Privacy Policy
The Patch Test Kit (“We”) understand the value of your privacy. This notice (together with any terms of use on our website, any contracts between us and any other documents referred to in this notice) sets out the basis on which any personal data we collect from you, that you provide to us, or that we obtain about you from other sources, will be processed by us. Please read the following carefully. By visiting any of our website, or by providing us with any information about yourself, you are accepting and agreeing to the practices described in this notice.
For the purpose of and thereafter the General Data Protection Regulation (Regulation (EU) 2016/679, the GDPR;) as amended, supplemented or replaced from time to time (Data Protection), the data controller is Meredith Hairdressing Ltd, with registered number 12075077 and registered address Meredith Hairdressing UK Ltd., 36 Deanway, Chalfont St Giles, Buckinghamshire,HP8 4JL.
​
1. Information we collect from you
We will collect and process the following data about you:
1.1. Information you give us
​
This is information about you that you give us by filling in forms on our website ("our site”), or any forms hosted by third party partners, or by corresponding with us by phone, e-mail or otherwise. It includes information you provide when you register to use our site, open an account, subscribe to our mailing list, browse or place an order on our website, participate in discussion boards or other social media functions on our website, enter a competition, promotion or survey, when you report a problem with our website, products or services. The information you give us may include your name, address, e-mail address and phone number, financial and credit card information. If you provide any information about any other individuals such as family or colleagues, you warrant to us that you are entitled to provide that information to us and to authorise us to process it on the same basis as we will process the rest of the data you provide about yourself.
​
1.2. Information we collect about you.
With regard to each of your visits to our site we will automatically collect the following information:
Technical information, including the Internet Protocol (IP) address used to connect your computer to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform, device type, language setting.
​
Information about your visit, including the full Uniform Resource Locators (URL), clickstream to, through and from our site (including date and time), pages you viewed, page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling,clicks, and mouse-overs), methods used to browse away from the page, and any phone number used to call us.
We collect this personal data by using cookies, server logs and other similar technologies.
The tracking technologies we or our selected third parties use for automated data collection may include:
Cookies (or browser cookies): Like many other sites, we use “cookies,” which are small files placed on the hard drive of your computer. Cookies help us to to distinguish you from other users of our website. This helps us to provide you with a good experience when you browse our website and also allows us to improve our website.
For our website - Our Cookies and other tracking technologies (above) also allow us to hold selections in a shopping cart when a user leaves the Web Site without checking out, track an order, or track purchases through the website.
With our emails - help us to understand a little bit about how you interact with our emails, and are used to improve our future email communications.
Web Beacons: Pages of our website and our emails may contain small electronic files known as web beacons (also referred but not limited to clear gifs. pixel tags and single-pixel gifs).
For our website - that permit us, for example, to count users who have visited those pages or opened an email and for other related Web Site statistics (for example, recording the popularity of certain Web Site content).
Within our emails - that tells us whether you have opened an email, how often you have
opened it, how you interacted with the email (such as the time you spent reading the email), which email software and web browser you used). We also use web beacons to help us display emails in the best format for your device.
We utilize web beacons to help us better manage the content on the Web Site and the Email we send to you by informing us what content is effective.
Link Tracking: Our emails and website may contain hyperlinks, each of which has a unique tag. We use hyperlinks to enable us to understand who has clicked them for example from an email to visit our website. We use this information to improve the experience and the relevance of future messages to you.
Broadcast Emails: With regard to emails you sign up to receive from us, each email collects information about you, using industry standard technologies including pixels which will track email delivery/bounce/opens/unsubscribes, IP address, device type. This is the standard approach for measuring open and click rates, and is used by all email platforms in the market.
1.3. Information we receive from other sources
We receive information from other sources in order that we can fulfil your order. This will include courier and payment card services.
2. Purposes for which we may process the information
​
We use information held about you in the following ways:
2.1. Information you give to us
​
We may use this information:
-
To carry out our obligations arising from any contracts entered into between you and us and to provide you with the information, products & services that you request from us.
