Help and Information
This is a Paragraph. Click on "Edit Text" or double click on the text box to start editing the content and make sure to add any relevant details or information that you want to share with your visitors.
Need help with your order or want more information? Please contact us in the chat box below.
How can I track my order?
Once you receive an email to confirm your order is on its way, a tracking link will be provided.
Delivery & Returns
Delivery to the UK
STANDARD - Receive your order in 2-4 working days.
INTERNATIONAL - Receive your order in 7-10 working days.
Can I change my delivery address?
Please contact Customer Services with your order number and correct address ready.
What courier do we use?
We use either Royal Mail or DHL for Standard and International deliveries.
Terms and Conditions
1.1. In these Terms, the following words shall have the following meanings:
Appropriate Safeguards: means such legally enforceable mechanism(s) for transfers of personal data as may be permitted under Data Protection Laws from time to time;
Content: any information, data and/or material uploaded into the Facility by you, your employees and/or representatives, or by us on your behalf, including (without limitation) any text;
Data Protection Laws: means as applicable and binding on you, us and/or the Facility:
(a) in the United Kingdom:
(i) the Data Protection Act 2018
(b) in member states of the European Union: the Data Protection Directive or the GDPR, once applicable, and all relevant member state laws or regulations giving effect to or corresponding with any of them; and
(c) any applicable laws replacing, amending, extending, re-enacting or consolidating any of the above Data Protection Laws from time to time;
Data Protection Losses: means all liabilities, including all:
(a) costs (including legal costs), claims, demands, actions, settlements, interest, charges, procedures, expenses, losses and damages (including relating to material or non-material damage); and
(b) to the extent permitted by an applicable law:
(i) administrative fines, penalties, sanctions, liabilities or other remedies imposed by a Supervisory Authority;
(ii) compensation which is ordered by a Supervisory Authority to be paid to a data subject; and
(iii) the costs of compliance with investigations by a Supervisory Authority;
Data Subject Request: means a request made by a data subject to exercise any rights of data subjects under Data Protection Laws;
Facility: the online facility operating under the name “The Beaute Code” or such other name as we may determine from time to time;
GDPR: means the General Data Protection Regulation (EU) 2016/679;
IPR: all copyright and related rights, rights in computer software, design rights, trade marks, database rights, patents, trade secrets, know-how, rights in confidential information and all other intellectual property rights, in each case whether registered or unregistered and including all applications (or rights to apply) for and renewals and extensions of, such rights and all similar or equivalent rights or forms of protection which subsist or will subsist now or in the future in any part of the world;
Licence Fee: means the monthly or annual licence fee payable by you for your access to and use of the Facility, as detailed on our website
Personal Data Breach: means any breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, any personal data for which you are the data controller;
Party: you and us;
Supervisory Authority: means any local, national or multinational agency, department, official, parliament, public or statutory person or any government or professional body, regulatory or supervisory authority, board or other body responsible for administering Data Protection Laws;
Term: means the period from (and including) the date you accept these Terms until your licence to access and use the Facility is terminated in accordance with these Terms;
Terms: these terms and conditions;
us, we, our: Intelligent Payments Limited and
your, you: the organisation or person requiring access to the facility.
1.2 All references in these Terms to the singular shall mean the plural and vice versa, all references to persons shall include companies, partnerships and other organisations (including without limit any government departments or non-departmental government bodies) and all references to the masculine shall include the feminine and neuter and vice versa.
1.3 All references in these Terms to "processing", "personal data", "data controller", data processor", and "data subject" shall have the meaning given to them in the applicable Data Protection Legislation.
2. OUR OBLIGATIONS
2.1 We agree to provide to you the non-exclusive, non-transferable right for you to access and use (for your own internal business purposes only) the Facility for the Term subject to these Terms.
2.2 We will provide you with login details to enable you to connect to the Facility
2.3 We will use our best endeavours to provide the Facility without major interruption and materially error free and ensure the facility is available with 99% uptime
2.4 Notwithstanding clause 2.3, we reserve the right at anytime to suspend your access and/or use of the Facility for the purpose of enabling us to carry out essential emergency and urgent maintenance. You will be notified of normal maintenance in advance. Normal maintenance is performed outside of core working hours.
