Last Reviewed and Effective as of: [Mar24 2025],
Your privacy is important to us, so we have developed this Jmoon Privacy Policy (this “Privacy Policy”) to describe the ways in which Jmoon Group (“Jmoon”, “we” or “us”) collect, use, store, manage, and share information, including Personal Information (defined below), in connection with the direct-to-consumer websites of Jmoon (“Websites”). When we mention “we”, “our” or “us”, we are referring to the relevant group company that controls or processes your Personal Information. The entity responsible for this Website, and this Privacy Policy, is [AMERICA ULIKE E-COMMERCE CO., LTD.]
By using our Websites or otherwise engaging with us (collectively, our “Services”), you are agreeing to this Privacy Policy and the processing of your information, including your Personal Information, in the manner described in this Privacy Policy.
We may update this Privacy Policy from time to time. When we make changes to this Privacy Policy, we will update the date specified above, and the updated terms will be effective as of the date set out above. We encourage you to regularly revisit this page for updates to this Privacy Policy. We will let you know via email and/or a prominent notice on the Websites if we make a material change to our Privacy Policy, prior to the change taking effect.
If you have any questions or concerns related to privacy, please contact us with the information provided in the “Contact Us” section at the bottom of this Privacy Policy.
Table of Contents
[INSERT HYPERLINKS TO EACH SECTION OF PRIVACY POLICY]
· Personal Information We Collect
· Categories and Examples of Personal Information We Collect
· Sources of Personal Information
· How We Use Your Personal Information
· Disclosure of Personal Information
· Consumer Rights
· Cookies and Other Technologies
· Data Security and Retention Policy
· Do Not Track Signals
· External Links
· Children’s Information
· Contact Us
· Additional Information for Individuals in EEA and UK
· Additional Information for Individuals in US
Personal Information We Collect
For the purposes of this Privacy Policy, “Personal Information” means information that identifies, relates to, describes, is reasonably capable of being associated with, or could be reasonably linked, directly or indirectly, with a particular natural person. It does not include anonymised or aggregated information.
As described below, we may collect the following categories of Personal Information from and/or about you directly or indirectly when you engage with the Services. Please note that you may not be able to access or use all functionalities of our Services if some or all of the Personal Information requested is not provided.
Categories and Examples of Personal Information We Collect
Below is a list of the categories and examples of Personal Information that we may collect or generate about you, depending on the specific Services with which you engage. Please note that some Services may not be available in the jurisdiction where you are based, and in this case we will not collect your Personal Information in connection with such Services.
· Member’s account log-in data: To the extent you register a member’s account with us, we may collect your email address, password, verification code, and third-party account information (such as your AWS or Google account information).
· Purchase data: We may collect your product order details, name, delivery address, phone number, email address and payment details, when you place an order on our Websites.
· After-sales service data: When you submit an after-sales request to us via our Websites or email (for example, a request about product defect, product return or other issues), we may collect your email address, description of request, order number, product serial number, reason of dissatisfaction, usage experience, and any Personal Information contained in the supporting document(s) you choose to provide to us, depending on your specific request.
· Marketing subscription data: To the extent you sign up to our marketing subscription, we may collect your email address and phone number.
· User profile data: To the extent you create a user profile on our Websites, we may collect your email address, first name, last name, gender, date of birth, skin type, treatment area, phone number and verification code.
· Product identification quiz data: To the extent you take our product identification quiz, we may collect your gender identity, current situation of proposed treatment areas.
· Discount / promotion programme data: To the extent that you sign up to a discount programme available in your jurisdiction, we may collect your profession, organisation, first name, last name, full date of birth, postal code and email address. We may also engage an independent third party to verify your qualification for the discount (for example, your status of being a student or a special professional). Such verification service provider will not disclose the Personal Information it receives from you to Jmoon, but will provide you with a discount code after the verification which you may use on our Websites. If you choose to participate in a seasonal promotion activity (for example a lucky draw), we will collect your email address to send you the prize.
· Influencer / Jmoon partner programme data: To the extent you sign up to become a Jmoon partner, we may collect your full name, email address, other contact information (such as WhatsApp, phone number and messenger), gender, age, location, social media account information, number of followers, percentage of followers by country on your main channel, and other supporting documentation and information that you may provide to us.
· Review data: When you publish a product review on our Websites, we may collect your name, email address, location and your usage experience. Please note that your first name and usage experience will be published on our Websites.
· Communications data: Any other Personal Information provided by you when communicating with us via email, phone call, chatbot, or other channels.
