Last updated: December 2024
vincebello B.V. ("we," "our," or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, process, and protect your information when you use our website and services. As the Data Controller, vincebello ensures compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
The data we collect includes personal information such as your name, email address, phone number, and any information you provide in consultation forms or communications. We also collect technical data including IP addresses, browser type, device information, and website usage patterns through cookies and similar technologies. Additionally, we may collect sensitive information related to your skin type, beauty concerns, and health conditions when you use our consultation services, but only with your explicit consent.
Under GDPR, we process your personal data based on the following legal grounds: (a) Consent - when you voluntarily provide information for consultations or marketing communications; (b) Contract - when processing is necessary to provide our services; (c) Legitimate Interest - for website analytics, security, and business operations; and (d) Legal Obligation - when required by law to retain certain records.
We explain how we use your information in the following ways: to provide personalised beauty consultations and recommendations; to communicate with you about appointments, services, and follow-up care; to improve our website and services through analytics; to send marketing communications (only with your consent); to comply with legal obligations and protect our legitimate business interests; and to ensure the security and proper functioning of our website and services.
We do not sell, trade, or rent your personal data to third parties. We may share your information only in the following circumstances: with service providers who assist us in operating our website and providing services (under strict confidentiality agreements); when required by law, legal process, or government request; to protect our rights, property, or safety, or that of others; or with your explicit consent for specific purposes.
We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected. Consultation records are kept for up to 7 years for professional and legal compliance reasons. Marketing consent and communication preferences are retained until you withdraw consent. Website analytics data is typically retained for 26 months. Technical logs and security data are retained for up to 12 months. You may request earlier deletion of your data, subject to legal and legitimate business requirements.
As a data subject under GDPR, you have the following rights: Right of Access - to obtain confirmation of whether we process your data and receive a copy; Right to Rectification - to correct inaccurate or incomplete data; Right to Erasure - to request deletion of your data under certain circumstances; Right to Restrict Processing - to limit how we use your data; Right to Data Portability - to receive your data in a machine-readable format; Right to Object - to object to processing based on legitimate interests; and Right to Withdraw Consent - to withdraw consent at any time where processing is based on consent.
Our website uses cookies and similar tracking technologies to enhance your browsing experience, analyse website traffic, and provide personalised content. We use essential cookies for website functionality, analytical cookies to understand user behaviour, and preference cookies to remember your settings. You can manage your cookie preferences through our cookie consent banner or your browser settings. For detailed information about our cookie usage, please refer to our Cookie Policy.
As vincebello operates primarily within the European Union, your data is processed within the EU/EEA. If we need to transfer data outside the EU/EEA, we ensure adequate protection through appropriate safeguards such as Standard Contractual Clauses or adequacy decisions by the European Commission.
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption of data in transit and at rest, regular security assessments, access controls and authentication procedures, regular backups and disaster recovery plans, and staff training on data protection and security practices.
Our services are not directed to individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information promptly.
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. For significant changes, we may also notify you by email or other means.
If you have any questions about this Privacy Policy, wish to exercise your rights, or need to contact us regarding data protection matters, please contact us at:
Data Controller: vincebello B.V.
Address: Marktplein 115, 6523 RQ Nijmegen, Gelderland, Netherlands
Email: privacy@vincebello.com
Phone: +31 20 698 9246
Business Hours: Monday - Friday, 9:00 AM - 6:00 PM (CET/CEST)
If you believe we have not addressed your concerns adequately, you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) or the supervisory authority in your EU member state.
This Privacy Policy is part of our commitment to transparency and data protection. By using our website and services, you acknowledge that you have read, understood, and agree to the collection and use of your personal data as described in this policy.