2.5 We confirm that the Facility (including any Content) is hosted in the United Kingdom.
3. YOUR OBLIGATIONS
3.1 You agree that you will:
a. comply with any reasonable instructions or directions issued by us from time to time in respect of the Facility;
b. conform to such protocols and standards as are issued by us from time to time in respect of the access and/or use of the Facility;
c. fully indemnify us against any and all claims, costs and expenses which we may incur resulting from your acts or omissions in respect of the Facility and your use of it and/or your breach of any of your obligations under these Terms; and
d. when using the Facility comply with all applicable laws and legislation (including but not limited to matters arising under the Data Protection Laws and the Regulation of Investigatory Powers Act 2000).
3.2 In addition you acknowledge and accept that you are solely responsible for the:
a. accuracy of all Content uploaded onto the Facility;
b. establishment, maintenance and monitoring of adequate internal security measures in connection with the accessing and use of the Facility by you including without limit ensuring the confidentiality and safe storage of all login details, user names and passwords and not using obvious passwords and updating them regularly and you will immediately notify us if you suspect a breach of your internal security measures (e.g. the unauthorised use of any login details, user name and/or password);
c. ensuring that all Content (including without limit any description, date or information relating to the Content) uploaded by you or by us on your behalf is accurate and up to date; and
d. ensuring that any security level set for any Content (whether by us or you) is correct;
3.3 You agree that you will not (and you will ensure that your employees and representatives do not):
a. access and/or use the Facility for any unlawful purpose or in contravention of any English or other law. This includes but is not limited to:
i. any act or omission which will or is likely to infringe the IPR of a third party;
ii. attempt to gain unauthorised access to the Facility the use of the Facility in any way that will or is likely to violate or infringe the rights of any person in the United Kingdom or elsewhere;
3.4 You acknowledge and agree that:
a. your right for you to use (for your own internal business purposes only) the Facility is personal to you and may not be assigned, sub-licensed, sold, resold, transferred, distributed or otherwise disposed of or commercially exploited in any way, including by way of charge, lien or other encumbrance;
b. the IPR comprised in or relating to the Facility belongs to us and these Terms do not give you any rights in or related to the Facility except as expressly provided in these Terms. We will indemnify you against all loss, liability or reasonable expense arising out of any claim brought by a third party that the Facility infringes intellectual property rights owned or controlled by the third party.
c. we have the right to connect to your Content for the purposes of providing the Facility to you (including for maintenance and technical purposes) and for checking that you are complying with these Terms;
d. we owe no obligation to you or anyone else to monitor, check or review the legality, validity or accuracy of any Content;
e. you will pay any Licence Fee and other such charges for your use of the Facility in accordance with these Terms;
f. the use of the Facility is entirely at your own risk
4. WARRANTIES AND LIABILITY
4.1. Subject always to our obligations to meet our Service Level Agreement. we do not warrant the:
a. Facility against failure of performance; or
b. Validity; legality or accuracy of any Content placed on the Facility by you, your employees and/or representatives, or by us on your behalf
4.2. In no event shall we be liable for operational difficulties caused by or arising from the integration of the Facility with any third party equipment or software not supplied or approved by us or by any modifications, variations or additions made to the Facility not undertaken by us, or caused by any abuse, corruption or incorrect use of the Facility, including, without limitation, use of the Facility with hardware and/or software which is incompatible with the Facility.
4.3. We do not represent nor do we give any warranty, guarantee or undertaking of any kind that the Facility is free from all bugs, errors or mistakes, or that it will meet your requirements and it your responsibility to ensure that the Facility will meet your requirements.
4.4. These Terms are in lieu of all warranties, conditions, terms, undertakings, representations and obligations (including, but no limited to, any implied warranty as to satisfactory quality or fitness for a particular purpose) express or implied by statute, common law, trade usage, course of dealing or otherwise, all of which are hereby excluded to the fullest extent permitted by law.
4.5. Notwithstanding any other clause of these Terms, neither Party excludes or reduces its liability under or in connection with these Terms to the extent that it arises in respect of any of the following matters:
a. for death or personal injury resulting from negligence proved against either Party;
b. for fraud or fraudulent misrepresentation; nor
c. for any other matter for which it would be unlawful for either Party to exclude or limit or attempt to exclude or limit its liability.