-
To update you with regard to the progress of orders that you have placed.
-
To resolve any queries you may have regarding orders that you have placed.
-
To initiate any product recalls or provide any important information to you relating to products that we supply.
-
To provide you with information about other goods and services we offer that are similar to thosethat you have already purchased or enquired about.
-
To provide you with information about our goods or services we feel may interest you. If you are an existing consumer customer, we will only contact you by electronic means (e.g. e-mail) with information about goods and services similar to those which were the subject of a previous sale unless you have consented to receive wider communications. If you are not an existing customer, we will contact you by electronic means only if you have consented to this. We will not pass your information to 3rd parties for marketing purposes, unless this is expressly permitted by you. You may unsubscribe from any electronic marketing communications at any time.
-
To notify you about changes to our products or services.
-
For fraud prevention.
-
To ensure that content from our site is presented in the most effective manner for you and for your computer.
Please note that, where you are asked to provide information to us which is of a sort that is necessary to enable us to perform a contract or fulfil a request that you make (e.g. contact, delivery or payment information) it is a requirement for us to enter and perform such a contract or fulfil your request that you provide that information – if you do not do so, we may not be able to perform your contract or fulfil your request.
2.2. Information we collect about you
We will use this information:
-
To administer our site and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes.
-
To improve our site to ensure that content is presented in the most effective manner for you and for your computer.
-
To allow you to participate in interactive features of our service, when you choose to do so.
-
As part of our efforts to keep our site safe and secure.
-
To measure or understand the effectiveness of advertising we serve to you and others, and to deliver relevant advertising to you.
-
To make suggestions and recommendations to you and other users of our site about goods or services that may interest you or them.
3. Disclosure of your information
3.1. You agree that we have the right to share your personal information with:
3.1.1. For administrative purposes, any of the undertakings of Meredith Hairdressing UK Ltd provided they are:
(a) are within the European Economic Area;
(b) are in a country that the European Union has decided has adequate data protection laws in place; or
(c) have provided appropriate data protection safeguards of the sort approved by the European Union and provide effective rights and remedies for you.
Any use by other group members of one group member’s personal data beyond administration will be subject to all the requirements of Data Protection Law.
​
3.1.2. Selected third parties including:
-
Advertisers and advertising networks that require the data to select and serve relevant adverts to you and others. This requires you to accept our cookie policy when you first visit our website or sign up to our newsletters by agreeing to the terms of our privacy policy.
-
Analytics and search engine providers that assist us in the improvement and optimisation of our site.
-
Marketing partners to send emails on our behalf, and/or for co-branded and/or co-sponsored marketing and promotional events offered in conjunction with another company or companies. If you register for or participate in such marketing and promotional events, we and the relevant partner companies may receive information collected in conjunction with the co-branded and/or co-sponsored marketing and promotional events. Our Privacy Notice will apply to our use of your personal information. We have no control over any other companies’ privacy practices, so please read their applicable privacy.
-
To our third party service providers and partners who provide data processing services to us (for example, to support the delivery of, provide functionality on, or help to enhance the security of our Online Properties), or who otherwise process personal information for purposes that are described in this Privacy Notice or notified to you when we collect your personal information.
-
To our Payment processor. This takes place on a secure server using SSL (Secure Socket Layer) 128-bit encryption. We support all major credit and debit cards with the (major) UK acquiring banks for Visa and Mastercard. If you prefer you can pay by credit card over the phone. You can also pay via Paypal.
3.2. Additionally, we may disclose your personal information to third parties:
3.2.1. If we outsource any aspect of our business or systems, then we may disclose your personal data to our service provider(s).
3.2.2. In the event that we sell or buy the whole (or substantial part of) our business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets.
3.2.3. If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply the terms of any agreement or policy to which we are a party, or to protect the rights, property, or safety of our business, our customers, or others. This may include exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.
