Total Wellness
Circulatory Health
Sugar & Cholesterol
Blood Sugar
Immunity & Detox
Detox Balance
Superfood Herbs
Moringa Supplements
Energy Boost
Joint & Bone
Brain Health
Mind Wellness
Memory Focus
Cognitive Wellness
Mood Balance
Pineal Gland
Fitness & Performance
Muscle Growth
Weight Control
Fat Burners
Fat Metabolism
Night Burn
Metabolism Boost
Appetite Control
Joint Support
Skin Glow
Hair Care
Hair Growth
Breast Enhance
Hearing Care
Hearing Support
Vision Care
Dental Care
Oral Probiotics
Women’s Fertility
Fertility Health
Sexual Wellness
Intimate Care
Urinary HealthPrivacy Policy
1- Introduction and Scope
Introduction and Scope
Nature Luxe Beauty is dedicated to protecting the privacy, security, and rights of our customers and website users. This Privacy Policy describes the type, extent, and purposes of the personal data we collect, use, and safeguard on our online platform, www.natureluxebeauty.com. By visiting or using our website, you accept the terms and practices outlined in this Policy.
As an independent online retail store based in the United States, we strictly adhere to all applicable federal and state privacy regulations, such as the California Consumer Privacy Act (CCPA), the Children's Online Privacy Protection Act (COPPA), and the Federal Trade Commission's (FTC) guidelines for fair data use and consumer protection. These laws control how companies like ours may acquire, use, keep, and disclose your personal information, and they guide the policies outlined here.
This policy governs all interactions with our website, whether as a casual visitor or a registered customer. It applies to any personal information supplied to us willingly (by forms, purchases, or communications) or collected automatically (via cookies and analytics technologies). It also addresses how that information may be kept, shared, or erased, as well as the rights you have over your data.
Legal Basis for Processing Personal Information:
We only collect and handle personal data where there is a legal basis for doing so, which may include:
agree: When you expressly agree to data collection (for example, by signing up for our newsletter or completing a purchase).
Contractual Necessity: When data is necessary to carry out a contract or transaction (such as processing payments or sending merchandise).
Legal Obligation: When we are compelled by law to keep or disclose data (for tax or fraud prevention reasons).
Legitimate Interest: When data processing is required for the proper running of our company and does not violate your privacy rights.
Who Does This Policy Apply To?
This policy is applicable to all users of our services, including but not limited to:
Customers that buy things from our online shop
Visitors that explore our site
Users who register for promotional mailings
Individuals that engage with us via customer service channels
Please keep in mind that, although our services are offered worldwide, our Privacy Policy is expressly designed to comply with regulatory frameworks in the United States. If you visit the site from outside the United States, you accept and agree to the collection and processing of your personal information in compliance with US privacy regulations.
Scope of this Policy
This Privacy Policy details the following areas:
What sorts of personal information do we collect?
How and Why We Use That Information
We may share your data with other parties, such as payment processors and shipping providers.
How we secure your data using suitable technological and organisational means.
Your rights to access, amend, and delete your personal data.
How to contact us with privacy-related enquiries.
We do not and will never sell your personal information to other parties. All data processing techniques are meant to minimise data acquisition while increasing user control and transparency.
Furthermore, this Policy is frequently reviewed and modified to reflect changes in the law, technology, and our business operations. The most recent version will always be available at the bottom of our website.
If you have any questions or concerns regarding this Policy or how we manage your information, please contact our privacy team at privacy@natureluxebeauty.com.
2- Information We Collect
At Nature Luxe Beauty, we are committed to collecting only the data that is necessary to provide a seamless and secure shopping experience. We believe in full transparency regarding how, why, and what kind of data we collect. Our data collection practices are designed to be in full compliance with all applicable U.S. privacy laws, including but not limited to the California Consumer Privacy Act (CCPA), the Children’s Online Privacy Protection Act (COPPA), and the Federal Trade Commission (FTC) Act.
2.1 Personal Information You Provide
We collect personal information that you voluntarily provide when you:
Register for an account
Make a purchase
Subscribe to our newsletter
Fill out forms or surveys
Contact us for customer support
This information may include:
Full Name
Email Address
Shipping and Billing Address
Phone Number
Payment Information (processed securely through third-party gateways)
User Account Credentials (e.g., username, encrypted password)
Order History and Preferences
We do not store your full credit card information on our servers. All payment details are processed through PCI-compliant third-party payment gateways such as Stripe or PayPal.
2.2 Automatically Collected Information
When you access our website, we may automatically collect certain types of information using technologies such as cookies, log files, web beacons, and analytics tools. These data points are essential to ensure the functionality, performance, and security of our website. Such data may include:
IP Address
Browser Type and Version
Device Type and Operating System
Referring URLs
Pages Visited and Time Spent
Search Queries
Geolocation Data (approximate region)
This information helps us understand how visitors interact with our website and allows us to optimize the user experience.
2.3 Cookies and Tracking Technologies
We use cookies and similar technologies for the following purposes:
Authentication and Session Management
Remembering Cart Items
Saving Language Preferences
Analytics and Website Performance
Personalized Content and Offers
By using our website, you consent to the use of these cookies. You may choose to disable cookies through your browser settings; however, this may limit certain features of the site.
2.4 Information from Third-Party Integrations
To enhance our services, we may integrate with trusted third-party tools, such as:
Google Analytics for traffic analysis
Meta Pixel (Facebook) for marketing optimization
Payment Processors like PayPal or Stripe
Shipping Integrations (e.g., USPS or FedEx APIs)
These third parties may collect data such as user behaviors, browser details, and purchase history in accordance with their own privacy policies. We do not control the data collected by these third parties and recommend reviewing their policies separately.
2.5 Information Collected for Legal Compliance
We may also collect data as required by law, including:
Fraud Prevention and Anti-Money Laundering (AML) checks
Tax Documentation (where applicable)
Records for Regulatory Authorities (pursuant to U.S. Federal Law Title 15 § 6501–6506 and California Civil Code § 1798.100)
2.6 Sensitive Personal Data
We do not collect or process sensitive categories of personal data such as:
Social Security Numbers
Biometric Data
Health Records
Political or Religious Beliefs
Sexual Orientation
If such data is ever required (e.g., for identity verification in compliance scenarios), we will request your explicit written consent in advance.
