Privacy Policy

[Last update August 5th 2025]


This Website (hereinafter the "Website") is published by ASC Regenity Ltd, hereafter “ASC” (owners of the Augustinus Bader® brand), a company incorporated in the United Kingdom, registered under number 10523270. Having its registered office located at Unit 2.02, 411-413 Oxford Street, London, United Kingdom W1C 2PE.


ASC may also operate a mobile application, other services, and tools (collectively, the "Services"). ASC undertakes to take commercially reasonable efforts to protect the privacy of all users of its Services (hereinafter the “Visitors”), including registered users, including users who are members of The Club loyalty program or other loyalty programs, users of mobile app “My AB Space”, guests, and all customers of Augustinus Bader® cosmetic skincare products and services (hereinafter the “Clients”). 


This privacy policy ("Privacy Policy") explains how ASC, and its affiliates, may use the information about the Visitors, including the Clients, that can be used to identify you (whether alone or in combination) as defined under applicable laws (“Personal Information”). It provides information about the procedures implemented in the collection and use of your data, as well as the options and rights to which you are entitled. By accessing, browsing or otherwise using our website, you accept this Privacy Policy, without limitation or qualification. 


If you do not accept this Privacy Policy, you may not be entitled to use fully our Services’ functionality, including Website’s functionality. 


1. Your Personal Information and Purposes of Processing

Each Visitor or Client may, at his/her option, provide ASC with Personal Information, for the following purposes:

  1. Provide you with our Services, such as, to respond to your requests and questions, to proceed to the checkout of purchases; to facilitate the appointment scheduling process; to process and fulfill your orders; maintain, and manage your user account; respond to your inquiries; to communicate with you about your orders, your account, or our Services.
  2. Identify and authenticate you so you may use certain of our Services.
  3. Operate, evaluate and improve our Services, including better understanding our customers’ needs and expectations, developing new products and services, managing our communications, analyzing our Services, conducting market research, performing internal financial processes, performing data analytics, auditing and other internal functions.
  4. Process payments for your purchases, orders, and appointments; manage billing and transactions.
  5. Protect against, identify and prevent fraud and other criminal activities, claims and other liabilities, including investigating fraudulent credit card transactions; prevent spam, fraud and abuse on the Services.
  6. Analyze customer behaviors and build up data usage patterns in order to offer, optimize and improve our Services.
  7. Monitor use of our Services and use your information to help us monitor, improve and protect our products, content, services and websites.
  8. Market and advertise our Services, products, content, services and websites, including use of targeted and behavioral advertising; conduct data analytics.
  9. Manage our offers, programs, or promotions, including administering and managing your participation in loyalty programs, providing notifications and promotional offers, personalizing your experience on our services.
  10. Get your feedback on our ideas for products or features.
  11. Prevent or address service errors, security, or technical issues, including ensuring the proper functioning and security of our Website and other digital services, conducting technical troubleshooting and maintenance. 
  12. Investigate potential violations of our Terms, verify your identity for various investigations, customer service and support purposes. 
  13. Comply with and enforce requirements under applicable laws. 
  14. Respond to requests from government or law enforcement. 
2. What information do we collect and what circumstances?

There are different levels of personal information’ collection and processing depending on the action you are taking with respect to the Services: 

  1. If you place an order, we process the following personal information: 
  2. Identification and contact information, including email address and mobile number; 
  3. First and last name; 
  4. Billing Information, including billing address and payment method details (e.g., credit card number). 
  5. Delivery Address; 
  6. IP address; 
  7. Information about your purchases, preferences and interests as you provide to us (for example, for your replenishment order).
  8. If you create an account on the Website, we process the following personal information:
  9. Identification and contact information, including email address and mobile number; 
  10. First and last name;
  11. Password (but we can’t access that information).

Optionally, you can provide: 

  1. Birthday (day and month);
  2. Skin Profile (i.e., skin related information).
  3. If you book an appointment on the Website, we process the following personal information:
  4. Identification and contact information, including email address and mobile number; 
  5. Email address; 
  6. First and last name;
  7. Billing Information, including billing address and payment method details (e.g., credit card number);
  8. IP address.

