Billing Information

Our Sites include the option to purchase products or services from us as a standard sale, as part of our Auto-Replenishment plan, and as part of our Try-Before-You-Buy program. If you choose to make any kind of purchase, we will require sufficient information from you to complete the transaction. Such information could include a credit card number and related account and billing information, invoice related information, and other data required to process the order. Please note that credit card information is considered “Sensitive Data” for purposes of this Privacy Policy.

• We collect and use this type of information for the purpose of processing required payments.
• MORETOHAIR® may utilize third-party service providers to provide payment processing services. If you choose to purchase products and/or services via the Sites, the payment method information provided will either be collected directly by the applicable third-party payment processor(s), or we will share that payment method information with those contracted third-party payment processor(s). MORETOHAIR® requires that its third-party payment processing service provider(s) has/have in place privacy policies and practices consistent with this Privacy Policy; provided, however, that we cannot guarantee the privacy practices of our third-party payment processing service provider(s).
• Our legal basis for processing this information is your contractual agreement to pay for our products.
• We will retain this information for as long as necessary to complete your purchase and/or to process any return, unless you have opted to save your billing information. If you do so, we will retain the information for as long as you maintain your Account.

Log Files

1. a) We may (directly or through third parties) make use of log files. The information inside the log files includes internet protocol (IP) addresses, type of browser, Internet service provider (ISP), date/time stamp, referring/exit pages, clicked pages, and any other information that your browser may send to us.
2. b) We may (directly or through third parties) use such information to analyze trends, administer our Sites and/or Site Offerings, track users’ movement around our Sites, and gather information

Cookies and Other Tracking Technologies

1. a) Our Sites utilize “cookies,” anonymous identifiers and other tracking technologies which enable us to provide you with information that is customized for you.
2. b) For more information, see the “Cookie Policy” section of this Privacy Policy.

HOW WE COLLECT AND USE NON-PERSONALLY IDENTIFIABLE INFORMATION

Please see our Provisions for California Residents  for additional details regarding how we collect and disclose your non-personally identifiable information.

Non-personally identifiable information refers to information that is not and cannot be used to identify a specific individual. While this information may define how you fit into a particular group of people, it is not unique to you, and it cannot be used (without being combined with other information) to specifically identify you. Some jurisdictions may consider some of the following categories of information to be personally identifiable information, in which case, we will collect and use such information as personally identifiable information.

The following describes how we collect and use non-personally identifiable information through the Sites.

ANONYMOUS INFORMATION

“Anonymous Information” refers to information that does not enable identification of an individual user, such as aggregated or demographic information about users of our Sites. We may use Anonymous Information or disclose it to third party service providers in order to improve our Sites and enhance your experience with our Sites. We may also disclose Anonymous Information (with or without compensation) to third parties, including advertisers and partners.

COOKIE POLICY

As noted above, our Sites use and allow certain third parties to use cookies. By using our Sites, you consent to the use of cookies as described in this cookie policy.

What are cookies? 

a) Cookies are small amounts of data that are stored on your browser, device, or the page you are viewing when you visit a website. Some cookies are deleted once you close your browser or application (session cookies), while other cookies are retained even after you exit so that you can be recognized when you return (persistent cookies).

b) Cookies used on our Sites are generally divided into the following categories:

Please see our Provisions for California Residents  for additional details regarding how California State residents can delete and/or access their Personal Data.

1) Opting Out

1. a) You may choose not to receive future promotional, advertising, or other Sites-related emails from us by sending us an email to: [email protected] or selecting an unsubscribe link at the bottom of each email that we send. Please note that even if you opt out of receiving the foregoing emails, we may still send you a response to any “Contact Us” request as well as administrative emails (for example, in connection with a password reset request) that are necessary to facilitate your use of our Sites and notifications regarding your orders.
2. b) To stop receiving text messages from moertohair®, please reply “STOP” to the text message that you received from us. Please note this preference will only apply to the phone number that received the text message. Please reply “HELP” to receive help information.

2) Correcting and Updating Information

If you are a registered user of our Sites, you can access and edit your Account Information online by clicking the “My Account” button on the Sites. You may also have any Personal Data you have provided revised by sending us an email to [email protected]

3) Removing Information

1. a) As noted above, we have standard retention practices with respect to the Personal Data we collect.
2. b) We take the protection of your Personal Data seriously and endeavor to ensure that our user engagement is effective and efficient. With regard to Erasure Requests, which is one of the rights of the Data Subject as set out in many of the applicable privacy laws, including the GDPR (Article 17 ‘right to be forgotten’) and UK GDPR, we have a secure and effective process for such a request.

