Date of Last Update: 9th March 2021
For the purposes of applicable data protection laws, the data controller is Estée Lauder Cosmetics Limited, a company registered in England and Wales with company number 659213 and having its registered office at One Fitzroy, 6 Mortimer Street, London W1T 3JJ. Click on one of the links below to jump to the listed section:
- Information We Collect
- Information You Provide
- Information We Collect by Automated Means
- Targeted Advertising
- Information We Share
- Your Rights And Choices
- Data Transfers
- Data Retention
- How We Protect Personal Data
- Links To Other Websites
- How To Contact Us
Information We Collect
Information You Provide
You may provide personal data to us in a number of ways, such as when you participate in an offer or promotion, when you make a purchase on our site or in our stores, via our social media pages or through one of our mobile applications. The types of personal data you provide to us may include:
- Contact information (such as name, postal address, email address and mobile or other phone number)
- Age or date of birth
- Username and password, nickname/screen name
- Payment information (such as your payment card number, expiration date, and card security code)
- Shipping and billing information (such as delivery address, and billing address)
- Purchase history
- Product preferences
- Your skin type / skin condition
- Your hair type
- Your physical characteristics and your skincare concerns
- Contact information for friends, family or other people you would like us to send a message to on your behalf (please ensure that you only submit contact information of individuals with whom you have a personal or family relationship and who have consented to receive messages from you or us)
- Information or content you provide (such as photographs, videos, reviews, articles, questions, survey responses and comments)
- Information provided to us through social media networks or one of our mobile applications when you visit our social media pages or use one of our mobile applications (such as your name, profile picture, likes, location, friend list and other information described on the social media network or application sign-up page, or your geo-location details when using one of our mobile applications)
How We Use the Information
We will use the information you provide to:
- Send you promotional materials or other communications if you so elect
- Provide the products or services you (or your company) have requested and operate features on our site
- Process your payment card transactions and/or gift card transactions
- Create and manage your online account, including access to your online and in-store purchase history
- Create a profile about you based on the information you provided to us in order to tailor our advertisements to your interests, find your appropriate skin or hair care routine and manage the effectiveness of our marketing efforts
- Assist with product selection and replenishment
- Chat with you or respond to your inquiries
- Post your product reviews
- Tailor ads displayed to you on our site and elsewhere to your interests and history with us
- Communicate with you about, and administer your participation in, special events, contests, sweepstakes, loyalty programs, surveys and other offers
- Operate and communicate with you about our social network pages or mobile applications
- Operate, evaluate and improve our business (including developing new products and services; enhancing and improving our services; managing our communications; analyzing our products; performing data analytics and performing accounting, auditing and other internal functions)
- Comply with applicable legal requirements, relevant industry standards and our policies
We also may use the information in other ways for which we provide specific notice at the time of collection. The information collected is necessary for the purposes set forth above. Without this information, you may not be able to take advantage of some of our products or services.
Legal Basis for Our Use of the Information
We will use the information you provide for the above purposes if:
- it is necessary to perform a contract to which you are party (e.g., to process your payment and deliver the products you have ordered); or
- we have obtained your consent; or if
- we have a legitimate interest in doing so (including a legitimate interest in performing marketing activities, research activities, data analytics, internal administration functions, processing and enforcing legal claims and conducting our business in compliance with all applicable laws, relevant industry standards and our policies).
Information We Collect by Automated Means
When you visit this site, view or click on our online advertisements (including our advertisements on third party websites), visit our social media pages or download and use one of our mobile applications (if applicable), we also collect certain information about your usage or device by automated means or by using technologies such as cookies, web server logs or web beacons. For example, if you use one of our mobile applications, we may collect your IP address, your unique device identifier (or other device identifier) and/or geo-location data in order to offer you certain features or functionalities within that mobile application. As set forth in more detail below, we may also collect information about your usage and browsing habits using various web-based technologies.
For your convenience, our mobile applications (if applicable) may also include functionality that allows you to remain logged-in to the application so that you do not have to re-enter a password each time you want to access the application. IF YOU CHOOSE TO REMAIN LOGGED-IN, YOU SHOULD BE AWARE THAT ANYONE WITH ACCESS TO YOUR MOBILE DEVICE WILL BE ABLE TO ACCESS AND MAKE CHANGES TO YOUR MOBILE ACCOUNT AND MAY BE ABLE TO MAKE PURCHASES THROUGH YOUR ACCOUNT. For that reason, if you choose to remain logged-in to the application on your mobile device, we strongly recommend you enable the Passcode Lock security feature on your mobile device to protect against unauthorized access to and use of your mobile device and your account in the application.
