Gå frem til indhold Gå til navigationsside Gå til footer

Privacy Policy


Our Approach to Privacy
At The Body Shop, we recognize that the protection of your personal information is a very important principle in building trust and maintaining a good relationship with you. We take the protection of your personal information very seriously.

This Privacy Notice explains what personal information we collect about you, how and why we use it, who we disclose it to, and how we protect your privacy.

Please take the time to read and understand this Notice.


Table of Contents

  1. This Privacy Notice
  2. Who is responsible for your Personal Information?
  3. When do we collect Personal lnformation from you?
  4. How do we use your Personal Information?
  5. Sharing of your Personal Information
  6. How to withdraw your consent
  7. Accuracy of your Personal Information
  8. Your rights
  9. CCTV
  10. Effective date and changes to this Privacy Notice
  11. How do we keep your Personal Information secure?
  12. Matters specific to the Internet
  13. Children
  14. How to contact us

​​​​​​​   1. This Privacy Notice

1.1    In this Privacy Notice, "we", "our", "us", "ours" means The Body Shop International Limited and "you", "your", "yours" means you the individual.
1.3 This Privacy Notice supplements any relevant online Terms and Conditions of Sale, Terms of Use or other notices about the use of your personal information.

2. Who is responsible for your Personal Information?

​​​​​​​
3. When do we collect Personal Information from you?
3.1 We receive personal information from you through a variety of means and channels, including through our stores, our customer loyalty schemes, through the internet (such as via our information or selling web sites or via our mobile app) or through our direct selling business (The Body Shop At Home).
 
3.2  We also receive communications from you via post, email, phone, fax, or text messaging on your mobile phone, although we prefer to communicate via email because this has the least impact on the environment. Such communications may involve giving to you, as well as receiving information from you.

3.3 Here are some examples of how you may provide personal information to us:
(a)    sending us e-mails and text messages
(b)    interacting with us on social media platforms (for example, when liking or commenting on our posts)
(c)    adding offers, promotions or products to your basket on our website or your Wish List on our mobile app
(d)    talking to us in our stores or over the telephone or via the "Messages" function in our mobile app (for example, when asking us about our products, asking for a refund or making a complaint)
(e)    registering accounts on our website or on our mobile app (for example, when giving us your contact details and your preferences or interests).

. 

4. How do we use your Personal Information?
​​​​​​

4.1 We collect your personal information for the following purposes:
Why might we use your personal information?How do we use your personal information for this purpose?What is the legal basis for us to process your personal information in this way?
to process your payments and protect you against fraudulent transactionsWe may need to process your personal information to keep your payment information safe and protect you against
fraudulent transactions.
Processing your personal information to keep your payments secure is necessary for the performance of our
contract with you.
to protect The Body Shop against fraudulent transactions, and for our profit protection purposesWe may need to process your personal information to protect The Body Shop against fraudulent
transactions, and for our profit protection purposes.
It is in our legitimate interests to process personal information to protect The Body Shop against fraudulent
transactions, and for our profit protection purposes.
to ensure that content from our website is presented in the most effective manner for you and for your computerWe may at times use your personal information (such as your IP address) to measure the use of our website by you and assess the effectiveness of our website and improve the content of our website. We may also tailor our services to you based on your profile and interests or products we think
you might like.
As appropriate, we will ask for your consent to the use of cookies before processing. If we do not seek consent for marketing communications or cookies, then we are processing personal information in our legitimate interests to tailor services and improve engagement with
you.
 
to provide you with goods and servicesWe may need to use your personal information to perform our obligations under a contract with you (e.g.
where you have purchased a product from us).
Using your personal information in this way is necessary for us to perform our statutory and / or contractual obligations to you.
to direct market to you, with your permissionWe will need to use your contact information (e.g. your e-mail address, postal address, or telephone number) to provide you with information you have requested or which we feel may interest you.
Based on what we know about you, your preferences, and activity on our website, we may tailor marketing
communications to you.
We will seek your explicit prior consent (opt in) before sending marketing communications to you.
to understand and analyse our sales, and your needs and preferencesWe may use your information such as your geographic location, the benefits you look for in our products or services to help us conduct focused market research based on trends and common factors so that we can develop, enhance, market and provide, products and services to meet your
needs.
It is in our legitimate interests to process personal information to develop, enhance, market and provide products and services to you.
to enable you to participate in promotions and competitionsWe will need to use your contact information (e.g. your e-mail address, your telephone number, or postal address) to make sure you
receive all the benefits that you are entitled to.
Using your personal information in this way is necessary for us to perform our statutory and /or contractual obligations to you.
to enable you to participate in our values related campaigns, petitions and activitiesWe will need to use your contact information (e.g. your e-mail address, your telephone number, or postal address) to record your participation in campaigns,
petitions and activities.
It is in our legitimate interests to process personal information to record your participation in campaigns, petitions and activities.
to enable you to participate in customer research or focus groupsWe will need to use your personal information (e.g. your age, your gender, your geographic location) to help us conduct focused market research based on trends and common factors so that we can develop, enhance, market and provide products and
services to meet your needs.
It is in our legitimate interests to process personal information to develop, enhance, market and provide products and services to you.