4.6. Subject to sub-clause 4.5, neither Party shall have any liability to the other Party (howsoever arising, including any liability in tort) under or in connection with these Terms or their subject matter for any:
a. loss of profits, the loss of the use of money or anticipated savings;
b. loss of revenue;
c. business interruption; loss of or damage to reputation or goodwill;
d. loss of opportunity or contracts;
e. wasted management or other staff time;
f. losses or liabilities under or in relation to any other contract; or
g. loss of, damage to or corruption of data or information, in each case whether direct, indirect, special and/or consequential loss or damage; or
h. for any other indirect, special and/or consequential loss or damage of any kind.
4.7. Subject to sub-clause 4.4, both parties maximum aggregate liability in contract, tort (including for negligence), misrepresentation and/or otherwise howsoever arising under or in connection with these Terms and their subject matter (including all losses, liabilities, claims, actions, demands, proceedings, damages, costs, charges and expenses in respect thereof or in relation thereto) shall be limited to the total funds paid by you to us in the preceding 12 months in respect of your use of the Facility.
4.8. You agree that you have read and understood this clause 4.
4.9. In case of any conflict between this clause 4 and any other clause of these Terms, the provisions of this clause 4 shall prevail. For the avoidance of any doubt, this clause 4 shall remain in full force and effect notwithstanding the termination, repudiation or expiry of these Terms.
5.1. You may terminate your licence to access and use the Facility at anytime on giving at least one (1) month’s notice in writing or email to us.
5.2. We shall be entitled (at our discretion) to suspend or terminate your access to and your right to use the Facility at anytime if you commit a material breach of these Terms.
5.3. On request we will provide you with a copy of any content provided by you and stored on the Facility. There will be no charge for this. In any event the data will be deleted/destroyed or rendered unreadable 60 days after termination.
5.4. Termination, repudiation or expiry of these Terms will be without prejudice to any accrued rights of either party and will not affect obligations which are expressed not to be affected by repudiation, expiry or termination of these Terms.
5.5. On termination for any reason:
a. all rights granted to you under these Terms shall cease;
b. you shall cease all activities authorised by these Terms;
c. you shall immediately pay to us any sums due to us under these Terms
6.1. You accept that we may, in accordance with legal requirements, have to disclose information to third parties, for example governmental organisations (including the police), in respect of and/or in connection with your access and/or use of the Facility. Subject to any legal prohibitions to the contrary we will notify you of such disclosure as soon as reasonably possible.
6.2. Each of us shall, while we are accessing and providing access to the Facility respectively under these Terms and thereafter, keep secret and confidential all business, technical or commercial information disclosed to one of us by the other or otherwise which belongs to the other its sub-contractors, carriers, telecommunication providers or clients (and shall procure that its agents and/or employees are similarly bound) and shall not disclose the same to any person save to the extent necessary to perform its obligations and/or exercise its rights in accordance with these Terms or save as expressly authorised in writing to be disclosed by the other.
6.3. The obligation of confidentiality contained in sub-clause 6.2 shall not apply or (as the case may be) shall cease to apply to business, technical or commercial information which:
a. at the time of its disclosure by the disclosing Party is already in the public domain or which subsequently enters the public domain other than by the breach of these Terms;
b. is required to be disclosed under applicable law or order of a court of competent jurisdiction or government department or agency or by the London Stock Exchange, provided that prior to such disclosure the receiving Party shall, to the extent that is legally permitted to do so, advise to the disclosing Party of the proposed form of disclosure; or
c. at the time of its disclosure by the disclosing Party is already known by the receiving Party and the later is not subject to any existing duty of confidence in respect of the information in question.
7. DATA PROTECTION
7.1. We warrant that we have in place appropriate technical and organisational measures against accidental or unlawful destruction or accidental loss, alteration, unauthorised disclosure of or access to any Content that contains personal data (as that term is interpreted in accordance with the Data Protection Laws) (“Individual Information”) and adequate security measures to ensure that unauthorised persons will not have access to the Individual Information and that any persons we authorise to have access to (including but not limited to our employees) will respect and maintain the confidentiality and security of the Individual Information and shall ensure that such persons authorised by us to process personal data are subject to a binding written contractual obligation with us to keep the personal data confidential (except where disclosure is required in accordance with an applicable law).
7.2. We warrant that all security measures referred to in sub-clause 7.1 above will reflect the level of damage that might be suffered by, and any harm which might result to, the persons who are the subjects of the Individual Information as a result of unauthorised access or disclosure.
