Privacy Policy

Who we are

416Skin is a medical aesthetics studio located at 1215 St Clair Ave W, Unit 4D, Toronto, ON M6E 1B5, Canada. We operate the website 416skin.com. For any privacy question or request, contact us at 416skin@gmail.com or (647) 373-0575.

We handle personal information in accordance with Canada's Personal Information Protection and Electronic Documents Act (PIPEDA).

Information you give us

When you submit our contact form, we collect your name, email address, phone number, the service you're interested in, and your message. The form is processed by a server we run on Cloudflare and delivered to our inbox by Resend, an email delivery service. We use this information only to respond to your inquiry — never for marketing without your separate consent — and we do not sell it to anyone.

Appointments are booked through Fresha, a third-party booking platform. Any information you enter on Fresha (including payment details) is collected by Fresha under its own privacy policy — we never see or store your payment card details.

Information collected automatically (analytics)

With your consent — and only after you click Accept on our cookie banner — we use three analytics tools to understand how visitors use the site. If you decline, none of these tools load and no analytics data is collected.

Google Analytics 4

Collects usage data such as pages visited, time on site, interactions with on-page buttons and links (for example booking, call, and review clicks, or which FAQ entries are opened), approximate location (city level), device and browser type, and a cookie-based identifier. Data you provide to us may be associated with the visitation information Google Analytics collects. To learn how Google uses data from sites that use its services, see How Google uses information from sites or apps that use our services. You can opt out of Google Analytics entirely with the Google Analytics opt-out browser add-on.

Microsoft Clarity

We partner with Microsoft Clarity to capture how you use and interact with our website through behavioral metrics, heatmaps, and session replay (a recording of mouse movement, clicks, and scrolling on our pages). This data, captured using first- and third-party cookies, helps us improve the site's usability. Clarity automatically masks sensitive text input, and we additionally mask the entire contact form — anything you type there never appears in recordings. For more information, see the Microsoft Privacy Statement.

PostHog

Collects product analytics — page views and on-site interactions — to help us understand which content is useful. Session recording is disabled, anonymous visitors are not given persistent profiles, and PostHog honors your browser's "Do Not Track" setting. See the PostHog privacy policy.

Cookies & similar technologies

We use the following cookies and browser-storage identifiers. Analytics cookies are set only after you accept the cookie banner.

Advertising personalization

Our Google Analytics property may have Google signals / ads personalization features enabled, which can share analytics data with Google for advertising purposes if you are signed in to a Google account and have Ads Personalization turned on. You can control this at Google Ads Settings or opt out of interest-based advertising broadly at optout.networkadvertising.org. We do not run third-party advertising or sell your personal information.

Who we share data with

We never sell personal information. We share it only with the service providers below, who process it on our behalf:

• Google LLC (Google Analytics 4)

  Website traffic measurement and analytics — privacy policy

• Microsoft Corporation (Clarity)

  Session replay, heatmaps, and usability analytics — privacy policy

• PostHog, Inc.

  Product analytics — privacy policy

• Cloudflare, Inc.

  Website hosting and contact form processing — privacy policy

• Resend (Plus Five Five, Inc.)

  Email delivery of contact form messages — privacy policy

• Fresha.com (online booking)

  Appointment booking — governed by Fresha's own policy — privacy policy

International transfers

The providers above store and process data on servers that may be located outside Canada, primarily in the United States. Where that happens, your information is subject to the laws of those jurisdictions. We choose providers with strong contractual privacy and security commitments.

How long we keep data

Contact form messages are kept in our email inbox for as long as needed to handle your inquiry and any follow-up. Google Analytics data is retained for up to 14 months; Clarity session recordings are retained by Microsoft for about 30 days (aggregate heatmap data longer). Your cookie-consent choice stays in your own browser until you clear it.

Your choices

• Decline analytics: choose Decline on the cookie banner — no analytics tools will load.
• Change your mind later: use the "Cookie preferences" link in the footer of any page to bring the banner back and update your choice. A new choice takes effect from the next page you visit.
• Browser controls: you can also block or delete cookies in your browser settings at any time.

Your rights

Under PIPEDA you may ask us what personal information we hold about you, request a correction, or withdraw consent to its use. Email 416skin@gmail.com and we will respond within 30 days. If you are not satisfied with our response, you may contact the Office of the Privacy Commissioner of Canada.

Children

Our services and website are intended for adults. We do not knowingly collect personal information from children under 13. If you believe a child has provided us information, contact us and we will delete it.

Changes to this policy

If we change how we handle personal information — for example, by adding a new analytics tool — we will update this page and the "Last updated" date above.