30% OFF HOLIDAY SETS | SHOP NOW
GET 2 DELUXE SAMPLE PRIMERS FREE WHEN YOU SPEND $65+ | SHOP NOW
Last Update: July 1, 202
The Estée Lauder Companies respects your privacy and values the relationship we have with you.
The Estée Lauder Companies has a diverse portfolio of prestige brands. You can find a list of these brands on ELCompanies.com, each referred to in this Privacy Policy as a “Brand”.
This Privacy Policy describes how the Estée Lauder Companies Brands in the US (“ELC”, “we”, “us”, “our”) collect, use, disclose and safeguard your personal information, including sensitive personal information. Unless otherwise indicated, all Brands in the US follow this Privacy Policy.
TABLE OF CONTENTS
We may collect or process the following types of personal information about you. The specific personal information we collect about you will vary depending on how you interact with us.
We may collect personal information about you from various sources. For example:
We may combine the personal information we obtain from the above sources. For example, we may combine personal information we collect in our stores with personal information we collect online.
We may use the personal information we have about you:
We may share your personal information with:
All the above categories exclude text messaging originator opt-in data and consent; this personal information will not be shared with any third parties, excluding aggregators and providers of the text message services.
You have rights and choices in connection with the personal information we have about you.
Cookies are small text files that websites place on your Internet-connected device to uniquely identify your browser or to store information or settings in your browser which allows us to remember you when you come back to our websites and provide you with personalized experiences and advertisements. We use different types of cookies on our websites, which may include strictly necessary cookies, performance cookies, functional cookies and targeting cookies.
You can edit your preferences by accessing the “Manage Cookies” or “Do Not Sell or Share My personal information / Target Ads” link at the bottom of each of our Brand websites and by editing your browser settings. When editing your cookie preferences, please note that your settings only apply to the browser you use to submit your opt-out request, so if you use multiple browsers or devices, you must opt-out on each browser, on each device. Your opt-out is enabled using cookies so once you opt-out, if you delete your browser’s saved cookies on a device, you will need to opt-out again on that browser on that device.
Our websites are not designed to respond to “do not track” signals from browsers.
We may use, disclose or otherwise process your personal information to advertise our products and services in different ways, including targeted advertising. We work with third party advertising companies (such as advertising networks) to serve advertisements on our behalf. These advertising companies may use cookies, pixel tags and similar technologies to collect personal information such as device identifiers, online or network activity information, commercial information, or inferences, such as information about the websites you visit over time and the advertisements you click on to deliver advertisements that are targeted to you. You can opt-out of cookie-based advertising based on your visits to our sites by editing your cookie preferences as described in the How We Use Cookies section. Please note that even if you opt-out, you may still see ads from us, but the ads will not be targeted based on the websites you visit over time and the advertisements you click on and may therefore be less relevant to you and your interests.
We also work with third-party platforms, including social media platforms, to show you advertisements or measure the effectiveness of our advertisements. We may convert your email address, telephone number, or other personal information into a unique value and have these third-party platforms match this unique value with a user on their platform or with other data they may have. This matching enables us to deliver advertisements to you and others on these platforms. You also can request that we refrain from using your personal information in this way by contacting us through our Privacy Request Portal.
In offering and providing our products and services, your personal information may be transferred, stored or processed in countries other than the country in which the information was originally collected (such as the United States). Those countries may not have the same data protection laws as your country of residence, and your personal information will be subject to applicable foreign laws. When we transfer your personal information to other countries, we will protect that information in the manner described in this Privacy Policy. We will also comply with applicable legal requirements providing adequate protection for the transfer of personal information, such as the use of data transfer agreements, E.U. Standard Contractual Clauses, or other applicable data transfer mechanisms. If you have questions about our data transfers or would like to receive a copy of any applicable data transfer agreements (where required by law), you can submit a request through our Privacy Request Portal.
We maintain administrative, technical, and physical safeguards designed to protect the personal information you provide against accidental, unlawful or unauthorized destruction, loss, alteration, access, disclosure, or use. We restrict access to personal information on a need-to-know basis to employees and authorized service providers who require access to fulfil their job requirements.
In general, we retain personal information as long as reasonably needed to achieve the purposes outlined in this Privacy Policy. There are many factors that we use to determine how long personal information is retained, such as:
For additional information about data retention policies, please submit a request through our Privacy Request Portal.
Our products and services are designed for a general audience and are not intended for or directed to children under the age of 13. If you believe a child under the age of 13 has provided us with personal information, please contact us as indicated under “How to Contact Us” below.
This Privacy Policy may be updated periodically and without prior notice to you to reflect changes in our personal information practices. We will post a notice on our websites to notify you of any significant changes to our privacy practices and indicate at the top of the Privacy Policy when it was most recently updated.
If you have any questions or comments about this Privacy Policy or if you would like to exercise your rights, you can contact us by submitting a request through our Privacy Request Portal or by emailing us at privacy@estee.com.
