Privacy Policy | Vegastars

1. What Data Do We Collect?

We collect various types of data to provide and improve our services: a

Personal Data

Contact details: Name, email address, telephone number, address
Appointment details: Desired treatments, dates, times, preferences
Medical information: Skin type, allergies, medication use (if relevant for treatments)
Payment details: Billing address, payment preferences

Technical Data

Website information: IP address, browser type, operating system
Cookies and similar technologies: For website optimization and user experience
Usage statistics: Pages visited, time spent on the site

2. How Do We Use Your Data?

We use your personal information for the following purposes:

Services

Schedule and manage appointments
Perform treatments
Provide customer service
Send invoices

Communication

Send appointment reminders
Newsletters (with permission)
Promotions and offers
Important notices

Improvement

Optimize services
Improve website
Developing new treatments
Measuring customer satisfaction

Legal

Compliance with legal obligations
Resolve disputes
Safeguarding safety
Preventing fraud

3. Legal basis for Processing

We process your data based on the following legal grounds in accordance with the GDPR:

🤝 Execution of Agreement

To provide our beauty treatments and services according to our agreements.

✅ Consent

For marketing communications, newsletters and placing non-essential cookies.

⁇ ⁇ ⁇ ️ Legal Obligation

For fiscal administration and compliance with hygiene and safety regulations.

🎯 Legitimate Interest

To improve our services and ensure the safety of our salon.

4. Sharing Data

We respect your privacy and only share your data in the following cases

Important: We never sell, rent or trade your personal information to third parties for commercial purposes.

5. How Do We Secure Your Data?

We take the security of your data very seriously and have taken several measures as follows

🔒 Technical Security

SSL encryption for all data transfer
Secure servers and databases
Regular security updates
Firewalls and intrusion detection

👥 Organizational Measures

Access control to data
Training of employees
Confidentiality statements
Regular Security Audits

📋 Physical Security

Secure office spaces
Locked filing cabinets
Secure waste disposal
Limited access to systems

6. Your Rights

Under the GDPR (General Data Protection Regulation) you have several rights regarding your personal data:

📋 Right of Inspection

You can request what information we have about you and how we use it.

⁇ ⁇ ️ Right to Corrigendum

You can have incorrect or incomplete data corrected or supplemented.

⁇ ️ Right to Delete

In certain cases you can request deletion of your data.

⁇ ⁇ ️ Right to Restriction

You can request that the processing of your data be restricted.

📤 Right to Transferability

You can request your data in a structured, machine-readable format.

🚫 Right of Objection

You can object to certain processing of your data.

How Can You Exercise Your Rights?

To exercise your rights, please contact us at

Email: [email protected]
Telephone: +31 (0) 70 234 5678
Post: Lange Voorhout 123, 2514 EA The Hague

7. Cookies and Tracking

Our website uses cookies to improve your experience and ensure functionality:

You can manage your cookie preferences by adjusting your browser settings or by contacting us.

8. How Long Do We Keep Your Data?

We do not store your data for longer than necessary for the purposes for which it was collected: a

Customer details

Retention period: 7 years after last treatment

Reason: Tax obligations and medical records

Marketing Communication

Retention period: To withdraw consent

Reason: You can unsubscribe at any time

Website Analytics

Retention period: 26 months

Reason: Statistical analysis and website improvement

Security logs

Retention period: 12 months

Reason: Security incident detection and investigation

9. International Data Transfers

We strive to keep your data within the EU. If transfer outside the EU is necessary, we will ensure adequate protection: a

⁇ ⁇ ️ Adequacy Decisions

Transfer to countries with an adequate level of protection according to the European Commission.

📜 Standard Contractual Provisions

Use of EU-approved contractual safeguards in data transfer.

🏢 Certification and Codes

Collaboration with service providers certified under recognized privacy frameworks.

10. Contact and Complaints

💬 Questions about Privacy

For questions about this privacy policy or your information:

Data Protection Officer:
[email protected]

Telephone:
+31 (0) 70 234 5678

Address:
Vegastars
T.a.v. Privacy Officer
Lange Voorhout 123
2514 EA The Hague

⁇ ⁇ ⁇ ️ Submitting Complaints

Not satisfied with our data processing? You can complain to:

Dutch Data Protection Authority
P.O. Box 93374
2509 AJ The Hague

Telephone: 088 - 1805 250
Website: www.autoriteitpersoonsgegevens.nl

11. Changes to this Privacy Policy

We may update this privacy policy from time to time to reflect changes to our practices, services or legal requirements.

📅 How Are Changes Communicated?

Important changes will be communicated to existing customers by email
The most recent version is always available on our website
The date of last change is stated at the top of the document
We will ask your permission again for significant changes

Current version: 2.1

Last updated: December 2025

Next review: June 2024