2.7 Information About Children (COPPA Compliance)
Nature Luxe Beauty is not intended for use by individuals under the age of 13. We do not knowingly collect personal information from children in accordance with the Children’s Online Privacy Protection Act (COPPA). If we discover that we have inadvertently collected data from a child, we will immediately delete the information.
2.8 User-Generated Content
If you submit reviews, testimonials, or participate in promotions or contests, you may be asked to share:
User Name or Display Name
Photos or Videos (optional)
Comments or Public Feedback
This content may be publicly visible, and by submitting it, you grant us permission to use it in accordance with our Terms of Service.
2.9 How We Protect Your Data
All data collected is encrypted during transit using SSL (Secure Socket Layer) technology and stored in secure environments. Access to user data is restricted to authorized personnel only and is monitored for suspicious activity.
2.10 Your Rights Regarding Information Collection
In accordance with the CCPA and other U.S. privacy laws, you have the right to:
Request access to your data
Request deletion of your data
Opt-out of data sales or marketing (we do not sell your data)
Correct inaccurate or outdated data
File complaints with applicable regulatory bodies
3. How We Use Your Information
At Nature Luxe Beauty, we appreciate your privacy. The personal and non-personal information we gather is used only to facilitate your contact with our services, guarantee seamless transactions, and improve your overall website experience. We comply with relevant U.S. laws, including the Federal Trade Commission Act (15 U.S.C. §§ 41-58), the California Consumer Privacy Act (CCPA), and other federal and state privacy regulations, to handle your data for the precise reasons listed below.
3.1 To process and fulfil orders.
We utilise your information to handle orders effectively and properly. This includes:
Verifying Payment Methods
Shipping items to your specified address.
Sending transactional emails, including order confirmations, shipment updates, and invoicing
Managing returns, refunds, and consumer complaints.
All payment information is processed by safe, PCI-compliant third-party processors like Stripe, PayPal, or other gateways. We do not store sensitive payment information on our systems.
3.2 Customer Service and Support
Your information allows us to react to enquiries, complaints, and comments more effectively. This includes:
Communicating via email, phone, or live chat
Resolve product-related concerns
Handling account-related enquiries like password resets or login help.
Verifying your identification before doing critical activities.
According to FTC best practices, all customer service contacts are recorded for quality control and regulatory compliance.
3.3 Personalised User Experience
We use behavioural and preference information to customise:
Product suggestions.
Special deals and savings.
Content layout and interface
Email communications (newsletters and product notifications)
This personalisation guarantees that you are shown with material and promotions that are relevant to your preferences. CCPA §1798.120 allows you to opt out of personalised content at any time.
3.4 Marketing and Promotional Communications
With your permission, we may send you information, special offers, or new product announcements through:
SMS (only with previous opt-in).
Social media platforms
All marketing mailings will have a clear “unsubscribe” option. We do not send unsolicited communications that violate the CAN-SPAM Act (15 U.S.C. §§ 7701-7713). You may alter your selections for marketing messages in your account settings or by contacting our privacy team.
3.5 Analytics and Site Performance
We examine use trends and interaction data to:
Monitor website traffic.
Track product popularity.
Identify technological concerns.
Test and enhance the user interface design.
This allows us to improve the speed and usability of our website. Data for these purposes is usually anonymised and aggregated. We employ products like Google Analytics, which follow their own data privacy guidelines under US law.
3.6 Legal Obligation and Risk Management
We may use your data to comply with relevant laws and defend legal claims, such as:
Record-keeping for tax reasons (e.g., IRS rules).
Fraud detection and cybersecurity monitoring.
Responding to subpoenas, court orders, or other legal proceedings
Cooperating with law enforcement officials as mandated by Patriot Act §215 or California Civil Code §1798.100.
We do not disclose your personal information with law enforcement or other parties unless compelled by law or with your specific permission.
3.7 Safety, Security, and Abuse Prevention.
To protect the integrity of our services, we may use your information to:
Detect unauthorised or questionable activities.
Prevent and react to data breaches.
Enforce our terms of use.
Protect our users, workers, and infrastructure against abuse and injury.
We are constantly monitoring for harmful behaviour in compliance with Cybersecurity Best Practices approved by the Department of Homeland Security (DHS) and the National Institute of Standards and Technology (NIST).
3.8 Business Operations and Internal Research.
Your anonymised data might be used for:
Internal audits and compliance assessments.
Staff Training and Performance Evaluation
Product Development and Quality Assurance
Business Analytics and Forecasting
This enables Nature Luxe Beauty to optimise its product offers, improve logistics, and maintain service quality.
3.9 Change in Business Ownership
In the case of a merger, acquisition, or sale of assets, your information may be transferred to the new business. We will inform you of any such changes as required by the FTC and the CCPA, and we will continue to safeguard your data in accordance with the provisions of this Privacy Policy until you are presented with new terms and opt out.
3.10 Data Retention.
We keep your personal information for as long as is required to perform the objectives described in this policy, as well as for additional critical reasons such as:
Adhering to legal requirements
Resolving disagreements
Enforcing Our Agreements
The normal retention duration for transaction data is seven years, in accordance with US tax law and accounting standards.
4. How We Share and Disclose Information
At Nature Luxe Beauty, transparency and user trust are the foundation of our operations. While we prioritize keeping your personal data confidential, there are limited circumstances under which information may be shared. This section outlines in full detail when, why, and how your personal and non-personal data may be disclosed to third parties — all in accordance with U.S. privacy regulations, including the Federal Trade Commission Act (FTC Act, 15 U.S.C. §§ 41–58), the California Consumer Privacy Act (CCPA), and industry best practices.