If we need, or are required, to contact you concerning any event that involves your personal information, we may do so by postal mail, telephone, email or through a notice on our websites.
If you are a resident of the following states: California, Colorado, Connecticut, Montana, Oregon, Texas, Virginia, or Utah, depending on your state of residence, you may have the right under applicable laws to:
You can exercise your rights by submitting a request through our Privacy Request Portal. Before processing your request, we will take reasonable steps to verify your identity, which will include verifying that the email address from which you submit the request matches the email address we maintain on file for you. To ensure you are the owner of the email address, you must respond to a confirmation email that we will send to such email address. In some cases, we may ask that you provide additional information to verify your identity. You may also designate an authorized agent to make a request on your behalf. Where permitted by applicable law, the authorized agent may submit the request through our Privacy Request Portal and will be required to provide proof that they have been authorized to act on your behalf. If the authorized agent does not provide such proof, you will be required to confirm your identity and the authenticity of the request.
To opt-out of the sale or sharing of your personal information for cross-contextual behavioral/targeted advertising purposes, you must also edit your preferences using the “Do Not Sell or Share My personal information / Target Ads” link at the bottom of each our Brand websites. You may also use the Global Privacy Control signal. For more information about the Global Privacy Control, visit https://globalprivacycontrol.org/.
We will not discriminate against you on account of your exercise of your consumer privacy rights. Depending on your state of residence, you may appeal our decision with respect to your request to exercise your privacy rights by emailing us at privacy@estee.com.
This section applies solely to California residents and supplements our Privacy Policy above.
Collection and Disclosure of Personal Information
We may collect and disclose or may have collected and disclosed your personal information to certain categories of third parties, as described below.
Category | Disclose to Third Parties |
---|---|
Contact information and personal identifiers | We may disclose or may have disclosed this personal information to:
|
Device Identifiers | We may disclose or may have disclosed this personal information to:
|
Demographic information | We may disclose or may have disclosed this personal information to:
|
Physical characteristics | We may disclose or may have disclosed this personal information to:
|
Biometric information | We may disclose or may have disclosed this personal information to:
|
Commercial information | We may disclose or may have disclosed this personal information to:
|
Payment information | We may disclose or may have disclosed this personal information to:
|
Identity verification information | We may disclose or may have disclosed this personal information to:
|
Online or network activity information | We may disclose or may have disclosed this personal information to:
|
Geolocation information | We may disclose or may have disclosed this personal information to:
|
Audio and visual information | We may disclose or may have disclosed this personal information to:
|
Professional or employment related information | We may disclose or may have disclosed this personal information to:
|
Health and medical information | We may disclose or may have disclosed this personal information to:
|
User Content | We may disclose or may have disclosed this personal information to:
|
Inferences | We may disclose or may have disclosed this personal information to:
|
In addition to the purposes set forth in the How We Use personal information and How We Share personal information sections set forth and above, we collect and may disclose this personal information for the following business or commercial purposes:
We may collect certain categories of personal information that may be used to infer characteristics about consumers. Some of these categories used to infer characteristics about consumers may be considered Sensitive personal information under applicable law such as health and medical information like your skincare concerns and demographic information. In addition to the purposes set forth above, we use this information to further our business goals, such as to advertise our products and services or provide personalized product recommendations
We do not sell or share your personal information for monetary consideration. Certain advertising practices, such as those described in the How We Use personal information to Advertise section, may be considered a “sale” or “sharing” (for cross-context behavioral advertising) under applicable laws when the personal information is exchanged for non-monetary consideration. You have the right to opt-out of these types of disclosures of your personal information. We may “sell” or “share” (or may have “sold” or “shared”) the following categories of personal information to the third parties listed below:
Category | Sold to or shared with Third Parties |
---|---|
|
We may sell or share or may have sold or shared this personal information to:
|
We do not have actual knowledge that we sell or share the personal information of individuals under 16 years of age. We do not sell or share sensitive personal information.
We may offer you various financial incentives such as discounts and special offers when you provide us with personal information including contact information and identifiers such as your name, email address and/or mobile phone number. When you sign-up for one of our Brand loyalty programs, email lists or other discounts and special offers, you opt-in to a financial incentive. You may withdraw from a financial incentive at any time by opting-out from the Brand emails you initially signed-up for, or closing your Brand loyalty member account. Generally, we do not assign monetary or other value to personal information, however, California law requires that we assign such value in the context of financial incentives. In such context, the value of the personal information is related to the estimated cost of providing the relevant financial incentive(s) for which the personal information was collected.
This section applies solely to Colorado residents and supplements our Privacy Policy above.
We may collect, use and share personal information for certain processing purposes, including those described in the chart below. For more information on the categories of personal information we may collect and how we may use such personal information, please see “Personal Information We Process” and “How We Use Personal Information” above.
