Privacy policy

Privacy Notice

 

1. Who we are

TruefaithHB supplies wigs , hair extensions  and also provides non- medical  hair consultation, and fitting services, including support for individuals experiencing hair loss due to medical conditions or treatment.

We act as the Data Controller for personal data collected through our website, online shop, and in-person or remote consultations.

2. Who this notice applies to

This Privacy Notice applies to:

  • Clients receiving consultations or fittings
  • Customers purchasing wigs or products online
  • Individuals making enquiries

3. What personal data we collect

Online shop customers

  • Name
  • Billing and delivery address
  • Email address
  • Phone number (if provided)
  • Order details

Payment details are processed securely by our payment provider. We do not store full card details.

Consultation and fitting clients 

  • Contact details
  • Consultation notes
  • Measurements
  • Health-related information (where relevant)
  • Photographs (with explicit consent)

General enquiries

  • Name
  • Contact details
  • Message content

4. Why we collect your data

We use your data to:

  • Process and fulfil orders
  • Deliver products
  • Manage returns and customer support
  • Arrange and manage appointments
  • Provide consultation, and fitting, services
  • Communicate with you about your order or care
  • Maintain business records

5. Lawful basis for processing

We process personal data under the following lawful bases:

  • Contract– to fulfil online orders and deliver products
  • Provision of health-related services– for consultation clients
  • Explicit consent– for health information and photographs ( If and when needed  )
  • Legitimate interests– customer service, record keeping, and business administration

Consent can be withdrawn at any time.

6. Marketing communications

We will only send marketing emails if you have opted in.

You can unsubscribe at any time using the link in our emails or by contacting us directly.

7. How we store and protect your data

We take appropriate security measures, including:

  • Secure, password-protected systems
  • Encrypted digital storage
  • Restricted access to personal data
  • Secure handling of paper records

8. Sharing your data

We may share personal data with:

  • Delivery and courier services
  • Payment processors
  • IT and website service providers
  • NHS services or healthcare professionals (where relevant and authorised)

Only the minimum necessary data is shared.

9. How long we keep your data

  • Online order records: up to 6 years (for tax and accounting)
  • Consultation client records: 6–7 years after last contact
  • Enquiries: up to 12 months
  • Marketing data: until you unsubscribe

Data is securely deleted when no longer required.

10. Your rights

You have the right to:

  • Access your personal data
  • Request correction of inaccurate data
  • Request deletion (where applicable)
  • Restrict or object to processing
  • Withdraw consent at any time

To exercise your rights, contact us using the details above.

11. Complaints

If you have concerns about how we handle your data, please contact us first.

You also have the right to complain to the Information Commissioner’s Office (ICO).

12. Changes to this notice

We may update this Privacy Notice from time to time. The latest version will always be available on our website or on request.