4.1 Service Providers and Operational Partners
We may share your information with trusted third-party service providers who perform essential business functions on our behalf. These providers may include:
Payment processors (e.g., Stripe, PayPal)
Fulfillment and shipping companies (e.g., USPS, FedEx)
Email and SMS marketing platforms
Web hosting services and content delivery networks (CDNs)
Data analytics providers
These partners are bound by contractual obligations and confidentiality agreements to use your data solely for the purpose of delivering the services for which they were hired. They are prohibited from using your data for their own marketing or resale purposes.
4.2 Legal Requirements and Law Enforcement Requests
We may disclose your information when required to do so by law or in response to valid legal requests, such as:
Court orders or subpoenas
Civil litigation demands
Tax or regulatory inquiries
For example, under Section 215 of the USA PATRIOT Act, U.S. businesses may be compelled to release certain customer records in national security investigations. Similarly, under the California Civil Code §1798.145, we are permitted to share personal information if required to comply with legal obligations.
We evaluate every request thoroughly to ensure that it is lawful, necessary, and limited in scope.
4.3 Business Transfers and Corporate Restructuring
In the event that Nature Luxe Beauty undergoes a merger, acquisition, bankruptcy, or sale of all or a portion of its assets, your personal data may be transferred to a successor entity. In such cases:
You will be notified of any material change via our website and/or email
The new entity will be bound by the same or stronger privacy protections
You will have the right to opt out or request data deletion, per CCPA §1798.105
Data transfer in these scenarios will only occur if the receiving party agrees to uphold data security standards.
4.4 Legal Defense and Risk Management
We reserve the right to disclose personal data in order to:
Investigate or respond to claims, disputes, or violations of our Terms of Service
Enforce our internal policies or protect our legal rights
Prevent fraud or mitigate cybersecurity threats
Protect the rights, safety, and property of our users or the public
Such disclosures will be narrowly tailored and made only when necessary under FTC enforcement guidelines and NIST (National Institute of Standards and Technology) cybersecurity standards.
4.5 Aggregated and Anonymized Data
We may use and share aggregated or anonymized data — data that cannot be used to identify any individual — for research, reporting, or statistical purposes. Examples include:
Total site visits per month
Most-viewed product categories
General location trends (e.g., users by state)
This type of data is not considered personal information under U.S. federal privacy regulations and may be shared freely with partners or published for business transparency.
4.6 Consent-Based Disclosures
In some instances, we may ask for your explicit consent to share your data, for example:
Publishing customer testimonials or reviews
Sharing your image or content on social media
Participating in joint marketing campaigns with partner brands
Your consent will always be clearly obtained in writing or via a checkbox mechanism, and you may withdraw your consent at any time.
4.7 Sharing with Affiliates and Subsidiaries
If Nature Luxe Beauty operates through legally registered subsidiaries or affiliated brands in the future, your data may be shared internally among those entities. These parties will be subject to the same privacy policy and data protection standards as outlined herein.
We do not currently operate any affiliate networks or use affiliate tracking technologies. Our operations are fully owned, direct-to-consumer retail services.
4.8 No Sale of Personal Data
We do not sell your personal information to third parties for any reason. In strict compliance with the CCPA (Cal. Civ. Code §1798.140) and other applicable laws, we affirm that:
Your personal data is never monetized
We do not engage in data brokerage
Any potential sharing is solely for necessary business functions
4.9 Data Shared Outside the U.S.
If any of our services involve processing or storage by non-U.S.-based service providers, we ensure that your data is protected under equivalent privacy standards, such as the EU-U.S. Data Privacy Framework (formerly Privacy Shield), or via Standard Contractual Clauses (SCCs).
5. Your rights and choices
Nature Luxe Beauty believes in empowering its consumers by offering them complete choice over how their personal information is collected, utilised, and kept. This section explains your rights and options under relevant U.S. privacy laws, such as the California Consumer Privacy Act (CCPA), the California Privacy Rights Act (CPRA), and FTC recommendations. These rights are intended to promote openness and trust between companies and customers.
5.1 Right To Know
You have a legal right to ask that we disclose:
The kind of personal information we have acquired about you.
We have acquired specified bits of personal information.
The kind of sources from which the information was obtained
The corporate or commercial reason for gathering or using the information
The types of third parties with whom we disclose personal data
Under CCPA §1798.110, you may request this information twice during a 12-month period. We must supply it free of charge, in a portable and easily useable manner.
5.2 Right to access and get a copy.
You have the right to seek access to your personal information under federal data privacy principles and state privacy legislation. Following identification verification, we will provide:
A comprehensive record of the data we've gathered and kept on you.
A summary of how the data was utilised.
A list of any third parties with whom we have shared your information.
This aligns with the FTC's consumer protection recommendations and CPRA §1798.100, ensuring openness.
5.3 Right to Request Correction.
If any of the personal information we hold on you is incorrect, incomplete, or out of date, you have the right to request that it be corrected. This is protected under CPRA §1798.106. We will:
Review your correction request.
Evaluate the evidence you may present.
Please update our records if the request is legitimate and verified.
We shall notify you in writing of the result of your request within 45 days, with a maximum extension of 90 days if reasonably required.
5.4 Right to Request Deletion
Under CCPA §1798.105, you have the right to request that we remove any personal information we hold on you. We will verify your identification and the request's authenticity.
Delete your data from our systems and backups (unless an exception is applicable).
Direct our service providers to remove the same data.
Confirm in writing that the deletion is done.
Please be aware that we may refuse deletion if retention is essential to:
Complete the transaction you started.
Detect and prevent security problems.
Comply with a legal responsibility, such as tax reporting under IRS standards.
5.5 Right to Opt Out of Specific Data Uses
We do not sell your personal information, as defined in CCPA §1798.140. If this policy changes, you will be notified and given the opportunity to:
Opt-out of selling your info.
Limit your usage of sensitive personal information.
Opt out of behavioural profiling or targeted advertising, if appropriate.
If these practices are established, we will include a “Do Not Sell or Share My Personal Information” link on our site.
5.6 Right to Nondiscrimination
You have the right to enjoy your privacy without facing:
Price adjustments or product accessibility limitations
Changes in Service Quality
Any kind of retribution, discrimination, or denial of benefits
Nature Luxe Beauty adheres to CCPA §1798.125 and has a zero-tolerance policy for discrimination based on privacy.
