, email or other means of communication. This includes personal data you provide when you:
​
-
purchase our products or services
-
make an appointment
-
sign up to our rewards card
-
subscribe to our service or publications
-
ask us to provide you with marketing information
-
enter a competition, promotion, survey or event
-
provide feedback
We collect data at the point of inquiry either online or in person. We will only collect data with your expressed agreement. This can be a verbal, but documented, agreement if the information is taken in person. If personal data is collected online, the individual will have to positively acknowledge and agree their details may be held and processed in the manner specified.
Your personal information will only be used for the specific reasons stated above.
Third parties
​
We may receive personal data about you from various third parties as set out below:
​
-
Technical Data from analytics providers such as Google;
-
Identity, Contact, Technical, Profile, Usage and Transaction Data from providers of technical, payment and delivery services.
Why do we collect such personal information?
​
We use the personal information you provide to supply you with the services or fulfil the offers you have requested from us. We also use these details to increase understanding of our clients and how we can continually improve our services and products.
We may pass on your data to our partners so they can carry out services you have requested, such as the delivery of your products.
We never share your data for others to use for their marketing communications.
​
We collect personal and non-personal information for the following purposes:
​
-
To register you as a new customer - Identity, Contact and Allergy Test
-
To provide you with your order or service
-
To be able to contact you with general or specific, relevant personalised service-related notices and promotional messages
-
To enable you to partake in a prize draw, competition or complete a survey
-
To create aggregated statistical data and other aggregated and/or inferred non-personal information that we or our business partners may use to provide and improve our products and services
-
To comply with any applicable laws and regulations.
We keep your contact information and the details of your project on file so that we may continue to offer you assistance and after-care in the future.
​
How we store, use, share and disclose site visitors' personal information
​
DORATA Hairdressing processes collected and stored data internally to communicate individually or to create specific mailings based on chosen preferences. The processor must comply with GDPR and have the necessary control measures in place. We do not share data with any other third parties.
​
How we communicate with our site visitors
​
We may contact you to notify you regarding your account, to troubleshoot problems with your project, to resolve a dispute, to collect fees or monies owed, to poll your opinions through surveys or questionnaires, to send important updates about DORATA Hairdressing, or as otherwise necessary to contact you to enforce our User Agreement, applicable national laws, and any agreement we may have with you. For these purposes we may contact you via email, telephone, text messages, or postal mail.
Use of Cookies
Cookies are small pieces of data stored on a site visitor's browser, usually used to keep track of their movements and actions on a site.
Cookies provide information regarding the computer a visitor uses. Where appropriate, we may use cookies to gather information about your computer to assist us with improving our website.
​
Our cookies help us to:
​
-
Make our website work as you would expect
-
Remember your settings during and between visits
-
Improve the speed/security of the site
-
Personalise our site to you to help you find what you need
-
Continuously improve our website for you
-
Make our marketing more efficient
We may use the cookie to gather information about your general internet use. Where used, these cookies are downloaded to your computer and stored on the computer’s hard drive. Such information will not identify you personally it is statistical data that does not identify any personal details whatsoever.
Granting us permission to use Cookies
​
If the settings on your software that you are using to view this website (your browser) are adjusted to accept cookies we take this, and your continued use of our website, as an indication of your permission to proceed. Should you wish to remove or not use cookies from our site you can learn how to do this below, however in doing so, it is likely that our site will not work as you would expect.
​
Analytics cookies - we use cookies to compile anonymous visitor statistics such as how many people have visited our website, what type of technology they are using (e.g. Mac or Windows which helps to identify when our site is not working as it should for particular technologies), how long they spend on the site, what page they look at etc. This helps us to continuously improve our website. These so called “analytics” programs also tell us, on an anonymous basis, how people reached this site (e.g. from a search engine) and whether they have been here before.
​
Examples of cookies our website may use include:
Cookie nameLife spanPurpose
svSession Permanent Creates activities and BI
hs Session Security
incap_ses_${Proxy-ID}_${Site-ID} Session Security
incap_visid_${Proxy-ID}_${Site-ID} Session Security
nlbi_{ID} Persistent cookie Security
XSRF-TOKEN Persistent cookie Security
smSession Two weeks Identify logged in site members
Note:
Third-party or ecommerce apps may use cookies not listed in the above table. You can use Chrome's built-in cookie view to check which cookies are used on these platforms. Click Secure next to the URL bar, then click cookies. Be sure to view your site in incognito mode, so your browser does not detect your own cookies also.
