PRIVACY POLICY
Last updated: 10 October 2025
1. Introduction
HayleeDoesHair.com are committed to protecting the privacy and security of your personal data. This privacy policy describes how we collect, use, and store the personal data you provide to us when you use our website, www.hayleedoeshair.com (the “Website”).
We are the data controller for the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
2. Contact Details
- Full name of legal entity:
Haylee - Email address:
hi@hayleedoeshair.com
3. The Data We Collect About You
Personal data means any information about an individual from which that person can be identified. We may collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows:
- Identity Data:
first name, last name. - Contact Data:
email address. - Financial Data:
none. - Transaction Data:
none. - Technical Data:
internet protocol (IP) address, your login data, browser type and version, time zone setting and location, operating system and platform, and other technology on the devices you use to access this website. - Usage Data:
information about how you use our website, products and services. - Marketing and Communications Data:
your preferences in receiving marketing from us and your communication preferences.
4. How is Your Personal Data Collected?
We use different methods to collect data from and about you, including through:
- Direct interactions. You may give us your Identity, Contact, and Financial Data by filling in forms or by corresponding with us by post, phone, email or otherwise. This includes personal data you provide when you:
create an account on our website;subscribe to our service or publications;request marketing to be sent to you;give us feedback or contact us.
- Automated technologies or interactions. As you interact with our website, we will automatically collect Technical Data and Usage Data. We collect this personal data by using cookies and other similar technologies.
5. How We Use Your Personal Data
We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
| Purpose/Activity | Type of data | Lawful basis for processing |
| To register you as a new customer | Identity, Contact | Performance of a contract with you |
| To process and deliver your order | Identity, Contact, Financial, Transaction | Performance of a contract with you, Necessary for our legitimate interests (e.g., recovering debts) |
| To manage our relationship with you | Identity, Contact, Profile, Marketing and Communications | Performance of a contract with you, Necessary to comply with a legal obligation, Necessary for our legitimate interests (e.g., keeping our records updated) |
| To administer and protect our business and this website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data) | Technical, Usage, Identity, Contact | Necessary for our legitimate interests (e.g., for running our business, network security), Necessary to comply with a legal obligation |
| To use data analytics to improve our website, products/services, marketing, customer relationships and experiences | Technical, Usage | Necessary for our legitimate interests (e.g., to define types of customers for our products and services, to keep our website updated and relevant) |
| To send you marketing communications | Identity, Contact, Marketing and Communications | Consent, Necessary for our legitimate interests (e.g., to develop our products/services and grow our business) |
6. Disclosures of Your Personal Data
We may share your personal data with the parties set out below for the purposes set out in section 5:
- Internal Third Parties: Other companies in our group, acting as joint controllers or processors.
- External Third Parties:
Service providers, acting as processors, who provide IT and system administration services. Professional advisers, including lawyers, bankers, auditors and insurers.HM Revenue & Customs, regulators and other authorities based in the UK and other relevant jurisdictions who require reporting of processing activities in certain circumstances.
We require all third parties to respect the security of your personal data and to treat it in accordance with the law.
7. International Transfers
We do not transfer your personal data outside the UK.
8. Data Security
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. We also limit access to your personal data to those employees, agents, contractors and other third parties who have a busines1s need to know.
9. Data Retention
We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements.
10. Your Legal Rights
Under the UK GDPR, you have rights including:
- Your right of access – The right to ask us for copies of your personal data.
- Your right to rectification – The right to ask us to rectify personal data you think is inaccurate or incomplete.
- Your right to erasure – The right to ask us to erase your personal data in certain circumstances.
- Your right to restriction of processing – The right to ask us to restrict the processing of your personal data in certain circumstances.2
- Your right to object to processing – The right to object to the processing of your personal data in certain circumstances.3
- Your right to data portability – The right to ask that we transf4er the personal data you gave us to another organisation, or to you, in certain circumstances.
If you wish to exercise any of the rights set out above, please contact us at privacy@hayleedoeshair.com.
11. How to Complain
You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO, so please contact us in the first instance.