Our Privacy Policy was last updated on 04 September 2025.

This Privacy Policy describes the policies and procedures of 27 Skin Studio, A Professional Corporation, and 27 Skin Studio, LLC (collectively referred to as “27 Skin Studio,” “Company,” “we,” “our,” or “us”). Together, these entities operate under the brand name 27 Skin Studio. This Policy explains how we collect, use, and disclose your information when you use our website https://www.27skinstudio.com (“Website”) and related services, and it also explains your privacy rights and how the law protects you.

Interpretation and Definitions

Certain words in this Privacy Policy are capitalized and have specific meanings. These definitions apply whether the terms appear in singular or plural form. An “Account” means a unique account created for you to access our Service. A “Business,” for purposes of the California Consumer Privacy Act (CCPA), refers to 27 Skin Studio as the legal entity that collects consumers’ personal information and determines the purposes and means of its processing. The “Company,” referred to as “we,” “us,” or “our” in this Agreement, refers specifically to 27 Skin Studio. “Country” refers to the United States of America. A “Consumer,” for purposes of the CCPA, is a natural person who is a California resident. “Cookies” are small files placed on your computer or mobile device that store details of your browsing history. A “Device” means any device that can access the Service, such as a computer, tablet, or mobile phone. “Do Not Track” or “DNT” refers to a concept promoted by U.S. regulatory authorities that allows internet users to control tracking of their online activities across websites. “Personal Data” is any information that relates to an identified or identifiable individual. For purposes of the CCPA, “Personal Data” includes information that identifies, relates to, or could reasonably be linked with you. A “Sale,” under the CCPA, means selling, renting, disclosing, disseminating, making available, transferring, or otherwise communicating a consumer’s personal information to another business or third party for monetary or other valuable consideration. “Service” refers to the website operated by 27 Skin Studio. A “Service Provider” means a natural or legal person who processes data on behalf of the Company. “Usage Data” refers to information collected automatically when you use the Service, such as the duration of a page visit. “Website” refers to 27 Skin Studio, accessible from https://www.27skinstudio.com. “You” means the individual accessing or using the Service, or the company or other legal entity on behalf of which such individual is accessing or using the Service.

Collecting and Using Your Personal Data

While using our Service, you may be asked to provide certain personally identifiable information that can be used to contact or identify you. This information may include your name, email address, phone number, and mailing address. We also collect Usage Data automatically, which may include your device’s IP address, browser type and version, the pages you visit, the date and time of your visit, the time spent on those pages, and other diagnostic data. When you access the Service through a mobile device, we may collect information about the type of device you use, your device ID, your IP address, operating system, and browser type.

We use cookies and similar technologies such as beacons, tags, and scripts to track activity on the Service and store certain information. Cookies may be persistent or session-based. Persistent cookies remain on your device when you go offline, while session cookies are deleted once you close your browser. We use cookies for purposes including authentication, fraud prevention, remembering user preferences, and analyzing website traffic. If you refuse cookies, you may not be able to use some parts of our Service.

Use of Personal Data

We use personal data to provide and maintain the Service, to manage your Account and registration, and to perform contractual obligations. We may use your information to contact you by email, telephone, SMS, or other electronic communications regarding updates, security information, promotions, or services. We may provide you with news or special offers relating to services similar to those you have purchased or inquired about, unless you opt out. We also use your information to manage customer requests, to analyze and improve our services and marketing efforts, and to evaluate business transfers such as mergers, acquisitions, or reorganizations. With your consent, we may use your information for other purposes.

We may share your personal information with service providers who assist us in monitoring and analyzing use of our Service, processing payments, or contacting you. We may disclose your information in connection with business transfers, such as mergers or sales of assets. We may also disclose your information if required by law, in response to valid requests by authorities, or if necessary to comply with legal obligations, protect the safety of users, prevent wrongdoing, or defend our rights.

Retention and Transfer of Data

We retain your personal data only as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law. Usage data is generally retained for shorter periods, unless it is necessary for security or functionality. Your information may be transferred to and maintained on servers outside of your state or country where data protection laws may differ. By submitting your personal information, you consent to such transfers. We take all reasonable steps to ensure that your data is treated securely and in accordance with this Privacy Policy.

Security of Data

The security of your personal data is important to us. We use commercially acceptable means to protect your data, but no method of transmission over the Internet or method of electronic storage is completely secure. We cannot guarantee absolute security.

Service Providers and Processing

Service providers engaged by us may have access to your personal data in order to perform tasks on our behalf. These providers include analytics services that monitor use of our Service, email marketing services that send communications, and third-party payment processors. We do not store payment card details. Payment processors handle your financial information in compliance with the PCI-DSS security standards set by the major card brands.