7.3. Taking into account the nature of the processing, we shall implement and maintain technical and organisational measures to assist you insofar as is possible in the fulfilment of your obligations to respond to Data Subject Requests relating to personal data processed by us for which you are the data controller.
7.4. We shall ensure that all processing of Individual Information that is carried out by us shall at all times be carried out in accordance with the Data Protection Laws and that we will otherwise conduct ourselves in accordance with the Data Protection Laws and for the purposes of this clause “processing” shall be interpreted in accordance with the Data Protection Laws.
7.5. The types of personal data to be processed under this Agreement shall be the types of data provided by you to us and the nature and purpose of this processing is HR automation.
7.6. The categories of data subject to whom the personal data relates are your employees.
In respect of any Personal Data Breach involving the personal data which we process as a data processor on your behalf we shall, without undue delay:
a. notify you of the Personal Data Breach; and
b. provide you with details of the Personal Data Breach.
7.8. We shall assist you in ensuring compliance with your obligations pursuant to Articles 32 to 36 of the GDPR (and any similar obligations under applicable Data Protection Laws) taking into account the nature of the processing and the information available to us.
7.9. You shall comply with the Data Protection Laws in connection with:
a. the processing of personal data;
b. the Facility; and
c. the exercise and performance of your rights and obligations under these Terms, including maintaining all relevant regulatory registrations and notifications as required under the Data Protection Laws.
7.10. You warrant, represent and undertake, that:
a. all data sourced by you for use in connection with the Facility shall comply in all respects, including in terms of its collection, storage and processing (which shall include you providing all of the required fair processing information to, and obtaining all necessary consents from, data subjects), with Data Protection Laws;
b. all instructions given by you to us in respect of personal data shall at all times be in accordance with the Data Protection Laws.
7.11. Insofar as we process personal data on your behalf we:
a. unless required to do otherwise by an applicable law, shall (and shall take steps to ensure each person acting under our authority shall) process the personal data only on and in accordance with your documented instructions as set out in these Terms, as updated in writing from time to time (Processing Instructions);
b. if an applicable law requires us to process personal data other than in accordance with the Processing Instructions, we shall notify you of any such requirement before processing the processed data unless an applicable law prohibits such information on important grounds of public interest); and
c. shall inform you if we become aware of a Processing Instruction that, in our opinion, infringes Data Protection Laws, provided that: to the maximum extent permitted by mandatory law, we shall have no liability howsoever arising (whether in contract, tort (including negligence) or otherwise) for any losses, costs, expenses or liabilities (including any Data Protection Losses) arising from or in connection with any processing in accordance with your Processing Instructions following your receipt of that information.
7.12.We do not transfer data to any third parties, however third parties may process personal data on our behalf when we engage them to provide certain services, as further described in clause 7.13
7.13.You consent to us appointing the following sub-processors under this Agreement: Amazon Web Services a managed cloud hosting provider (to host our infrastructure), Mailchimp a cloud based email service (to send emails sent through our Facility), and Google Inc, a cloud platform (to power our mobile application). We shall not appoint any additional sub-processor without first obtaining your prior written consent, such consent not to be unreasonably withheld or delayed. We confirm that we have entered or (as the case may be) will enter with the sub-processor into a written agreement incorporating terms which are substantially similar to those set out in this clause 7. We shall remain fully liable to you under this Agreement for all the acts and omissions of each sub-processor as if they are our own.
7.14. We shall not process and/or transfer, or otherwise directly or indirectly disclose, any Individual Information in or to countries outside the European Economic Area ("EEA") or to any international organisation.
7.15. We shall maintain complete and accurate records and information to demonstrate our compliance with this clause 7 and allow for audits by you or your designated auditors.
7.16. On termination of this Agreement we shall without delay, at your written request, securely delete and/or securely return all the personal data unless required by applicable law to store the Personal Data.
7.17. Each party shall indemnify and keep indemnified the other party in respect of all Data Protection Losses suffered or incurred by, awarded against or agreed to be paid by, the indemnified party arising from or in connection with any non-compliance by the indemnifying party with:
a. the Data Protection Laws; or
b. these Terms
8.1. In return for us agreeing to provide to you the non-exclusive, non-transferable right for you to access and use (for your own internal business purposes only) the Facility subject to these Terms, you agree to pay us the Licence/membership Fee.
