Information We Collect and How the Information May Be Used
The Site may collect two types of information: (1) personal information you knowingly choose to disclose, and (2) website use information collected in aggregate.
Information you choose to disclose
Personal information is information that is personally identifiable (also known as “personally identifying information” or “PII”) to you such as your name, email address, telephone number, credit card information and possibly other information as defined by applicable law. We only gather personal information when it is voluntarily submitted by you. You are not required to disclose any personal information to visit this Site, however you may be required to disclose certain personal information before accessing or using certain features or areas of the Site. Likewise, at times we also collect personal information from you through your interactions at the spas and in order to engage in certain activities at the spas you may also be required to provide certain personal information.
The personal information you provide to us may be used to send you information and updates pertaining to your reservations, to provide services and/or products you request from us, to send post cards and to make reservations. We may also send you news, updates, related product or service information, promotions, etc. enabling us to give you convenient access to products and services that may be of interest to you. You can unsubscribe from any of our email programs by visiting the unsubscribe page, unsubscribe button, or by following the instructions in relation to opting out of future emails in any email you receive from us
To the extent that our processing of your personal information is based on your consent, you may withdraw your consent at any time by closing your account. Withdrawing your consent will not, however, affect the lawfulness of the processing based on your consent before its withdrawal, and will not affect the lawfulness of our continued processing that is based on any other lawful basis for processing your personal information. If you withdraw your consent to our processing of personal information, then in some cases we may not be able to provide you services.
We do not sell your personal information to third-parties (e.g. email list makers and the like); however, your personal information may be shared with our corporate partners. We also reserve the right to disclose your personal information for any reason if we believe that it is reasonable to do so and if your rights and freedoms do not outweigh our legitimate interests. By way of example, such sharing may include credit agencies, collection agencies, merchant database agencies, law enforcement, for litigation purposes or to satisfy laws or regulations and/or governmental or legal requests for such information. We may also disclose personal information that is necessary to identify, contact, or bring legal action against someone who may be violating our legal rights, policies and/or procedures. Finally, we may also disclose information about you if we determine that for national security or other issues of public importance, disclosure is necessary. When your personal information is shared with others, it becomes subject to their privacy policies.
As indicated above, we may share your information with our partners with whom we have a strategic relationship or that perform work for us to provide products and services to you on our behalf or through our website. These companies may help us process information, process credit/payment information, fulfill customer orders, deliver products to you, manage and enhance customer data, provide customer service, assess your interest in our products and services, or conduct customer research or satisfaction surveys. Without such information being made available, it would be difficult for you to purchase products or services, have products delivered to you, receive the services requested, receive customer service, provide us feedback to improve our products and services, or access certain services, offers, and content on our Site or at the spas.
Information We Collect Through Automatic Data Collection Technologies
Also as indicated above, when you visit this Site we may automatically collect website use information about your visit. Website use information includes information such as the date and time of your visit, the pages you visited, the address of the website you came from when you came to visit this Site and the like. Generally, such automatically collected information is used to improve the functionality of the Site and its ability optimally to convey information to Site visitors.
Our intention is that you should only receive email communications that will be useful to you and that you want to receive, so we provide you the ability to define and modify your mailing preferences online at any time including unsubscribing from all marketing communications, offers and promotions and research surveys. You can unsubscribe from any of our email programs by visiting the unsubscribe page or by following the instructions in relation to opting out of future emails in any email you receive from us.
Do Not Track Technology
Currently, in order to maintain certain functionality of the Site, the Site does not comply with “do not track” browser settings and we do not modify what information we collect or how we use that information based upon whether such signal is broadcast or received. As stated in this policy here and in other places, if this is not acceptable to you, then please do not use this Site.
Careers with Lumia
Lumia MedSpa uses select private label databases and tools hosted by third parties on their Websites to collect personal information from individuals that wish to be considered for potential employment. Personal information you provide to us via these private label services is accessible and confidential to Lumia MedSpa. By submitting your application and providing this personal information, you understand and agree that your personal information will be transferred with the Lumia Organization for consideration for employment. Lumia MedSpa will not use your personal information for any purpose other than to allow you to conduct automated job searches or determine your qualifications for potential employment with Lumia MedSpas.
How We Protect Your Personal Information
We take precautions – including administrative, technical, and physical measures – to safeguard your personal information against loss, theft, and misuse, as well as unauthorized access, disclosure, alteration and destruction.
The Site uses Secure Sockets Layer (SSL) encryption on all web pages where sensitive data is required. You must use an SSL-enabled browser in order to protect the confidentiality of your personal information while it is transmitted over the Internet. The safety and security of your information also depends on you. Where we have given you (or where you have chosen) a password for access to certain parts of our Website, you are responsible for keeping this password confidential. We ask you not to share your password with anyone. While we make reasonable efforts to ensure the integrity and security of our network and systems, we cannot and do not guarantee that our security measures will prevent third-party hackers from illegally obtaining your personal information.
