Privacy policy

Last updated: 5 June 2026

About This Policy

Skin Deep Medispa respects your privacy and is committed to protecting your personal information in accordance with applicable Australian privacy laws.

This Privacy Policy explains how Skin Deep Medispa (“we”, “us” or “our”) collects, uses, stores, discloses and manages your personal information when you visit our website, make a purchase, contact us, subscribe to our communications, participate in promotions, use live chat, or otherwise interact with us.

This Privacy Policy applies to personal information collected through www.skindeepmedispa.com.au, our online store, customer communications, marketing activities and related services.

By using our website or providing personal information to us, you agree to the collection, use and disclosure of your personal information as described in this Privacy Policy.

Australian Privacy Principles

We handle personal information in accordance with applicable Australian privacy laws, including the Australian Privacy Principles where they apply. The Australian Privacy Principles set out standards for how personal information is collected, used, disclosed, stored and managed.

What Personal Information We Collect

The personal information we collect depends on how you interact with Skin Deep Medispa. This may include:

  • your name
  • email address
  • phone number
  • billing address
  • shipping address
  • order details
  • payment confirmation details
  • account information, where you create an account
  • products you view, purchase, add to cart or save
  • customer service enquiries and correspondence
  • marketing preferences
  • promotion, survey or competition details where relevant
  • website usage information, such as browser type, device information, IP address, pages visited and website interactions

We do not intentionally collect sensitive personal information unless it is reasonably necessary for the purpose for which you provide it. For example, if you contact us about a product reaction, allergy concern, skincare suitability question or consultation requirement, you may choose to provide information relevant to that enquiry.

How We Collect Personal Information

We may collect personal information directly from you when you:

  • make a purchase through our website
  • create or use a customer account
  • subscribe to email or SMS marketing
  • complete a form on our website
  • contact us by email, phone, live chat, social media or through our contact page
  • submit a return, refund or product enquiry
  • participate in promotions, offers, surveys, competitions or customer communications
  • request support with a product, order or consultation requirement

We may also collect certain information automatically when you use our website, including through cookies, pixels and similar tracking technologies.

Where practicable, we collect personal information directly from you. In some cases, we may collect information from third-party platforms or service providers that support our website, online store, payment processing, shipping, marketing or customer service functions.

Information Collected Through Shopify and Third-Party Services

Our online store is hosted by Shopify. Shopify helps us operate our ecommerce store, process orders, manage customer information, facilitate payments and provide related services.

We may also use trusted third-party service providers to support our website, marketing, payment processing, shipping, analytics, customer service, live chat and business operations. These providers may collect or process personal information on our behalf where required to provide their services.

Examples of third-party service providers may include:

  • Shopify
  • payment processors
  • shipping and fulfilment providers
  • email and SMS marketing platforms
  • analytics and advertising platforms
  • customer support and live chat tools
  • apps or integrations used to operate our Shopify store

Why We Collect Your Personal Information

We collect personal information for purposes including:

  • processing and fulfilling your orders
  • processing payments, refunds, returns and exchanges
  • providing customer support
  • responding to enquiries, complaints and product questions
  • managing customer accounts
  • arranging delivery and shipping
  • sending order updates, transactional emails and service communications
  • supporting consultation requirements for certain professional skincare products
  • sending marketing communications where you have subscribed or where otherwise permitted by law
  • personalising your website experience
  • conducting promotions, offers, surveys or customer feedback activities
  • improving our website, products, services and customer experience
  • detecting, preventing and responding to fraud, security risks or unlawful activity
  • complying with legal, regulatory, accounting and tax obligations
  • enforcing our website terms, policies and business rights

How We Use and Disclose Your Personal Information

We may use and disclose your personal information for the primary purpose for which it was collected, for related purposes you would reasonably expect, where you have consented, or where required or permitted by law.

We may disclose personal information where reasonably necessary to:

  • Shopify and other ecommerce service providers
  • payment processors
  • shipping, courier and fulfilment providers
  • technology, website hosting and IT service providers
  • marketing, advertising and analytics providers
  • customer support and live chat platforms
  • suppliers or distributors where required to assist with a product enquiry, product issue, warranty claim or consultation requirement
  • professional advisers, such as accountants, legal advisers or business consultants
  • government, regulatory, medical, health, safety or law enforcement bodies where required or permitted by law

We do not sell your personal information.

Payment Information

Payments made through our website are processed by secure third-party payment providers. Skin Deep Medispa does not store full credit card or debit card details on our own systems.

Payment providers may collect and process payment information, billing details and transaction information as required to process your payment and manage fraud prevention, security and compliance obligations.

Email and SMS Marketing

If you subscribe to our email or SMS communications, we may use your contact details to send you updates, offers, product information, skincare education and promotional content.

