Privacy Policy

Your Trust, Our Sacred Commitment

Last Updated: August 10, 2025

Our Commitment to Your Privacy

At Serenity Spa, we understand that your personal wellness journey is deeply private and sacred. This Privacy Policy reflects our unwavering commitment to protecting your personal information with the same care and attention we provide during your spa treatments.

We believe that trust is the foundation of every meaningful relationship, and we are dedicated to maintaining the highest standards of privacy protection for all our valued guests.

Important: We operate as a service-based spa business using Shopify's platform for appointment bookings and contact management. We do not sell physical products online, and all transactions are for spa services and treatments.

Information We Collect

Personal Information

  • Full name and preferred name
  • Email address and phone number
  • Mailing address for service confirmations
  • Date of birth for age verification and personalized treatments
  • Emergency contact information for safety purposes

Health & Wellness Information

  • Health conditions, allergies, and medical considerations
  • Previous spa treatment history and preferences
  • Massage pressure preferences and areas of concern
  • Pregnancy status for prenatal treatments
  • Special accommodation needs or accessibility requirements

Service Information

  • Appointment booking details and scheduling preferences
  • Service selections, customizations, and add-ons
  • Payment information (processed securely through Shopify)
  • Gift certificate purchases and redemptions
  • Feedback, reviews, and testimonials

Website Usage Data

  • IP address, browser type, and device information
  • Pages visited, time spent, and navigation patterns
  • Booking patterns and service preferences
  • Marketing email engagement and click-through rates
  • Cookie data for website functionality and analytics

How We Use Your Information

Personalized Wellness Experience

We customize your treatments based on your health profile, preferences, and past service history to ensure optimal relaxation and therapeutic benefits tailored specifically for you.

Appointment Management

Scheduling, confirming, and managing your spa appointments through our Shopify-powered booking system, including automated reminders and follow-up care instructions.

Payment Processing

Securely processing payments for spa services through Shopify Payments, managing gift certificates, and handling refunds or cancellations according to our service policies.

Communication & Marketing

Sending appointment confirmations, wellness tips, exclusive spa offers, and important updates about our services (only with your explicit consent for marketing communications).

Service Improvement

Analyzing usage patterns and feedback to enhance our spa services, develop new treatments, and improve our website booking experience and customer satisfaction.

Legal Compliance

Meeting healthcare and business regulatory requirements, resolving disputes, protecting our rights, and ensuring the safety of our guests and staff members.

Shopify Platform Integration

Powered by Shopify

Serenity Spa operates on Shopify's secure e-commerce platform exclusively for service bookings and customer management. We do not sell physical products through our online store.

Data Hosting & Security

  • Your data is securely hosted on Shopify's PCI DSS compliant servers
  • All information is encrypted in transit and at rest
  • Shopify provides enterprise-level security monitoring and protection
  • Regular security audits and compliance certifications

Shopify Data Sharing

  • Shopify may process your data to provide platform services
  • Data is subject to Shopify's Privacy Policy in addition to ours
  • No data is shared with Shopify for their marketing purposes
  • You can review Shopify's privacy practices at shopify.com/legal/privacy

Information Sharing & Disclosure

Data Security & Protection

SSL/TLS Encryption

All data transmitted between your device and our servers is protected with industry-standard 256-bit SSL encryption, ensuring your information remains completely secure during transmission.

Secure Data Storage

Your information is stored in secure, access-controlled servers with multiple layers of protection, regular backups, and disaster recovery protocols to ensure data integrity and availability.

Access Control

Only authorized staff members have access to your information on a need-to-know basis for legitimate business purposes, with comprehensive access logging and monitoring.

Regular Security Updates

We continuously update our security measures, conduct regular security audits, penetration testing, and provide ongoing staff training on data protection best practices.

Your Privacy Rights

Access & Review

Request a complete copy of all personal information we hold about you and review exactly how it's being used, stored, and processed for your spa services.

Correction & Updates

Update, correct, or modify any inaccurate, incomplete, or outdated personal information in our records at any time through your account or by contacting us directly.

Data Portability

Request your personal data in a portable, machine-readable format to transfer to another service provider if you choose to discontinue our services.

Deletion Rights

Request complete deletion of your personal information from our systems, subject to legal record-keeping requirements and legitimate business needs for completed services.

Communication Preferences

Opt out of marketing communications at any time while still receiving essential service-related messages about your appointments and account information.

Processing Restrictions

Request restrictions on how we process your personal information in certain circumstances, including limiting use for specific purposes or activities.

Cookies & Website Tracking

We use cookies and similar tracking technologies to enhance your website experience, remember your booking preferences, and analyze how our website is used to improve our services.

Essential Cookies

Required for basic website functionality, secure login, shopping cart operations, and appointment booking. These cannot be disabled as they're necessary for core site operation.

Performance Cookies

Help us understand how visitors interact with our website by collecting anonymous statistical information about page views, user behavior, and site performance metrics.

Functional Cookies

Remember your booking preferences, language settings, and customization choices to provide a more personalized and convenient spa booking experience.

Marketing Cookies

Used to deliver relevant spa promotions and track marketing campaign effectiveness across different platforms (only with your explicit consent and easily manageable preferences).

Managing Your Cookie Preferences

You can control cookie settings through your browser preferences or our cookie management tool. Note that disabling certain cookies may limit website functionality and your booking experience.

Privacy Questions & Requests

We're here to address any privacy concerns, questions, or requests you may have. Our dedicated privacy team is committed to responding promptly, thoroughly, and transparently to all inquiries.

Email Privacy Team

info@luxuryspa.com

Response within 24 hours guaranteed

Privacy Hotline

+1 (415) 555-5555

Monday-Friday: 9:00 AM - 7:00 PM PST
Saturday: 10:00 AM - 6:00 PM PST
Sunday: 10:00 AM - 4:00 PM PST

Our Location

123 Serenity Lane
Wellness District
San Francisco, CA 94105

For in-person privacy consultations and formal requests

Policy Updates & Changes

We may periodically update this Privacy Policy to reflect changes in our spa practices, services, legal requirements, or industry standards. When we make significant changes, we will provide clear notice and transparency.

Our Update Process

  • Email notification to your registered address with summary of changes
  • Prominent notice displayed on our website homepage and booking pages
  • Update the "Last Modified" date at the top of this policy page
  • Provide a minimum 30-day advance notice period for all material changes
  • Maintain archived versions of previous policies for your reference

Our Commitment to You

Your continued use of our spa services after any policy changes indicates your acceptance of the updated Privacy Policy. However, we will always honor the privacy commitments that were in place when you first provided your information to us, ensuring grandfathered protections for existing clients.

GDPR Compliant
SSL Secured
CCPA Compliant
Shopify Secured
Privacy Certified