Optionally, you can provide: 

  1. Birthday (day and month);
  2. Optional information regarding the appointment. 
  3. If you sign to receive our newsletter on the Website, we process the following personal information:
  4. Email address;
  5. Mobile number (if submitted).
  6. If you register an account on our mobile app, we process the following personal information:
  7. First and last name; 
  8. Email address; 
  9. Password (but we can’t access that information);
  10. Employment Information, including position, length of employment, retailer type, retailer name.
  11. Region;
  12. Country. 

As we improve our Services and add new features, we may need to collect additional Personal Information. We will use this Personal Information in accordance with the terms of this Privacy Policy.

  1. If you visit our Website, we process, including collecting and storing session information (“Usage Information”), through cookies and API-based first-party data sharing solutions, which includes, for example:
  2. Your Internet Protocol (IP) address, which is the number automatically assigned to your computer whenever you access the Internet and that can sometimes be used to derive your general geographic area;
  3. Device ID and other unique identifiers, including mobile device identification numbers;
  4. Session token;
  5. Sites you visited before and after visiting the Services
  6. Pages you view and links you click on within the Services;
  7. Information collected through cookies, web beacons, and other technologies;
  8. Geolocation information;
  9. Information about your interactions with e-mail messages, such as the links clicked on and whether the messages were opened or forwarded; and
  10. Standard Server Log Information.


Except to the extent required by applicable law, ASC does not consider Usage Information to be Personal Information. However, Usage Information may be combined with your Personal Information that we collect. To the extent that we combine Usage Information with your Personal Information, we will treat the combined information as personal information under this Privacy Policy.


Please see below Section “Cookies” and our Cookie Policy for more details regarding processing of Usage Information through website cookies. 

  1. Personal Information can also be processed when participating in a quiz or when communicating with our customer service department (in particular, our Website's chatbot allows for automated conversations to be escalated to customer service representatives) or when in-person appointments are booked via our Website or elsewhere. Our chatbot uses AI technology to provide automated responses and suggestions to assist with your queries. Conversations may be monitored and reviewed by our team for quality and training purposes. Automated tools are not used to make decisions that produce legal or similarly significant effects without human involvement.
  2. Personal Information can also be processed when such Personal Information is provided by third parties, including our partners and service providers as described in Section 6, other Visitors, and/or publicly available sources, as allowed by applicable law.


If you give us personal information about someone else, you must do so only with that person’s express consent. You should inform them how we collect, use, disclose, and retain their personal information according to our Privacy Policy. 


3. Sensitive Personal Information, including financial information

Some of the information we may ask you for and collect when you provide it to us may be categorized as “Sensitive Personal Information” under certain laws. In the context of the Services, possible Sensitive Personal Information includes personal information that reveals:


  1. account log-in, financial account, debit card, or credit card numbers in combination with any required security or access code;
  2. password, or credentials allowing access to an account;
  3. precise geolocation.


For example, we may ask you for your credit card number and related personal financial information when you use our Services, particularly to facilitate payments, to alert you of past, current, and upcoming charges or payments, and to perform internal financial processes, such as looking at the status of a credit card charge. In the event of a credit card dispute, we may also share account information with your bank, primarily, to verify the legitimacy of a charge. We may share this information with credit card processing companies and any other third party that may need the information to process your orders. These organizations have their own privacy and data collection practices, and we have no responsibility for these independent policies.


This type of information will be sought only in ways which should be obvious to you why and how we are asking for the Sensitive Personal Information. We do not process Sensitive Personal Information for marketing purposes, unless we obtain your affirmative consent.


4. How long do we retain Personal Information?

Your Personal Information will not be kept in a form that allows you to be identified for any longer than is considered necessary by ASC to achieve the purposes for which they have been collected or processed or as it is established in the applicable laws and regulations related to data retention periods. We subsequently anonymize or delete the Personal Information, except when we need to retain such Personal Information until the expiry of the legally prescribed period as evidence for law enforcement actions as might be required under applicable law. In case of judicial action initiated. Personal Information may be stored until the end of said action, including any appeal period. 

