Privacy Policy

LAST UPDATED November 8th, 2021

We at Handmade Love, LLC, d/b/a KYPRIS Beauty, an Arizona Corporation (collectively, the “Company,” “us,” or “we”) respect your privacy, and we are committed to protecting it through our compliance with this policy (this “Privacy Policy”). This Privacy Policy describes the types of information we may collect from or about you, including when you visit the website https://kyprisbeauty.com/ (our “Website”) and how we use, maintain, protect, and disclose that information.

This Privacy Policy applies to information we collect, use, share, and otherwise process in connection with:

your use of this Website and any other sites where this Privacy Policy is posted;
email and other electronic messages between you and the Company.

Together, we refer to these activities as the “Services.”

This Privacy Policy applies only to the information collected in connection with the Services. Please read this Privacy Policy carefully to understand our policies and practices regarding your information. If you do not agree with our policies and practices, your choice is not to use our Services. By accessing our Website and using the Services, you acknowledge this Privacy Policy.

WHAT INFORMATION WE COLLECT

Information We Collect Directly from You

We collect certain information directly from you, including your:

account information, such as your first and last name, mailing address, shipping address, telephone number, and email address when you create an account;
transaction information, such as your billing address and your payment card information, product details, and the date of purchase and return; and
location data, when you use the Services from your mobile device, if you give us permission to do so.

Information that We Collect Automatically

We also collect certain information automatically from you. We use cookies and similar tracking technologies to track the activity on our Service and hold certain information. You can find out more about cookies and how to manage your preferences in our Cookies Policy.

HOW WE USE YOUR INFORMATION

We may use your personal information for various purposes, including:

To provide, maintain, and improve our Services, including to facilitate and improve your online shopping experience.
To deliver the products and services you request, process transactions, and send you related information, including confirmation and receipts.
To notify you about changes to our Services.
To allow you to participate in interactive features of our Services when you choose to do so.
To provide customer support.
To monitor usage of the Services.
To detect, prevent, and address technical issues.
To provide you with news, special offers, and general information about other goods, services, and events that we offer that are similar to those that you have already purchased or inquired based on your preferences.
To help us deliver targeted advertising including to consumers directly and through unaffiliated advertising partners, to measure the effectiveness of advertising on behalf of our advertising partners, and to identify the audience most likely to respond to an advertisement.
To comply with legal and/or regulatory requirements and cooperate with regulators and law enforcement bodies.
To protect our rights, your rights, and the rights of others, and to meet our own high standards of business practice.
To process job applications of users who have applied for positions of employment with us through our Website.

HOW WE SHARE YOUR INFORMATION

We share your personal information that we have collected with the following persons/entities and in the following circumstances:

Third Party Service Providers. We may share personal information with our vendors and service providers who perform services on our behalf. These entities may also collect your personal information on our behalf. These service providers provide services to us, such as payment processing.[1] We also engage third-party analytics providers to help us understand how users engage with the Website. These analytics providers may use cookies and similar technologies to collect information about your use of the Website as well as information about your use of other websites over time. We do not permit these parties to use your information except to provide services to us or otherwise as permitted by law.
Advertising Partners. We may share information with advertising partners to help us deliver targeted advertising, to understand the effectiveness of advertising, and to identify the audience most likely to respond to an advertisement. This information may be further used [in deidentified or aggregated form] by those advertising partners.
Legal Compliance and the Protection of Our Rights. We will share information with regulators, government authorities, and third parties where we believe it is necessary to comply with a court order, subpoena, or regulatory request. We may disclose information when we believe in good faith that such disclosures will support our detection of, prevention of, or response to fraud or intellectual property infringement; help protect your safety or security; or protect the safety and security of the Website, the Services, or any individual.
Transfer of Business Assets. As we continue to develop our business, we might acquire or buy other businesses or assets. In such transactions, customer information generally is one of the transferred business assets. Also, we may transfer any information we have about you as an asset to third parties in connection with the consideration, negotiation, or completion of a merger or sale (including transfers made as part of insolvency or bankruptcy proceedings) involving all or part of our Company, or as part of a corporate reorganization or stock sale or other change in corporate control, for the purposes of such third parties carrying on our business in relation to the continued provision of our services to you as described in this Privacy Policy.

