Privacy Policy

Privacy Policy for Body Supply

Effective Date: July 10, 2024

This Privacy Policy explains how we collect, use, share, and protect information about our customers. By visiting this website, you agree to the terms of this Privacy Policy.

1. Introduction:

1.1 Scope: This Privacy Policy applies to personal information collected through our website, mobile applications, social media pages, customer support channels, and other online services (collectively, "Services"). It also applies to personal information collected offline, such as through in-person interactions at events or through customer service calls.

1.2 Consent: By using our Services, you consent to the collection, use, and disclosure of your personal information as described in this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access or use our Services.

1.3 Updates to Policy: We may update this Privacy Policy from time to time to reflect changes in our practices and legal requirements. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.

1.4 Third-Party Links: Our website and Services may contain links to third-party websites or services that are not owned or controlled by us. We are not responsible for the privacy practices or content of these third-party sites. We recommend that you review the privacy policies of those sites before providing any personal information.

2. Information We Collect:

2.1 Types of Information Collected: We may collect the following types of personal information:

a) Contact Information: Name, email address, mailing address, phone number.

b) Payment Information: Credit card details, billing address.

c) Demographic Information: Age, gender, interests, occupation, and other demographic information you choose to provide.

d) Technical Data: IP address, browser type, device type, operating system, referring URLs, click streamdata, and other technical information collected automatically when you interact with our website.

2.2 Collection Methods: We collect personal information in the following ways:

a) Directly from You: When you place an order, register for an account, fill out forms on our website, or communicate with us through customer service channels.

b) Automatically: Through the use of cookies, web beacons, and similar technologies. These technologies help us understand how you navigate through our website and interact with our content, allowing us to improve your browsing experience and tailor our communications with you.

2.3 Social Media and Third-Party Platforms: We may collect information from social media platforms or other third-party sources if you choose to interact with us through those channels or grant us access to your information on those platforms.

2.4 Sensitive Information: We do not intentionally collect sensitive personal information (e.g., information related to race or ethnic origin, political opinions, religious or philosophical beliefs, health or medical conditions, genetic or biometric data, or sexual orientation) unless it is necessary for providing a specific product or service and you have provided explicit consent.

2.5 User-Generated Content: If you choose to submit photos, reviews, testimonials, or other content to us, we may collect and publish that information as part of our Services, subject to applicable laws and your consent.

3. Legal Basis for Processing:

3.1 Contractual Necessity: We process your personal information to fulfill our contractual obligations with you, such as processing orders and providing customer support.

3.2 Consent: Where required by law, we will obtain your consent before sending marketing communications or using cookies for non-essential purposes.

3.3 Legal Obligations: We may process your personal information to comply with legal obligations, such as tax and accounting requirements.

3.4 Legitimate Interests: We may process your personal information for our legitimate interests, such as improving our Services and preventing fraud, unless such interests are overridden by your rights and interests.

4. Use of Information:

4.1 Purposes of Use: We use the personal information we collect for the following purposes:

a) Processing and fulfilling orders: To process and deliver your orders, communicate with you about your orders, and provide customer support.

b) Marketing communications: To send you promotional offers, newsletters, and other marketing materials, where you have opted-in to receive such communications.

c) Personalization: To personalize your experience on our website and tailor our offerings to your preferences.

d) Analytics and improvement: To analyze trends, administer the website, track user movements, and gather demographic information for aggregate use.

4.2 Automated Decision Making: We do not use automated decision-making processes that significantly affect you based solely on automated processing, including profiling.

5. Sharing of Information:

5.1 Third-Party Service Providers: We may share your personal information with trusted third-party service providers who assist us in operating our website, conducting our business, or servicing you (e.g., payment processors, shipping companies).

5.2 Business Transfers: If we are involved in a merger, acquisition, or sale of all or a portion of our assets, your personal information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our website of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information.

5.3 Legal Requirements: We may disclose your personal information if required to do so by law or in response to valid requests by public authorities (e.g., a court or a government agency).

5.4 International Transfers: Your personal information may be transferred to and processed in countries outside of the European Economic Area (EEA) or your own, where data protection laws may differ. When we transfer your personal information outside of the EEA, we ensure adequate safeguards are in place to protect your data, such as Standard Contractual Clauses approved by the European Commission.

6. Your Rights and Choices:

6.1 Access and Rectification: You have the right to access your personal information and request corrections or updates to it.

6.2 Erasure: You have the right to request the deletion of your personal information, subject to legal obligations to retain certain information. You may contact us at customerservice@bodysupplyshop.com to request that we remove this information from our database.

6.3 Restriction of Processing: You have the right to restrict the processing of your personal information in certain circumstances, such as when you contest the accuracy of the data or the lawfulness of the processing.

6.4 Objection to Processing: You have the right to object to the processing of your personal information for direct marketing purposes or where the processing is based on legitimate interests.

6.5 Data Portability: Where applicable, you have the right to receive a copy of your personal information in a structured, commonly used, and machine-readable format and to transmit those data to another controller.

6.6 Withdrawal of Consent: If we rely on your consent to process your personal information, you have the right to withdraw that consent at any time. This will not affect the lawfulness of processing based on consent before its withdrawal.

6.7 Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority if you believe that we have violated your rights under applicable data protection laws, including the General Data Protection Regulation (GDPR).

7. GDPR Compliance:

7.1 Legal Basis for Processing: Our processing of your personal data is conducted:

a) To fulfill our contractual obligations with you:For example, to process orders and deliver products or services you have purchased.

b) Based on your consent when necessary: For activities such as direct marketing communications or the use of certain cookies.

c) To comply with legal obligations: Such as tax and accounting requirements.

d) Pursuant to our legitimate interests: In providing and improving our Services, except where such interests are overridden by your rights and interests.