5. How is your information stored and secured?

We treat data as an asset that must be protected and use security measures (encryption, passwords, physical security, etc.) to protect the security and confidentiality of your Personal Information against unauthorized access and disclosure. However, as you probably know, third parties may unlawfully intercept or access transmissions or private communications, and other users may abuse or misuse your personal information that they collect from the site. Therefore, although we work very hard to protect your privacy, we do not promise that any website, Internet transmission, computer system, or wireless connection is completely secure.


We are particularly mindful to ensure appropriate protection and security of our information systems. Specific tools allowing us to detect security breaches have been implemented. The implementation of such tools may incidentally entail access by our security services to Personal Information. This Personal Information will be collected and processed for the purpose of managing the security breach and, in accordance with applicable data protection regulations.


6. Who do we share your Personal Information with?

We can transfer or disclose your Personal Information through our Services as described below: 

  1. Service Providers. We may transfer or disclose your information to carefully selected companies that provide services on our behalf, such as:
  2. Payment Processing Providers – to process payments securely and prevent fraud.
  3. Ecommerce Hosting and Platform Infrastructure Providers – to operate our website, manage your account, and host our digital services.
  4. Content Delivery and Technical Infrastructure Providers – to ensure website performance, security, data storage, and content distribution.
  5. Marketing and Customer Relationship Management Providers – to send you transactional messages and marketing communications you choose to receive, and to personalize your experience.
  6. Analytics, Website Personalization, and Performance Tools – to understand website usage, improve our services, and offer tailored content.
  7. Digital Advertising and Social Media Platforms – to deliver relevant advertisements, retargeting, and lookalike campaigns where permitted by law.
  8. Fulfillment, Logistics, Warehousing, and Returns Processing Providers – to deliver your purchases, handle returns, and provide delivery updates.
  9. Appointment Booking and In-Store Experience Providers – to manage consultations, reminders, and related services (e.g., The Skin Lab).
  10. Customer Support and Live Chat Solution Providers – to provide real-time assistance and manage your inquiries (including AI-powered chatbot tools).
  11. Referral and Loyalty Program Providers – to administer referral offers, rewards, and loyalty programs.
  12. Compliance, Legal, and Professional Service Providers – to comply with legal obligations, audits, or to protect against fraud or other unlawful activity.

These entities are limited by contractual provisions in their ability not to use your information for purposes other than providing the relevant services. Service providers handle your Personal Information in accordance with applicable data protection regulations and in accordance with their privacy policies, however, ASC does not have control over service providers’ data processing activities.


  1. Other Parties When Required by Law or as Necessary to Protect Our Services. There may be instances when we disclose your information to other parties:
  2. to comply with the law or respond to compulsory legal processes (such as a search warrant or other court order);
  3. to verify or enforce compliance with the policies governing our Services to the extent that such disclosure is permitted by applicable data privacy laws; and
  4. to protect our rights, property, or safety, or, in compliance with data protection laws, the rights, property or safety of us, business partners, or our customers.
  5. Other Parties in Connection with Transactions. We may disclose your Personal Information to a third party as part of a merger or transfer, acquisition or sale, or in the event of a bankruptcy.
  6. Other Parties with Your Consent or on Your Request. In addition to the disclosures described in this Privacy Policy, we may share information about you with third parties when you separately consent to or request such sharing.
  7. Links to Other Websites, Devices, Apps and Features. Our Services may enable you to connect to other websites, devices, apps and other features, which may operate independently from us and may have their own privacy notices or policies, which we strongly suggest you carefully review. To the extent any linked website, device, app or other feature is not owned or controlled by us, we are not responsible for its content, use or privacy practices. This Privacy Policy does not apply to those third-party sites. We strongly advise you to check the privacy policies of all third-party sites you visit to find out how they treat your Personal Information. 


