Privacy & Policy

  1. Who are we?

Irish beauty merchants Ltd. Trading as Crystal Nails Ireland and Beauty merchants (“we”, “us”, “our”, “The Business”, “Business”) is an organization based at 1A Leinster Street North, Phibsborough Dublin 7, D07 KD51. You can contact our office and our Data Protection Manager using our contact details

We understand your privacy and the security of your information is very important to you. We’re committed to keeping your information private and respecting your data protection rights.

The following discloses our information-gathering and dissemination practices relating to The Business Website. In order to fully understand your rights, we encourage you to read this Privacy Statement and consult our Website Terms and Conditions. Each time you use this Website you will be bound by the then-current Privacy Statement, Website Terms, and Conditions and you should review these each time you use the Website to satisfy yourself that you are happy with it. Any external links to other websites are clearly identifiable as such and we are not responsible for the content or the privacy statements of these other websites.

  1. Acceptance Of This Privacy Statement

By using this Website, you signify acceptance of this Privacy Statement. If you do not agree with or you are not comfortable with any aspect of the Privacy Statement, your only remedy is to discontinue the use of the Website. We reserve the right to modify this Privacy Statement at any time. Your continued use of any portion of the Website following notification or posting of such changes will constitute your acceptance of those changes.

  1. Information We Collect From You Through Use Of Our Website & Services

We may collect and process the following data about you:

  1. Customer/User inbound communication (e.g. via email, phone, or the website’s contact us):

Information we collect:

  • Name
  • Company, organization, or business name (if applicable)
  • Contact number(s)
  • Email Address
  • Postal Address

But we also anticipate some users of our service may volunteer additional information, which is likely to include reasons for contacting us.

Purpose of collecting this Information:

We use this information for the purpose of responding to contact or communication from you.

Legal Basis:

This information is processed on the basis of the business’ Legitimate Interest.

Retention Period:

The information collected is maintained for the length of time needed to address the query and/or engagement. The information may be retained for a short period of time following the query/engagement in case you have any follow-up queries.

Sharing Information:

Except in situations where we are required to do so by law, we do not share this information with any third parties, unless a user requests us to specifically engage with a third party on their behalf, at which point it will be made very obvious and clear from our communication that this is OK and has the users consent.

  1. The Business Website:

Information we collect:

Cookies and other similar methods (e.g. digital certificates) are used to monitor website traffic and enhance your experience of our website. Cookies are pieces of data that your computer, mobile, or tablet device downloads when you visit a website. Cookies are used to keep track of your preferences and to recognize return visitors.

You can set your browser to reject cookies. However, if you choose to reject cookies, you may not be able to use or access certain of our online or mobile services. Alternatively, you can clear (delete) all cookies from your web browser once you finish using our website. Please refer to Cookie Policy for more information.

Google Analytics

Google Analytics is a web analytics service provided by Google which uses cookies to evaluate your use of the Business website. Google does not collect or store personal information and prohibits the tracking or collection of personal information or the association of personal information with web analytics information. Google Analytics does not report your actual IP address information to Google Analytics customers. The information collected by Google on their cookies is stored on secure Google servers.

The Google Analytics cookies and digital certificates used in our website are:

  • _ga
    • This is a Google Analytics cookie and is used to distinguish users
    • Expiration Time: 2 years
  • _gid
    • This is a Google Analytics cookie and is used to distinguish users
    • Expiration Time: 24 hours
  • _gat_gtag_UA_
  • This is a Google Analytics cookie and is used to throttle the request rate
  • Expiration Time: 1 minute
  • Channel ID
    • This is a “ecdsa_sign” type certificate used for
  • Channel ID
    • This is an “ecdsa_sign” type certificate used for

Google Analytics Opt Out

Users may opt out of Google Analytics by installing the Google browser tool which automatically prevents Google track your web browser. The browser tool plugin is available from:

Facebook Pixel

The Facebook Pixel tracking used in our website is provided by:

  • fbevents.js
    • It enables the business to measure, optimize and build audiences for advertising campaigns served on Facebook. In particular, it enables the business to see how our users move between devices when accessing the business website and Facebook. It also helps ensure our Facebook advertising is seen by our users who are most likely to be interested in such advertising by analyzing which content a user has viewed and interacted with on the business website.
    • Expiration Time: Up to 28 days

Facebook Pixel Opt Out

Users can control how Facebook uses cookies and ads by visiting

This contains the following Facebook preference and setting links: and

Further advertising opt-out preferences can be set at

  1. Direct Marketing:

Information we collect:

  • Name
  • Company, organization or business name (if applicable)
  • Contact number(s)
  • Email Address
  • Postal Address

Purpose of collecting this information:

We use this marketing information for the purpose of directly communicating with individuals who have registered for our direct marketing list. The information we communicate to you will relate to discounts & special offers, event news, our business newsletter, and general business awareness.

Legal Basis:

This information is processed on the basis of consent. You can revoke your consent at any time by removing yourself from our direct marketing list.

Retention Period:

The information collected is retained for a maximum of 3 years unless you renew your consent. If you do not renew your consent your contact details will automatically be removed from our direct marketing list after the 3 years.

Sharing Information:

From time to time we may retain the services of an external, EU-based marketing specialist to assist with our marketing activities. This may involve the marketing specialist receiving a copy of your marketing data described above. For example, the marketing specialist may prepare and send marketing emails to you on our behalf or assist us with our marketing advertisements. But at all times any marketing specialists engaged by us will only process your marketing information under our direction.

We may use the services of 3rd party EU-based platforms such as Customer Relationship Management (CRM) systems to help us manage and process the marketing information we collect.

We may share your data with EU-based 3rd parties in situations where we are required to do so by law. For example, with EU law enforcement authorities in possession of a valid search warrant or court order.