​​​​​​​
to process exchanges or product returnsWe will need to use your personal information to perform our obligations under a contract with you (e.g. where you have purchased a product from us and wish to
receive an exchange or return).
Using your personal information in this way is necessary for us to perform our statutory and / or contractual obligations to you.
to gather feedback from youWe may collect your personal information when we gather feedback from you about our products, websites, mobile
apps and other activities.
It is in our legitimate interests to process personal information to develop and enhance our products and
services.
to respond to requests or complaintsWe will need to use your personal information to respond to requests or complaints that you submit to
us.
Using your personal information in this way is necessary for us to perform our statutory and / or
contractual obligations to you.
to enable you to participate in our customer loyalty schemes and manage your membershipWe will need to use your contact information (e.g. your e-mail address, your telephone number, or postal address, date of birth) to make sure you receive all the benefits that you are entitled to as a member of our customer loyalty scheme (such as sending you a
voucher on your birthday).
It is in our legitimate interests to process personal information to develop, enhance, market and provide products and services to you.
to develop products and servicesWe will use your personal information in the event that there are adverse reactions or
innovations to our products.
It is in our legitimate interests to process personal information to develop our
products and services.
4.2 Generally, we store your personal information for as long as necessary in order to maintain the customer relationship and to provide services to you. There are other reasons why your personal information may be retained for a longer period such as legal or regulatory reasons. However, if you opt in to receive marketing communications from us we will retain your personal information as long as necessary (for the purposes of direct marketing to you) unless you withdraw your consent to, or unsubscribe from, marketing materials. If you would like to withdraw your consent to, or unsubscribe from, marketing communications please contact us in the manner indicated in the relevant communication.
4.3    We may disclose your personal information if we are required to do so by law or requirement of a competent authority. In addition, we may disclose your information in order to comply with regulatory obligations such as if you have an adverse reaction to our products.


​​​​​​​5. Sharing of your Personal Information

5.1 We may share your personal information with other companies within the Natura &Co Group (i.e. subsidiaries, affiliates, franchisees and sub-franchisees of The Body Shop, Aesop, Avon and Natura). It may also be shared with a third party who acquires us, a member of the Natura &Co Group, or substantially all of its assets. The legal basis for sharing your personal information will be established at the time based on the purpose for processing.
5.2    We may use other carefully selected companies, agents, or contractors to perform services on our behalf or to assist us with the provision of services to you. We may also share your personal information with not-for-profit entities or our campaign partners for charitable purposes or petitions.
5.3    If you are an existing customer, we may share your personal information with carefully selected companies which perform marketing activities on our behalf for direct marketing purposes, as we have a legitimate interest in doing so.
5.4    If you do not want us to use your personal information for direct marketing purposes, or if you do not want us to pass your details on to third parties for direct marketing purposes, please advise us.
5.5    Each time we send you marketing communications, we will give you the option to unsubscribe by contacting us as set out in the relevant communication.
5.6    We may share your personal information with Natura &Co subsidiaries, affiliates or to third parties established outside the European Economic Area, for the purposes of providing services to you or supporting our business operations. If we do transfer your personal information to these organisations, we will provide appropriate measures and controls to protect your personal information such as data transfer agreements in accordance with applicable law.
5.7    We will only use your personal information for a purpose that has been specified, as appropriate, prior to its use or where the processing of your personal information is necessary for the performance of a contract to which you are a party or in order to take steps at your request prior to entering into a contract or processing is necessary for other legal purposes.

​​​​​​​​​​​​

6. How to withdraw your consent

6.1 D6.1    At any time, you can withdraw your consent to the collection, use or disclosure, or otherwise processing of your personal information by (i) contacting us using the details set out at the end of this page, or (ii) writing to us in the prescribed manner (whether by email or post, or by text messaging etc.), as specified in our communications to you, or in relevant forms that you might have signed (e.g. for our customer loyalty scheme. If you have any concerns in relation to the unsubscribe functionality that we make available to you, please contact us using the details set out at the end of this page.
6.2    If you opted in to receiving marketing communications from us when you became a member of our loyalty scheme and choose to end your membership to such scheme, we will not take this to imply an automatic request to unsubscribe or withdraw your consent, and we will assume that we have your continued consent to direct market to you, unless you specifically unsubscribe or withdraw your consent from that loyalty scheme.