5.7 Filing a Rights Request
To exercise any of the rights mentioned above, please utilise one of the following methods:
Online Request Form: [Insert URL].
Email address: privacy@natureluxebeauty.com.
Mail: Nature Luxe Beauty, 16250 Ventura Blvd., Suite 202, Los Angeles, CA 91536.
For security reasons, we may need to confirm your identity using:
Name, email, and order history.
Government-issued ID (in rare situations)
You may also nominate an authorised agent to make a request on your behalf, as long as they give written authorisation.
5.8 Rights of Non-California Residents
While many of these rights are derived from California law, we extend them to all US users to ensure fairness and compliance with FTC best practices, as well as to prepare for future state-level privacy regulations (e.g., in Colorado, Virginia, and Connecticut). We shall comply with any additional duties that emerge.
6. Data Retention & Security Practices
At Nature Luxe Beauty, we are fully committed to upholding the security, integrity, and confidentiality of your personal information. This section outlines our data retention policies and security measures in accordance with applicable federal and state regulations, including the Federal Trade Commission Act, California Consumer Privacy Act (CCPA), California Privacy Rights Act (CPRA), and recognized cybersecurity frameworks such as NIST SP 800-53 and ISO/IEC 27001.
6.1 Data Retention Overview
We retain your personal data only for as long as is necessary to:
Fulfill the purposes outlined in this Privacy Policy
Comply with legal obligations (e.g., tax reporting, fraud prevention)
Resolve disputes
Enforce our legal agreements and policies
The exact retention period varies based on:
The type of personal data
The purpose for which it was collected
Any applicable legal requirements
In general:
Order and transaction records: Retained for at least 7 years, in compliance with U.S. tax and accounting laws (e.g., IRS regulations under 26 U.S. Code § 6001)
Customer account information: Retained for the duration of your account and up to 3 years thereafter
Marketing preferences and communication records: Retained for up to 2 years from your last interaction
Cookies and usage data: Retention varies (from session-based to up to 2 years), in line with your browser settings and consent
We conduct regular reviews of our data retention policies to ensure compliance with the data minimization and storage limitation principles set forth in the CPRA §1798.100(a).
6.2 Data Disposal Practices
Once data is no longer required, it is securely deleted or anonymized to prevent unauthorized access or misuse. Our disposal procedures include:
Permanent deletion from our live databases and cloud environments
Secure shredding of physical records (where applicable)
Overwriting and purging storage devices in accordance with NIST 800-88 guidelines
We also instruct our third-party service providers to delete customer data they manage on our behalf once it's no longer needed.
6.3 Data Security Overview
We implement industry-standard physical, administrative, and technical safeguards to protect your data from:
Unauthorized access
Disclosure
Alteration
Destruction
Loss
Our security program is designed in accordance with FTC cybersecurity guidance, as well as NIST and ISO standards.
6.4 Security Measures in Place
Here are just a few of the security controls we use:
Encryption: All personal data transmitted between your device and our servers is encrypted using TLS 1.2/1.3 protocols. Sensitive information such as passwords and payment data are hashed and encrypted at rest.
Secure Payment Processing: We use PCI-DSS compliant third-party payment processors. We do not store complete credit card numbers or CVVs on our servers.
Access Controls: Data is restricted to authorized personnel only, with role-based access and multi-factor authentication (MFA).
Regular Security Audits: We perform periodic vulnerability scans and penetration tests through certified security partners.
Firewall and Intrusion Detection: Our infrastructure includes WAF (Web Application Firewalls), real-time threat monitoring, and automated intrusion prevention systems.
Automatic Security Updates: All our software platforms and plugins are kept up-to-date to prevent known vulnerabilities.
6.5 Breach Notification Protocols
In the unlikely event of a data breach involving your personal data, we follow strict incident response procedures as mandated by FTC breach response guidelines, and applicable state laws like the California Data Breach Notification Law (Civil Code §1798.82).
Our breach response includes:
Immediate containment and assessment of the incident
Notification of affected users within required timeframes
Coordination with regulatory authorities and forensic investigators
Offering remedial services (such as credit monitoring, if appropriate)
6.6 User Responsibilities for Security
While we do everything we can to protect your information, you also play a role in keeping your account secure. We encourage you to:
Choose a strong and unique password
Avoid sharing your login credentials
Log out after using shared or public devices
Update your software and browser regularly
Report suspicious activity to us immediately at security@natureluxebeauty.com
6.7 Third-Party Data Handling
All third-party vendors and service providers that process your data on our behalf must:
Sign a Data Processing Agreement (DPA)
Adhere to strict confidentiality and security clauses
Maintain a data security program that meets or exceeds industry standards
We monitor vendor compliance through regular audits and risk assessments.
6.8 Children's Data Security
As noted earlier, we do not knowingly collect data from children under the age of 13, in compliance with the Children’s Online Privacy Protection Act (COPPA). Any data mistakenly collected is securely deleted once identified.
7. Cookies and Tracking Technologies
7. Cookies and Tracking Technologies
Nature Luxe Beauty uses cookies and other monitoring technologies to enhance your website experience, analyse traffic, personalise content, and offer relevant advertising. This section describes these technologies, how we use them, your rights under them, and how they comply with relevant U.S. rules such as the California Consumer Privacy Act (CCPA), California Privacy Rights Act (CPRA), and Federal Trade Commission (FTC) recommendations.
7.1 What are Cookies?
When you visit a website, your device stores little text files known as cookies. They are used to identify your browser and store data like your preferences, shopping cart contents, and login sessions. Cookies may be “session” (temporary) or “persistent” (lasts until manually removed or expires).
In addition to cookies, we may use:
Web beacons (also known as pixel tags or clear GIFs)
JavaScript Tags
Device IDs
Local storage technologies (such as HTML5)
These technologies enable us to create a smooth and secure experience for all users.
7.2 Types of Cookies That We Use
We utilise a variety of cookies, each with a distinct purpose:
Essential Cookies
These cookies are required for the essential operation of our website. Without them, you may be unable to navigate the site or utilise some functions (such as checkout and login).
