Privacy Policy

**Privacy Policy for Aesthetics by Viktorya**

**Effective Date: October 5, 2025**

At Aesthetics by Viktorya ("we," "us," or "our"), we are committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you engage with our services, visit our website, or interact with us in any other way. This policy applies to all clients of Aesthetics by Viktorya, a business operating in Illinois. Please note that our services are not available to individuals under the age of 18.

By using our services or providing your personal information, you agree to the terms of this Privacy Policy. If you do not agree with this policy, please do not use our services or provide your personal information.

---

1. Information We Collect

We may collect the following types of information:

a. Personal Information

Personal information is any information that can be used to identify you, including:

- **Contact Information**: Name, email address, phone number, and mailing address.

- **Appointment Information**: Details related to your appointments, such as dates, times, and service preferences.

- **Payment Information**: Credit card details, billing address, or other payment-related information (processed through secure third-party payment processors).

- **Health Information**: Information you provide regarding your health or medical history, if relevant to the services provided (e.g., allergies, skin conditions, or other aesthetic-related details).

- **Communication Data**: Information you provide when you contact us via email, phone, or other communication channels.

b. Non-Personal Information

We may collect non-identifiable information, such as:

- **Website Usage Data**: Information about how you interact with our website, including IP address, browser type, device information, and pages visited (if applicable).

- **Aggregated Data**: Statistical or demographic data used for business analytics, such as the number of clients served or types of services requested.

---

2. How We Collect Information

We collect information in the following ways:

- **Directly from You**: When you book an appointment, fill out forms, communicate with us, or make a payment.

- **Automatically**: Through website analytics tools (e.g., cookies or similar technologies) if you visit our website.

- **From Third Parties**: From third-party service providers, such as payment processors or scheduling platforms, that facilitate our services.

---

3. How We Use Your Information

We use your information to:

- Provide and manage aesthetic services, including scheduling appointments and processing payments.

- Communicate with you about your appointments, services, or promotions (with your consent, where required).

- Improve our services by analyzing client preferences and feedback.

- Comply with legal obligations, such as maintaining records or responding to legal requests.

- Protect the security and integrity of our business operations.

---

4. How We Share Your Information

We do not sell, trade, or rent your personal information to third parties. We may share your information in the following circumstances:

- **Service Providers**: With trusted third-party service providers (e.g., payment processors, scheduling platforms, or IT services) who assist us in operating our business. These providers are contractually obligated to protect your information and use it only for the purposes we specify.

- **Legal Requirements**: If required by law, such as to comply with a subpoena, court order, or other legal process.

- **Business Transfers**: In the event of a business sale, merger, or acquisition, your information may be transferred as part of the business assets, subject to confidentiality protections.

- **With Your Consent**: If you explicitly authorize us to share your information for a specific purpose.

---

5. No Services for Minors

Aesthetics by Viktorya does not provide services to individuals under the age of 18. We do not knowingly collect personal information from minors. If we learn that we have inadvertently collected information from a minor, we will promptly delete it.

---

6. Data Security

We take reasonable measures to protect your personal information from unauthorized access, use, or disclosure. These measures include:

- Using secure, encrypted payment processors for financial transactions.

- Storing sensitive information in secure systems with restricted access.

- Implementing physical, technical, and administrative safeguards to protect your data.

However, no method of transmission or storage is completely secure. While we strive to protect your information, we cannot guarantee absolute security.

---

7. Your Rights Under Illinois Law

Under the **Illinois Personal Information Protection Act (PIPA)** and other applicable laws, you may have certain rights regarding your personal information, including:

- **Access**: The right to request access to the personal information we hold about you.

- **Correction**: The right to request correction of inaccurate or incomplete information.

- **Deletion**: The right to request deletion of your personal information, subject to legal obligations (e.g., recordkeeping requirements).

- **Opt-Out of Marketing**: The right to opt out of receiving promotional communications.

To exercise these rights, please contact us using the information provided in Section 11 below. We will respond to your request in accordance with applicable laws.

---

8. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy or as required by law. For example:

- Appointment and payment records may be retained for tax or legal compliance purposes.

- Health-related information, if collected, will be retained only as long as necessary to provide services or as required by law.

When your information is no longer needed, we will securely delete or anonymize it.

---

9. Third-Party Websites and Services

Our website or services may contain links to third-party websites or platforms (e.g., payment processors or scheduling tools). We are not responsible for the privacy practices or content of these third parties. We encourage you to review the privacy policies of any third-party services you use.

---

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The updated policy will be posted on our website with a revised "Effective Date." If we make material changes, we will notify you by email or through a prominent notice on our website.

---

11. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us at:

**Aesthetics by Viktorya**

300 Village Grn, Suite 225, Lincolnshire IL 60069

aestheticsbyviktorya@gmail.com

224-808-9444

---

12. Additional Information for Illinois Residents

Under the **Illinois Personal Information Protection Act (PIPA)**, we are required to notify you in the event of a data breach involving your personal information. If such an event occurs, we will notify you as required by law and take appropriate steps to mitigate any harm.

---

**Note**: This Privacy Policy is provided for informational purposes and should be reviewed by a legal professional to ensure compliance with all applicable federal, state, and local laws, including any specific regulations for aesthetic services in Illinois. You may need to provide additional details, such as your specific business address, contact information, or details about data collection practices, to complete this policy.