DERM AND HERB PRIVATE LIMITED (“DERM & HERB”) has created web site Privacy Policy in order to demonstrate that it is committed to implement measures designed to protect the privacy of those using our services and accessing this website www.dermandherb.com  

The domain name www.dermandherb.com  (hereinafter referred to as “Website”) is owned by DERM AND HERB PRIVATE LIMITED (DERM & HERB), a company incorporated under the Companies Act, 2013 with its registered office at VILL. LALPUR NAYAK P.O.HARIPUR NAYAK, R.T.O ROAD HALDWANI -263139, NAINITAL, UR, INDIA

It is clarified that “DERM & HERB” shall include its affiliates and associate companies, directors, officers or employees. The following discloses our information gathering, usage and dissemination practices for the Website. By using or accessing the Website you hereby accept and consent to the terms of this Privacy Policy. Please note that our Website may contain links to websites of other organisations and when you access such external links, they may have different privacy policies specific to those websites. We encourage you to read all privacy policies posted on the websites that you visit. If you do not agree with any terms of this Privacy Policy, please do not use this Website or submit any personal information or sensitive personal information to DERM & HERB.

Throughout this document, “we”, “us”, “our”, “ours” refer to DERM & HERB. The terms “client”, “user”, “you”, “your” and “yourself” or similar terminology are all in use in reference to the individual user of this Website.

Please take a moment to familiarise yourself with our privacy practices which are as follows:

Who Is Collecting It?

Any personal data provided to or collected by DERM & HERB is controlled by DERM AND HERB PRIVATE LIMITED, the data controller.

This Privacy Policy applies to personal data collected by DERM & HERB in connection with the services and products we offer. References to “DERM & HERB”   means DERM AND HERB PRIVATE LIMITED and any company directly or indirectly owned and/or controlled by DERM AND HERB PRIVATE LIMITED that you are interacting with or have a business relationship with.

What Personal Data Is Being Collected?

Personal data means any information that can be used to identify directly or indirectly a specific individual.

You are not required to provide DERM & HERB the personal data that we request, but if you choose not to do so, we may not be able to provide you with our products or services, or with a high quality of service or respond to any queries you may have.

We may collect personal data from a variety of sources. This includes:

Personal data means any information that can be used to identify directly or indirectly a specific individual. This definition includes personal data collected offline through our Consumer Engagement Centres, direct marketing campaigns, sweepstakes and competitions and online through our websites, applications and branded pages on third-party platforms and applications accessed or used through third-party platforms.

Ways in which we collect your personal data

We may collect personal data from a variety of sources. This includes:

When and why we collect “special categories of personal data”

Certain categories of personal data, such as health data, financial data, biometrics, race, ethnicity, religion, health, sexuality or biometric data are classified as “special categories of data” or “Sensitive Personal Information”

We limit the circumstances where we collect and process these special categories of data.

DERM & HERB sometimes collects data related to your health such as allergies, pregnancy or skin type to send you tailored ads and relevant promotions. DERM & HERB only collects and uses this personal data where you have provided us with your consent for us to do so. In some instances, you may have requested services or products that do not directly involve the collection of any special categories of data, but may imply or suggest your religion, health or other special categories of data.

What Purpose Do We Use Your Data For?

We collectprocess and disclose your personal data only for specific and limited purposes. For example, to process your payments, to assess and handle any complaints, to develop and improve our products, services, communication methods and the functionality of our websites, to provide personalised products, communications and targeted advertising as well as product recommendations to you.

We also create profiles by analysing the information about your online surfing, searching and buying behaviour and your interactions with our brand communications by building segments (creating groups that have certain common characteristics) and by placing your personal data in one or more segments.

Additionally, DERM & HERB processes your personal data also using automated means. An automated decision is a decision which is made solely by automatic means, where no humans are involved in the decision-making process related to your personal data.

We collectprocess and disclose your personal data for the following purposes:

When we collect and use your personal data for purposes mentioned above or for other purposes, we will inform you before or at the time of collection.

Where appropriate, we will ask for your consent to process the personal data. Where you have given consent for processing activities, you have the right to withdraw your consent at any time.