7. Your Rights

Depending on where you reside, you may have different scope of data privacy rights. If you reside outside the United States, please refer to the privacy policy for your jurisdiction published in the country-specific version of our Website. If you use our Website from other jurisdictions, you are responsible for ensuring your use complies with local laws.


United States. Certain U.S. states have unique requirements regarding the disclosure of data practices, while other states offer extra personal data rights and protections. As of the effective date of this Privacy Policy, the states that have specific data privacy or disclosure laws are as follows: California, Colorado, Connecticut, Delaware, Indiana, Iowa, Kentucky, Maryland (effective 10/01/2025), Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island (effective 01/01/2026), Tennessee, Texas, Utah and Virginia. For a current guide of U.S. state-specific data privacy laws, you can review regularly updated materials available here: https://iapp.org/resources/article/us-state-privacy-legislation-tracker/ (for information purposes only). If you are a resident of any of these states, you may have additional privacy rights available to you that are not expressly outlined in this document. This list of states with specific privacy laws is constantly changing, and we may not reflect the current list of states with such laws.


Residents of the states listed above may be entitled to the rights to:

  1. Confirm whether we process your personal information.
  2. Access and delete certain personal information (i.e., you can ask us for a copy of the personal information we have collected, and you can ask us to delete certain personal information). 
  3. Correct inaccuracies in their personal information, taking into account the information’s nature processing purpose (excluding Iowa and Utah).
  4. Be informed about third parties with which your personal information has been shared. 
  5. Data portability (i.e., ask us to share (port) your personal information to another entity).
  6. Either limit (opt-out of) or require consent to process sensitive Personal Information.
  7. Opt-out of Personal Information processing for: (i) sales; (ii) targeted advertising (excluding Iowa); (iii) profiling in furtherance of decisions that produce legal or similarly significant effects (excluding Iowa and Utah).
  8. Request the review of decisions taken exclusively based on automated processing if these decisions could affect your rights under applicable data privacy laws.


In certain circumstances, you might be also entitled to establish guidelines relating to the use of your Personal Information after your death.


However, these rights may be limited, for example if fulfilling your request would reveal personal information of another person, where they would infringe the rights of a third party (including our rights) or if you ask us to delete information which we are required by law to keep or have compelling legitimate interests in keeping. Certain state laws may not apply to our operations. We will inform you of the relevant grounds and exemptions we rely upon when responding to any request you make.


8. How to Exercise Your Rights

You may exercise the above-mentioned privacy rights at any time by contacting our Data Protection Officer through our Customer Services team (here)


In certain circumstances, we may need to verify your identity prior to effectuating your request. To verify your identity, we may request that you provide the following information:

  1. Full Name;
  2. Email address;
  3. Postal address;
  4. Phone number;
  5. IP address; or
  6. Device identifier.

You may also designate an authorized agent to exercise your rights on your behalf. In such instances, we may request the agent to verify that he or she has the authority to submit requests on your behalf. We may do so by asking the agent to submit the following information:

  1. Valid power of attorney;
  2. The requester's valid government-issued ID; and
  3. The authorized agent's valid government ID.


Please note that we may not be able to process your request if your designated agent and/or you do not provide us with the above information.


We strive to respond to most requests within 30 to 45 days of receipt, although some responses may take longer. In certain cases, such as in connection with legal exceptions, we may deny a request, though we will provide reasons for such denial. 

If, after having contacted us, you believe that your rights regarding your data have not been respected, you may file a claim with your relevant local authority.


9. Marketing Communications

When you make a purchase, we may send you marketing emails about similar products and services if you do not opt out during checkout. We may also contact you by postal mail, or phone regarding products, services, and promotions. You can unsubscribe or otherwise withdraw the consent that you have previously given with respect to ASC’s marketing communications at any time following the instructions provided in the respective marketing email or by contacting us using the information specified in the “Contact Us” section below (i.e., Section 13). Visitors who opt out may continue to receive services-related and other non-marketing emails. We do not control the communications that you might receive from our service providers unrelated to ASC’s marketing communications, and if you would like to opt-out of receiving communications from our service providers, you need to exercise your rights with them directly.

