Cookies, Privacy & Security
This website does not store any personally identifiable information about you and only sets a limited number of third-party cookies to serve the site content and gather anonymised analytics data.
What Are Cookies
What Are Cookies Used For
A cookie can, for example: enable a service to recognise your device so you don’t have to give the same information several times during one task; for example, remembering items you have saved to your basket on a previous visit to the website, including where the browser has been closed and a new session has begun; measuring how many people are using the site, to ensure there is enough capacity for the site to operate at a reasonable speed; completion and support of the current activity being undertaken by the user, for example previously viewed pages or products; and website and system administration, for example, tracking the number of website users for marketing purposes.
What Third-Party Cookies We Use
Google Analytics These cookies are used to collect information about how visitors use our site. We use the information to compile reports and to help us improve the website. The cookies collect information in an anonymous form, including the number of visitors to the website, where visitors have come from and the pages they have visited. Click here for an overview of privacy at Google. WordPress Registered Site members need a cookie to be able to log in. This is necessary to be able to use the site as WordPress won’t work without it. Visitors who leave a comment on a blog post will also have a cookie set on their computer. However, this is not necessary for use of the site and you also don’t need to register to use this site. Click here for an overview of cookies WordPress uses.
Cookie Information Collected
What Happens If I Disable Cookies
Data We Collect
We, using third-party Phorest Salon Software, collect and process the following data, which is voluntarily given, about you:
- Enquiry Details
As you can see, we do not collect or attempt to mine any overly sensitive data about you.
Why We Collect the Data
We only collect what data we need to fulfil our service to you through the enquiries you make via the site.
How Long We Hold Data
We only keep the data for as long as its intended necessary purpose.
What Do We Do With The Data Gathered Via The Site
We use it to respond to your enquiry. We don’t pass it on to anyone directly via the site. If you proceed with a booking your data is added to a Third-Party Customer Relationship Management and Booking System, Phorest Salon Software, that we use to manage our customer data. This makes it more efficient for us to handle and manage your data, especially if you make repeat bookings, or if we need to contact you to amend a booking.
Who is processing my data?
We are the data controller and process your personal information for the purposes laid out in this privacy notice. Phorest acts as a data processor on behalf of the salon and have access to client information only in cases of software support or troubleshooting is required by the salon. Further, they must process the personal information in accordance with this Privacy Notice and as permitted by applicable data protection laws.
Your personal data is processed to:
- Collect personal data required to enter into a contract to sell a service or product.
- Engage in communication with you to send confirmation and reminders of appointments or change/cancel bookings.
- Collect health information to perform the agreed services appropriately, and potentially highlight areas that services potentially may cause issues to clients because of their health.
- Ensure a safe service and provide industry standard advice.
- Select relevant offers, promotions and information for you.
- Estimate the number of customers we have.
- Hold personal data that is required by law or respond to legal process.
- Hold for insurance purposes.
- Store customer records.
Site Security – How We Aim to Protect Your Data
We use Internet standard encryption technology (“SSL” or “Secure Socket Layer” technology) to encode data that you send to us through the Website. To check that you are in a secure area of the Website before sending personal data to us, please look at the relevant area of your preferred website browser and check that it displays an image of a closed padlock or an unbroken key, or equivalent to signify a secure connection. We also take measures to ensure our hosting server (based in the UK) is secure using website software that is compatible with the software of our server. Additionally, we conduct regular virus and malware scans to ensure the server is clear of any malicious software that could compromise the security of both our server and website. We scan the Site for these too. Furthermore, we always ensure WordPress and the site plugins are kept up to date at all times to incorporate the latest vulnerability fixes. Additionally, to help us in our site security we use the most popular WordPress firewall & security scanner: Wordfence. Wordfence includes an endpoint firewall and malware scanner that was built from the ground up to protect WordPress. Their Threat Defence Feed arms Wordfence with the newest firewall rules, malware signatures and malicious IP addresses it needs to keep a website safe. Rounded out by a suite of additional features, Wordfence is the most comprehensive WordPress security solution available. Find out more information about Wordfence here: https://wordpress.org/plugins/wordfence/. As part of its functions, Wordfence will occasionally transfer aggregated data to our servers for analysis when detecting spam, malware or attacks. This data can not be used to de-anonymize a site visitor or member. However, please note that whilst we take appropriate technical and organisational measures to safeguard the personal data that you provide to us, no transmission over the Internet can ever be guaranteed secure. Consequently, please note that we cannot guarantee the security of any personal data that you transfer over the Internet to us. If you are using a computer or terminal in a public location, we recommend that you always log out and close the website browser when you complete an online session for your security.
Deleting Your Data
You have the right to be forgotten at any time and can do this by contacting us directly.
Our staff are subject to a duty of confidentiality.
Under the GDPR regulations, you have the following rights:
- the right to ask what personal data that we hold about you at any time
- the right to ask us to update and correct any out-of-date or incorrect personal data that we hold about you
- the right to object our processing of your information based on grounds relating to your particular situation
- the right to erasure, i.e. request deletion or removal of all personal data where there is no compelling reason for its continued processing
- the right to complain to the Information Commissioner’s Office (ICO). If you want to make a complaint about the way we have processed your personal information. The ICO is the statutory body which oversees data protection law, see ico.org.uk/concerns
If you wish to exercise any of these rights, please do so by emailing firstname.lastname@example.org or by writing to Mohair, 87 Saltmarket, Glasgow, G1 5LE. We will respond to all requests within 1 month and earlier where possible. We will not charge for dealing with a request unless it is manifestly unfounded or excessive.