Examples include remembering cart items and session management.
Performance and Analytics Cookies
These cookies enable us to analyse how visitors interact with our website. We utilise them to track visitors, improve user experience, and evaluate website performance.
Tools utilised include Google Analytics and Hotjar, among others.
Data collected: page views, time on site, bounce rate, and referral sources.
Functionality cookies
These cookies save your choices, such as language and region, to improve your browsing experience.
Example: storing display settings, remembering login data for the next time.
Advertising and Targeting Cookies
These cookies allow us to provide personalised advertisements and measure the impact of marketing initiatives. They may be set by us or third-party marketers.
Platforms include Facebook Pixel, Google Ads, and TikTok Pixel.
Purpose: audience retargeting and ad performance analysis.
7.3 How We Use Tracking Technology
Tracking technology may assist us:
Understand the consumer behaviour across sessions.
Improve the website's appearance, structure, and navigation.
Provide suitable product suggestions.
Prevent fraud and enhance security.
Customise marketing based on preferences and previous encounters.
Some technologies employ pseudonymous IDs to better understand your browsing and purchasing behaviour.
7.4 Third-Party Cookies.
Third parties (such as advertising and social media platforms) may install cookies on your device as a result of using our website. These cookies are subject to the privacy policies of the third parties involved, not Nature Luxe Beauty.
We recommend that you study third-party cookie policies, such as:
Google Privacy and Terms
Facebook's Data Policy
TikTok's Privacy Policy
7.5 Legal Basis of Use (Under US Law)
Our use of cookies and tracking techniques is consistent with recommendations from:
FTC Section 5 (prohibits unfair or deceptive practices)
CCPA/CPRA §1798.140 defines personal data and tracking IDs.
The Network Advertising Initiative (NAI) and Digital Advertising Alliance (DAA) standards
We give explicit notification and provide opt-out choices as needed.
7.6 Your Choices and Controls
You have various choices for controlling cookies:
Browser Settings
Most browsers enable you to manage cookies via the settings. You may remove or disable cookies at any time; however, certain site features may not perform correctly.
Chrome: chrome://settings/cookies.
Firefox: about:preferences#privacy.
Safari: Preferences > Privacy > Manage Website Data.
Opt-out Tools
You may opt out of various advertising cookies using:
Network Advertising Initiative
Digital Ad Alliance
YourAdChoices
Google Analytics Opt-out
To prevent Google Analytics from utilising your data, use the Google Analytics Opt-Out Add-on.
7.7 Mobile devices.
On mobile devices, you can usually control cookies and tracking by changing app permissions or device privacy settings. Ad tracking and advertising IDs may be limited and reset on platforms such as iOS and Android.
7.8 Do not track (DNT).
Our website presently does not react to Do Not Track (DNT) signals since there is no industry standard for understanding them. We will continue to follow changes and alter our policy appropriately.
7.9 Updates to this Section
As tracking technology advances, we may update this area to include new tools and methods. We urge that you review this policy on a regular basis.
8. Your Privacy Rights and Choices.
Nature Luxe Beauty is dedicated to respecting your personal privacy and upholding your rights under relevant laws. This section describes your legal rights and options for the personal information we collect, use, keep, and distribute. Our procedures comply with federal and state laws in the United States, including, but not limited to, the California Consumer Privacy Act (CCPA), the California Privacy Rights Act (CPRA), and the Virginia Consumer Data Protection Act.
8.1 Overview of Consumers' Privacy Rights
As a consumer, you have the right to make informed choices about how your personal information is collected and used. These rights apply whether you browse, buy, or contact us via our website. Specifically, you have:
Right to know what personal information we gather and why.
Right to access your data in a useable format.
With limited exceptions, you have the right to request that we delete some or all of your personal data.
Right to correct erroneous personal information.
Right to opt out of having your data sold or used for advertising or profiling purposes.
Right to be free from discrimination for exercising your privacy rights.
8.2 Right to Know and Access.
Under CCPA §1798.100, you may seek disclosure of particular categories and pieces of personal information we have gathered about you in the previous 12 months, including:
Data collection source categories
The corporate or commercial reason for collecting or selling the data.
Categories of third parties to whom the data is given.
You may obtain this information twice during a 12-month period at no cost.
8.3 Right to Delete.
You may request that we erase your personal information, with certain limitations under CCPA §1798.105. The exclusions include:
To complete a deal or meet a contract
For security reasons or to identify fraud.
To fulfil a legal responsibility.
For internal purposes that fit with customer expectations.
You may make a deletion request by contacting [your support email address here] or completing our contact form.
8.4 Right to Correct.
You have the right, under CPRA revisions, to request that any erroneous personal information that we retain be corrected. After receiving a verified request, we shall make reasonable attempts to rectify the data.
8.5 Right to Opt-Out of Sales and Sharing
Nature Luxe Beauty does not sell personal information in the conventional sense; nevertheless, certain data may be shared with third parties for cross-context behavioural advertising.
To opt out of sharing your personal information, please use the “Do Not Sell or Share My Personal Information” page on our website or send us a request directly (CCPA §1798.120).
You may also opt out of targeted adverts by using:
Network Advertising Initiative
Digital Ad Alliance
8.6 Right to Limit the Use of Sensitive Information
Under CPRA §1798.121, California citizens have the right to restrict the use and disclosure of sensitive personal information, such as health, biometric, or geolocation information. We only use such data when it is required to provide services and do not release it for other reasons.
8.7 Right to Nondiscrimination
We shall never refuse to provide services, charge different charges, or provide different levels of service solely because you exercised your privacy rights under relevant legislation. This complies with CCPA §1798.125.
8.8 How to Exercise Your Rights.
To file a request for your data, you can:
Email: [Insert Private Contact Email]
Use the Contact Us form on the website.
Send a written request to Nature Luxe Beauty at 1234 Example Blvd, Suite 101, Los Angeles, CA 90001 USA.
Before processing your request, we may ask for more information to verify your identity. If you are an authorised agency, please submit documents to prove your authorisation.
