Privacy policy


We ask that you read this Privacy and Cookies Policy carefully as it contains important information on who we are, how and why we collect, store, use and share personal information, your rights in relation to your personal information and on how to contact us and supervisory authorities in the event you have a complaint.


We are Sheffield Skincare Company. We are an independent company based in Sheffield Our registered shop is in the Uk. 243 Crookes Sheffield, S10 1TF.

We collect, use and are responsible for certain personal information about you. When we do so we are regulated by the General Data Protection Regulation (‘GDPR’) which applies across the European Union (including in the United Kingdom) and we are responsible as ‘controller’ of that personal information for the purposes of those laws.



This Privacy and Cookies Policy was published on 25th May 2018 and last. We may change this Privacy and Cookies Policy from time to time when we do we will inform you via banner at the top of the site for two weeks.


SITE CUSTOMERS (‘Site’) is operated by Sheffield Skincare Company. We collect information that you provide to us by filling in forms on our Site. This includes information provided at the time of registering to use our Site (where applicable), subscribing to our services (where applicable), ordering products through our Site, personalising our Site with your preferences, posting material or requesting further services.



We keep details of the transactions you make through our Site and the fulfilment of orders. This includes payment details, your name, billing and postal addresses, the items you ordered and your email and telephone number.

If you checkout as a guest we will store your order details; name, email address, billing and shipping address & order details.

We collect details of your visits to our Site including, but not limited to, which URL you used to get to our Site, searches you make, traffic data, location data, weblogs and other communication data, whether this is required for our own billing purposes or otherwise and the resources that you access. We collect these details to better understand how our customers arrive on and use our Site and enable us to improve it.



We use third-party suppliers to provide our payment gateway (Paypal) and to record our order fulfilment. This includes name, billing and shipping address and order amount

When PayPal is chosen as the payment method, you will be taken to the PayPal Site to complete payment by logging into your PayPal account and confirming payment is to be made.

All information you provide to us is stored on our secure servers. Any payment transactions will be encrypted using SSL technology.



We use Royal Mail to fulfil our order delivery, UPS when orders are over 2KG We pass your name, telephone and postal address plus order value (for insurance purposes) to these companies so that they can track your parcel and communicate to you via telephone to provide the delivery time details.



If you are logged into your account whilst on the Site, the Site will track purchase choices made and record them in your ‘My Account’ order history.

Where we have given you (or where you have chosen) a password which enables you to access certain parts of our Site, you are responsible for keeping this password confidential. We ask you not to share a password with anyone. Although kept on your account, your password is NOT visible to us. Should you need to change your password you can do this via the ‘I’ve forgotten my pass word option at sign in’



Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal information, we cannot guarantee the security of your information transmitted to our Site, any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access and require our suppliers to do the same. Any Breaches in



Currently we do not use third party sites anywhere on our website apart form payment through Paypal.



Our Site tracks and gathers data using a third-party app by Google called Google Analytics. This stores information anonymously on Google’s servers. It gathers information such as a visitor’s country of origin, the device used, pages visited and basket value. We use these stats to identify any pinch points for our customer journeys and then use it to improve their journey through our Site. These statistics help us to identify the most common devices used to visit our Site, so we can target specific roadmap improvements for those commonly used platforms (mobile, iPad etc) Google Analytics only reflects the code update being applied to anonymize your IP address therefore the user’s identity cannot be tracked back to their online account details.



We used a third-party service integrator (1&1) to support the maintenance and development of the Site. This means that they can see and access live customer data if required. This only happens if we are making improvements to areas such as your account functionality, improvements in ordering or other areas that interact with customers and their data. They cannot export this data without our approval or use it for anything other than providing us support to improve our service to you.

Cookies and cookie policy

Cookies are tiny text files containing letters and numbers that are stored on your computer when you visit certain web pages. We use cookies on our website. You are free to manage this via your browser setting at any time. To learn more about how we use the cookies please read the information in this section.