8.2. The Licence Fee as set out in the order schedule must be paid immediately and is due on the date of the invoice.
8.3. Cancellation fees for training days booked will apply as follows; 14 days written notice no charge, less than 14 days written notice a 50% charge of the training day is to be paid and less than 7 days written notice 100% of the cost of the training day is to be paid. Save that where expenses have been incurred which are non-refundable such as but not limited to travel, accommodation and care hire ,the full cost of this will be payable on any cancellation at anytime.
8.4. The termination, repudiation or expiry of these Terms shall not affect your obligation to pay Licence Fees to us in respect of any right of access to the Facility which was granted to you prior to the date of termination, repudiation or expiry of these Terms. All training days purchased and taken must be paid for on termination. No refunds will be paid on a pro-rata basis for the use of the Facility.
9. FORCE MAJEURE
9.1. We will not be liable or responsible for any failure to perform, or delay in performance of, any of our obligations under these Terms that are caused by events outside our reasonable control (Force Majeure Event).
9.2. A Force Majeure Event includes in particular (but without limitation) the following:
a. Strikes, lock-outs or other industrial action;
b. Civil commotion, riot, invasion, terrorist attack or threat of terrorist attack, war (whether declared or not) or threat or preparation for war;
c. Fire, explosion, storm, flood, earthquake, subsidence, epidemic or other natural disaster or Act of God;
d. Impossibility of the use of railways, shipping, aircraft, motor transport or other means of public or private transport;
e. Impossibility of the use of public or private telecommunications networks;
f. The acts, decrees, legislation, regulations or restrictions of any government; and
g. The non-delivery or late delivery of products or services to us by third parties.
9.3. Our performance under these Terms is deemed to be suspended for the period that the Force Majeure Event continues and we will have an extension of time for performance for the duration of that period.
10.1. All notices given by you to us must be given in writing to Intelligent Payments Ltd 376 Romford Rd, Forest Gate, London E7 8BS or by email to firstname.lastname@example.org. We may give notice to you at either the e-mail or postal address provided to us when placing an order. Notice will be deemed received and properly served 24 hours after an e-mail is sent, or three days after the date of posting any letter. In proving the service of any notice, it will be sufficient to prove, in the case of a letter, that such letter was properly addressed, stamped and placed in the post and, in the case of an e-mail, that such e-mail was sent to the specified e-mail address of the addressee.
11.1. We may sub-licence, transfer, assign, sub-contract, charge or otherwise dispose of any of our rights or obligations under these Terms, provided we give you written notice of the same.
11.2. You may not sub-licence, transfer, assign, sub-contract, charge or otherwise dispose of any of your rights or obligations under these Terms without our prior written consent (which will not be unreasonably withheld).
12.1. If we fail at any time to insist upon strict performance of any of your obligations under any of these Terms, or if we fail to exercise any of the rights or remedies to which we are entitled under them, this shall not constitute a waiver of such rights or remedies and shall not relieve you from compliance with such obligations. A waiver by us of any default shall not constitute a waiver of any subsequent default. No waiver by us of any of these Terms shall be effective unless it is expressly stated to be a waiver and is communicated to you in writing in accordance with these Terms.
13.1. If any of these Terms are determined by any competent authority to be invalid, unlawful or unenforceable to any extent, such term or condition will to that extent be severed from the remaining Terms which will continue to be valid to the fullest extent permitted by law.
14. ENTIRE AGREEMENT
14.1. These Terms contain and constitute the entire understanding and agreement between us in connection with and about the subject matter of these Terms and supersede all earlier and other agreements and understandings between us and all earlier representations by either of us about such subject matter. Any prior representations, warranties, statements and assurances which are not expressly set out in these Terms will not be of any effect. Each Party warrants that there is no representation, warranty, promise, term, condition, obligation or statement upon which they have relied in entering into these Terms and which is not expressly set out in these Terms and no such representation, warranty, promise, obligation, statement or any other term or condition is to be implied in them whether by virtue of any usage or course of dealing or otherwise (including, subject to clause 4, by statute or common law) except as expressly set out in these Terms. If a Party has given any representation, warranty, promise or statement then (except to the extent that it has been set out in these Terms) the Party to whom it is given waives any rights or remedies which it may have in respect of it. This clause shall not exclude the liability of a Party for fraud or fraudulent misrepresentation or concealment or any resulting right to rescind these Terms.