Technologies We Use
Cookies are small text files that websites send to your computer or other Internet-connected device to uniquely identify your browser or to store information or settings in your browser.
The following types of cookies are set on this site.
We use first-party cookies to help the site work in the best possible manner. You can opt out of receiving these cookies and disable them by adjusting your browser settings. Please note, however, that without these cookies, your user experience may be impacted.
In conjunction with obtaining information through cookies, our web servers may log details such as your operating system type, browser type, domain, and other system settings, as well as the language your system uses and the country and time zone in which your device is located. The web server logs also may record information such as the address of the web page that linked you to our site and the IP address of the device you use to connect to the Internet.
To control which web servers collect this information, we may place tags on our web pages called “web beacons.” These are computer instructions that link web pages to particular web servers and their cookies.
Third Party Web Analytics Cookies
You may deactivate the ability of these analytics services to analyze your browsing activities on this site. To learn more about web analytics service, and to exercise your choice with respect to their collection of information on this site:
- For Coremetrics, please click here;
- For Adobe Site Catalyst, please click here;
- To disable Google Analytics, please download the browser add-on for the deactivation of Google Analytics provided by Google at http://tools.google.com/dlpage/gaoptout?hl=en. To learn more about privacy and Google Analytics please consult the Google Analytics overview provided by Google at: http://www.google.com/intl/en/analytics/privacyoverview.html;
- We may implement certain Google Analytics Advertising Features (including Remarketing with Google Analytics; Google Display Network Impression Reporting or Google Analytics Demographics and Interest Reporting). You can opt-out of the Google Analytics Advertising Features through Google Ad settings or by visiting https://tools.google.com/dlpage/gaoptout/. We will use the data provided by these features as described under “How We Use the Information We Collect”.
Third Party Targeted Advertising Cookies
This site may also support certain third party services, including social sharing buttons for Facebook, Twitter, Pinterest and Instagram, tweet lists (Twitter) and videos posted on the site (Youtube). These features use third party cookies that are directly set on your device by these services. When you first visit our site, a cookie banner will inform you of the use of these cookies. They will only be used if you accept them or if you continue using this site. You may change your cookie settings at any time to accept or refuse these cookies by clicking on the cookie control tool below.
We may also use third-party platforms, including platforms operated by social networks, such as Google, Facebook and Pinterest, to show you interest-based ads. We may convert your email address, telephone number or other information into a unique value which can be matched by those third parties with a user on their platform or with other data they may have collected from you. This matching allows interest-based ads to be delivered on those platforms. To opt-out of these ads, you must change your preferences by clicking on the cookie control tool above and unselect the “targeting” setting. These platforms may have their own privacy notices or policies, which we strongly suggest you review.
We do not rent lists, sell or otherwise disclose personal data we collect about you, except as described here. We may share your personal data with:
- Service providers who perform services on our behalf based on our instructions. We do not authorize these service providers to use or disclose the information except as necessary to perform services on our behalf or comply with legal requirements. Examples of these service providers include entities that process credit card payments, fulfill orders, and provide web-hosting and marketing services.
- Other third parties with your consent.
In addition, we and our affiliates and other service providers may disclose information about you (i) if we are required to do so by law or legal process, (ii) to law enforcement authorities or other government officials, or (iii) when we believe disclosure is necessary or appropriate to prevent physical harm or financial loss, or in connection with an investigation of suspected or actual fraudulent or illegal activity.
If you so elect, you may provide your mobile phone number in order to receive text message alerts containing product and event information, cosmetics tips or promotions (“Text Messages”). We do not charge a fee for you to receive Text Messages from us, however, your mobile service provider may charge you for sending and/or receiving text messages and air-time, as well as any other standard applicable rates charged by your mobile service provider. If you do elect to receive them and later decide that you would no longer like to receive these Text Messages, see the “Your Rights and Choices” Section below.