Our cookies

At Sheffield Skincare Company we use cookies to keep track of what you have in your basket, and to remember you when you return to our site. To order products from the Sheffield Skincare website, you need to have cookies enabled. If you don't wish to enable cookies, you'll still be able to browse the site and use it for research purposes.

We don't store personally identifiable information such as credit card details in cookies we create, but we do use encrypted information gathered from them to help improve your experience of the site. For example, they remember the items you have in your basket and recommend related products to show you when you're browsing.

Here's a list of the main cookies we use, and what we use them for.


Third Party Cookies

When you visit the Sheffield Skincare website you may notice some cookies that aren't related to us. If you go on to a web page that contains embedded content, for example from YouTube, you may be sent cookies from these websites. We don't control the setting of these cookies, so please check the third-party websites for more information about their cookies and how to manage them.

  • Google – These cookies help us collect and analyse visitor information such as browser usage, new visitor numbers and response to marketing activity. That information helps us to improve the website and your shopping experience, and to make our marketing campaigns relevant.
  • Affiliate Window - These cookies show us how you found our website and which website you came from. This helps us know which of our online marketing channels is most effective and enable us to reward some external websites for directing you to us.


Sharing content

If you take the opportunity to 'share' content from Sheffield Skincare content with friends through social networks – such as Facebook and Twitter - you may be sent cookies from these websites. We don't control the setting of these cookies, so please check the third-party websites for more information about their cookies and how to manage them.

More information about cookies

If you'd like to learn more about cookies in general and how to manage them, (opens in a new window). If you'd like to opt out of cookies, please go to the Network Advertising Initiative website (opens in a new window).

Changes to our cookies policy

Any changes we may make to our Cookies Policy in the future will be posted on this page.


Buying from our retail store


We will keep details of purchases made through our till system and the fulfilment of your orders. This may include payment details, your name, email address and the items ordered. All orders with in our shop go through the paypal here app and POS system. When you pay by card with in our shop we only get to see a snippet of the information on your card so bank details will be stared out in the middle so we don’t see all the information ie 2345 **** **** 5768.

We do not offer paper receipts in our shop. If you would like a receipt, we ask you to provide an email address or a telephone number. A receipt will be sent immediately containing all the information of the purchase you have just made.  Again this information is stared out on our system so an email address will show as step******** or in the case of a phone number it will appear as 077******01. So when you give us you information to receive a receipt we do not have access to this for our own personal use and will not use this to contact you in any way.

With your permission you may provide us with your name, address, email, phone number  for in-store events, out of stock notifications or bookings for classes. This information will be kept and then destroyed securely once it has been used for the purpose you provided it to us.

Stock can be reserved on our Site to be collected in-store by giving you name, email address and telephone number.  You will then receive an email from our store confirming the order asking you to contact us with a suitable and convenient time to collect your order.


Workshops, parties and events


When you book a workshop, party of event we will ask for: full name, contact telephone number, email address (optional). This can be saved in paper form (diary) or in our third-party email system and website.


Occasionally we may need to contact you regarding your booking, we will use the telephone number given or email provided to us at time of booking. For example, if you have a complaint, we need to change your booking, or we require further information to fulfil your requirements.

If you have any general queries regarding your data when you make or have made a booking with us, please email




We use Facebook advertising. Facebook’s own GDPR policy can be found via their website or in the settings on your phone app. This data is used to do targeted advertising to potential or existing customers based on similar demographics. We market products, offers, news and brand messages or context targeting based on previously viewed content. Facebook uses cookies to gather this data, its servers are held in EU and US, as part of GDPR those residents in Europe using the service will have their data stored in Europe. Facebook has multiple opt-out options under your account settings to opt out of its advertising.


We use Instagram to post marketing activity, we occasionally use the paid advertising service to target users based on demographics. We promote products, offers, news and brand messages – this is all run through Facebook Advertising platform.



When entering our promotions or competitions, you provide your name, email address and mailing address. If you win, we will send the prize to the address entered and notify you by email. When you enter a competition or promotion, you are also able to opt-in to hear from us by email or post, and be the first to know all our competitions, offers and news. You may unsubscribe from this by following the unsubscribe instructions in any email received.