We process your personal data to perform a contract to which you are or will be a party. For example, we need to process your personal data to deliver a product or a service you bought, to allow you to take part in one of our competitions, or to send you samples that you have requested.

We also process your personal data when we have a legal obligation (e.g., tax or social security obligations) to perform such processing. For example, a court order or a subpoena may require us to process personal data for a particular purpose, or we may be compelled to process personal data to report suspicious transactions under the local anti-money laundering rules.

Profiling

DERM & HERB uses your personal data to build profiles. We create profiles by analysing the information about your online surfing, searching and buying behaviour and your interactions with our brand communications by building segments (creating groups that have certain common characteristics) and by placing your personal data in one or more segments. These segments are used by us to personalise the website and our communications to you (such as showing relevant content to you when you visit our site or in a newsletter to you), and to display relevant offers and advertisements. The segments can also be used for third-party campaigns on our website. DERM & HERB profiles your data where you have provided consent for us to do so; for example, accepting the setting of cookies on your browser online.

By way of example –

Based on this profile information, we may also give you advertising that we think you will like and want to see as you view content from us or from our network of publishers that we advertise with.  Sometimes, with your consent, we may use your current location to serve advertising to you that is to do with promotions or events that are happening nearby that we think you might be interested in.

We may also use information you have provided to selected third-parties and consented to be shared, like your age, gender, life stage, lifestyle and wider interests to identify people who we think will have similar interests to you and who we believe will be interested in similar advertising.

Who Will It Be Shared With?

DERM AND HERB PRIVATE LIMITED shares your personal data with selected third-parties in the following circumstances:

How Do We Protect Your Personal Data?

DERM & HERB takes the security of your personal data very seriously. We take every effort to protect your personal data from misuse, interference, loss, unauthorised access, modification or disclosure.

Our measures include implementing appropriate access controls, investing in the latest Information Security Capabilities to protect the IT environments we leverage, and ensuring we encryptpseudonymise and anonymise personal data wherever possible.

Access to your personal data is only permitted among our employees and agents on a need-to-know basis and subject to strict contractual confidentiality obligations when processed by third-parties.

How Long Do We Keep Your Personal Data For?

We will keep your personal data for as long as we need it for the purpose it is being processed for. For example, where you make a purchase online with us we will keep the data related to your purchase, so we can perform the specific contract you have entered and after that, we will keep the personal data for a period which enables us to handle or respond to any complaints, queries or concerns relating to the purchase.

Your data may also be retained so that we can continue to improve your experience with us and to ensure that you receive any loyalty rewards which are due to you.

We retain the identifiable data we collect directly for targeting purposes for as little time as possible, after which we employ measures to permanently delete it.

We will actively review the personal data we hold and delete it securely, or in some cases anonymise it, when there is no longer a legal, business or consumer need for it to be retained.

What Are Your Rights?

Your rights in relation to your personal data how it is processed. You can exercise these rights at any point. We have provided an overview of these rights below together with what this entails for you. You can exercise your rights by sending an email or submitting a request through the “Contact Us” form on our websites.

Further information and advice about your rights can be obtained from the data protection Regulator in your Country.

How Do You Contact DERM & HERB?

You can reach us on +918266834255 or contact@dermandherb.com where our Customer Care will be happy to help you.

How Do We Keep This Policy Up To Date?

We will update this Privacy Policy when necessary to reflect customer feedback and changes in our products and services. When we post changes to this statement, we will revise the “last updated” date at the top of this Policy. If the changes are significant, we will provide a more prominent notice (including, for certain services, email notification of Privacy Notice changes). We will also keep prior versions of this Privacy Policy in an archive for your review.

We will not reduce your rights under this Privacy Policy without your consent.

Additional Privacy Terms or Notices

In addition to this Privacy Policy, there may be specific campaigns or promotions which will be governed by additional privacy terms or notices. We encourage you to read these additional terms or notices before participating in any such campaigns or promotions as you will be required to comply with them if you participate. Any additional privacy terms or notices will be made prominently available to you.