15.1. These Terms may not be amended, modified, varied or supplemented except in writing signed by or on behalf of both Parties.
16. THIRD PARTY RIGHTS
16.1. Nothing in these Terms is intended to confer a benefit on, or to be enforceable by, any person who is not a Party to these Terms. These Terms do not create any right enforceable by any person who is not a Party to them under the Contracts (Rights of Third Parties) Act 1999.
17. GOVERNING LAW AND JURISDICTION
17.1. These Terms shall be governed in all respects by and be construed in accordance with English law (including all non-contractual disputes or claims arising out of the subject matter of these Terms). Any claim or dispute arising from or related to these Terms (including their enforcement or their termination) shall be subject to the non-exclusive jurisdiction of the courts of England and Wales and the Parties hereby irrevocably submit to the jurisdiction of these courts.
The Beaute Code & the General Data Protection Regulation (GDPR)
General Data Protection Regulation (GDPR)
On 25 May 2018, European data protection legislation was updated for the first time in 20 years. The EU General Data Protection Regulation (GDPR) replaces the 1995 EU Data Protection Directive. The GDPR strengthens the rights that individuals have regarding personal data relating to them and seeks to harmonise data protection laws across Europe, regardless of where that data is processed.
The Beaute Code is committed to GDPR compliance. We are also committed to helping our customers comply with the GDPR by providing stringent privacy and security protections that are built into our service and contracts.
What you can do
What are your responsibilities as a customer?
The Beaute Code customers will typically act as the data controller for any personal data they provide to The Beaute Code in connection with their use of our services. The data controller determines the purposes and means of processing personal data, while the data processor processes data on behalf of the data controller. The Beaute Code is a data processor and processes personal data on behalf of the data controller when they use the The Beaute Code facility.
Data controllers are responsible for implementing appropriate technical and organisational measures to ensure and demonstrate that any data processing is performed in compliance with the GDPR. Controllers’ obligations relate to principles such as lawfulness, fairness and transparency, purpose limitation, data minimisation, and accuracy, as well as fulfilling data subjects’ rights with respect to their data.
If you are a data controller, you may find guidance related to your responsibilities under GDPR by regularly checking the website of your national or lead data protection authority.
You should also seek independent legal advice relating to your status and obligations under the GDPR, as only a lawyer can provide you with legal advice specifically tailored to your situation. Please bear in mind that nothing on this website is intended to provide you with, or should be used as a substitute for, legal advice.
Where should you start?
Here are some considerations to help you work towards GDPR compliance:
● Firstly, familiarise yourself with the provisions of the GDPR, especially the differences from previous data protection obligations.
● Ensure you have an up to date inventory of personal data that you handle. You can use The Beaute Code to help identify and classify data.
● Review your controls, policies, and processes to assess whether they meet the requirements of the GDPR. If not, plan to address any areas that need amending as a matter of urgency.
● Consider how you can leverage the data protection features within The Beaute Code as part of your own regulatory compliance framework. Review The Beaute Code third-party audit and certification materials to see how they may help with this exercise.
● Monitor updated regulatory guidance as it becomes available.
● Consult a lawyer to obtain legal advice specifically applicable to your business circumstances.
What we’re doing
The Beaute Code’s commitment to GDPR
Alongside other duties, data controllers are required to only use data processors that provide adequate guarantees to implement appropriate technical and organisational measures so that data processing will meet the requirements of the GDPR. Here are some aspects you may want to consider when conducting your assessment of The Beaute Code:
The Beaute Code employs and works with security and privacy professionals to maintain our systems, develop security review processes, build security infrastructure, and implement The Beaute Code's security policies.
Our teams engage with customers, industry stakeholders, and supervisory authorities to shape the The Beaute Code services in a manner that helps customers meet their compliance needs.
Our terms have been updated to reflect GDPR and are available on terms page on this website.
We have verified that our application, The Beaute Code, has all of the necessary functionality for compliance with the GDPR. The method we use for deletion and retention of data is acceptable for use under the GDPR.