MOBILE MESSAGE SERVICE

The KYPRIS Beauty mobile message service (the "Service") is operated by Handmade Love, LLC, d/b/a KYPRIS Beauty (“ KYPRIS Beauty ” , “we”, or “us”). Your use of the Service constitutes your agreement to these terms and conditions (“Mobile Terms”). We may modify or cancel the Service or any of its features without notice. To the extent permitted by applicable law, we may also modify these Mobile Terms at any time and your continued use of the Service following the effective date of any such changes shall constitute your acceptance of such changes.

By consenting to KYPRIS Beauty’s SMS/text messaging service, you agree to receive recurring SMS/text messages with service-related and promotional messages, including updates, alerts, and information (e.g., order updates, account alerts, etc.) and promotions, specials, and other marketing offers (e.g., cart reminders) from and on behalf of KYPRIS Beauty via text messages through your wireless provider to the mobile number you provided, even if your mobile number is registered on any state or federal Do Not Call list. Text messages may be sent using an automatic telephone dialing system or other technology.

You understand that you do not have to sign up for this program in order to make any purchases, and your consent is not a condition of any purchase with KYPRIS Beauty. Your participation in this program is completely voluntary.

We do not charge for the Service, but you are responsible for all charges and fees associated with text messaging imposed by your wireless provider. Message frequency varies. Standard message and data rates may apply from your wireless provider. Check your mobile plan and contact your wireless provider for details. You are solely responsible for all charges related to SMS/text messages, including charges from your wireless provider.

You may opt-out of the Service at any time. Text the single keyword command STOP to 844-223-7234 or click the unsubscribe link in any text message to cancel, whichever applies in your region. You'll receive a one-time opt-out confirmation text message. No further messages will be sent to your mobile device, unless initiated by you. If you have subscribed to other KYPRIS Beauty mobile message programs and wish to cancel, except where applicable law requires otherwise, you will need to opt out separately from those programs by following the instructions provided in their respective mobile terms. For Service support or assistance, text HELP to 844-223-7234 or email Care@kyprisbeauty.com.

We may change any short code or telephone number we use to operate the Service at any time and will notify you of these changes. You acknowledge that any messages, including any STOP or HELP requests, you send to a short code or telephone number we have changed may not be received and we will not be responsible for honoring requests made in such messages.

The wireless carriers supported by the Service are not liable for delayed or undelivered messages. You agree to provide us with a valid mobile number. If you get a new mobile number, you will need to sign up for the program with your new number.

To the extent permitted by applicable law, you agree that we will not be liable for failed, delayed, or misdirected delivery of any information sent through the Service, any errors in such information, and/or any action you may or may not take in reliance on the information or Service.

We respect your right to privacy. To see how we collect and use your personal information, please see our Privacy Notice.

PAYMENTS

We use third-party services for payment processing (e.g., payment processors). We will not store or collect your payment card details. That information is provided directly to our third-party payment processors whose use of your personal information is governed by their privacy policy. These payment processors adhere to the Payment Card Industry Data Security Standards (PCI-DSS) as managed by the Payment Card Industry Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of payment information.

SECURITY AND DATA RETENTION

We have implemented safeguards to help secure your personal information. Despite these protections, however, we cannot guarantee that your data will never be compromised. You should take measures to protect your personal information. If you have reason to believe that your interaction with us is no longer secure, please immediately notify us in accordance with the “Contacting Us” section below. Please note that it is the responsibility of account holders to ensure that their passwords are sufficiently complex and are kept secure.

We will retain your personal information only for as long as is necessary for the purposes set out in this Privacy Policy.[2] When determining how long to keep your personal information after our relationship with you has ended, we take into account how long we need to retain the information to fulfill the purposes described above and to comply with our legal obligations, resolve disputes, and enforce our legal agreements and policies.

