Legal  ·  Privacy

Privacy Policy

Effective Date: May 5, 2026  ·  Last Updated: May 5, 2026

DOCTOR HAMPTONS ("DOCTOR HAMPTONS," "we," "our," or "us") respects your privacy. This Privacy Policy explains what personal information we collect when you visit doctorhamptons.com (the "Site"), reserve or purchase our products, communicate with us, or otherwise interact with our brand, and how we use, disclose, and safeguard that information. It also describes the rights and choices available to individuals located in the United States, including under the California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act ("CCPA/CPRA"), and other comparable state privacy laws.

1.Scope & Application

This Policy applies to personal information we collect or process in connection with the Site, our reservation and pre-order program (the "Reservation Program"), our products, our customer service interactions, and any social media or marketing channels we operate (collectively, the "Services"). This Policy does not apply to information collected by third parties whose websites, products, or services we link to or whose technology may be invoked through the Site, except as expressly described below. DOCTOR HAMPTONS products are cosmetic formulations marketed to U.S. consumers; this Policy is drafted to U.S. legal standards.

2.Information We Collect

We collect the categories of personal information described below. The specific information collected depends on how you interact with us.

A. Information You Provide Directly

• Identifiers and contact details: name, email address, postal/shipping address, billing address, phone number.
• Order and reservation data: products selected, deposit amount, order history, balance owed, shipping preferences, gift recipient information you provide.
• Account credentials (if you create an account): username and password.
• Customer service communications: the content of emails, messages, chat transcripts, voicemails, social media interactions, reviews, and survey responses.
• Marketing preferences: opt-ins or opt-outs for email or SMS marketing, content preferences.
• Self-reported personal characteristics: if you choose to share information about your hair, scalp, allergies, sensitivities, or general wellness goals (for example, in a quiz, intake form, or customer service email), we will collect that information. We do not request, and DOCTOR HAMPTONS does not intend to collect, protected health information ("PHI") covered by HIPAA. Information you voluntarily share about yourself for product-fit purposes is treated as ordinary consumer profile data, not medical information.

B. Information Collected Automatically

• Device and connection data: IP address, device identifier, browser type and version, operating system, language settings, mobile carrier (where applicable), and approximate location derived from IP address.
• Usage data: pages visited, time on page, referring/exit pages, click and scroll behavior, items viewed, products added to or removed from cart, and the date and time of your visit.
• Cookies and similar technologies: see Section 6 below.

C. Information from Third Parties

• Payment processors (e.g., Stripe) provide us with limited transaction data such as the last four digits of your card, card brand, transaction status, billing ZIP, and authorization tokens. We do not receive or store your full payment card number, full expiration date, or CVV.
• Shipping and logistics partners provide us with delivery status, tracking, and address verification data.
• Marketing and analytics providers may share audience or attribution data (for example, that you arrived via a particular ad).
• Social media platforms may share information with us based on your account settings if you engage with our content.

3.Sources of Information

We collect personal information directly from you, automatically from your device when you use the Site, and from the third parties described above. We may combine information from these sources to maintain accurate records, prevent fraud, and improve the Services.

4.How We Use Information

We use personal information for the following business purposes:

• Provide the Services: process reservations and orders, charge deposits and balances, fulfill and ship products, manage returns and refunds, and provide customer support.
• Communications: send transactional messages (order confirmations, shipping updates, balance-due notices, refund notices, important Service or product changes); respond to inquiries.
• Marketing: with your consent where required, send marketing emails and text messages, deliver targeted advertising, and measure marketing effectiveness.
• Personalization: remember preferences, recommend products, and tailor content.
• Analytics and improvement: understand how the Site and products are used, improve formulations, packaging, content, and the customer experience.
• Security and fraud prevention: detect, investigate, and prevent fraudulent transactions, abuse, account compromise, and unauthorized activity.
• Legal and compliance: comply with applicable laws, regulations, court orders, and lawful requests; enforce our Terms & Conditions; defend legal claims; and protect the rights, property, and safety of DOCTOR HAMPTONS, our customers, and others.
• Business transfers: evaluate or carry out a merger, financing, reorganization, sale of assets, or similar transaction.

We will not use your personal information for materially different, unrelated, or incompatible purposes without providing notice and, where required, obtaining your consent.

