Privacy policy

Last updated: October 20, 2025

SkinMD (Monika G Kiripolsky MD, Inc.) operates this store and website, including all related information, content, features, tools, products and services, to provide you with a curated shopping experience (the “Services”). Our store is powered by Shopify, which enables us to provide the Services to you. This Privacy Policy describes how we collect, use, and disclose your personal information when you visit, use, or make a purchase through the Services or otherwise communicate with us. If there is a conflict between our Terms of Service and this Privacy Policy, this Privacy Policy controls with respect to the collection, processing, and disclosure of your personal information.

Please read this Privacy Policy carefully. By using or accessing the Services, you acknowledge that you have read and understand this Privacy Policy.

Notice at Collection & Personal Information We Collect

“Personal information” means information that identifies or can reasonably be linked to you. It does not include de-identified, aggregated, or publicly available information. Depending on how you interact with the Services and where you live, we may collect the following categories (with examples) and use them for the purposes listed in “How We Use Your Personal Information” below:

  • Identifiers & Contact Details (e.g., name, email address, billing and shipping address, phone number, account ID).
  • Commercial/Transaction Information (e.g., products viewed or purchased, cart and wishlist data, order history, refunds or replacements).
  • Payment & Financial Information (e.g., payment card type and last 4 digits, payment authorization tokens, transaction totals). Payments are processed by our payment processors; we do not store full payment card numbers.
  • Account Information (e.g., username, password, preferences).
  • Internet/Device & Analytics Data (e.g., IP address, device and browser type, cookie IDs, usage logs, pages viewed, referring/exit pages, timestamps).
  • Communications (e.g., customer support inquiries, reviews, survey responses).
  • Inferences drawn from the above (e.g., product interests, preference profiles for personalization).

Sensitive Personal Information. We do not seek to collect “sensitive” personal information (as defined by applicable law) through the retail Services and we do not use any such information to infer characteristics.

Sources of Personal Information

  • Directly from you (e.g., when you create an account, place an order, contact support, or subscribe to SMS/email).
  • Automatically via cookies, pixels, and similar technologies when you use the Services.
  • Service providers (e.g., payment processing, fulfillment, analytics, advertising partners) acting on our behalf.
  • Partners & third parties (e.g., advertising platforms, social media integrations, Shopify features we enable).

How We Use Your Personal Information

  • Provide & maintain the Services (process orders and payments, shipping, returns/replacements for damaged/incorrect items, account management, customer support).
  • Personalize & improve the shopping experience (product recommendations, saved carts, site optimization, analytics).
  • Marketing & advertising (email and SMS marketing with your consent where required; on-site and off-site ads including retargeting via platforms such as Meta, Google, TikTok; Shopify Audiences where enabled).
  • Security & fraud prevention (authenticate users, prevent malicious or illegal activity, protect our rights and the rights of others).
  • Legal compliance (comply with law, respond to lawful requests, enforce terms and policies).

How We Disclose Personal Information

We may disclose personal information in the following contexts:

  • With service providers (e.g., Shopify hosting, payment processing, order fulfillment and shipping, cloud storage, IT/security, customer support, analytics, advertising technology) who process information on our behalf under contractual restrictions.
  • With business/marketing partners to provide advertising and measurement services. Some of these activities may constitute “sharing” for cross-context behavioral advertising and, in some jurisdictions, a “sale” of personal information. You may opt out as described in “Your Rights & Choices.”
  • At your direction or with your consent (e.g., social logins, posting reviews, shipping to gift recipients).
  • Within our corporate group (affiliates and successors).
  • For legal, safety, and business transfers (e.g., mergers, acquisitions, bankruptcy, to comply with law, or to protect rights, property, and safety).

Relationship with Shopify

The Services are hosted by Shopify. Information you provide is transmitted to and processed by Shopify (and certain third parties) which may be located outside your country of residence. To help protect, grow, and improve our business, we may enable Shopify features (e.g., Shopify Audiences) that use information about your interactions with our store, other merchants, and Shopify. For those processing activities, Shopify is responsible for responding to requests to exercise privacy rights related to Shopify’s use of such data. For more information about Shopify’s privacy practices or to exercise rights available through Shopify, see the Shopify Consumer Privacy Policy and the Shopify Privacy Portal.

