Privacy & Cookie Policy

Last updated: 19/11/2025

This Privacy & Cookie Policy explains how KiaraLana Cosmetics (“we”, “us”, or “our”) collects, uses and protects your personal information when you visit https://kiaralanacosmetics.co.uk (“the Website”), place an order, or interact with our services.

We are committed to safeguarding your privacy and ensuring full compliance with:

  • UK General Data Protection Regulation (UK GDPR)
  • Data Protection Act 2018
  • Privacy and Electronic Communications Regulations (PECR)

By using our Website, you agree to the practices described in this Policy.

1. Who We Are

KiaraLana Cosmetics
United Kingdom
📧 kiaralanacosmetics@gmail.com

We are the Data Controller, responsible for deciding how your personal data is processed.

2. Personal Data We Collect

We collect two types of data:

2.1 Data You Provide Directly

When you:

  • Place an order
  • Create an account
  • Contact us
  • Subscribe to updates
  • Submit a form

We may collect:

  • Name
  • Email address
  • Phone number
  • Billing and delivery address
  • Order details
  • Messages or enquiries

2.2 Usage Data (Collected Automatically)

This includes non-identifying information such as:

  • IP address
  • Browser type and version
  • Device information
  • Pages visited
  • Time and date of visit
  • Time spent on pages
  • Referring website
  • Website security logs

This helps us improve performance, security, and user experience.

3. Cookies & Tracking Technologies

Our Website uses cookies, small text files stored on your device that help the site function correctly and provide a better browsing experience.

We use the following types of cookies:

3.1 Essential Cookies (Required)

Necessary for:

  • Secure checkout
  • Shopping basket functions
  • Fraud prevention
  • Website security
  • Basic technical performance

These cannot be disabled as the Website cannot operate without them.

3.2 Functionality Cookies

Used to remember:

  • Login details (optional)
  • Preferences
  • Recently viewed products

3.3 Analytics Cookies (Google Analytics 4)

We use Google Analytics 4 via the Site Kit plugin.

GA4 collects anonymised data such as:

  • Page visits
  • Time on site
  • Device and browser details
  • Broad-region location
  • Behaviour patterns

You can learn more at:
https://policies.google.com/privacy

3.4 Payment Cookies (PayPal)

When using PayPal at checkout, PayPal may place its own cookies.
These are outside our control and governed by PayPal’s Privacy Policy.

3.5 Cookies We Do NOT Use

We do not use:

  • Advertising or remarketing cookies
  • Behavioural tracking cookies
  • Social media pixels (e.g., Facebook, TikTok, Pinterest)

3.6 Cookie Lifespan

Cookies may be:

  • Session cookies – deleted when you close your browser
  • Persistent cookies – remain for between 1 day and 12 months, depending on type

3.7 Managing Cookies

You can:

  • Accept/reject optional cookies via our Cookie Consent banner
  • Adjust settings in your browser
  • Delete existing cookies

Disabling essential cookies may affect site functionality.

4. How We Use Your Data

We may use your data to:

  • Process and fulfil orders
  • Manage your customer account
  • Contact you about your order or enquiries
  • Send service messages (e.g., order updates)
  • Improve Website performance
  • Analyse website traffic
  • Prevent fraud and maintain security
  • Comply with legal obligations

We do not use your data for advertising or automated profiling.

5. Legal Basis for Processing

Under UK GDPR, we process personal data using the following lawful bases:

  • Contract: To process your orders and provide services.
  • Legal obligation: For tax, accounting, or regulatory requirements.
  • Legitimate interests: To improve website performance, maintain security, and operate our business.
  • Consent: For analytics cookies (accepted via the cookie banner).

6. Payments

We use PayPal to process payments securely.

  • We do not store or access your card information.
  • Payment details are handled directly by PayPal under their own policies.

7. Data Sharing

We may share data with trusted third parties, such as:

  • Hosting providers
  • Email services
  • Google Analytics
  • PayPal
  • Delivery couriers
  • Professional advisers (if legally required)

We do not sell or trade your data.

8. Retention

We keep your data only as long as necessary to:

  • Fulfil orders
  • Maintain legal records
  • Manage customer accounts
  • Resolve disputes
  • Improve site performance

Usage Data is kept only for essential analytics and security.

9. International Transfers

Some providers (e.g., Google) process data outside the UK.
Where this occurs, safeguards such as Standard Contractual Clauses (SCCs) are used.

10. Your Rights

Under UK GDPR, you have the right to:

  • Access your data
  • Correct inaccurate data
  • Request deletion
  • Object to certain uses
  • Request data portability
  • Withdraw consent (for analytics cookies)

Email us at: kiaralanacosmetics@gmail.com

You may also complain to the ICO:
https://ico.org.uk/

11. Security

We use appropriate technical and organisational measures to protect your data.
However, no method of transmission or storage is 100% secure.

12. External Links

Our Website may contain links to other websites.
We are not responsible for their privacy practices.

13. Policy Updates

We may update this Policy from time to time.
The latest version will always be available on this page.

14. Contact Us

Questions about this Privacy & Cookie Policy?

📧 kiaralanacosmetics@gmail.com