PRIVACY POLICY

Last Updated: November 2025

INTRODUCTION

Welcome to SkinCeuticalls. We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website (skinceuticalls.com) and purchase our products.

Business Information:
SkinCeuticalls
10603 Landsbury Dr
Houston, TX 77099, USA
Email: customercare@skinceuticalls.com
Phone: +1 (737) 283-1814

Please read this Privacy Policy carefully. By using our website, you consent to the practices described in this policy. If you do not agree with the terms of this Privacy Policy, please do not access or use our website.

1. INFORMATION WE COLLECT

We collect information that you provide directly to us, as well as information that is automatically collected when you use our website.

1.1 Personal Information You Provide

When you visit our website, register for an account, make a purchase, or contact us, we may collect the following personal information:

Account & Order Information:

Full name
Email address
Phone number
Billing address
Shipping address
Payment information (processed securely by third-party payment processors)

Communication Information:

Customer service inquiries
Product reviews and feedback
Survey responses
Newsletter subscriptions

1.2 Information Automatically Collected

When you visit our website, we automatically collect certain information about your device and browsing behavior:

Device & Browser Information:

IP address
Browser type and version
Device type (computer, mobile, tablet)
Operating system
Screen resolution

Usage Information:

Pages visited
Time and date of visit
Time spent on pages
Referring website
Links clicked
Search queries on our site

Location Information:

General geographic location based on IP address (city, state, country)

1.3 Cookies and Tracking Technologies

We use cookies, web beacons, and similar tracking technologies to collect information and improve your experience. See Section 11 for detailed Cookie Policy.

2. HOW WE USE YOUR INFORMATION

We use the information we collect for the following purposes:

2.1 Order Processing & Fulfillment

Process and fulfill your orders
Send order confirmations and shipping notifications
Manage returns, refunds, and exchanges
Communicate about your orders

2.2 Customer Service

Respond to your inquiries and requests
Provide customer support
Resolve disputes and troubleshoot problems
Send important service announcements

2.3 Account Management

Create and manage your account
Authenticate your identity
Remember your preferences and settings
Enable features like order history and saved addresses

2.4 Marketing & Communications

Send promotional emails about new products, special offers, and sales (with your consent)
Send newsletters (if you subscribe)
Personalize your shopping experience
Show you relevant advertisements

You can opt-out of marketing communications at any time (see Section 9).

2.5 Website Improvement

Analyze website usage and trends
Improve website functionality and user experience
Test new features and content
Conduct research and analytics

2.6 Legal & Security

Prevent fraud and unauthorized transactions
Protect against malicious activity
Comply with legal obligations
Enforce our Terms of Service
Resolve legal disputes

3. HOW WE SHARE YOUR INFORMATION

We do NOT sell your personal information to third parties. However, we may share your information in the following circumstances:

3.1 Service Providers

We share information with third-party service providers who perform services on our behalf:

Shipping Carriers:

USPS, and other carriers for order fulfillment and tracking
Name, shipping address, phone number, order details

Payment Processors:

Secure payment processing (we do not store full credit card numbers)
Billing information, transaction details

Email Service Providers:

To send order confirmations, shipping updates, and marketing emails
Email address, name, order information

Website Hosting & Analytics:

Website hosting, maintenance, and performance monitoring
Usage data, IP address, browsing behavior

Customer Service Tools:

Help desk software, live chat services
Contact information, communication history

Marketing & Advertising Partners:

Google Analytics, Facebook Pixel, advertising platforms
Browsing behavior, demographic information (anonymized when possible)

3.2 Business Transfers

If SkinCeuticalls is involved in a merger, acquisition, bankruptcy, or sale of assets, your information may be transferred to the new entity. We will notify you via email and/or prominent notice on our website before your information is transferred.

3.3 Legal Requirements

We may disclose your information if required by law or if we believe disclosure is necessary to:

Comply with legal process (subpoena, court order)
Enforce our Terms of Service or other policies
Protect the rights, property, or safety of SkinCeuticalls, our users, or others
Prevent fraud or illegal activity

3.4 With Your Consent

We may share your information with third parties when you give us explicit consent to do so.

4. INTERNATIONAL DATA TRANSFERS

4.1 Our Operations

SkinCeuticalls operates from the United States. We ship to and serve customers in:

United States
United Kingdom
Australia

4.2 Data Storage & Processing

Your personal information is primarily stored and processed in the United States. If you are located outside the United States (UK, Australia, or elsewhere), your information will be transferred to, stored, and processed in the United States.