CHOICES AND ACCESS

This section ‘Choices and Access’ does not apply to users in the European Economic Area (“EEA”) or United Kingdom (“UK”) – please click [here] for information on rights and choices in the EEA and UK.[3]

If you do not want to receive marketing-related emails or other types of messages from us on a going-forward basis, you may opt-out by following the instructions in the relevant electronic communication. We will try to comply with your request(s) as soon as reasonably practicable. Please note that if you opt-out of receiving marketing-related emails from us, we may still send you important administrative and Service or transaction-related messages, which you cannot opt-out of.

CHILDREN

The Services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you are under 16, do not use or provide any information on this Website or provide any information about yourself to us through the Services. If we learn we have collected or received personal information from a child under 16 without verification of parental consent, we will delete that information. If you believe we might have any information from or about a child under 16, please contact us.

Important Notice to Non-U.S. Residents

The Website and the Services are operated in the United States. If you are located outside of the United States, please be aware that any information you provide to us will be transferred to the United States.

By accessing the Website and using the Services, and/or providing us with any information, you agree to us processing your data in the United States and you acknowledge that your data is required in order for us to provide the Services and perform our contract with you.[4]

EXTERNAL WEBSITES

Our Website may contain links to other sites or products that we do not own or operate. Also, links to the Website may be featured on third party websites on which we advertise. Except as provided herein, we will not provide any of your personal information to these third parties without your consent. We provide links to third party websites as a convenience to the user. These links are not intended as an endorsement of or referral to the linked websites. We recommend you read carefully the privacy statements, notices and terms of use of any linked websites. We do not have any control over such websites, and therefore we have no responsibility or liability for the manner in which the organizations that operate such linked websites may collect, use, disclose, secure, or otherwise treat your personal information.

UPDATES TO THIS PRIVACY POLICY

We may change this Privacy Policy from time to time. The “LAST UPDATED” legend at the top of this Privacy Policy indicates when this Privacy Policy was last revised. Any changes will become effective when we post the revised Privacy Policy. Use of the Services following these changes, or your continued provision of personal information to us, signifies acceptance of the revised Privacy Policy.

CONTACTING US

To ask questions or comment about this Privacy Policy and our privacy practices, contact us by email or mailing address.

Email:
love@kyprisbeauty.com

Address:
7147 E Rancho Vista Drive
Scottsdale, AZ 85251

PRIVACY POLICY ADDENDUM FOR CALIFORNIA RESIDENTS

Under the California Consumer Privacy Act (“CCPA”), California residents are afforded certain rights about the personal information (as such term is defined under the CCPA) we have collected about them, which we have described in more detail below.

In the past 12 months, we have not monetized any personal information, and we will not monetize such information. However, reflecting on our practices over the past 12 months, we do sell personal information under the terms of the CCPA when information we share with our advertising partners is then used by other companies to help them identify individuals to market their products to.

Additionally, we share your information with our service providers, each of whom we contractually prohibit from using information for any of their independent uses outside of our relationship with you. We may also share aggregate or de-identified information, which cannot reasonably be used to identify you.

In the chart below, we have described the categories of Personal Information that we have collected and shared over the past twelve (12) months, the purposes for such collection and the types of entities with whom we have shared such information.

Categories of Personal Information	Sources of Information	Use of Information	Sharing of Information
Identifiers, including your name, postal address, email address, and telephone number. These data types also include “personal information,” as the term is defined by Cal. Civ. Code 1798.	We collect this information directly from you.	We use this information to: provide, maintain, and improve our Services; deliver products to you; respond to customer inquiries; and personalize your online experience.	We share this information with service providers who help us provide, maintain, and improve our Services; deliver products to you; and personalize your online experience.
Commercial information.	We collect this information directly from you.	We use this information to process your transactions and deliver our products to you.	We share this information with service providers who help us to process your transactions.
Internet or other electronic network activity information, such as IP addresses and cookies.	We collect this information automatically from your computer or device.	We use this information to provide, maintain, and improve our Services and to personalize your online experience.	We share this information with service providers who collect this information on our behalf to help us provide, maintain, and improve our Services and to personalize your online experience.
Geolocation data.	We collect this information from your device when you give us permission to do so.	We use this information to provide features of our Service and to improve and customize our Services.	We work with service providers who collect this information on our behalf to help us provide, maintain, and improve our Services and to personalize your online experience.
Professional and employment related information.	We collect this information directly from you.	We collect such information if you apply for a job via our careers page and use it in connection with processing your application.	Not applicable.
Educational information, such as the information included in your resume.	We collect this information directly from you.	We collect such information if you apply for a job via our careers page and use it in connection with processing your application.	Not applicable.