8.9 U.S. State-Specific Rights
Residents in various states are entitled to distinct privileges. Here is a brief overview:
California: The CCPA and CPRA rights mentioned above.
Virginia: Similar rights under the VCDPA, including the ability to appeal rulings.
Colorado, Connecticut, and Utah: Enforce equivalent consumer data rights beginning in 2023-2025.
We follow legal changes and will increase your rights when new law takes effect.
8.10 International users
While our services are mainly intended for US citizens, overseas users may contact us to enquire about exercising data rights in their individual countries, such as the GDPR in the European Union.
9- Data Security and Protection Practices.
At Nature Luxe Beauty, we are completely devoted to the integrity, confidentiality, and security of your personal information. Consumer data protection is not only a matter of trust; it is also a legal obligation under numerous data protection laws in the United States, including the Federal Trade Commission Act (FTC Act), the California Consumer Privacy Act (CCPA), the California Privacy Rights Act (CPRA), and industry best practices outlined by the National Institute of Standards and Technology (NIST).
9.1 Commitment to Security
We use a variety of technological, administrative, and physical precautions to secure personal information against unauthorised access, disclosure, modification, and destruction. These security procedures are examined and updated on a regular basis to keep up with changing threats and industry standards.
Our objective is to guarantee that any personal information you supply us is handled properly and securely during its entire lifespan, from collection to deletion.
9.2 Technical safeguards.
To maximise data security, we utilise a spectrum of current technologies, including:
SSL/TLS Encryption: All communication between your browser and our servers is secured using 256-bit SSL.
Firewall Protection: Our hosting environment features enterprise-grade firewalls to prevent unauthorised access attempts.
Data Masking and Tokenisation: Due to our collaboration with PCI-DSS certified third-party processors, sensitive data such as payment information is either tokenised or never stored on our systems.
Multi-factor authentication (MFA) protects administrative access to our backend systems.
9.3 Administrative safeguards.
We teach all employees and contractors that work with consumer data on privacy and security best practices. These rules accord with FTC guidelines and are recorded in internal manuals, which include:
Access Controls: Only authorised people have access to personally identifiable information (PII) depending on their job requirements.
Security audits are undertaken on a regular basis, both internally and externally, to test system vulnerabilities and remedy any gaps.
Our incident response strategy complies with state breach reporting standards, including California's Civil Code §1798.82.
9.4 Physical safeguards.
Although our company is mostly digital, we also follow physical security standards to secure any servers or locations where sensitive data may be stored. This includes:
Restricted facility access.
Video surveillance (if relevant)
Secure document disposal (shredding procedures).
9.5 Third Party Service Providers
We only work with third-party companies that follow data security requirements, such as:
Payment Card Industry Data Security Standard (PCI-DSS)
SOC 2 Type II Certification
ISO/IEC 27001 Compliance
Each vendor is rigorously verified, and we sign Data Processing Agreements (DPAs) when needed to guarantee that your data is handled legally and securely.
9.6 Payment Security
All payment transactions go via secure channels. We don't save credit card numbers or CVV codes on our servers. Instead, encrypted tokens are sent via third-party providers that are completely PCI-DSS compliant, such as Stripe, PayPal, or Shopify Payments.
9.7 Protection against Data Breach
In the case of a data breach, we are dedicated to quickly informing impacted users in accordance with relevant legislation. California citizens must comply with the California Data Breach Notification Law (Civil Code §1798.82).
We also carry cyber insurance to assist limit the consequences of data breaches and pay for possible losses.
9.8 Data Retention and Minimisation.
We keep personal information only for as long as necessary to achieve the reasons for which it was obtained, or as required by law. Our data minimisation policy guarantees that we do not gather any more information than is absolutely required for our operations.
9.9 Consumer Responsibility.
While we take all reasonable precautions to secure your data, users are equally responsible for maintaining its security. We suggest you:
Create strong and unique passwords for your accounts.
Do not disclose the login credentials.
Keep your browser and devices updated with security updates.
If you suspect unauthorised access to your account, please notify us immediately at [Insert Contact Email].
9.10 Legal Compliance.
We follow federal rules like the FTC Act, which bans misleading or unfair acts, as well as state legislation like the CCPA and CPRA, which require strong consumer data safeguards. If we are subject to extra requirements (for example, the Health Insurance Portability and Accountability Act (HIPAA) for any health-related goods), we guarantee complete compliance with the relevant legislation.
10. Data Retention and Deletion Policies.
At Nature Luxe Beauty, we recognise that customer trust is based not only on how we gather and secure personal information, but also on how long we retain it and how responsibly we destroy it. This section describes our data retention schedules, the criteria for calculating data lifespans, user rights to request deletion, and any legal responsibilities that may affect those procedures. Our practices are in accordance with applicable rules, such as the Federal Trade Commission Act (FTC Act), the California Consumer Privacy Act (CCPA), and growing data protection laws in other US states.
10.1 Purpose-driven Retention
We keep personal information for as long as required to accomplish the reasons for which it was obtained, including but not limited to:
Completing purchases
Providing Customer Service
Adhering to legal requirements
Enforcing Our Terms and Conditions
Resolving disagreements
Maintaining commercial and financial records.
The time of retention is determined by the kind of data, our relationship with the user, and any applicable legal obligations.
10.2 Category and Retention Timelines
The usual retention schedules are as follows:
Data Type, Retention Period, and Reason: Order and Transaction Data.Tax and accounting regulations need a 7-year term.
Customer Service CorrespondenceTwo years.Quality assurance and conflict resolution
User Accounts (inactive)2 years since last activityTo enable account reactivation.
Email and Marketing Consent Records3–5 years.Compliance with the CAN-SPAM Act and other marketing rules.
IP addresses and log files1 yearSecurity monitoring and fraud prevention.
Support Ticket and Live Chat Logs12–24 months.Training, support resources, and legal compliance
These time frames may be extended in the case of an inquiry, legal claim, or dispute settlement.
10.3 Legal and regulatory requirements
Certain regulations compel us to keep certain data for specified time periods. Examples include:
IRS Code Section 6001 requires financial and tax documents to be kept for at least seven years.