· Technical data: We may collect Personal Information including your browser information, your country and server location setting.
Sources of Personal Information
We may obtain the categories of Personal Information listed above from the following categories of sources:
· Personal Information provided directly by you, for example, when you fill in webforms, place orders, or communicate with our team through email, phone call or other methods.
· Personal Information generated by us in relation to you, for example, when we handle your order or request, or by cookies and other data analytic tools.
· Personal Information collected from third parties, for example, from AWS or Google when you use third-party log-in, and other service providers, agencies or publicly available sources where applicable.
How We Use Your Personal Information
We may use your Personal Information for the following purposes:
· to provide and maintain our Services to you, and allow you to use and access the functionalities provided by our members’ account;
· to notify you about changes to our Services;
· to verify information for discounts and promotions we offer as part of our Services;
· to provide customer care and support, including to improve your experience when you interact with our Services;
· to improve our brand, products and the Services, including performing data analytics and developing new products and services;
· with your permission, to send you marketing communications on special offers and promotions. If you do not wish to receive these, you may unsubscribe at any time using the opt-out instructions in the marketing communications we send to you. Please note that if you opt out of receiving marketing communications from us, we may still send communications to you concerning the operation of your account or purchase order with Jmoon;
· to provide you, or permit selected third parties to provide you, with information about products and services we offer that are similar to those that you have already purchased, provided you have not opted out of receiving that information;
· to protect the security and integrity of our Services;
· to investigate and defend against any third-party claims or allegations;
· to pursue legitimate interests, such as research and development, processing for statistical purposes, and performing activities carried out in the public interest;
· to fulfill our legal obligations under applicable laws, regulations, court orders, or other legal processes, such as preventing, detecting, and investigating security incidents and potentially illegal or prohibited activities;
· to protect your, our, and others’ rights, property, and safety;
· to enforce our agreements and policies; and
· to resolve disputes.
Disclosure of Personal Information
We may disclose your Personal Information to the following categories of entities for one or more of the purposes described above:
· to other members of the Jmoon Group. We will take steps to ensure that access to Personal Information is restricted to Jmoon employees who have a lawful basis for access to the Personal Information and who will access the Personal Information only for the purposes described in this Privacy Policy;
· to our service providers and vendors that assist us in providing our Services, including but not limited to providers and vendors of payment, shipping, customs clearance, IT, verification, customer support, advertising and marketing, and after-sales services;
· to our advisors that assist the smooth operation of our business, such as our financial, accounting and legal advisors; and
· to other entities as permitted by law, in the event of a transfer of ownership or assets, in the event of bankruptcy, to comply with the request of law enforcement or a regulatory agency or other legal process where needed, or to protect our interests or safety of our customers or the safety of other individuals.
Privacy Rights
Depending on your location, you may have the following rights to your Personal Information. This section describes those rights and explains how to exercise those rights:
· the right to be informed of why and how we process your Personal Information;
· the right to access the Personal Information we hold about you and request a copy of such information;
· the right to correct inaccurate Personal Information that we maintain about you;
· the right to withdraw your consent to such processing activities that are based on consent.
To exercise your privacy rights, please submit your request to us by the contact information listed below in the “Contact Us” section.
Cookies and Other Technologies
Our Services use a variety of digital technologies, including cookies, web beacons, and pixels to automatically collect information about how our Services are used. Please refer to our Cookies Policy [INSERT HYPERLINK TO COOKIES POLICY] for further information on how we use cookies and other digital technologies.
We take the protection of your Personal Information seriously and take reasonable and appropriate physical, administrative, and technical measures to protect your Personal Information collected through our Services. For example, we encrypt all of your sensitive information (e.g. card details entered on order forms), using secure socket layer technology (TLS), and following other accepted industry standards to prevent any loss, disclosure, access, alteration, destruction, or misuse of your Personal Information.
As a condition of employment, Jmoon employees are required to follow all applicable laws and regulations, including in relation to data protection and privacy law. Access to sensitive Personal Information is limited to those employees who need it to perform their roles.
While we implement commercially reasonable security measures to protect your Personal Information, no business can fully eliminate the security risks associated with collecting and processing information via the Internet. To the maximum extent allowed by applicable laws, you agree and acknowledge that Jmoon will not be liable or responsible if any information about you is intercepted, accessed, and/or used by an unintended recipient. If you have reason to believe that the security of your communications or Personal Information has been compromised, please notify us immediately using the contact information listed below in the “Contact Us” section.