We promise to maintain a high level of security, and will ensure timely breach reporting to meet all GDPR expectations. To reflect this, we have signed up to AWS managed security: https://aws.amazon.com/products/security/?nc=sn&loc=2 This is the gold standard for security management. This service introduces automated analysis of the log files, forensic analysis of breach detection and timely notification and then recovery. We've purchased this on behalf of all of our customers. It's active as of now and we will be contractually assuring our customers of the use of it. It's incumbent upon data controllers to ensure the data processors have the right infrastructure in place to process your data. By purchasing this service, we can assure you we have the technical infrastructure in place which goes above and beyond regulation requirements.
PROCESSING ACCORDING TO INSTRUCTIONS
Any data that a customer and its users put into our systems will only be processed in accordance with the customer’s instructions, as described in our previous, as well as our current GDPR-updated data processing agreements.
All of The Beaute Code’s employees are required to sign a confidentiality agreement and complete mandatory confidentiality and privacy training, as well as our Code of Conduct training. The Beaute Code’s Code of Conduct outlines expected behaviour with respect to the protection of information.
USE OF SUBPROCESSORS
The Beaute Code always adheres to the requirements of the GDPR legislation to identify sub-processors.
DATA RETURN & DELETION
Administrators can delete employee data, via the functionality of the The Beaute Code’s services, at any time during the term of the agreement. We have included data export commitments in our data processing terms since we began trading, and we continue these commitments post-GDPR. We are always working to enhance the robustness of the data export capabilities of The Beaute Code’s services.
The Beaute Code store data backups for two weeks before the backups are replaced fully and any old data is removed.
How The Beaute Code assists data controllers
Data Subject's Rights
The Beaute Code can provide an export of customer data, at any time during the term of the agreement. We have included data export commitments in our data processing terms for several years, and we continue these commitments post-GDPR
Data Protection Officer
The The Beaute Code Data Protection Officer is Rikin Valambia, any questions can be directed to him regarding data protection concerns.
The Beaute Code provides contractual commitments around incident notification. We will inform you of incidents involving your customer data, in line with the data incident terms in our previous, and GDPR-updated, agreements.
Our customers and regulators expect independent verification of security, privacy, and compliance controls. The The Beaute Code platform and service undergo several independent third-party audits on a regular basis to provide this assurance.
Pop up on page:
Last Updated: 1st September 2020
This website is not intended for children and we do not knowingly collect data relating to children.
For the purpose of the Data Protection Act 2018 and any national implementing laws, regulations and secondary legislation, as amended or updated from time to time, in the UK, we are the data controller.
PERSONAL INFORMATION WE MAY OBTAIN FROM YOU
We may collect and obtain and use the following Personal Information about you:
● Information you supply to us directly - this includes the information that you provide when filling in forms on our site, registering to use our services, or corresponding with us through our site or by phone, email or otherwise. Information we collect about you - this includes information provided through your visits to our site, which includes location and traffic data, weblogs, resources you access and other communication data.
● Information received from other sources - this includes information we receive about you from third parties including business partners, sub-contractors, advertising networks and search information providers. We will notify you when we receive information about you from them and the purposes for which we intend to use that information.
We may obtain information about your computer, which includes your IP address, browser type and operating system where available. This accumulation of data is used to assist system administration, and to supply information to our advertisers. To the extent that any of this information constitutes Personal Information for the purposes of the data Protection Laws, it will be processed by us in accordance with our responsibilities under the Data Protection Laws.
We may also collect information regarding your browsing activity and interests through use of a cookie file. This cookie file is stored on the hard drive of your computer and contains information that is transferred to your computer's hard drive. We use the collection of this Personal Information to help us improve the experience of users on our site and to deliver a more personalised service with more relevant content. The collection of this Personal Information allows us to:
● Store Personal Information indicative of your preferences, allowing us to adjust our site to appeal to your individual interests
● Estimate the size and usage patterns of our audience
● Record the Personal Information of any transactions carried out by you through our site
● Identify you upon your return to our site
● Increase the speed of your searches
Our advertisers may also issue cookies, however we have no control over the cookies they issue.
WHERE WE STORE PERSONAL INFORMATION ABOUT YOU
The information we obtain from you will be stored at a destination within the European Economic Area ("EEA"). Staff members operating within the EEA who work for or on behalf of us may process this information. Such staff members may, among other things, be involved in the processing of payment Personal Information, the provision of support services and the delivery of your request(s) for us to provide services.