Cookies & Tracking Technologies

We and our partners (including Shopify, Google Analytics, Meta Pixel, and advertising networks) use cookies, pixels, SDKs, and similar technologies to operate the site, measure performance, personalize content, and deliver advertisements, including cross-site/interest-based ads. You can manage preferences through our cookie banner or your browser settings. Blocking some cookies may impact site functionality.

SMS/Text & Email Marketing

If you opt in to receive SMS/text messages, you consent to receive marketing texts from us at the mobile number you provided. Message frequency varies. Message and data rates may apply. Consent is not a condition of purchase. You can opt out any time by replying STOP; for help, reply HELP. For email marketing, you may unsubscribe via the link in our emails. We may still send non-promotional messages (e.g., order or account notices).

Children’s Data & Medical Information

The Services are intended for general retail use and are not directed to children. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child provided personal information, please contact us to request deletion. We do not knowingly sell or share personal information of individuals under 16 years of age; if we obtain actual knowledge of such activity, we will obtain affirmative authorization (“opt-in”) as required by law.

The Services provide retail e-commerce for skincare and do not collect or process protected health information (PHI) under HIPAA. Patients of Monika G. Kiripolsky, MD who use the retail site should not submit medical or treatment information through the store.

Security & Retention

We implement reasonable administrative, technical, and physical safeguards designed to protect personal information; however, no method of transmission or storage is completely secure. Do not use unsecure channels to send sensitive information.

We retain personal information for as long as needed to provide the Services (e.g., maintain your account and order history), comply with legal obligations, resolve disputes, and enforce agreements, then either delete or de-identify it in accordance with our policies and applicable law.

Your Rights & Choices

Depending on where you live, you may have some or all of the following rights over your personal information, subject to legal limitations:

  • Access/Know what personal information we maintain about you.
  • Delete personal information we maintain about you.
  • Correct inaccurate personal information.
  • Data portability to receive a copy of certain information.
  • Opt out of “sale” or “sharing”/targeted advertising (see below).
  • Manage cookie preferences via our cookie banner or browser settings.

California & other U.S. state privacy disclosures. While SkinMD itself does not meet the thresholds to be a “business” under the California Consumer Privacy Act (as amended by the CPRA), we honor applicable privacy choices and provide the disclosures in this Policy. We may use Shopify features and advertising partners that constitute “sharing” for cross-context behavioral advertising. You may opt out of such “sale” or “sharing” by using our opt-out link: Do Not Sell or Share My Personal Information. If you visit our site with a browser that supports the Global Privacy Control (GPC) signal, we will treat it as a request to opt out for that browser and device, and if we can associate it with your account, we will apply it to your account as well. Other than GPC, we do not respond to other “Do Not Track” signals.

You can exercise rights available through the Services (e.g., cookie banner and opt-out page) or by contacting us at info@goskinmd.com. We may need to verify your identity before processing a request. You may designate an authorized agent to submit requests on your behalf, subject to verification and proof of authorization. We will not discriminate against you for exercising privacy rights.

Third-Party Websites & Links

The Services may link to third-party websites or platforms. Their privacy and security practices are governed by their own policies, which we do not control or endorse. Information you make public on third-party platforms may be viewable by others.

International Transfers

We may transfer, store, and process personal information outside your country, including in the United States and other jurisdictions where our service providers operate. If we transfer personal information from the EEA/UK, we rely on appropriate transfer mechanisms (e.g., Standard Contractual Clauses or UK equivalents) unless the destination country has been deemed to provide an adequate level of protection.

Financial Incentives

We do not offer programs that provide price or service differences related to the collection, retention, or sale/sharing of personal information (no “financial incentives” as defined by California law).

Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes to our practices or for operational, legal, or regulatory reasons. We will post the updated Privacy Policy on this page, update the “Last updated” date, and provide additional notice where required.

Contact

If you have questions about our privacy practices or this Privacy Policy, or wish to exercise privacy rights, please contact us:

Email: info@goskinmd.com
Address: 9735 Wilshire Blvd, Suite 216, Beverly Hills, CA 90212, USA