Unless otherwise required by law, it is our policy to not retain Personal Information for longer than is reasonably necessary to achieve the purposes for which it was collected. The criteria we use to determine specific retention periods include: the type of data; whether you have provided your consent and have not withdrawn it; whether there are other legal grounds for the continued processing; whether you have objected to the processing and there are no overriding legitimate grounds for the processing; and whether retention or deletion is necessary to comply with legal obligations.
We have put in place procedures to deal with any suspected Personal Information security breach and will notify you and any applicable regulator of any such breach where we are legally required to do so.
Do Not Track Signals
We do not currently respond or take any action with respect to web browser “do not track” signals or other mechanisms that provide visitors of our Websites with the ability to exercise choice regarding the collection of Personal Information about an individual’s online activities over time and across third-party websites or online services.
External Links
Our Services may include links to other third-party websites / services as a convenience to you. If you click on one of those links you will be taken to websites / services we do not control, and this Privacy Policy does not apply to those third-party websites / services. The inclusion of any link does not imply our endorsement of any other company, its site(s), or its product(s) and/or service(s), nor are we responsible for the privacy practices or content of any other websites / services.
Children’s Information
Our Services are not directed to children and you must have full legal capacity and be of sound mind to use our Websites. We do not knowingly collect Personal Information from children. If you are a minor, you may only use our Websites through an account owned by a parent or legal guardian with their appropriate permission and under their direct supervision.
If you have any questions about this Privacy Policy or wish to contact us in connection with any information contained in this Privacy Policy or to exercise the rights mentioned in this Privacy Policy, please do not hesitate to contact us at:
Phone: [+1 855-681-8599 (Mon - Fri: 10AM-7PM EST)]
Email: [support.us@jmoon.com]
Address: [AMERICA ULIKE INTERNATIONAL INC., 300 Lenora Street #1096, Seattle, WA 98121, United States]
Additional Information for Individuals in EEA and UK
In addition to the above sections, if you are based in the European Economic Area (“EEA”) or the United Kingdom (“UK”), we provide the below information for you to better understand how we process your Personal Information in compliance with the applicable data protection laws.
This Privacy Policy applies to all Personal Information to which the European Union’s General Data Protection Regulation (2016/679) (“EU GDPR”), the UK GDPR (which is the EU GDPR as transposed into the laws of England and Wales, Scotland and Northern Ireland by virtue of section 3 of the European Union (Withdrawal) Act 2018) (“UK GDPR”) (collectively referred to as the “GDPR”) and the Data Protection Act 2018 applies.
Legal Bases for Processing Personal Information
We make sure that our usage of the Personal Information we collect from you complies with the applicable data protection laws, which allow and require us to use your Personal Information on a variety of lawful bases. These include where:
· we need to do so in order to perform our contractual obligations with our customers and third-party providers (for example, payment and shipping services providers), so that we can provide you with the Services and to manage your account with us;
· we have obtained your consent;
· we have legal and regulatory obligations that we have to discharge;
· we may need to do so in order to establish, exercise or defend our legal rights or for the purpose of legal proceedings; and
· the use of your Personal Information as described in this Privacy Policy is necessary for our legitimate business interests, such as:
allowing us to effectively and efficiently manage and administer the operation of our business;
- maintaining compliance with internal policies and procedures;
- monitoring the use of our copyrighted materials;
- enabling quick and easy access to information on our Services; and
- offering optimal, up-to-date security for our Services.
Sensitive Information
Where we process sensitive categories of Personal Information provided by you such as gender identity, current hair density of proposed treatment areas, hormone-related diagnosis and other health-related information as necessary to adapt to and respond to services requests from you, any such sensitive Personal Information will be collected with your explicit consent for the said purpose to the extent that you authorize us.
International Transfers of Personal Information
As a global company, Jmoon may need to transfer your Personal Information out of the jurisdiction in which it was originally collected. For Personal Information to which the GDPR applies, this may mean transfers outside the EEA/UK. You should be aware that these countries may not have similar data protection laws to the EEA or UK. In such cases, Jmoon will ensure that there are adequate safeguards in place to protect your Personal Information with the aim of ensuring that your privacy rights continue to be protected as outlined in this Privacy Policy.
Where we transfer your Personal Information from within the EEA/UK to another jurisdiction outside the EEA/UK, we will ensure that it is protected and transferred in a manner consistent with requirements under the applicable data protection laws. For example, this may be done in one of the following ways:
· the jurisdiction that we send the data to might be approved by the competent authority as offering an adequate level of protection for Personal Information;
· the recipient might have signed up to a contract based on the standard contractual clauses approved by the competent authority, obliging them to protect your Personal Information;
· the recipient may have adhered to binding corporate rules (only for intragroup transfers); or
· in other circumstances the applicable data protection laws may permit us to otherwise transfer your Personal Information outside the EEA/UK.
