JUARA EXTERNAL DATA PRIVACY NOTICE

We at Juara Beauty & Lifestyle Pte Ltd (“JUARA”) respect the privacy and confidentiality of personal data in our possession or under our control. We have implemented policies and practices to safeguard the collection, use, disclosure, storage and other processing of personal data provided to us.

This External Data Protection Notice (“Notice”) explains how we collect, use, disclose, process and retain your personal data you provide to us. Personal data (as defined in the Personal Data Protection Act 2012 of Singapore (“PDPA”)) refers to “data, whether true or not, about an individual who can be identified (a) from that data; or (b) from that data and other information to which the organisation has or is likely to have access.”

Types of Personal Data We Collect and Process

We may collect and process the following types of personal data about you when you engage with us:

  • your personal details such as your name, your gender, your address, your location, your date of birth, your mobile number and your email address
  • your facial and follicle condition
  • your purchases and orders
  • your online browsing activities on our website/s
  • your interests, preferences, feedback and survey responses;
  • our correspondence and communications with JUARA

Our Website is not directed to individuals under the age of eighteen (18), and we request that these individuals do not provide personal information through our Website. We do not knowingly collect information from children under 18 without parental consent.

This list is not exhaustive and, in specific circumstances, we may need to collect additional data for the purposes set out in this Notice. Some of the above personal data is collected directly, for example - setting up of on-line account on our websites. We may also collect personal data from our third party partners who have your consent to pass your details to us, or from publicly available sources.

Our Purpose(s) for Processing Personal Data About You

We process the personal data we have collected about you for one or more of the following purposes:

  • for processing transaction sales (including payment) and any other services provided by the company.
  • direct market to you, with your consent
  • to analyze our services and product offerings to you, and your preferences and needs
  • for your participation in promotions, and contests
  • for conducting of market research and focus groups
  • for product returns and exchanges
  • for customer care and membership account management, including communications received from you
  • for monitoring of visitors to our offices
  • to pass information about you to our agents, associates, subsidiaries or partners to carry out services for us, with your consent
  • to carry out our obligations arising from any contracts entered into between you and us.
  • to comply with legal obligations and regulatory requirements

Who We Disclose Personal Data About You To

We disclose some of the personal data we have collected about you to the following parties or organisations outside JUARA in order to fulfill our services to you:

  • Banks, Payment card processing companies
  • IT/Technical Support
  • Freight/Courier service providers
  • Business Process Outsourcing (BPO) service providers

In addition to the above, where required to do so by law, we will disclose personal data about you to the relevant authorities or to law enforcement agencies.

We may also share some of your personal data, after they are anonymised, with third parties for research purposes in order to improve our products and services to you.

How We Manage the Collection, Use, Disclosure and Storage of Your Personal Data

Obtaining Consent

Where we collect personal data directly from you, we will notify you of the purposes for which we are collecting it and obtain your express consent to us collecting, using and disclosing it for those purposes. We will not collect more personal data than is necessary for the stated purpose.

Under certain circumstances, we may collect, use and/or disclose personal data about you without your consent (e.g. to comply with our statutory obligations or where personal data is publicly available).

Third-Party Consent

Where you engage us for our services on behalf of another individual, you must obtain consent from that individual in order for us to collect, use or disclose his/her personal data.

Withdrawal of Consent

Where your consent has been obtained, you may withdraw that consent at any time by giving us reasonable advance notice of your withdrawal. We will notify you of the likely consequences of your withdrawal of consent, e.g. without your personal contact information we may not be able to inform you of future updates or that the quality of our service may be impacted.

You may withdraw your consent by sending an email or letter to us (please contact us for more details at juara.singapore@gmail.com.

Google Analytics

Another third party vendor used by JUARA SG is Google Analytics. For information on how Google Analytics uses data please visit “How Google uses data when you use our partners sites or apps”, located at www.google.com/policies/privacy/partners/.

How do we ensure accuracy of your personal data?

We take reasonable precautions and make reasonable verification checks to ensure that your personal data is reasonably accurate, complete and up-to-date.

From time to time, we may do a verification exercise for you to update us on any changes to the personal data we hold about you. It is important that you update us if there are any changes in the personal data we hold about you (such as a change in your home address).

How do we protect your personal data?

We make reasonable security arrangements to protect personal data about you that is in our possession or under our control to prevent unauthorized access, collection, use, disclosure, copying, modification, disposal or similar risks.

All of JUARA SG’s employees (including part-timers and interns) will take reasonable and appropriate measures to maintain the confidentiality and integrity of your personal data and will only share your data with authorized persons on a 'need to know' basis.

Credit Card Security

Relating to credit card payments: Ordering from JUARA online is safe and secure. We are using 'Shopify Payment' which keeps payment info and business data safe. Shopify Payments is PCI DSS compliant and supports 3D Secure checkouts.

What is PCI DSS?

The Payment Card Industry Data Security Standard (PCI DSS), which is managed by the PCI Security Standards Council (founded by American Express, Discover Financial Services, JCB, MasterCard Worldwide, and Visa International). The PCI DSS is a multifaceted international security standard that includes requirements for security management, policies, procedures, network architecture, software design and other critical protective measures with a view to achieving ongoing development, enhancement, storage, dissemination and implementation of high security standards for account data protection. For more details please refer to: https://www.pcisecuritystandards.org/

What is 3D Secure Checkout?

30D Secure is an additional security layer for online credit and debit card transactions. It adds an authentication step for online payments by redirecting the user to the card issuer’s domain, then back to the online store's domain to complete payment. If you use Shopify Payments or Stripe as a payment gateway, then you are automatically using a 3D Secure checkout flow.

All online stores will require 3D Secure checkout integrations in order to be compliant with the PSD2 directive mentioned above.

We ensure that the entities that process personal data on our behalf will be bound by contracts that require them to provide sufficient guarantees in respect of the technical and organisational security measures governing the processing to be carried out and to take reasonable steps ensure compliance with those measures.

How can you protect your data?

In JUARA SG we do not practice asking for your credit card details via email.

For your log-in password, please keep it private, anyone who knows your password may access your account with or without your knowledge.

What happens if we make changes to this Notice? [1]

This Privacy Policy is subject to change. Please review it periodically. Any changes to this Policy will become effective when we post the revised Policy on our Website. Your use of our Website following these changes means that you accept the revised Policy.

[1]This Privacy Policy is subject to change. Please review it periodically. Any changes to this Policy will become effective when we post the revised Policy on our Website. Your use of our Website following these changes means that you accept the revised Policy.