You can adjust the settings on your computer to decline any cookies if you wish. You can do this within the “settings” section of your computer. For more information please read the advice at AboutCookies.org.
Use of Your Information
​
We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
​
Where we need to perform the contract we are about to enter into or have entered into with you.
​
Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.
Where we need to comply with a legal or regulatory obligation.
We also use these details to understand our clients and how we can continually improve our services and products.
​
We do not share your data for others to use for their marketing communications.
In addition, we may use the information for one or more of the following purposes:
* To provide information you request from us relating to our products or services.
* To provide information relating to other products or events that may be of interest to you. Such additional information will only be provided where you have consented to receive such information.
* To inform you of any changes to our website, services or goods and products.
If you have previously purchased products or services from us we may provide you with details of similar or other products and services that may be of interest to you.
Storing Your Personal Data
In operating our website it may become necessary to transfer data we have collected from you to locations outside of the European Union for processing and storing. By providing us with your personal data, you agree to this transfer, storing and processing. We do our utmost to ensure we take all reasonable steps to ensure your data is stored securely.
​
Unfortunately the transmission of information via the internet is not totally secure and on occasion such information can be intercepted. We cannot guarantee the security of data that you choose to send us electronically, sending such information is entirely at your own risk.
How long we keep your data
​
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
​
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
​
Details of retention periods for different aspects of your personal data are as follows:
​
Your personal data will be held by each salon you have visited for as long as you remain an active client at that salon (we currently deem this to be two years from your last visit to the salon). After you cease to be an active client, we will still retain some of your details to ensure that we comply with our legal obligations and legitimate business interests.
​
If you have subscribed to our newsletter, your personal data will be held for as long as you remain a subscriber to the newsletter. If you choose to unsubscribe, then we will hold the record of your unsubscribe request to ensure that we comply with our legal obligations.
​
In some circumstances you can ask us to delete your data: see Your Legal Rights below for further information.
​
In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.
Disclosing Your Information
We will not disclose your personal information to any other party other than in accordance with this Privacy Policy and in the circumstances detailed below:
* In the event that we sell any or all of our business to the buyer.
* Where we are legally required by law to disclose your personal information.
* To further fraud protection and reduce the risk of fraud.
Your Legal Rights
​
The GDPR is underpinned by eight important principles. These include your right:
​
-
to be informed through this Privacy Statement
-
of access to the data that is held on you
-
to rectification of any information held
-
to erasure of any information held
-
to restrict processing through the preferences set up on
-
to data portability – this allows customers to request the information collected in a usable format free of charge
-
to object
-
not to be subject to automated decision-making including profiling
Third Party Links
Occasionally we include links to third parties on this website. Where we provide a link it does not mean that we endorse or approve that site’s policy towards visitor privacy. You should review their privacy policy before sending them any personal data.
Access to Information
You have the right to request access to your personal data (commonly known as a “data subject access request”). This enables you to receive a copy of the personal data we hold about you and to check that we are lawfully processing it.
​
You can check and update your personal data each time you visit your salon. Please be aware that each salon holds its own client data. This means if you have visited more than one salon, and provided you are still an active client of that salon, you will need to update your personal data at each salon.
If you wish to make a complaint or exercise any of the rights set out above, please contact us using the details above.
Change of details
​
We endeavour to ensure that all personal data held in relation to an individual is as up to date and accurate as possible.
​
You have the right to Request correction of the personal data we hold about you. This enables you to have any incomplete or inaccurate data we hold about you corrected, though we may need to verify the accuracy of the new data you provide to us.
Please notify gdpr@dorata.co.uk of any significant changes to important information, such as contact details, held about you.
Withdrawal of consent
You have the right to withdraw consent at any time where we are relying on consent to process your personal data. However, this will not affect the lawfulness of any processing carried out before you withdraw your consent. If you withdraw your consent, we may not be able to provide certain products or services to you. We will advise you if this is the case at the time you withdraw your consent.
If you no longer want us to process your data, please contact us at gdpr@dorata.co.uk or send us mail to DORATA Hairdressing, 16 Hart Street, Henley-on-Thames, Oxon RG9 2AU.
Contacting Us
If you would like to access, correct, amend or delete any personal information we have about you, please do not hesitate to contact us regarding any matter relating to this Privacy and Cookies Policy via email at gdpr@dorata.co.uk.
​
​
​
​
​
​
​