Privacy Policy

Who we are

Our website address is: https://www.kristenhair.com.

Company name: MAD Mentors Ltd. (hereinafter: Service Provider)
Address: Hungary, 2049 Diosd, Kavicsos street 23
Representative/Head of the Webshop: Alex Kamaras (Representative of the company)
European identification number: HUOCCSZ.13-09-194962
Company register number: 13-09-194962
Tax number: 26500218-2-13; EU-VAT number: HU26500218
Contact of the service provider and its regularly used E-mail address established to keep contact with users: support@kristenhair.com
Telephone number: +36-30-307-8498

What personal data we collect and why we collect it

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Shop registration

The following data must be submitted to the Service Provider during registration

Under the menu item “Personal and profile data”

  • Name
  • Email
  • Mobile phone number
  • Under the menu item “Shipping address”
  • City
  • ZIP code
  • Street address
  • Country
  • The gender of the User, which is not a required field.

These data are managed by the Service Provider to identify the User and the orders and to deliver the orders. The email address is required for order confirmation and other communications. In addition, a separate shipping address may be specified. The data are required for shipping and billing as well as communication.

Personal data are deleted from the system by the Service Provider upon request or after five years of user inactivity.

The provision above does not affect compliance with data retention obligations required by law (e.g. on accounting) and additional data management based on registration or other consent provided by the User.

Users may request their personal data to be deleted via email to support@kristenhair.com. Personal data are removed from the system within 5 working days following the receipt of the request.

Newsletter

Users can subscribe to the electronic newsletter generally sent every week under My Data on the Website or via other interfaces provided by the Service Provider on an ad hoc basis.

You can unsubscribe from the newsletters by clicking the link at the end of the newsletter or under My Data of the webshop.

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Analytics

For technical reasons and for the purpose of preparing statistics on user behaviours, during each User visit to the website, the Service Provider records the User’s IP address, the starting and ending times of the visit, the title of the page viewed, and the type of the web browser and the operating system of the User. These data are automatically logged by the system and are not linked to any other data entered during registration or use. Only the Service Provider will have access to the data thereby recorded. Such data are stored by the server for 4×24 hours.

The html code of the services include links from and to external servers independent from the Service Provider. External servers help the independent measurements and auditing of the number of visitors and other web analytics data of the Website (Google Analytics). For more information on the management of web analytics data, please consult the Data Manager at
www.google.com/analytics.

Who we share your data with

Primarily the Service Provider and its internal employees are authorised to view the data. However, they will not disclose such data to any third party.

The Service Provider may employ a data processor (e.g. system operator, accountant).

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

Additional information

How we protect your data

The Service Provider manages all recorded personal data confidentially, in compliance with the data privacy laws and international recommendations as well as the provisions herein. The Service Provider is committed to the protection of the personal data of its partners and users, and especially respects the right of informational self-determination of website users. The Service Provider manages all personal data confidentially and takes all security, technical and organisational measures to guarantee data security.

The Service Provider may amend this data protection bulletin unilaterally by previously notifying website users about such changes. The amended provisions shall become effective for Users upon the first use of the website after the publication of the changes.

Should you have any question about this data protection bulletin, please send us an email to support@kristenhair.com and our colleague will shortly respond.

The Service Provider ensures protection of the security of data management via technical, administrative and organisational means that offers an appropriate level of protection in line with the risks associated with data management.

The IT system and network of the Service Provider is protected against computer fraud, spying, sabotage, vandalism, fire, flood, computer viruses, computer intrusions and denial of service attacks. The Service Provider guarantees security via server and application level protection procedures.

Regardless of the protocol used (email, web, ftp, etc.), electronic messages transmitted over the Internet are vulnerable to network threats that lead to fraudulent activities, challenging the contract as well as disclosing and changing information. The Service Provider shall make all reasonable efforts to provide protection against such threats. The Service Provider monitors the systems to record all security discrepancies and provide evidence in all security events. In addition, system monitoring provides an opportunity to verify the efficiency of the safety measures employed.

By using the Website, the User accepts the provisions of the Data Protection Bulletin and agrees to the management of his personal data as detailed below.