An App may permit you to log in from, or connect with, social media services to which you belong so that it is easy for you to share your experiences and to see the experiences of others. If you use your social media account, or use certain other social media features, we may access information about you via that social media provider in accordance with the provider’s policies. The information collected from or about you by social media networks with which you connect the App is governed by the policies of those social media networks. Depending on the privacy settings of you and your friends, we may access information that you provide to a social media provider regarding your respective locations (“Location Data”) to provide you with relevant content.
Cookies and Other Technologies
As is true of most websites, we gather certain information automatically and store it in log files. This information includes Internet Protocol (IP) addresses, browser type, Internet Service Provider (ISP), referring/exit pages, operating system, date/time stamp, and clickstream data. We use this information, which does not identify individual users, to analyze trends, to administer the site, to track users’ movements around the site and to gather demographic information about our user base as a whole. We will not use the information collected in this manner to market directly to you.
In some of our email messages, we use a click-through URL linked to content on our Site. When customers click one of these URLs, they pass through our webserver before arriving at the destination web page. We track this click-through data to help us determine interest in particular topics and measure the effectiveness of our customer communications. If you prefer not to be tracked simply avoid clicking text or graphic links in the email.
In addition, we may use pixel tags which are tiny graphic images (sometimes referred to as web beacons) to tell us what parts of our website customers have visited or to measure the effectiveness of searches customers perform on our site. Pixel tags also enable us to send email messages in a format customers can read. And they tell us whether emails have been opened to ensure that we are sending only messages that are of interest to our customers. We may use this information to reduce or eliminate messages sent to a customer. We store all of this information in a secure database.
The Site is not intended for children under 18 years of age. We do not seek to obtain nor do we want to obtain personal information (i.e. personally identifiable information) directly from minors. We cannot, however, always determine that the people accessing and using our site are adults. As such, should a minor (as defined by applicable law) provide to us personally-identifying information without parental consent, we request that the parent, guardian or other appropriate person contact us to help us remove the information. Please contact us at Austyn@SpaLumia.com
We retain your personal information for as long as you keep your account open. In some instances, we may keep it after you close your account, for example, we may keep it:
on our backup and disaster recovery systems;
for as long as necessary to protect our legal interests; and
and to comply with other legal requirements.
California Privacy Rights
California Civil Code Section 1798.83 (California’s “Shine the Light” law) permits users of our Sites that are California residents and who provide personal information in obtaining products and services for personal, family, or household use to request certain information regarding our disclosure of personal information to third parties for their own direct marketing purposes. If applicable, this information would include the categories of personal information and the names and addresses of those businesses with which we shared your personal information with for the immediately prior calendar year (e.g. requests made in 2018 will receive information regarding such activities in 2017). You may request this information once per calendar year. To make such a request, please send an email to Austyn@SpaLumia.com.
Residents of the European Union
Lumia MedSpa is based in the United States. Please be aware, in order to provide our Sites, products, and services to you, we send and store your personal information outside of the European Economic Area, including to the United States.
Lawful Basis for Processing
If you are in the European Union, the processing of your personal information is lawful only if it is permitted under the applicable data protection laws. We have a lawful basis for our processing of your personal information, including processing for our legitimate interests (when balanced against your rights and freedoms), to fulfill our obligations to you under a contract with you, and required by law, and with your consent.
Your Rights Regarding Your Information and Accessing and Correcting Your Information
You may have certain rights under applicable data protection laws, including the right to access and update your personal information, restrict how it is used, transfer certain personal information to another controller, withdraw your consent at any time, and the right to have us erase certain personal information about you. You also have the right to complain to a supervisory authority about our processing of your personal information.
You may exercise any of the above rights by contacting us through any of the methods below and through the live chat feature of our Websites. If you contact us to exercise any of the foregoing rights, we may ask you for additional information to verify your identity. We reserve the right to limit or deny your request if you have failed to provide sufficient information to verify your identity or to satisfy our legal and business requirements.
You have the right to lodge a complaint with the applicable supervisory authority in the country you live in, the country you work in, or the country where you believe your rights under applicable data protection laws have been violated. However, before doing so, we request that you contact us directly in order to give us an opportunity to work directly with you to resolve any concerns about your privacy.
Links to Websites of Other Companies
The Site may have links to the sites of other companies. We are not responsible for their privacy practices. We encourage you to learn about the privacy policies of those companies by reviewing their policies or otherwise communicating with them.
Request for Access to Personal Information/Questions or complaints
If after reviewing this Statement, you have any questions or privacy concerns please like to, send an email to at Austyn@SpaLumia.com.