4. Legal basis of processing
4.1. Data Protection Law requires us to meet at least one “legal ground” for processing, currently set out in Article 6 of GDPR regulation. The grounds applicable to the personal data to which this notice relates are:
-
Where the processing is necessary for us to perform a contract that you are party to, or to take steps at your request prior to entering a contract, that is the ground on which we are processing that data.
-
Where the processing is necessary for compliance with a legal obligation to which we are subject,that is the ground on which we are processing that data;
-
Where processing is necessary for the purposes of our legitimate interests or the legitimate interests of a third party, that is the basis on which we are processing that data, (our legitimate interests comprise the management, marketing and promotion of our business, products and services, and the supply of our products and services).
-
If you have given your consent to our processing the data, that is the basis on which we are processing that data.
If more than one of the above grounds apply to the processing of data in question, the applicable ground will be the one that is set out first above.
5. How we store your personal data
5.1. The data that we collect from you will be stored on our servers or those of our service providers. It will not be transferred to, and stored at, a destination outside the UK or the European Economic Area ("EEA") unless:
5.1.1. to a processor acting on our behalf which is either (i) within the EEA, or (ii) in a country that the European Union has decided has adequate data protection laws in place, or (iii) has provided appropriate data protection safeguards of the sort approved by the European Union and provide effective rights and remedies for you.
5.2 All information you provide to us is stored on secure servers. Any payment transactions will be encrypted using SSL technology. Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential, and for all use made of your account with such password. We ask you not to share a password with anyone.
​
Payment services providers for the purposes of authorising funding of the orders you place. We do not store your payment (debit or credit) card data in our systems, all data is securely transmitted to our service providers, after which we store limited transactional data such as authorisation codes which we keep along with your order information. If you use PayPal or the PayPal Pay in 3 service your browsing session is securely passed over to PayPal, who provide us with authorisation code when you return to our site to complete your order. We have no visibility of your PayPal account or your interaction with PayPal.
Verified by VISA and Mastercard® SecureCode™ are new services from VISA and Mastercard in association with your card issuer to provide added protection when you buy online. There is no need to get a new card , you just need to choose your own personal code for your existing card. This information is never shared with any of the retailers or merchants. It is a private code that means added protection against unauthorised use of your credit or debit card when you shop online. This should not be confused with your normal pin number that you use when shopping in the high street or when using cash machines. To choose your new code, you will need to register by following the website links provided below.
When shopping on our website, if you card is eligible for these schemes you may see a pop up window appear when you are at the checkout. This pop up will be provided by the bank that issued the card you are making payment with. If you have not already registered your card, you can use this pop up and follow the instructions to register securely. Once registered, you will be taken back to Thepatchtestkit.co.uk to complete your order. If you are at all concerned or confused, simply close the pop up window and complete your order as normal, then contact your bank to find out more about the schemes. Once registered, you will then be required to use your personal code on all subsequent online transactions.
​
5.3. Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted via the internet; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
6. Length of data storage
Our policy is to ensure that personal data is only stored for as long as is necessary for the purposes set out at section 2 above. This may vary according to the type of information and the specific applicable purpose(s). We can provide you with relevant details applicable to your data on request – please see section 8 below as to how to request this information.
7. Your rights
7.1.You have various rights under Data Protection Law. These include:
-
The right to ask us not to process your personal data for direct marketing purposes (electronic and postal), even if you have given consent.
-
The right to withdraw any consent you may have given for our processing of your data.
-
The right to ask us for access to the data we hold about you (see section 8 below for further details).
-
The right to ask us to rectify any data that we hold about you that is inaccurate or incomplete.
-
The right to ask us to delete your data or restrict our processing of your data in certain circumstances.
-
In certain circumstances, the right to request the data we hold about you in a structured, commonly used and machine-readable format.
-
You have the right not to be subject to a decision based solely on automated processing. This includes decisions based on profiling.
7.2. If you exercise any of the rights set out above, we may need more information from you, which we will ask you for following your request. We may ask you to provide further information in order to confirm your identity. Please also note that if you submit unfounded or excessive (for example repetitive) requests to exercise any of these rights, we reserve the right to make a reasonable charge for providing the requested information or taking the requested action, or to decline your request.
