Privacy policy

Privacy Policy

Last updated: January 13, 2026

SANASALUS LTD (“SanaSalus”, “we”, “us” or “our”) operates this website and online store (the “Services”) to provide you with premium hair, beard and body care products. This Privacy Policy explains how we collect, use, store and share your personal data when you use our Services.

SANASALUS LTD is a company registered in England and Wales under company number 16345726, with its registered office at 71–75 Shelton Street, Covent Garden, London WC2H 9JQ, United Kingdom.
For the purposes of UK data protection law, we are the Data Controller of your personal information.

Our Services are powered by Shopify Inc. Shopify acts as our Data Processor, providing the ecommerce platform and related technology used to operate our store.

By accessing or using our Services, you confirm that you have read and understood this Privacy Policy.

1. What Personal Data We Collect

We may collect and process the following types of personal data:

  • Identity & Contact Data – name, billing address, delivery address, email address, phone number

  • Payment Data – card details, payment method, transaction IDs (payments are processed securely by Shopify and payment providers; we do not store full card numbers)

  • Account Data – login details, preferences, order history

  • Transaction Data – products viewed, purchased, returned or exchanged

  • Communications – messages sent to customer support, emails, chat messages

  • Technical Data – IP address, browser type, device identifiers

  • Usage Data – how you use and navigate our website

2. How We Collect Your Data

We collect data:

  • Directly from you when you place an order, create an account, subscribe, or contact us

  • Automatically through cookies, pixels and similar technologies

  • From Shopify and service providers that process data on our behalf

  • From advertising and analytics partners

3. Our Legal Basis for Processing (UK GDPR Article 6)

We only process your personal data when we have a lawful basis to do so, including:

Purpose Legal Basis
Processing orders, shipping, payments Performance of a contract
Customer support & account management Performance of a contract
Fraud prevention & security Legal obligation / Legitimate interest
Marketing emails & SMS Consent
Website analytics & improvements Legitimate interest
Legal compliance, tax & accounting Legal obligation

4. How We Use Your Personal Data

We use your data to:

  • Fulfil orders and deliver products

  • Process payments and prevent fraud

  • Manage your account

  • Provide customer support

  • Send important service communications

  • Send marketing communications (where you have consented)

  • Improve website performance and customer experience

  • Show personalised ads on platforms such as TikTok, Meta (Facebook/Instagram) and Google

5. Marketing, Advertising & Tracking

We use marketing and advertising tools such as:

  • TikTok Pixel

  • Meta (Facebook & Instagram) Pixel

  • Google Ads & Google Analytics

  • Shopify marketing tools

These technologies may track:

  • Pages you view

  • Products you interact with

  • Whether you place an order

This allows us to show you relevant ads and measure performance. You can control cookies and tracking via your browser settings or our cookie banner.

You can unsubscribe from marketing emails at any time by clicking unsubscribe in any email.

6. How We Share Your Data

We may share your personal data with:

  • Shopify (our ecommerce platform provider)

  • Payment processors (such as Shopify Payments, Stripe, PayPal)

  • Delivery & fulfilment partners

  • Email & marketing platforms

  • Advertising platforms (TikTok, Meta, Google)

  • Legal or regulatory authorities if required by law

All partners are required to keep your data secure and only use it for agreed purposes.

7. International Data Transfers

Your data may be transferred outside the UK or EEA (for example to Shopify servers in the USA or Canada).
When this happens, we use:

  • UK International Data Transfer Agreement (IDTA)

  • UK Addendum to EU Standard Contractual Clauses

to ensure your data remains protected.

8. Children’s Data

Our Services are not intended for children under 13.
We do not knowingly collect personal data from children.
If you believe a child has provided us with personal data, contact us and we will delete it.

9. How Long We Keep Your Data

We retain personal data only as long as necessary to:

  • Provide our Services

  • Meet legal and tax requirements

  • Resolve disputes

  • Enforce our agreements

10. Your Rights (UK & EU)

You have the right to:

  • Access your data

  • Correct your data

  • Request deletion

  • Restrict or object to processing

  • Withdraw consent

  • Request a copy of your data

To exercise any right, contact us at contact@sanasalus.com

11. Security

We use industry-standard security measures, but no system is 100% secure. Please keep your login details private.

12. Third-Party Links

Our site may link to third-party websites. We are not responsible for their privacy practices.

13. Complaints

You may complain to us or to the UK Information Commissioner’s Office (ICO).

14. Changes to This Policy

We may update this policy. The latest version will always be posted on our website.

15. Contact Us

SANASALUS LTD
71–75 Shelton Street
Covent Garden
London WC2H 9JQ
United Kingdom

contact@sanasalus.com