We store the Personal Information you provide us with on our secure servers. In the event of us giving you (or you choosing) a password which grants you access to specific areas within our site, it remains your responsibility to maintain the confidentiality of this password. This includes the responsibility to refrain from sharing your password with other parties.
Because the transmission of Personal Information via the internet cannot be assumed completely secure, we cannot guarantee the security of any of your Personal Information transmitted to our site; you are therefore responsible for any risk associated with such transmission. We will however at all times take all reasonable steps to ensure the transmission of your Personal Information is executed as securely as possible, and upon receipt of your Personal Information we will continue at all times to enforce strict security procedures and features in an attempt to prevent any unauthorised access.
We collect Personal Information and other information about you to allow us to provide the service and to improve our service. We may share any information we collect with our third-party service providers to our service providers for the same purposes. We use your Personal Information to form a view on what we think you may want or need, or what may be of interest to you. This is how we decide which products, services and offers may be relevant for you (we call this marketing).
HOW WE USE YOUR INFORMATION
The information we hold about you may be used in any of the following ways:
● To provide and to improve our services to you
● To send you further information about our services for which we think you may have an interest
● To send you further information about our services based on a request we have received from you
● To fulfil our obligations to you
● To provide you with notification about any changes to our services relevant to you
We may also use the Personal Information we hold about you to provide you with information about other services we offer which we feel may be of interest to you. We may provide this information electronically via email, telephonically via SMS or telephone, and/or by post. and, in each case, you have not opted out of receiving that marketing If you wish to reject such communication regarding our other services, we will give you the opportunity to terminate our permission to contact you for such purposes.
We will get your express opt-in consent before we share your personal data with any company outside the Intelligent Payments group of companies for marketing purposes.
DISCLOSURE OF YOUR INFORMATION
Disclosure of your personal information to third parties will occur if:
● We sell or purchase any business or assets. In such case, we may authorise the disclosure of your Personal Information to prospective sellers or buyers of such business or assets
● The Beaute Code.tech or the substantial majority of its assets are sold to a third party. In such case, your Personal Information may be one of the transferred assets
● We are required to disclose your Personal Information in order to fulfil any legal obligation, to enforce our Terms and
Conditions, or to protect the property, rights or safety of The Beaute Code.tech, users of our services or others. In such case, information may be exchanged with third party companies or organisations in order to prevent fraud or reduce credit risk
You retain the right to request us to refrain from processing your Personal Information for the purposes of marketing. To exercise such right, you may reply to any information we send you, detailing your request that we refrain from sending any further marketing correspondence, or you can exercise this same right by contacting us electronically via email at hello@The Beaute Code.tech. We may at times provide links on our site to third party websites, including without limitation those owned or managed by our partner networks, affiliates or advertisers. These websites have separate privacy policies, and we therefore cannot accept any responsibility for the content. As such, choosing to follow these links is a choice you make at your own risk, and we advise that you check these websites' individual privacy policies before submitting any Personal Information.
We are required to maintain your Personal Information accurately, if you believe any of the Personal Information that we process is inaccurate you are entitled to contact us to correct any inaccuracies at hello@The Beaute Code.tech. Where we agree that the Personal Information held by us is inaccurate we will correct such inaccuracies without undue delay.
We will not be responsible for correcting inaccuracies in third party Personal Information unless you have informed us of such inaccuracies and we will provide you with reasonable assistance in complying with your obligations as data controller under the applicable Data Protection Laws in relation to any inaccurate third party data.
Right to be forgotten - if we no longer have a legal basis to process your Personal Information or if the legal basis that we are relying on is consent and you subsequently withdraw your consent then we will stop processing your personal data. To the extent that you no longer wish to be contacted by us we will need to maintain a record of that to ensure that we do not contact you again in the future.
You are responsible for ensuring that any third party request to be forgotten is applied to any third party Personal Information that you send to us, we will provide you with reasonable assistance in complying with your obligations as data controller under the applicable Data Protection Laws in relation to any third party requests to be forgotten.
ACCESSING YOUR INFORMATION
You may at any time contact us to review the Personal Information we hold about you. You may exercise this right by contacting us at hello@The Beaute Code.tech or otherwise in accordance with the Data Protection Laws.
QUESTIONS, COMMENTS AND GETTING IN TOUCH