7.3. You also have the right to lodge a complaint with the Information Commissioner’s Office if you are concerned that we are not respecting your rights under Data Protection Law.
8. Accessing your data
In accordance with current GDPR and Data Protection regulations you have the right to request that we confirm as to whether we are processing (including holding) personal data about you; and if we are processing personal data about you, you are entitled to be provided with information as to:
-
The purposes for which we process the data or the categories of the data that we are processing.
-
The recipients or categories of recipients to whom the data has or is being disclosed.
-
The envisaged period for which we will store the data, or the basis on which that period will be determined.
​
You are entitled to a copy of the data (further copies are available at a reasonable charge, which we will inform you of should you request further copies). Please note that this right is subject to the rights of others in relation to their own personal data, meaning that we cannot disclose data to you if it would involve disclosing data about someone else.
9. Other websites
Our site may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
10. Changes to this privacy notice
Any changes we make to our privacy notice in the future will be posted on this page. Please check to see any updates or changes to our privacy notice.
11. Contact
All Privacy matters should be directed to The Patch Test Kit, Meredith Hairdressing UK, 36 Deanway, Chalfont St Giles, Buckinghamshire, England, HP8 4JL
​
​
​
Our Cookie Policy
​
Cookies are small data files which are placed on your computer or hand held device when you visit certain pages on websites. Cookies can't harm your computer. Some are essential, for example when putting items in your basket to place orders on our website while some are not essential but are used to enhance the user experience of the website. They allow us to:
-
obtain statistical data regarding audience size and usage pattern,
-
store information about your preferences,
-
allow us to customise the website to your interests and deliver a high quality user experience,
-
improve user experience and to allow the website to recognise you when you return.
We do not use cookies to collect or record information on users’ name, address or other contact details. This is generally considered standard practice for most, if not all websites.
The cookies when you access this website are set by us, our suppliers, partners and other third parties to help deliver a high-quality website and on-line shopping experience.
Strictly Necessary Cookies
​
These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies do not store any personally identifiable information.
Third Party Cookies
​
3rd party cookies are not directly related to thepatchtestkit.co.uk, but are key to enabling us to offer you an improved experience and to also improve the performance of our site. These include:
-
Google Analytics: Measures visitor interactions across the website allowing us to improve customer experience. These cookies do not trace personal information such as your name, but can track how often your computer visits a website, which pages your computer visited and in which order, and where you left the website.
-
Facebook: To offer you relevant and targeted adverts on Facebook
-
You Tube: To track the interactions with videos from our official Youtube channel which are embedded on the website.
​​
Cookies and Other Similar Technologies used
​
Cookies are not the only way to recognise or track visitors to a website. We or our selected third parties may use other, similar technologies from time to time, like web beacons (sometimes called "tracking pixels", "clear gifs", “pixel tags” and “single pixel gifs”). These are tiny graphics files that contain a unique identifier that enable us to recognise when someone has visited our Website or opened an e-mail that we have sent them. This allows us, for example, to monitor the traffic patterns of users from one page within our Websites to another, to deliver or communicate with cookies, to understand whether you have come to our website from an online advertisement displayed on a third-party website, to improve site performance, and to measure the success of e-mail marketing campaigns. In many instances, these technologies are reliant on cookies to function properly, and so declining cookies will impair their functioning.
Our Cookies and other tracking technologies (above) also allow us to hold selections in a shopping cart when a user leaves the Web Site without checking out, track an order, track an order number/value or track purchases through the website.
Sharing Tools
​
If you use any sharing tools on our website which allow you to share our content with your friends via social networks including Facebook and Twitter, you may be sent cookies from these websites. As these are external sites we cannot and do not control the setting of these cookies. We recommend you check the third-party websites for more information about their cookies and how to manage them.
Cookie Management
​
To add products to your basket and purchase from our website you will need to have cookies enabled within your web browser settings. If cookies aren't enabled on your web browser, you will be limited browsing on our website.
​
​