CCPA Privacy Policy

This section supplements the Privacy Policy for California residents under the CCPA. We may collect categories of personal information defined by the CCPA, including identifiers such as names, aliases, and contact details; personal information described in the California Customer Records statute, such as address, telephone number, or payment details; commercial information such as records of services purchased; and Internet or other network activity. We do not collect protected classifications, biometric information, geolocation data, sensory data, professional or educational information, or inferences drawn from personal information unless you voluntarily provide them. Sources of information include data provided directly by you, data collected automatically through your use of the Service, and data obtained from service providers.

We may use personal information for business or commercial purposes, including providing services, responding to inquiries, fulfilling purchases, complying with legal obligations, and detecting or preventing fraudulent or illegal activities. We may disclose categories of personal information such as identifiers, customer records information, commercial information, and network activity to service providers, affiliates, business partners, and payment processors. We may be deemed to have sold such information under the broad definition of “sale” under the CCPA, though we do not exchange data for monetary value. We do not knowingly sell the personal information of consumers under the age of sixteen.

California residents have the right to notice of data collection, the right to request disclosure of information collected and shared, the right to request deletion of their data, the right to opt out of sale of personal data, and the right to be free from discrimination for exercising privacy rights. You may exercise these rights by contacting us at info@27skinstudio.com or through our website contact page. We will verify your identity before responding and will deliver required information free of charge within the time frames set by law.

Do Not Track and California Online Privacy Protection Act

Our Service does not respond to Do Not Track signals. Some third-party websites may track your browsing activities, and you can configure your browser to communicate your preferences to such sites.

Shine the Light Law and Minor Users

California’s Shine the Light law allows residents to request information about how personal data is shared with third parties for direct marketing purposes. California’s Business and Professions Code Section 22581 also allows minors under the age of 18 who are registered users to request removal of publicly posted content. Such requests must be sent to us by email.

Children’s Privacy

Our Service does not knowingly collect personal information from anyone under the age of 13. If you are a parent or guardian and believe that your child has provided us with personal data, please contact us so that we may delete it. If we become aware that we have collected information from a child under 13 without parental consent, we will take steps to remove it.

Links to Other Websites

Our Service may contain links to websites not operated by us. We are not responsible for the privacy practices of those sites and encourage you to review their policies.

Changes to This Privacy Policy

We may update this Privacy Policy periodically. Any changes will be posted on this page with a revised effective date. You are advised to review this policy regularly.

Contact Us

If you have any questions about this Privacy Policy, you may contact us by visiting https://www.27skinstudio.com/contact or by sending an email to info@27skinstudio.com.

Certain words in this Privacy Policy are capitalized and have specific meanings. These definitions apply whether the terms appear in singular or plural form. An “Account” means a unique account created for you to access our Service. A “Business,” for purposes of the California Consumer Privacy Act (CCPA), refers to 27 Skin Studio as the legal entity that collects consumers’ personal information and determines the purposes and means of its processing. The “Company,” referred to as “we,” “us,” or “our” in this Agreement, refers specifically to 27 Skin Studio. “Country” refers to the United States of America. A “Consumer,” for purposes of the CCPA, is a natural person who is a California resident. “Cookies” are small files placed on your computer or mobile device that store details of your browsing history. A “Device” means any device that can access the Service, such as a computer, tablet, or mobile phone. “Do Not Track” or “DNT” refers to a concept promoted by U.S. regulatory authorities that allows internet users to control tracking of their online activities across websites. “Personal Data” is any information that relates to an identified or identifiable individual. For purposes of the CCPA, “Personal Data” includes information that identifies, relates to, or could reasonably be linked with you. A “Sale,” under the CCPA, means selling, renting, disclosing, disseminating, making available, transferring, or otherwise communicating a consumer’s personal information to another business or third party for monetary or other valuable consideration. “Service” refers to the website operated by 27 Skin Studio. A “Service Provider” means a natural or legal person who processes data on behalf of the Company. “Usage Data” refers to information collected automatically when you use the Service, such as the duration of a page visit. “Website” refers to 27 Skin Studio, accessible from https://www.27skinstudio.com. “You” means the individual accessing or using the Service, or the company or other legal entity on behalf of which such individual is accessing or using the Service.

While using our Service, you may be asked to provide certain personally identifiable information that can be used to contact or identify you. This information may include your name, email address, phone number, and mailing address. We also collect Usage Data automatically, which may include your device’s IP address, browser type and version, the pages you visit, the date and time of your visit, the time spent on those pages, and other diagnostic data. When you access the Service through a mobile device, we may collect information about the type of device you use, your device ID, your IP address, operating system, and browser type.