Rights under the CCPA

If you are a California resident, the processing of certain personal information about you may be subject to the CCPA. Where the CCPA applies, this section provides additional privacy disclosures and informs you of key additional rights as a California resident. We will never discriminate against you for exercising your rights, including providing a different level or quality of services or denying goods or services to you when you exercise your rights under the CCPA.

Right to Know Request

Under the CCPA, California residents have a right to request information about our collection, use, and disclosure of your personal information over the prior twelve (12) months, and ask that we provide you free of charge with the following information:

the categories of personal information about you that we collected;
the categories of sources from which the personal information was collected;
the purpose for collecting personal information about you;
the categories of third parties to whom we disclosed personal information about you and the categories of personal information that was disclosed (if applicable) and the purpose for disclosing the personal information about you; and
the specific pieces of personal information we collected about you.

Right to Delete Request

Under the CCPA, you also have a right to request that we delete personal information, subject to certain exceptions.

How to Exercise Your Rights

If you are a California resident to whom the CCPA applies, you may contact us to exercise your rights at our contact page. Once we receive your request, we will review it, determine whether we can verify your identity, and process the request accordingly. We may need to collect information from you to verify your identity, such as your email address, government issued ID or date of birth. You may make a verifiable consumer request to access your personal information twice per twelve (12) month period. We aim to fulfill all verified requests within 45 days pursuant to the CCPA. If necessary, extensions for an additional 45 days will be accompanied by an explanation for the delay.

You may designate, in writing or through a power of attorney document, an authorized agent to make requests on your behalf to exercise your rights. Before accepting such a request from an agent, we will require that the agent provide proof that you have authorized them to act on your behalf, and we may need you to verify your identity directly with us.

California residents may opt-out of the sale of personal information we have collected about you. When you visit the Website cookies may be placed on your device via your browser to collect information which might relate to you, your preferences, or your device, and they are mostly used to make our Website work as you expect it to and to provide a more personalized web experience. For more information about these technologies, see our Cookie Policy.

KYPRIS uses some cookies and other tracking technologies that disclose information to third parties for analytics and targeted ad purposes in ways that would be deemed a sale under the CCPA. Under the CCPA, you have the right to opt-out of the “sale” of your personal information. To exercise your right to opt-out of the sale of personal information, click here: Do Not Sell My Information [LINK]. This preference center provides on-off toggle switches to control your “Do Not Sell” preferences. This may affect our ability to personalize ads according to your preferences.

Certain browsers may offer a Global Privacy Control that, if turned on, will be treated as a request to opt out of the sale of your personal information.

California Do Not Track

Our Website does not follow the direction of “do not track” or “DNT” settings that are available in some other browsers.

If you are a user located in the EEA or UK, please read this addendum for further information that applies in addition to the main Privacy Policy.

Who We Are

For the purposes of EEA and UK data protection law, we at Handmade Love, LLC, d/b/a KYPRIS Beauty are the data controller of your personal information. You can contact us at love@kyprisbeauty.com or 7147 E Rancho Vista Drive, Scottsdale, AZ 85251, USA.

We value your privacy and your rights as a data subject and have therefore appointed Prighter as our EEA and UK privacy representative and your point of contact.