The process is as follows:

1. c) Please note that we may not be able to completely remove Personal Data from our systems in certain circumstances. This will be true if the data is not in searchable format, if it is retained in backup systems or cached or archived pages, if we need it in order to prevent fraud or future abuse, or if we are required by law to keep it. During the period of retention, we will ensure that such data continues to be stored securely.
2. d) The only record of the deletion requests would be a table that holds email addresses & timestamp of the data deletion. This data will be held in a secure manner, and its retention is for us to be able to demonstrate its compliance with any applicable privacy compliance regulations.

HOSTING OF OUR SITES

We do not ourselves host any of our Sites – all hosting is done by third party service providers that we engage. This means that data you provide us or that we collect from you (including any Personal Data) is hosted with such third party service providers on servers that they own or control. Regardless of where such third party service providers are located (and some are located in the US), their servers may be located anywhere in the world (including the US). Your data may even be replicated across multiple servers located in multiple countries. By using any of our Sites, you are consenting to your data being transferred to various third party service providers, possibly around the world (including the US).

OUR SECURITY MEASURES

We endeavor to safeguard and protect our users’ Personal Data. When users make Personal Data available to us, their Personal Data is protected both online and offline (to the extent that we maintain any Personal Data offline). Where our registration/application process prompts users to enter Sensitive Data (sensitive data can include information such as credit card information) and when we store and transmit such Sensitive Data, that Personal Data is encrypted with advanced TLS (Transport Layer Security).

Access to your Personal Data is strictly limited, and we take reasonable measures to ensure that your Personal Data is not accessible to unauthorized parties. All our users’ Personal Data is restricted in our offices, as well as the offices of our third-party service providers. Only employees or third-party agents who need user Personal Data to perform a specific job are granted access to user Personal Data. Our employees are dedicated to ensuring the security and privacy of all user Personal Data. Employees not adhering to our firm policies are subject to disciplinary action. The servers that we store user Personal Data on are kept in a secure physical environment. We also have security measures in place to protect the loss, misuse and alteration of Personal Data under our control.

Please be advised, however, that while we take every reasonable precaution available to protect your data, no storage facility, technology, software, security protocols or data transmission over the Internet or via wireless networks can be guaranteed to be 100% secure. Computer hackers that circumvent our security measures may gain access to certain portions of your Personal Data, and technological bugs, errors and glitches may cause inadvertent disclosures of your Personal Data, and any attempt to breach the security of the network, our servers, databases or other hardware or software may constitute a crime punishable by law. For the reasons mentioned above, we cannot warrant that your Personal Data will be absolutely secure. Any transmission of data at or through the Sites, other Site Offerings or otherwise via the Internet or wireless networks, is done at your own risk.

In compliance with applicable laws, we shall notify you and any applicable regulatory agencies in the event that we learn of an information security breach with respect to your Personal Data. You will be notified via e-mail in the event of such a breach. Please be advised that notice may be delayed in order to address the needs of law enforcement, confirm and determine the scope of network damage, and to engage in remedial measures.

LINKS TO AND INTERACTION WITH THIRD PARTY PRODUCTS      

Our Sites may enable you to interact with or contain links to a Third Party Account and other third party websites that are not owned or controlled by us but could include our partners, referred to herein as “Third Party Services.” We are not responsible for the privacy practices or the content of such Third Party Services. Please be aware that Third Party Services may collect Personal Data from you. Accordingly, we encourage you to read the terms and conditions and privacy policy of any Third Party Services that you choose to use or interact with.

CHILDREN’S PRIVACY

Please see our Provisions for California Residents   for additional details regarding our practices related to the collection and use of the Personal Data of California State residents who are under eighteen (18) years of age.

Our Sites are not structured to attract people under eighteen (18) years of age. Further, we do not intend to collect Personal Data from anyone we know to be under eighteen (18) years of age; provided, however, that if you are eighteen (18) years of age or older, but younger than eighteen (18) years of age, you can submit information to the Sites through and with the permission of a parent or legal guardian, but only after that parent or legal guardian has reviewed and agreed to the terms of this Privacy Policy in their entirety. If we learn that we have collected Personal Data from a person under eighteen (18) years of age (other than as expressly permitted in the relevant jurisdiction), we will delete that information as quickly as possible. If you believe that we might have any such information, please contact us at:              [email protected]