We use cookies and similar technologies such as beacons, tags, and scripts to track activity on the Service and store certain information. Cookies may be persistent or session-based. Persistent cookies remain on your device when you go offline, while session cookies are deleted once you close your browser. We use cookies for purposes including authentication, fraud prevention, remembering user preferences, and analyzing website traffic. If you refuse cookies, you may not be able to use some parts of our Service.

We use personal data to provide and maintain the Service, to manage your Account and registration, and to perform contractual obligations. We may use your information to contact you by email, telephone, SMS, or other electronic communications regarding updates, security information, promotions, or services. We may provide you with news or special offers relating to services similar to those you have purchased or inquired about, unless you opt out. We also use your information to manage customer requests, to analyze and improve our services and marketing efforts, and to evaluate business transfers such as mergers, acquisitions, or reorganizations. With your consent, we may use your information for other purposes.

We may share your personal information with service providers who assist us in monitoring and analyzing use of our Service, processing payments, or contacting you. We may disclose your information in connection with business transfers, such as mergers or sales of assets. We may also disclose your information if required by law, in response to valid requests by authorities, or if necessary to comply with legal obligations, protect the safety of users, prevent wrongdoing, or defend our rights.

We retain your personal data only as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law. Usage data is generally retained for shorter periods, unless it is necessary for security or functionality. Your information may be transferred to and maintained on servers outside of your state or country where data protection laws may differ. By submitting your personal information, you consent to such transfers. We take all reasonable steps to ensure that your data is treated securely and in accordance with this Privacy Policy.

The security of your personal data is important to us. We use commercially acceptable means to protect your data, but no method of transmission over the Internet or method of electronic storage is completely secure. We cannot guarantee absolute security.

Service providers engaged by us may have access to your personal data in order to perform tasks on our behalf. These providers include analytics services that monitor use of our Service, email marketing services that send communications, and third-party payment processors. We do not store payment card details. Payment processors handle your financial information in compliance with the PCI-DSS security standards set by the major card brands.

This section supplements the Privacy Policy for California residents under the CCPA. We may collect categories of personal information defined by the CCPA, including identifiers such as names, aliases, and contact details; personal information described in the California Customer Records statute, such as address, telephone number, or payment details; commercial information such as records of services purchased; and Internet or other network activity. We do not collect protected classifications, biometric information, geolocation data, sensory data, professional or educational information, or inferences drawn from personal information unless you voluntarily provide them. Sources of information include data provided directly by you, data collected automatically through your use of the Service, and data obtained from service providers.

We may use personal information for business or commercial purposes, including providing services, responding to inquiries, fulfilling purchases, complying with legal obligations, and detecting or preventing fraudulent or illegal activities. We may disclose categories of personal information such as identifiers, customer records information, commercial information, and network activity to service providers, affiliates, business partners, and payment processors. We may be deemed to have sold such information under the broad definition of “sale” under the CCPA, though we do not exchange data for monetary value. We do not knowingly sell the personal information of consumers under the age of sixteen.

California residents have the right to notice of data collection, the right to request disclosure of information collected and shared, the right to request deletion of their data, the right to opt out of sale of personal data, and the right to be free from discrimination for exercising privacy rights. You may exercise these rights by contacting us at info@27skinstudio.com or through our website contact page. We will verify your identity before responding and will deliver required information free of charge within the time frames set by law.

Our Service does not respond to Do Not Track signals. Some third-party websites may track your browsing activities, and you can configure your browser to communicate your preferences to such sites.

California’s Shine the Light law allows residents to request information about how personal data is shared with third parties for direct marketing purposes. California’s Business and Professions Code Section 22581 also allows minors under the age of 18 who are registered users to request removal of publicly posted content. Such requests must be sent to us by email.

Our Service does not knowingly collect personal information from anyone under the age of 13. If you are a parent or guardian and believe that your child has provided us with personal data, please contact us so that we may delete it. If we become aware that we have collected information from a child under 13 without parental consent, we will take steps to remove it.

Our Service may contain links to websites not operated by us. We are not responsible for the privacy practices of those sites and encourage you to review their policies.

We may update this Privacy Policy periodically. Any changes will be posted on this page with a revised effective date. You are advised to review this policy regularly.

If you have any questions about this Privacy Policy, you may contact us by visiting https://www.27skinstudio.com/contact or by sending an email to info@27skinstudio.com.