10. Cookies and Behavioral Advertising 

10.1. Cookies.  Cookies may be stored on Visitors’ devices at the time of their connection to the Website. Cookies are small data text files that are used by websites to simulate a continuous connection to that site, enhance the visitor’s browsing experience and will be necessary for visitors to complete their purchase session on e-commerce sections of the Website. Visitors may set their browser to disable cookies. Except for functional or security cookies, the use of cookies on a device depends on your choice, which can be made and modified freely at any time. You can manage cookies by setting your browser to accept or reject cookies on your device, either globally or cookies by cookies. Settings that you make may change your internet browsing capacity and may alter your ability to access certain services that require the use of cookies. We cannot be held liable for the minimized access to our services as a result of cookies you previously deleted or rejected. 


For more information on cookies, including types of cookies used, and how to disable cookies this read our Cookie Policy.


10.2 Interest-based Ads and Behavioral Advertising. We believe that advertising is more effective and relevant when it is targeted to your interests and behaviors. Therefore, we may work with third parties who collect information on our Website through the use of cookies and similar methods, such as API-led platform provider to support data integrations with key advertising platforms, in order to serve you with relevant advertisements on other services or to determine that you have seen our advertisements on other services. You do have the ability to control certain advertising practices. We comply with the Self-Regulatory Principles for Online Behavioral Advertising as administered by the Digital Advertising Alliance (DAA).


You can learn more about interest-based advertising and opt-out of targeted advertising from certain providers with whom we work by visiting the DAA’s consumer choice page. The opt-out process through the DAA relies upon the placement of an opt-out cookie on your device, and you must repeat this process on each device or if your cookies are purged from your device. Cookie-based opt-outs are not effective on mobile applications. Visitors may opt out of certain advertisements on mobile applications or reset advertising identifiers via their device settings.  


You may opt-out of being tracked online by certain companies who are listed at Your Ad Choices OR The Nai and may also learn more about online behavioral advertising at such websites. If you opt-out, you will still receive advertisements, but they will not be delivered to you by such companies from whom you have opted-out based upon your behavioral data possessed by the companies from whom you have opted-out.


To learn how to limit ad tracking or to reset the advertising identifier on your iOS and Android device, click on the following links:

  1. iOS - Apple Support
  2. Android - Android Support

You may also download and set your preferences on the DAA’s App Choices mobile application(s) available in Google Play or the Apple App stores. More information about opting out on mobile devices is available here - The Nai.


We do not respond to or honor “do not track” (a/k/a DNT) signals or similar mechanisms automatically transmitted by web browsers for which we cannot evaluate your choice.


11. Protection For Children

Our Services are not designed or intended to collect Personal Information from users under the age of 18. If you are under 18, please do not attempt to register for our Services or provide us with any Personal Information. When we become aware that Personal Information from a child under 18 has been collected without a proper child’s parent or guardian’s consent, we will use all reasonable efforts to delete such information from our database. If you believe that a person under age 18 may have provided us with Personal Information in violation of these Terms of Use, please contact us using the information specified in the “Contact Us” section below (i.e., Section 13). 


12. Modifications to Privacy Policy

ASC may update or modify this Privacy Policy at any time. Any changes will take effect once posted and displayed online, and by continuing to access or use the Services after such changes are posted, Visitors are deemed to have accepted them, unless applicable laws require a different form of notice. Where required or at its discretion, ASC may provide additional notice of significant changes in accordance with applicable laws. Visitors are encouraged to review this Privacy Policy periodically and are responsible for reading it before using the Services.


13. Contact Us

If you have any questions about our privacy practices, you may contact us at: contact@augustinusbader.com

In case you cannot contact us via email, our post address is: Unit 2.02, 411-413 Oxford Street, London, United Kingdom W1C 2PE.