California Civil Code §1798.105(d) allows organisations to preserve personal data for legal compliance, such as recordkeeping.
FTC Recordkeeping Guidelines: Companies are urged to retain documents necessary to defend against charges of misleading or unfair business practices.
10.4 User Right to Request Deletion
Users have the right under the CCPA, CPRA, and analogous state legislation to request that their personal information be deleted. We comply with these requests unless an exception exists, such as:
Complete a deal or complete a contract.
Detecting and stopping fraud
Exercising legal rights or fighting legal claims
Compliance with a legal requirement.
Internal usage linked with customer expectations (for example, keeping a loyalty account).
You may request deletion by emailing us at [Insert Contact Email]. We will react within the legally allowed time frame, which is normally 45 days for CCPA-covered consumers.
10.5 How Deletion Works
When deletion is requested and allowed:
Digital Data: Is permanently erased from our databases and backups, or anonymised to eliminate any personally identifying information.
Third Parties: If your data has been shared with service providers, we will tell them to remove it in accordance with any Data Processing Agreements (DPAs).
Email systems are purged of unsubscribed or removed subscribers within 30 days.
To guarantee thorough eradication, we employ NIST 800-88 Rev.1-recommended secure deletion procedures.
10.6 Exceptions to Deletion
There are a few instances when data cannot be removed promptly. For example:
Tax or legal duties force us to retain financial records.
Pending transactions or disputes that must be retained until settlement
Security monitoring systems that preserve records for a certain duration to discover abnormalities or malicious activities.
10.7 Retention of Anonymous Data We may keep anonymised or aggregated data that no longer identifies you. This information allows us to improve our services, create new products, and analyse trends while protecting your privacy.
10.8 Periodic Review of Retention Practices.
We regularly assess our retention procedures to verify that they correspond with:
Changes to applicable legislation and industry standards
Updates about our company activities or product offers
Consumer expectations and transparency aspirations.
10.9 Data Retention Policy for Minors
We do not intentionally collect or maintain personal information from anybody under the age of 13. If such data is identified, it will be promptly erased in accordance with the Children's Online Privacy Protection Act (COPPA).
10.10 Contact Us about Retention
If you have concerns about how long we retain your information or would want to exercise your right to deletion, please contact:
📧 Privacy@natureluxebeauty.com.
📍 Nature Luxe Beauty in Los Angeles, California, USA
11. Your Rights and Choices Under US Privacy Laws
Nature Luxe Beauty is firmly devoted to openness, customer empowerment, and compliance with all relevant data privacy laws in the United States. This section describes your legal rights under applicable privacy laws, such as the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), and similar privacy frameworks in other states such as Colorado (CPA), Virginia (VCDPA), and Connecticut (CTDPA).
These rights are intended to give you with control over your personal information. We respect your rights and make it easy to utilise our website and services while respecting your data choices.
11.1 Right to Know (access)
You may request that we disclose:
The kind of personal information that we gather about you
Specific bits of personal information gathered
The sources from which we obtained the information
The corporate or economic reasons for gathering it
The types of third parties with whom we exchange information.
We will give this information for the previous 12 months from the date of your request, as required by Section 1798.110 of the California Civil Code.
11.2 The right to correct inaccurate data
You have the right, under CPRA Section 1798.106, to request that we update any erroneous personal information we hold about you. After validating your identification, we will amend the information in a timely and commercially fair way.
11.3 Right to Delete Personal Information.
According to Section 1798.105 of the CCPA, you may request that we remove personal data we have obtained, subject to certain restrictions, such as
Complete your purchase.
Detecting security problems or fraudulent activities
Adhering to legal requirements
Using the information internally in ways that correspond with customer expectations.
If your request is genuine and no exceptions apply, we will remove the data from our systems and instruct our service partners to do the same.
11.4 Right to Opt Out of Sale or Sharing.
You may be able to opt out of the “sale” or “sharing” of your personal data, as defined by US privacy legislation.
“Sale” refers to the exchange of personal information for money or other significant compensation.
“Sharing” refers to data transmission for cross-context behavioural advertising (as defined by the CPRA).
Nature Luxe Beauty does not sell personal information, but we do support your right to regulate it. You may utilise the “Do Not Sell or Share My Personal Information” option on our website or email us at privacy@natureluxebeauty.com.
11.5 Right to limit the use of sensitive personal information.
If we collect sensitive personal information, such as health-related data, geolocation, or login credentials, you have the right to restrict how we use and disclose such information under CPRA Section 1798.121. Currently, we do not gather sensitive personal data, however this policy provides openness if that changes in the future.
11.6 Right to Nondiscrimination
We would never discriminate against you if you exercise your privacy rights. This implies we won't
Deny you products and services.
Charge you various charges or rates.
Provide you with varied levels or quality of services.
Suggest that you could get a different price or quality for using your rights.
This is consistent with CCPA Section 1798.125 and equivalent fairness concepts in other state legislation.
11.7 Methods to Exercise Your Rights
You may exercise your privacy rights in any of the following ways:
Email address: privacy@natureluxebeauty.com.
Online Request Form: Available at our website's bottom.
Mailing Address: Nature Luxe Beauty, 16250 Ventura Blvd., Suite 202, Los Angeles, CA 91536, USA.
To ensure compliance with California Code of Regulations Title 11, §999.323, we will verify your identification before fulfilling your request.
11.8 Authorised Agents.
You may nominate an authorised agent to make requests on your behalf. We will require:
Proof of your written approval to the agency.
Proof of your identification
Proof that the agent is authorised by relevant legislation (e.g., Power of Attorney)
11.9 Appeals Process (For Applicable States)
If we refuse your request, you may appeal our decision under specific state statutes (e.g., Virginia VCDPA, Colorado CPA). We will provide procedures for submitting an appeal in our answer, and you may always contact our Data Privacy Officer to escalate.
11.10 Updates to this Section
This section may be updated when privacy regulations change in the United States. When we implement modifications, we will:
Update the effective date at the top of the policy.
Notify you via email (if appropriate).
Post a notification on our homepage or relevant areas of the website.