​​​​​​​

7. Accuracy of your Personal Information

8. Your rights

(a)    access your personal information
(b)    request rectification of your personal information
(c)    request portability of your personal information
(d)    request restriction of processing of your personal information
(e)    object to the processing of your personal information
(f)    request erasure of your personal information and
(g)    if you have provided your consent to the processing of your personal information, you have the right to withdraw your consent at any time.

​​​​​​​
8.2 If you believe that your rights have been breached or that your personal information has been compromised, you have the right to request that we remedy the situation. If you would like to exercise your rights, please contact us using the contact information below.
8.3    We commit to investigating all complaints and will take appropriate necessary measures to resolve matters of concern, including, if necessary, amending our policies and practices.
8.4    If you do not receive a satisfactory answer from us, you have the right to make a complaint to the competent supervisory authority.

9. CCTV

9.1 Please note that where CCTV is in operation in our stores you may be captured on CCTV and your image stored. All CCTV footage is captured purely for your security and for the prevention and detection of crime. If you would like to know more about this, please contact us using the details provided below.
 ​​​​​​​

10. Effective date and changes to this Privacy Notice


​​​​​​​11. How do we keep your Personal Information secure?

11.1 We protect personal information against loss or theft, unauthorized access, disclosure, copying, use or modification with security safeguards appropriate to the sensitivity of the personal information, regardless of the format in which it is held
11.2    We use various administrative, technical and physical methods to safeguard your personal information. They include:
(a)    physical measures: locked filing cabinets, restriction of access to offices, and company alarm systems.
(b)    technical tools: passwords and encryption, using generally industry best practices.
(c)    organizational controls: confidentiality agreements, limiting access on a need-to-know basis, staff training and security clearances.
11.3    Online security is also a priority. We incorporate security measures such as encryption and authentication tools to protect your personal information from unauthorized use. Firewalls are utilized
to protect our servers and network from unauthorized users accessing and tampering with files and other information that we store.
11.4    Payments are processed in a secure environment using software provided by third party providers.
11.5    The Body Shop, as a global retailer, has signed up to and aims to comply - to the extent relevant to its type of business - with the Payment Card Industry Data Security Standard (PCI DSS). For more details on PCI DSS please refer to: https://www.pcisecuritystandards.org/.

12. Matters specific to the Internet

12.1 Links to Other Websites
(a) Our website makes use of cookies as well as web beacons. A cookie is a small piece of data (text file) that a website – when visited by a user – asks your browser to store on your device in order to remember information about you, such as your language preference or login information. Those cookies are set by us and called first-party cookies. We also use third- party cookies – which are cookies from a domain different than the domain of the website you are visiting – for our advertising and marketing efforts. More specifically, we use cookies and other tracking technologies for the following purposes:
Strictly Necessary Cookies
These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies do not store any personally identifiable information.

Performance Cookies
These cookies allow us to count visits and traffic sources, so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies we will not know when you have visited our site and will not be able to monitor its performance.

Functional Cookies
These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies, then some or all of these services may not function properly.

Targeting Cookies
These cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.

Social Media Cookies
These cookies are set by a range of social media services that we have added to the site to enable you to share our content with your friends and networks. They are capable of tracking your browser across other sites and building up a profile of your interests. This may impact the content and messages you see on other websites you visit. If you do not allow these cookies you may not be able to use or see these sharing tools.

(b)    You may choose to decline cookies but doing so may affect your use of our web site, for example your ability to access certain features of the site or to engage in transactions and tailored content or advertising.
(c)    If you opt out of interest-based advertising cookies, you may still see advertising online but it will no longer be tailored to your interests.
(d)    Tracking tags/Beacons: Each web page in our web sites contains tracking beacons/tracking pixels that allow us to follow your progress through the various pages within the web site. This information is then aggregated (de-personalised) before being analysed.
(e)    Pixels/tags in emails: When you receive marketing emails from us they will contain pixels or other devices to determine whether your email address is accurate, and our email has been opened. You can withdraw your consent to receive these emails as set out in this Notice.

​​​​​​​

13. Children

14. How to contact us

14.2 You are reminded not to send via unencrypted means (such as email) sensitive information such as passwords, credit card information etc.
​​​​​​​