7.2 International Data Transfers: When we transfer your personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are implemented to protect your data, such as Standard Contractual Clauses approved by the European Commission or other safeguards permitted by applicable legal requirements.

7.3 Data Protection Officer: We have appointed a Data Protection Officer (DPO) who oversees our data protection practices and compliance with GDPR. You can contact our Data Protection Officer at customerservice@bodysupplyshop.com.

7.4 Retention Period: We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

7.5 Automated Decision-Making: We do not use automated decision-making processes, including profiling, that produce legal effects concerning you or similarly significantly affect you.

7.6 Your Rights: In addition to the rights outlined in Section 5 (Customers’ Rights with Regards to Their Personal Information), you have the right to request information about the existence of automated decision-making, including profiling, and meaningful information about the logic involved.

7.7 Complaints: If you believe that we have not complied with your data protection rights, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement.

8. Security of Information:

8.1 Security Measures: We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, or destruction. These measures include encryption of data in transit and at rest, regular security assessments of all systems, and access controls to limit access to personal information to authorized personnel only.

8.2 Data Integrity:We take reasonable steps to ensure that the personal information we collect is accurate, complete, and up-to-date. Users are encouraged to update their information promptly if any changes occur.

8.3 Incident Response:In the event of a data breach or security incident involving your personal information, we will promptly notify affected users in accordance with applicable legal requirements. We will also take immediate steps to mitigate the breach, investigate its cause, and take any necessary remedial actions to prevent future incidents.

By using our services, you acknowledge and agree to our commitment to safeguarding your personal information. If you have any concerns about the security of your information or if you believe that your information has been compromised, please contact us immediately.

9. Data Retention:

9.1 Retention Period: We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. When determining the retention period, we take into account factors such as the nature of the information, the purposes for which it is processed, and applicable legal requirements.

9.2 User Requests:Upon request, we will delete or anonymize your personal information in a manner that ensures it cannot be reconstructed or identified, unless retention of the information is necessary for compliance with legal obligations or is otherwise permitted by law.

9.3 Backup and Archival:Even after deletion or anonymization, your personal information may remain in our backup or archival systems for a limited period, as required for legitimate business purposes such as disaster recovery and auditing.

9.4 Periodic Review:We regularly review our data retention practices to ensure that we are only retaining personal information for as long as necessary for the purposes outlined in this Privacy Policy. We may update our retention periods in accordance with legal requirements and operational needs.

By using our services, you acknowledge and agree to our data retention practices as described in this Privacy Policy. If you have any questions or concerns regarding the retention of your personal information, please contact us.

10. Use of Cookies and Similar Technologies:

10.1 Cookie Policy: Our website uses cookies and similar technologies to enhance your browsing experience and personalize content. Cookies are small text files that are stored on your device when you visit a website. By using our website, you consent to the use of cookies in accordance with our Cookie Policy.

10.2 Types of Cookies Used:

a) Essential Cookies: Necessary for the operation of our website, including functionalities such as navigating between pages and accessing secure areas of the website. These cookies do not require consent.

b) Analytical/Performance Cookies: Allow us to recognize and count the number of visitors and see how visitors move around our website when they are using it. This helps us improve the way our website works, for example, by ensuring that users find what they are looking for easily.

c) Functionality Cookies: Used to recognize you when you return to our website. This enables us to personalize our content for you, greet you by name, and remember your preferences (for example, your choice of language or region).

10.3 Managing Cookies: You can manage your cookie preferences through your browser settings. Most web browsers allow you to control cookies through their settings preferences. However, if you choose to disable cookies, some parts of our website may not function properly or may be inaccessible.

10.4 Third-Party Cookies: We may also use third-party cookies provided by trusted third-party service providers. These cookies may track your browsing activities across different websites and collect information about your interests, which may be used for advertising purposes.

10.5 Opting Out: You can opt-out of certain cookies through the opt-out mechanisms provided in our Cookie Policy or by adjusting your browser settings to reject cookies. Please note that opting out of certain cookies may affect your experience on our website.

10.6 Updates to Cookie Policy: We may update our Cookie Policy from time to time to reflect changes in our use of cookies and similar technologies. We will notify you of any material changes by posting the updated Cookie Policy on our website.

11. Children’s Privacy:

11.1 Age Restrictions: Our Services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 18 without parental consent. If we become aware that we have collected personal information from a child under 18 without parental consent, we will take steps to delete that information.

11.2 Parental Control and Consent: Parents or legal guardians have the right to review the personal information of their children that we have collected and request its deletion. We encourage parents to monitor their children’s online activities and to help enforce our policies by instructing their children to never provide personal information on our website or other online services without their permission.

11.3 Educational Use Only: Our Services are intended for educational use only by individuals under the age of 18. Any other use of our Services by individuals under the age of 18 must be supervised and approved by a parent or legal guardian.

By using our Services, you acknowledge and agree to our policies regarding children's privacy. If you have any concerns about your child's use of our Services or if you believe that we have collected information from a child in violation of this policy, please contact us immediately.

12. Changes to this Privacy Policy:

12.1 Updates: We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website or by other appropriate means.

12.2 Notification of Changes: We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. When we make material changes to this Privacy Policy, we will notify you through a prominent notice on our website or by sending you an email to the email address you have provided to us.

13. Contact Us:

If you have any questions about this Privacy Policy, our data practices, or if you would like to exercise your rights under applicable data protection laws, please contact us at:

Body Supply

5457 Twin Knolls Rd Ste 300 PMB 1003

Columbia, MD 21045

Email: customerservice@bodysupplyshop.com