We will only contact you by email following a competition if you opted-in to do so. Unless you have opted-in to receiving marketing communications, your data will be deleted after 3 months



We currently do not send marketing material to our customers, this is something we are looking to in the future through a newsletter which will be released quarterly. We will not send this to you unless you have signed up specifically to receive it. You will be able to opt out of this at any time you wish via the unsubscribe link with in the email or by contacting our team on

Currently we send an email out following a purchase from our website asking you to review the product/products you received. You will be asked to opt in to this email during the websites basket and order settings. We will not send you and email if you click opt out. We do however really like to hear what our customers think of our products and services so we can make changes and improvements.



As a business we use Microsoft Office. Information is saved on a secure server with restricted access and password protected. Information is retained in line with our Data and Records Management Policy.



If you contact our store team by email, they will only hold this data to deal with your enquiry and it will be deleted promptly.  Information is retained in line with our Data and Records Management Policy.



Generally, we do not seek to collect special category data (, this used to be referred to as "sensitive personal information” under the Data Protection Act 1998) - that is, information relating to: race or ethnic origin; political opinion; religious or other similar beliefs; trade union membership; physical or mental health; sexual orientation; criminal records. We recommend that you do not provide such information to us. If you choose to do so for any reason, this will mean that you have given (and we accept) your explicit consent for us to use that information for the reasons described in this policy, or as explained at the time you provide the information.



We do not sell our customer lists and we will never pass your details on to third parties for any purpose unless you have consented to us doing so unless it is for the following reasons:

  • in the event that we sell or buy any business or assets, in which case we may disclose your personal information to the prospective seller or buyer of such business or assets;
  • in the event that we outsource any of our business functions under which we collect or store your information (including the hosting and maintenance of our Site, email marketing, catalogues and postal mailings and statistical reports and analysis) in which case we will ensure that any such service provider keeps your information confidential and adheres to at least the same obligations of security with regard to your information as undertaken by us; or
  • we have a legitimate business reason to do so; or
  • if we are under a duty to disclose or share your personal information in order to comply with any legal or contractual obligation, or
  • in order to enforce or apply our Terms and Conditions and other agreements; or
  • to protect our rights, property, or safety of our employees, our customers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.




Under the GDPR you have a number of important rights. In summary, those include rights to:

  • Fair processing of information and transparency over how we use your use personal information
  • access to your personal information and to certain other supplementary information that this Privacy and Cookies Policy is already designed to address
  • require us to correct any mistakes in your information which we hold
  • require the erasure of personal information concerning you in certain situations
  • receive the personal information concerning you which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to a third party in certain situations
  • object at any time to processing of personal information concerning you for direct marketing
  • object to decisions being taken by automated means which produce legal effects concerning you or similarly significantly affect you
  • object in certain other situations to our continued processing of your personal information
  • otherwise restrict our processing of your personal information in certain circumstances
  • You can claim compensation for damages caused by our breach of any data protection laws


For further information on each of those rights, including the circumstances in which they apply, see the Guidance from the UK Information Commissioner’s Office (ICO) on individuals rights under the General Data Protection Regulation.

If you would like to exercise any of those rights, please:

  • email, call or write to
  • let us have enough information to identify you full name, address and if you’re an existing customer
  • let us have proof of your identity and address a copy of your driving licence or passport and a recent utility or credit card bill
  • let us know the information to which your request relates including any invoice or customer number, if you have them




We have appropriate security measures in place to prevent personal information from being accidentally lost or used or accessed in an unauthorised way. We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.

We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.

If you want detailed information from Get Safe Online on how to protect your information and your computers and devices against fraud, identity theft, viruses and many other online problems, please visit Get Safe Online is supported by HM Government and leading businesses.



We hope that our customer care team can resolve any query or concern you raise about our use of your information.

The GDPR also gives you right to lodge a complaint with a supervisory authority, in particular in the European Union (or European Economic Area) state where you work, normally live or where any alleged infringement of data protection laws occurred. The supervisory authority in the UK is the Information Commissioner who may be contacted at or telephone: 0303 123 1113.