4.3 International Transfers – Legal Basis

For UK Customers:

We comply with UK GDPR requirements for international data transfers
We use appropriate safeguards such as Standard Contractual Clauses
Your rights under UK GDPR remain protected (see Section 9)

For Australian Customers:

We comply with the Australian Privacy Act 1988
We take reasonable steps to ensure overseas recipients comply with Australian Privacy Principles
You can make complaints to the Office of the Australian Information Commissioner

For All Customers:

We use encryption and security measures to protect data during transfer
Our service providers are contractually obligated to protect your data

5. DATA SECURITY

We take the security of your personal information seriously and implement appropriate technical and organizational measures:

5.1 Security Measures

Technical Safeguards:

SSL/TLS encryption for data transmission
Secure servers and firewalls
Regular security audits and updates
Access controls and authentication
Encrypted payment processing

Organizational Safeguards:

Employee training on data protection
Limited access to personal information
Confidentiality agreements with service providers
Incident response procedures

5.2 Limitations

Important: While we strive to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

Your Responsibility:

Keep your account password secure
Do not share your login credentials
Log out of your account when using shared devices
Notify us immediately if you suspect unauthorized access

6. DATA RETENTION

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

Retention Periods:

Account Information:

Retained while your account is active
Deleted within 30 days of account closure request (unless required for legal purposes)

Order Information:

Retained for 7 years for tax and accounting purposes
Transaction records, order history, shipping information

Marketing Information:

Retained until you unsubscribe or request deletion
Email addresses, communication preferences

Website Analytics:

Anonymized data may be retained indefinitely
Personally identifiable data deleted after 26 months

Legal Requirements:

Some information may be retained longer to comply with legal obligations
Fraud prevention, dispute resolution, regulatory compliance

7. THIRD-PARTY WEBSITES & LINKS

Our website may contain links to third-party websites, including social media platforms, payment processors, and other external sites.

Important:

We are NOT responsible for the privacy practices of third-party websites
This Privacy Policy does NOT apply to third-party sites
We encourage you to read the privacy policies of any third-party sites you visit

Third-Party Services We Use:

Payment processors (Stripe, PayPal, etc.)
Social media platforms (Facebook, Instagram, etc.)
Shipping carriers (USPS tracking)
Analytics providers (Google Analytics)

8. CHILDREN’S PRIVACY

Our website is not intended for children under the age of 13 (or 16 in some jurisdictions, such as the UK and EU).

We do NOT knowingly collect personal information from children.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us at customercare@skinceuticalls.com. We will promptly delete such information from our records.

Age Verification:

By using our website, you represent that you are at least 18 years old
If you are between 13-17, you may use the website with parental consent

9. YOUR RIGHTS AND CHOICES

Depending on your location, you have certain rights regarding your personal information.

9.1 Rights for All Customers

Access Your Information:

Request a copy of the personal information we hold about you

Correct Your Information:

Update or correct inaccurate information
You can update most information in your account settings

Delete Your Information:

Request deletion of your personal information (subject to legal requirements)

Opt-Out of Marketing:

Unsubscribe from promotional emails (click “unsubscribe” in emails)
We will still send order-related emails (confirmations, shipping updates)

Object to Processing:

Object to certain processing of your information

Data Portability:

Request your data in a portable format

9.2 Additional Rights for UK Customers (UK GDPR)

Right to Restriction:

Request that we restrict processing of your personal data

Right to Object:

Object to processing based on legitimate interests

Right to Withdraw Consent:

Withdraw consent at any time (where processing is based on consent)

Right to Lodge a Complaint:

File a complaint with the UK Information Commissioner’s Office (ICO)
Website: ico.org.uk

9.3 Additional Rights for California Residents (CCPA)

Right to Know:

Know what personal information is collected, used, shared, or sold

Right to Delete:

Request deletion of personal information

Right to Opt-Out:

Opt-out of the “sale” of personal information
We do NOT sell personal information

Right to Non-Discrimination:

You will not receive discriminatory treatment for exercising your rights

Authorized Agent:

You may designate an authorized agent to make requests on your behalf

9.4 Additional Rights for Australian Customers

Access & Correction:

Access and correct your personal information under the Australian Privacy Act

Complaints:

Lodge a complaint with the Office of the Australian Information Commissioner (OAIC)
Website: oaic.gov.au

9.5 How to Exercise Your Rights

Contact Us:

Email: customercare@skinceuticalls.com
Phone: +1 (737) 283-1814
Mail: 10603 Landsbury Dr, Houston, TX 77099, USA

Response Time:

We will respond to your request within 30 days (or as required by applicable law)

Verification:

We may need to verify your identity before processing your request
We may ask for additional information to confirm your identity

10. MARKETING COMMUNICATIONS

10.1 How We Communicate

With your consent, we may send you marketing communications about:

New products and collections
Special offers and promotions
Exclusive discounts
Skincare tips and advice
Company news and updates

10.2 How to Opt-Out

Email Marketing:

Click “Unsubscribe” at the bottom of any marketing email
Update your preferences in your account settings
Email us at customercare@skinceuticalls.com

SMS/Text Messages:

Reply “STOP” to any text message
Contact us at customercare@skinceuticalls.com

Important: Even if you opt-out of marketing, we will still send you:

Order confirmations
Shipping notifications
Return/refund updates
Important account or service announcements

11. COOKIES AND TRACKING TECHNOLOGIES

11.1 What Are Cookies?

Cookies are small text files stored on your device when you visit our website. They help us provide you with a better experience and enable certain features.

11.2 Types of Cookies We Use

Essential Cookies (Required):

Enable core website functionality
Shopping cart, checkout process, account login
Cannot be disabled

Performance Cookies (Optional):

Analyze how visitors use our website
Google Analytics, page load times, error tracking
Help us improve the website

Functionality Cookies (Optional):

Remember your preferences and settings
Language preference, currency, saved items
Enhance user experience

Advertising Cookies (Optional):

Show you relevant advertisements
Facebook Pixel, Google Ads, retargeting
Measure advertising effectiveness

11.3 Third-Party Cookies

We use third-party cookies from:

Google Analytics (website analytics)
Facebook (advertising and analytics)
Payment processors (secure transactions)

11.4 How to Manage Cookies

Browser Settings:

Most browsers allow you to control cookies through settings
You can block, delete, or disable cookies
Note: Disabling essential cookies may affect website functionality

Opt-Out Tools:

Google Analytics Opt-out: tools.google.com/dlpage/gaoptout
Network Advertising Initiative: optout.networkadvertising.org
Digital Advertising Alliance: optout.aboutads.info

Do Not Track:

Some browsers offer “Do Not Track” signals
We do not currently respond to Do Not Track signals

12. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

How We Notify You:

We will post the updated policy on this page
The “Last Updated” date at the top will be revised
For material changes, we may send you an email notification
Your continued use of our website after changes constitutes acceptance

Your Responsibility:

We encourage you to review this Privacy Policy periodically
Check the “Last Updated” date to see when it was last revised

13. CONTACT US

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Email: customercare@skinceuticalls.com
Phone: +1 (737) 283-1814

Business Hours: Monday – Friday, 9:00 AM – 8:00 PM EST

Mailing Address:

10603 Landsbury Dr
Houston, TX 77099, USA

Response Time: We will respond to your inquiry within 30 days (or as required by applicable law).

14. SPECIFIC NOTICES FOR JURISDICTIONS

14.1 UK Residents (UK GDPR)

Data Controller:
SkinCeuticalls is the data controller for personal information collected through our website.

Legal Basis for Processing:

Performance of contract (order processing)
Legitimate interests (marketing, website improvement)
Consent (cookies, marketing communications)
Legal obligation (tax, accounting)

International Transfers:

Your data may be transferred to the USA
We use Standard Contractual Clauses for data protection

Supervisory Authority:

Information Commissioner’s Office (ICO)
Website: ico.org.uk
Phone: 0303 123 1113

14.2 California Residents (CCPA/CPRA)

Categories of Personal Information Collected:

Identifiers (name, email, address, phone)
Commercial information (purchase history)
Internet activity (browsing behavior)
Geolocation data (general location)

Purposes of Collection:

Order fulfillment, customer service, marketing, analytics

Third Parties We Share With:

Service providers, payment processors, shipping carriers

We Do NOT Sell Personal Information:

We do not sell or share personal information for monetary consideration

Shine the Light Law:

You may request information about disclosure to third parties for direct marketing

Contact for CCPA Requests:

Email: customercare@skinceuticalls.com
Subject Line: “California Privacy Rights Request”

14.3 Australian Residents (Privacy Act)

Australian Privacy Principles:

We comply with the Australian Privacy Principles (APPs)

Overseas Disclosure:

Your information may be disclosed to overseas recipients in the USA
We take reasonable steps to ensure compliance with APPs