  1. E-Commerce:

Information we may collect:

  • Customer Name
  • Company/Organisation Name
  • VAT Number
  • Postal Invoice Address
  • Postal Delivery Address
  • Contact Phone/Mobile Number(s)
  • Email Address
  • Credit/Debit Card Payment Details

Purpose of collecting this Information:

We use this information for the purpose of facilitating our product sales, payment, product delivery, contract fulfillment, and customer support activities

Legal Basis:

This information is processed on the basis of contract fulfillment. Invoice and similar billing information are processed on the basis of legal obligation.

Retention Period:

The information collected is retained for the duration of the contract. In the case of products that are sold with a warranty or guarantee, we will retain your contact and product purchase information until the warranty or guarantee expires.

We are legally obliged to retain sales invoices and similar billing information for a period of 6 years.

As we use the services of a secure 3rd party Payment Service Provider we do not collect or retain any credit or debit card details on our system.

Sharing Information:

We have retained the services of reputable EU-based postal and courier services to facilitate the delivery of physical products we sell to you. This requires us to share your basic postal and contact information with these service providers.

We also use the services of a reputable, secure, EU-based 3rd party Payment Service Provider to collect and process your card payments on our behalf. Processing of your card payments requires you to share your card details with this Payment Service Provider at the time you pay for a purchase.

Financial accounting information such as billing and sales information such as sales invoices, credit notes, VAT numbers, etc. may be shared with our external bookkeepers, accountants, financial auditors, credit controllers, bankers, and financial advisors and with EU national tax authorities as required.

We may use the services of 3rd party EU-based Customer Relationship Management (CRM) systems to help us manage and process our customer data, sales, and contract fulfillment activities.

We may share your data with EU-based 3rd parties in situations where we are required to do so by law. For example, with EU law enforcement authorities in possession of a valid search warrant or court order

  1. Where We Store Your Personal Data

The data that we collect from you is stored at a destination within the European Union (“EU”). We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Statement.

All information you provide to us is stored on our secure servers. Where we have given you (or where you have chosen) a username or password which enables you to access certain parts of our Website or services, you are responsible for keeping this password or username confidential. We ask you not to share this information with anyone.

Unfortunately, the transmission of information via the Internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our Website; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorized access. We have security in places such as firewalls, backups, and other appropriate technical security measures.

  1. Uses Made Of Your Information

We use information held about you:

  • to ensure that content from our Website is presented in the most effective manner for you and for your computer
  • to provide you with information, products, or services that you request from us where you have consented to be contacted for such purposes
  • to carry out our obligations arising from any contracts entered into between you and us
  • for verification, administration, and statistical analysis purposes (e.g. Google Analytics)
  • to notify you about changes to our Website and/or services
  1. Disclosure Of Your Information

We consider your Data to be private and confidential. We may disclose your personal information to other partner companies and approved contractors or sub-contractors working on our behalf.

We may disclose your personal information to third parties if:

  • we need to work with advisors
  • we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets
  • if The Business or substantially all of its assets are acquired by a third party, in which case personal data held by it about its users will be one of the transferred assets
  • if we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our Website Terms and Conditions and other agreements; or to protect the rights, property, or safety of The Business and its subsidiaries and its group companies, our users, or others. This may include exchanging information with other companies, such as payment processing companies and organisations for the purposes of fraud protection and credit risk reduction
  1. Links To Other Sites

Our website may contain links to and from other websites and web platforms. In addition, third parties websites may also provide links to the Website. If you follow a link to any of those websites or web platforms, please note that those websites and web platforms have their own privacy policies and that we do not accept any responsibility or liability for those policies. Please check those policies before you submit any personal data to those websites.

We do not accept, and we disclaim, any responsibility for the privacy policies and information protection practices of any third-party website (whether or not such website is linked on or to the Website). These links are provided to you for convenience purposes only, and you access them at your own risk. It is your responsibility to check the third-party website’s privacy statement before you submit any personal data to their websites.

  1. Security

We take your online security very seriously and this website has security measures in place to protect against the loss, misuse, and alteration of the information under our control. However, as no data transmission over the Internet can be guaranteed as 100% secure, we cannot ensure or warrant the security of any information you transmit to us and you transfer the data at your own risk. We endeavor to use appropriate security measures.

  1. Your Rights

The General Data Protection Regulation (‘GDPR’) applies from 25 May 2018 and significantly changes data protection law in Europe, strengthening the rights of individuals and increasing the obligations on organizations. The GDPR is designed to give individuals more control over their personal data. (A copy of the GDPR is available ).

The key principles under the GDPR are lawfulness, fairness, and transparency; purpose limitation; data minimization; accuracy; storage limitation; integrity and confidentiality, and accountability (Article 5 of the GDPR).

You have increased rights under GDPR. Guidance on these rights is available . You have the right to request a copy of the information held by us about you. You also have the right to access your data, have changed any inaccuracies in the details we hold about you, the right to object to the use of your data, and the right to block any specific uses of your data, by contacting us through Contact Us

In particular, you’re rights are:

  • The right to withdraw your consent
  • The right to be informed
  • The right to access information
  • The right to rectification
  • The right to erasure
  • The right to data portability
  • The right to object to the processing of personal data
  • The right of restriction
  • Rights in relation to automated decision-making, including profiling
  • The right to lodge a complaint with the Supervisory Authority

Note: your right to withdraw consent applies to the processing of data for which you have given consent. Withdrawing consent does not affect any processing done up to the point when you withdrew your consent.

The website does not make use of any automated decision-making.

If you require further information in relation to your rights and this restriction, you can contact our Data Protection Manager (DPM) at

  1. Contact

Questions, comments, and requests regarding this Privacy Statement are welcomed and should be addressed to our Data Protection Manager (DPM) who can be contacted here