Category | Processing Purposes (see full list below) | Used for Targeting Advertising | Sold or Shared |
---|---|---|---|
Contact information and personal identifiers |
|
Yes |
Sold to:
|
Device Identifiers |
|
Yes |
Sold to:
|
Demographic information |
|
No |
Sold to:
|
Physical characteristics |
|
No |
Sold to:
|
Biometric information |
|
No |
Sold to:
|
Commercial information |
|
Yes |
Sold to:
|
Payment information |
|
No |
Sold to:
|
Identity verification information |
|
No |
Sold to:
|
Online or network activity information |
|
Yes |
Sold to:
|
Geolocation information |
|
No |
Sold to:
|
Audio and visual information |
|
No |
Sold to:
|
Professional or employment related information |
|
No |
Sold to:
|
Health and medical information |
|
No |
Sold to:
|
User Content |
|
No |
Sold to:
|
Inferences |
|
Yes |
Sold to:
|
*Service Providers include: operating system and platform providers, data analytics providers, and digital advertising providers.
• To provide products and services to you, such as fulfilling orders and processing payments, creating, servicing and/or maintaining your account or loyalty program membership, identifying concerns and assisting with product recommendations, providing real time support via our automated virtual agent and live person chat feature on one of our websites and maintaining a transcript of the chat, and managing current or past purchases.
• To communicate with you, including to respond to your inquiries or complaints, and to help you place an order.
• To administer your participation in special events, contests, sweepstakes, surveys or promotions.
• For marketing and advertising, such as to send you postal mail, text messages, email, push notifications or other messages, show you advertisements for products and/or services tailored to your interests on social media and other websites.
• To operate and understand your use of our websites and mobile applications, such as to remember your personal information so you do not have to re-enter it, understand your preferred method of purchasing with us; determine what browser and devices you use to visit our websites or mobile applications; and to evaluate and improve our services, advertisements, websites and mobile applications.
• To operate and improve our business, including to conduct analytics, provide quality assurance and process adverse event or product related claims, conduct research and development, and perform accounting, auditing and other internal business functions.
• For legal and security purposes, such as to detect, prevent, and prosecute harmful, fraudulent, or illegal activity, loss prevention, and to comply with applicable legal requirements, relevant industry standards and our policies.
•To audit our interactions with you to ensure compliance with applicable law and to measure the effectiveness of our products, services, and advertisements.
• To identify and repair bugs on our websites or mobile applications.
We may offer you various financial incentives, such as discounts and special offers, when you provide us with your email address and create an account on one of our participating Brand websites to enroll in a Brand loyalty program. To enroll in our Brand loyalty programs, you are required to provide your email address and to create a password. You may also provide us with your name, mailing address, birth month/date and mobile phone number, but this information is optional. Once you enroll in the Brand loyalty program, we also will collect information about purchases you may make.
In connection with our Brand loyalty programs, you can receive financial incentives (benefits) based on certain purchases and other activities. You can join (opt-in to) Brand loyalty programs and find program details, terms and conditions on our participating Brand websites. You may withdraw (opt-out) from receiving such financial incentives at any time by deactivating your loyalty program account(s). To deactivate your loyalty program account(s), visit the specific Brand website of the loyalty program you wish to deactivate and provide your identifying information as requested.
If you exercise your right to request deletion of your personal information, it will be impossible for us to continue providing loyalty program benefits to you because we will no longer have the information required to provide you with certain benefits (such as information about qualifying purchases).
The categories of personal information collected through our loyalty program that may be sold or processed for online targeted advertising through the use of cookies and similar technologies include identifiers (such as your email address), online activity information (such as IP address, browsing history and other information regarding your interactions with our Brand websites), and commercial information (such as details about your purchases).
The categories of third parties that may receive the personal information collected through our loyalty program include, third party service providers; data analytics providers; digital advertising providers; operating system and platform providers. We do not provide the personal information collected through our loyalty program to Data Brokers, as defined by the Colorado Privacy Act.
The Aveda Brand partners with select third-party Aveda salons to offer Aveda loyalty members the benefit of eligibility to (1) earn Aveda loyalty points for retail purchases at select third-party Aveda salons; and (2) redeem Aveda.com gift certificates and Aveda loyalty points for Aveda products at select third-party Aveda salons.
This section applies solely to Illinois residents and supplements our Privacy Policy above.
As indicated in our Privacy Policy, we may collect sensitive personal information including biometric information such as facial geometry if you use certain of our virtual try-on applications. For Illinois residents who provide us with biometric information (such as during use of our virtual try-on applications), in accordance with Illinois state law, we will retain biometric information only until the occurrence of the first of the following:
• The initial purpose for collecting or obtaining such biometric information has been satisfied, or
• Three years following your last interaction with us.
Washington and Nevada Residents
For Washington and Nevada residents please see our “Consumer Health Data Privacy Statement”.