Prighter gives you an easy way to exercise your privacy-related rights (e.g. requests to access or erase personal data). If you want to contact us via our representative Prighter or make use of your data subject rights, please visit: https://prighter.com/q/14982258938

Legal Basis of Processing

More information about the legal basis of processing in EEA and UK law is set out in the table below:

Categories of Personal Information	Use of Information	Legal Basis of Processing
Account information	We use this information to provide our Services.	Necessary to perform our contract with you to deliver the products or services you request.
Account information	We use this information to improve our Services; respond to customer inquiries and provide customer support; notify you about changes to our Services and other Services-related communications; and personalize your online experience.	Necessary for our legitimate interests to improve our Services and provide support.
Account information	We use this information to provide you with news, special offers, and general information about other goods, services, and events that we offer that are similar to those that you have already purchased or inquired about.	Based on your consent.
Account information	We use this information to help us deliver targeted advertising including to consumers directly and through unaffiliated advertising partners, to measure the effectiveness of advertising on behalf of our advertising partners, and to identify the audience most likely to respond to an advertisement.	Necessary for our legitimate interests to measure the effectiveness of our marketing and develop more effective outreach.
Transaction information	We use this information to process your transactions.	Necessary to perform our contract with you to deliver the products or services you request.
Internet or other electronic network activity information, such as IP addresses and cookies.	We use this information to provide, maintain, and improve our Services; to monitor usage of the Services; to detect, prevent and address technical issues; and to personalize your online experience.	Necessary for our legitimate interests to improve our Services.
Geolocation data.	We use this information to provide features of our Service and to improve and customize our Services.	Based on your consent.

Rights

Users in the EEA and UK have rights in relation to the personal information. Some of these only apply in certain circumstances. We have described these situations below, as well as how you can exercise your rights. To exercise any of your rights, please contact us here.

Access: to enquire about and access personal information held by us and details about how we use it and who we share it with;
Portability: in certain circumstances, you have the right to receive or ask us to provide your personal information to a third party in a structured, commonly used and machine-readable format;
Correction: to correct any personal information held about you that is inaccurate and have incomplete data completed;
Erasure: that we erase your personal information in certain circumstances;
Restriction of Processing to Storage Only: to require us to stop processing the personal information we hold about you other than for storage purposes in certain circumstances.
Objection: in certain circumstances, the right to restrict or object to our processing of your personal information. You also have the right to object to marketing;
Withdrawing Consent: You can withdraw your consent at any time by contacting us here; and
Complaints: if you wish to make a complaint about how we process your information, please contact us here and we will deal with your request as soon as possible. This is without prejudice to your right to launch a claim with your local data protection authority.

[1] Note to Draft: Besides payment processing, do other third parties provide services to you (i.e., marketing support, technical assistance, data hosting, and customer service support)? If so, we will include reference to them here.

[2] Note to Draft: It would be helpful to add specific retention periods to comply with the more onerous obligations under EEA/UK law. However, while the formulation “for as long as is necessary for the purposes” is strongly discouraged by EEA/UK regulators, it is still common market practice so would be low-risk.

[3] Note to Draft: In the EEA/UK, marketing should be either (i) opt-in; or (ii) based on the ‘soft opt-in’ which requires that (a) an individual must have made a purchase or negotiated a purchase for the same or similar goods; (b) the individual must have been given the opportunity to opt-out at the time of data collection (e.g., in the payments flow); and (c) the individual must be given the opportunity to opt out on each communication (e.g., unsubscribe at the bottom of an email). Note that these are more restrictive than a blanked opt out policy.

[4] Note to Draft: In the EEA/UK, there is an absolute prohibition on data transfers unless some requirements are met – two of these requirements are (i) consent; and (ii) contract. In our view, much of the account data and transaction data for order fulfilment can be transferred from the EEA/UK based on contract. However, technical data and some of the account data used for marketing purposes would require consent – which would require a separate pop-up and opt-in before the data is transferred. We have adopted a middle-ground position in this drafting which allows you to run both of these arguments, provided that an opt-in consent is added to the UI flow. If there is not, we’re happy to discuss potential risk around this.

[6] Note to Draft: EEA and UK law each require overseas businesses to appoint a representative in the EEA/UK if they are caught by EEA/UK privacy laws. These representatives effectively act as a mailbox, so EEA/UK regulators can serve proceedings if there is a breach. We have attached a list of potential representatives with this Privacy Policy.

A lady is a woman who never unintentionally offends another.

- Annonymous Southern wisdom

Sometimes it's better to ask for forgiveness than for permission.

- Annonymous

Our strength is often composed of the weaknesses we're damned if we're going to show.

- Mignon Laughlin

Privacy Policy