12. Cookies, Tracking Technologies, and Third Party Tools
Nature Luxe Beauty uses cookies and other tracking technologies to improve the user experience, offer essential functionality, analyse site performance, give personalised content, and support marketing campaigns. This section describes the many kinds of cookies we employ, their purposes, and how you may modify your choices.
12.1 What are Cookies?
Cookies are little data files that websites keep on your device (computer, smartphone, or tablet). They enable websites to remember your activities and preferences over time, such as login information, language settings, and goods in your basket.
Cookies may be classed into:
Session cookies are temporary cookies that are kept in your browser during your visit and removed when the browser is closed.
Persistent cookies remain on your device until they expire or are erased.
First-party cookies are those set by the website you're viewing.
Third-Party Cookies – These are cookies set by websites other than the one you're currently visiting, usually for analytics or advertising.
12.2 Types of Cookies That We Use
Nature Luxe Beauty uses the following sorts of cookies:
1. Strictly necessary cookies
These cookies are required for the functioning of our website and cannot be disabled in our systems. They provide fundamental features such as website navigation, secure checkout, and fraud detection.
Example:
Keep you logged in.
Remembering products in your shopping basket.
2. Performance Cookies.
These cookies help us understand how people use our website, enabling us to enhance functionality and user experience.
Examples:
Google Analytics
Hot Jar or Microsoft Clarity
These cookies capture aggregated, anonymous information such page views, bounce rates, and traffic sources.
3. Functional Cookies
These cookies save your site choices and give a more personalised experience.
Examples:
Language Selection
Location settings
Login credentials (if you want to remember)
4. Targeting and Advertising Cookies
These cookies are used by advertising networks to display relevant adverts based on your browsing history and preferences.
Examples:
Metapixel (Facebook)
Google Ad Conversion Tracking
TikTok Pixel.
These organisations may exchange data with other parties in order to personalise content and track campaign performance.
12.3 Third-Party Tools and Technologies.
In addition to cookies, we employ third-party technologies and scripts that gather data either directly or indirectly.
Google Analytics 4 (GA4) analyses website behaviour and provides performance insights.
Learn more.
Meta (Facebook/Instagram) Pixel: Used for ad tracking and remarketing efforts.
Learn more.
TikTok Pixel: Allows us to better analyse how people engage with our TikTok marketing initiatives.
Learn more.
Klaviyo or Mailchimp are used to manage email campaigns and automate depending on behaviour.
All third-party services are checked for privacy compliance and, when applicable, utilised in accordance with signed data processing agreements.
12.4 Do Not Track (DNT) Signals
Some browsers support the “Do Not Track” (DNT) capability. We currently do not reply to DNT signals since there is no standardised response mechanism. However, you may manage cookies directly using your browser's settings or the opt-out options given below.
12.5 Setting Your Cookie Preferences
You have a few choices for managing your cookie settings:
Browser Controls
Most current browsers enable users to manage cookies via the settings. You can do:
Delete all cookies.
Block particular websites.
Clear cookies after quitting the browser.
Refer to your browser's help section for instructions:
Chrome
Firefox
Safari
Edge
Cookie Consent Banner.
When you first visit our website, a cookie consent banner allows you to:
Accept all cookies.
Reject non-essential cookies.
Customise cookie settings.
You can always return to this banner by clicking on the “Cookie Settings” link in the bottom of our website.
Opt-out Tools
You may opt out of personalised advertising through:
Network Advertising Initiative
Digital Ad Alliance
Your Online Choices (EU/UK)
12.6 Legal Basis and Compliance (United States and Global)
We comply with applicable United States laws, including:
Californian Consumer Privacy Act (CCPA)
Californian Privacy Rights Act (CPRA)
The Colorado Privacy Act (CPA
VA Consumer Data Protection Act (VCDPA)
CT Data Privacy Act (CTDPA)
We also adhere to the General Data Protection Regulation (GDPR) in the case of overseas users, assuring openness, consent, and data minimisation principles.
12.7 Updates to the Cookie Policy
This section may be updated from time to time to reflect changes in technology, regulatory requirements, or our use of cookies. Updated versions will be published with the “Last Updated” date, and you will be alerted if there are any substantial changes via on-site messaging.
At Nature Luxe Beauty, we value your privacy and online experience. In this area, we present a clear and complete summary of how cookies and other tracking technologies are utilised across our website. These technologies enable us to provide a safe, personalised, and optimised surfing experience while being completely compliant with US consumer privacy regulations such as the California Consumer Privacy Act (CCPA), the California Privacy Rights Act (CPRA), and equivalent legislation in other US states.
Cookies are little text files that your web browser saves to your device when you visit our website. These files enable us to recognise repeat visitors, maintain session consistency, save preferences, and learn how users interact with our content. Cookies are often used to improve efficiency and functionality.
We use the following types of cookies.
Strictly Necessary Cookies: Enable essential functions such as website navigation, secure transactions, and access control.
Performance cookies are used to collect anonymous statistics for analytical reasons.
Functional cookies save choices you make, such as language, currency, and login information.
Marketing and Targeting Cookies enable us and our advertising partners (e.g., Google Ads, Meta Pixel) to provide personalised offers and track marketing performance.
In addition, we use third-party monitoring technology from respected firms like Google Analytics, Facebook, and TikTok to better analyse client behaviour and optimise performance.
You may adjust your cookie choices using your browser's settings or our on-site cookie consent manager. You also have the option to opt out of targeted advertising via the Network Advertising Initiative (NAI) and Digital Advertising Alliance (DAA) opt-out mechanisms.
We honour consumers' “Do Not Sell or Share My Personal Information” preferences in states such as California, Colorado, and Virginia. We presently do not react to Global Privacy Control (GPC) signals, but this may change as standards develop.
By using our website, you agree to the use of cookies and tracking technologies in line with this policy. This section may be modified to reflect changes in legal requirements, service providers, or technological implementation.
If you have any concerns regarding this section, or want to exercise your data rights under US law, please contact us at:
📧 Privacy@natureluxebeauty.com.
Nature Luxe Beauty in Los Angeles, California, United States.