You can unsubscribe from marketing emails at any time by using the unsubscribe link in our emails. SMS marketing messages may include instructions to opt out, such as replying STOP, where applicable.

Even if you unsubscribe from marketing communications, we may still send you non-promotional communications relating to your orders, account, purchases, customer service enquiries or other transactions.

Cookies and Tracking Technologies

We use cookies, pixels and similar technologies to operate and improve our website, remember your preferences, understand how visitors use our website, support analytics and assist with marketing and advertising.

Cookies may collect information such as your device type, browser, IP address, pages viewed, products viewed, items added to cart, time spent on pages, referring website and how you interact with our website.

You can manage or disable cookies through your browser settings. Please note that disabling cookies may affect the functionality of our website and may prevent some features from working correctly.

Shopify may also use cookies and similar technologies to support the operation of our online store, checkout, analytics and related services.

User-Generated Content

If you submit a product review, testimonial, comment, image, message or other user-generated content, that content may be published on our website or used in our marketing, depending on the nature of the submission and any permissions provided.

Please do not include personal, sensitive or confidential information in public reviews or comments.

Third-Party Websites and Links

Our website may contain links to third-party websites, platforms or services. We are not responsible for the privacy practices, security or content of third-party websites. If you access a third-party website, you should review that website’s own privacy policy and terms.

Security of Your Information

We take reasonable steps to protect personal information from misuse, interference, loss, unauthorised access, modification or disclosure.

These steps may include appropriate electronic, physical and administrative safeguards, restricted access to personal information, secure technology platforms and the use of reputable third-party service providers.

However, no method of electronic transmission or storage is completely secure. We cannot guarantee absolute security of information transmitted through our website, email, live chat or other online channels.

Data Breaches

If we become aware of a data breach involving personal information, we will take reasonable steps to assess and respond to the incident. Where required by law, we will notify affected individuals and the Office of the Australian Information Commissioner.

How Long We Keep Your Information

We retain personal information for as long as reasonably necessary to provide our services, manage customer relationships, process orders, comply with legal and accounting obligations, resolve disputes, prevent fraud and enforce our policies.

When personal information is no longer required, we will take reasonable steps to delete, de-identify or securely dispose of it, where appropriate.

Accessing or Correcting Your Personal Information

You may request access to the personal information we hold about you, or ask us to correct information that is inaccurate, incomplete or out of date.

To make a request, please contact us using the details below. We may need to verify your identity before responding to your request.

If we refuse access or correction where permitted by law, we will provide reasons where it is reasonable to do so.

Requesting Deletion of Your Information

You may request that we delete certain personal information we hold about you. In some cases, we may need to retain information where required for legal, accounting, tax, fraud prevention, dispute resolution or legitimate business purposes.

Unsolicited Information

If we receive personal information that we did not request and do not reasonably need, we will take reasonable steps to destroy or de-identify that information where appropriate and where permitted by law.

Anonymity and Pseudonymity

Where practicable, you may choose to deal with us anonymously or using a pseudonym. However, in many cases, we will need certain personal information to process orders, provide customer support, respond to enquiries, manage returns or provide requested services.

Sensitive Information

We do not collect sensitive information unless it is reasonably necessary for our business activities, you have consented, or collection is otherwise permitted by law.

Sensitive information may include information about health, allergies, skin reactions or product suitability where you choose to provide it in connection with a product enquiry, consultation requirement, reaction concern or customer support request.

Government Identifiers

We do not use government identifiers, such as tax file numbers or Medicare numbers, to identify customers.

Children’s Privacy

Our website and services are not directed to children. We do not knowingly collect personal information from children without appropriate consent.

If you believe a child has provided us with personal information, please contact us so we can review and take appropriate action.

Overseas Disclosure

Some of our service providers, including Shopify and other technology platforms, may store or process personal information outside Australia.

Where personal information is disclosed to or processed by overseas service providers, we take reasonable steps to ensure that personal information is handled appropriately and in accordance with applicable privacy requirements.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes to our practices, services, technology, legal obligations or business operations.

The updated version will be published on our website with a revised “Last updated” date.

Privacy Complaints

If you have a concern or complaint about how we handle your personal information, please contact us using the details below.

We will review your complaint and respond within a reasonable timeframe. If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner.

Office of the Australian Information Commissioner
Website: www.oaic.gov.au
Phone: 1300 363 992

Contact Us

If you have any questions about this Privacy Policy, or if you would like to access, correct or request deletion of your personal information, please contact us:

Privacy Officer: Skin Deep Medispa
Email: team@skindeepmedispa.com.au
Postal Address: PO Box 188, Toorak VIC 3142, Australia

You may also contact us via the Contact Us form on our website.