In all cases, however, we will ensure that any transfer of your Personal Information is compliant with the applicable data protection laws.
You can obtain more details of the protection given to your Personal Information when it is transferred outside the EEA/UK by contacting us as described in the “Contact Us” section.
Your Rights
Where the applicable data protection laws require so, in the cases where we collect, use or store your Personal Information, you may have the following rights, and, in most cases, you can exercise them free of charge. These rights include:
· the right to obtain information regarding the processing of your Personal Information and access to the Personal Information which we hold about you;
· the right to withdraw your consent to the processing of your Personal Information at any time. Please note, however, that we may still be entitled to process your Personal Information if we have another legitimate reason for doing so. For example, we may need to retain Personal Information to comply with a legal obligation;
· in some circumstances, the right to receive some Personal Information in a structured, commonly used and machine-readable format and/or request that we transmit such data to a third party where this is technically feasible. Please note that this right only applies to Personal Information which you have provided directly to us;
· the right to request rectification of your Personal Information if it is inaccurate or incomplete;
· the right to request erasure of your Personal Information in certain circumstances. Please note that there may be circumstances where you ask us to erase your Personal Information but we are legally entitled to retain it;
· the right to object to, or request that we restrict, our processing of your Personal Information in certain circumstances. Again, there may be circumstances where you object to, or ask us to restrict, our processing of your Personal Information but we are legally entitled to refuse that request; and
· the right to lodge a complaint with the relevant data protection regulator if you think that any of your rights have been infringed by us.
You can exercise your rights by contacting us using the details listed in the “Contact Us” section. Further information about your rights may be obtained by contacting the supervisory data protection authority located in your jurisdiction.
Additional Information for Individuals in US
In addition to the above sections, if you are based in the United States of America (“US”), we provide the below information for you to better understand how we process your Personal Information in compliance with the applicable data protection laws.
Consumer Rights
Depending on your specific residency, you may have the following consumer rights to your Personal Information:
· the right to know what Personal Information the business has collected about you;
· the right to delete Personal Information that we have collected from or about you, subject to certain exceptions;
· the right to correct inaccurate Personal Information that a business maintains about you;
· the right to opt-out of the sale or sharing of Personal Information by us;
· if we use or disclose sensitive Personal Information for certain reasons, the right to limit the use or disclosure of sensitive Personal Information by us;
· the right not to receive discriminatory treatment by us for the exercise of your privacy rights; the right to opt out of certain automated profiling in furtherance of decisions that produce legal or similarly significant effects concerning you[, although Jmoon does not engage in these activities];
· the right to obtain a copy of your Personal Information; and
· the right to additional information about third-party disclosures (e.g., categories or specific third parties, as required by law).
Jmoon does not have actual knowledge that it sells or shares Personal Information about consumers under 16 years of age.
You or your authorized agent may submit a verifiable consumer request using the contact information listed below. The verifiable consumer request must do the following:
· provide sufficient information that allows us to reasonably verify you are the person about whom we collected Personal Information or an authorized representative; and
· describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.
You may submit a verifiable consumer rights request by:
· Email us at [support.us@jmoon.com]
· Calling us at [+855-681-8599 (Mon - Fri: 10AM-7PM EST)]
Your Right to Appeal
You may have the right to appeal our decision with regard to your request. To do so, please send an email to [support.us@jmoon.com], with the word “Appeal” in the subject line.
Selling and Sharing Personal Information
As defined by relevant laws, we may sell and share certain online identifiers for the purpose of online advertising and analytics. Specifically, we may disclose online identifiers to advertising partners and analytics providers for online analytics and personalised advertising. You have the right to opt-out of this use of your Personal Information. For more information and to exercise your right to opt out of selling or sharing, please see the “Notice of Right to Opt-Out” in the Cookie Policy.
California “Shine the Light”
If you are based in California, US, the California Civil Code Section 1798.83, also known as “Shine the Light” law, permits California residents to annually request information regarding the disclosure of your Personal Information (if any) to third parties for the third parties’ direct marketing purposes in the preceding calendar year. Requests may be made one time per calendar year. If applicable, this information would include the categories of customer information and the names and addresses of those businesses with which we shared customer information for the immediately prior calendar year (e.g., requests made in 2025 will receive information regarding sharing activities in 2024). You may submit your request using the details listed above in the “Contact Us” section.