Text Messages are distributed via third party mobile network providers and, therefore, we cannot control certain factors relating to message delivery or guarantee availability or performance of this service, including liability for transmission delays or message failures. To receive help with Text Messages, you can call 0808 281 0228 or email email@example.com
Push notifications and in-app alerts and updates
When you download one of our mobile applications (if applicable), we may provide you with the option to opt in to receive push notifications from us on your mobile device in connection with that mobile application. These push notifications may include promotional communications regarding our products and services. You may, after downloading the applicable mobile application, opt out of receiving push notifications by adjusting the settings on your mobile device. Opting out of push notifications will not affect other communications you receive from us, such as email communications. You also may receive alerts and updates within our mobile applications regarding our products and services or your accounts with us. To opt out of receiving these alerts and updates, you may uninstall the applicable mobile application from your mobile device.
Your Rights and Choices
You have certain rights and choices in connection with the personal data we collect from you. To update your preferences, ask us to remove your information from our mailing lists or submit a request, please contact us as specified below.
- Email Opt-Out
You can at any time tell us not to send you marketing communications by email by clicking on the unsubscribe link within the marketing emails you receive from us or by contacting us as indicated below. You also may opt out of receiving marketing emails from us by clicking here or by submitting a request through our Privacy Request Portal.
- Postal Mail Opt-Out
You can ask us to stop sending you marketing communications by postal mail by following the instructions included in a particular promotion. You can also request that we refrain from sending you promotional postal mail by submitting a request through our Privacy Request Portal.
- Text Message Opt-Out
In general, in order to stop receiving text messages, you can text STOP to the five digit short code for the text messaging program from which you no longer wish to receive message (i.e., the five digit number from which the text messages are being sent). You will then receive confirmation of your opt-out of that text messaging program.
You can ask us to stop sending marketing text messages to a particular phone by using that phone to text the word STOP to 60006. You also can request that we refrain from sending you text messagesor by submitting a request through our Privacy Request Portal.
You can also choose not to receive text messages by emailing firstname.lastname@example.org and specifying that you no longer want to receive text messages.
When you use one of our mobile applications, we may ask you for your geo-location. You may choose not to share your geo-location details by adjusting your mobile device’s location services settings. To decline from sharing your geo-location details, follow the instructions on your mobile device on changing the relevant settings; otherwise, please contact your service provider or device manufacturer.
- Withdrawing Consent
You may also withdraw any consent you previously provided to us at any time with effect for the future or by submitting a request through our Privacy Request Portal. This will not affect the lawfulness of our use of your information based on your consent before its withdrawal.
- Reviewing, Updating or Deleting Personal Data or Restricting or Objecting to their Use
Subject to applicable law, you have the right to request access to and rectification or erasure of the personal data we maintain about you, or to request the restriction of our use of this information, as appropriate. You also have the right to object at any time to the use of your personal data for direct marketing purposes, including profiling related to direct marketing. For all other purposes, you may object at any time to the use of your personal data, on grounds relating to your particular situation, in accordance with applicable law. These rights may be limited in some circumstances under applicable law. We may take reasonable steps to verify your identity before granting access or making corrections. You may exercise these rights or by submitting a request through our Privacy Request Portal.
- Other Rights
Subject to applicable law, you have the right to receive, in a structured, commonly used and machine-readable format, the personal data that you have provided to us about you, with your consent or based on a contract to which you are party. You also have the right to have this information transmitted to another data controller, where it is technically feasible. You may exercise this right or by submitting a request through our Privacy Request Portal. You may also lodge a complaint with a data protection authority.
We keep the information you provide for the duration of our relationships, plus a reasonable period in order to be able to run regular deletion routines or to take into account the applicable statute of limitation period or if required under mandatory applicable law. If you wish to receive marketing communications, we will keep the information necessary to send you these communications following the end of our customer relationship or following their collection, if you are a prospective customer. For additional information about data retention policies, please submit a request through our Privacy Request Portal
How We Protect Personal Data
We maintain appropriate technical and organizational safeguards to ensure an appropriate level of security of your personal data, in particular to protect your personal data against accidental unlawful or unauthorized destruction, loss, alteration, access, disclosure or use. However, no security system is perfect and we cannot promise that information about you will remain secure in all circumstances, including the security of your data during transmission to us or the security of data on your mobile device.
Links To Other Websites
Our website may provide links to other websites for your convenience and information. These websites may operate independently from us. Linked sites may have their own privacy notices or policies, which we strongly suggest you review if you visit any linked websites. To the extent any linked websites you visit are not owned or controlled by us, we are not responsible for the sites’ content, any use of the sites, or the privacy practices of the sites.
How To Contact Us