5.How We Share Information

We do not sell personal information for monetary consideration. We share personal information in the following limited circumstances:

• Service providers and processors who perform functions on our behalf, including: payment processing (Stripe), order fulfillment and shipping, hosting and infrastructure (including Netlify), email and SMS delivery, analytics, advertising and attribution, customer support, fraud prevention, and accounting. These providers are contractually limited to using personal information only as necessary to perform the services for us.
• Advertising partners. Some of our use of cookies and pixels for digital advertising may be considered a "sale" or "share" of personal information under California and other state privacy laws even though we do not receive money. You can opt out as described in Sections 13 and 14.
• Affiliates under common ownership or control with DOCTOR HAMPTONS, for purposes consistent with this Policy.
• Legal disclosures. We may disclose personal information when we believe in good faith that disclosure is necessary to (i) comply with law, regulation, subpoena, court order, or other legal process; (ii) enforce or apply our Terms & Conditions; (iii) protect the rights, property, or safety of DOCTOR HAMPTONS, our customers, or others; or (iv) investigate fraud or wrongdoing.
• Corporate transactions. In connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business, personal information may be transferred or disclosed as a business asset.
• With your consent or at your direction.

6.Cookies & Tracking Technologies

We and our service providers use cookies, pixels, software development kits, local storage, and similar technologies (collectively, "Cookies") to operate the Site, remember preferences, perform analytics, and deliver advertising.

• Strictly necessary Cookies are required to operate the Site (e.g., maintaining your cart, securing transactions).
• Performance and analytics Cookies help us understand traffic and usage so we can improve the Site.
• Functional Cookies remember choices you make to enhance your experience.
• Advertising Cookies are used to deliver relevant ads and measure performance.

You can control Cookies through your browser settings, your device settings, and (where available) our cookie preference tool. Blocking certain Cookies may impair Site functionality. To opt out of cross-context behavioral advertising, you can use the controls offered by industry self-regulatory programs at optout.aboutads.info and optout.networkadvertising.org, and the controls described in Sections 13 and 14.

7.Marketing & Email Communications

By providing your email address, you consent to receive transactional messages relating to your reservation, order, balance, shipment, returns, refunds, and Service updates. We may also send marketing emails about products, promotions, restocks, and brand content; you may unsubscribe at any time using the link in any marketing email or by contacting us at hair@drhamptons.com. Transactional messages are not subject to opt-out because they are necessary to provide the Services. Our email practices are designed to comply with the CAN-SPAM Act, 15 U.S.C. § 7701 et seq.

8.SMS & Mobile Messaging

If you provide your mobile number and opt in, we may send recurring marketing and transactional text messages on behalf of DOCTOR HAMPTONS at the number you provide. Message frequency varies. Message and data rates may apply. Consent is not a condition of any purchase. You may opt out at any time by replying STOP to any message; reply HELP for help. Carriers are not liable for delayed or undelivered messages. Our SMS practices are intended to comply with the Telephone Consumer Protection Act ("TCPA"), 47 U.S.C. § 227, applicable Federal Communications Commission rules, and CTIA messaging guidelines.

9.Payment Processing

Payments are processed by Stripe, a PCI DSS Level 1 certified payment processor, or another payment processor we may engage. We do not store your full payment card number, full expiration date, or CVV. Your payment is governed by the payment processor's terms and privacy policy in addition to ours. The $35 reservation deposit is fully refundable in accordance with our Terms & Conditions; please review the Terms & Conditions for full details.

10.Data Retention

We retain personal information for as long as necessary to fulfill the purposes for which it was collected, including to provide the Services, comply with legal, tax, accounting, and reporting obligations, resolve disputes, prevent fraud, and enforce our agreements. Retention periods are determined based on the nature and sensitivity of the information, the purposes for processing, the potential risk of harm from unauthorized use or disclosure, and applicable legal requirements. When personal information is no longer required, we securely delete or de-identify it.

11.Information Security

We maintain administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, loss, misuse, alteration, and destruction. These include encryption in transit, access controls, vendor due diligence, and personnel training. However, no method of transmission over the Internet or method of electronic storage is 100% secure, and we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of any account credentials and for the activities that occur under your account.

12.Children's Privacy

The Services are intended for adults 18 years of age or older. We do not knowingly collect personal information from children under 13 in violation of the Children's Online Privacy Protection Act ("COPPA"), nor do we knowingly sell or share for cross-context behavioral advertising the personal information of consumers under 16 without affirmative authorization. If you believe a child has provided personal information to us, please contact us so we can promptly delete it.

13.Your Privacy Rights

Depending on where you reside, you may have the following rights with respect to personal information we have collected about you:

• Right to know / access the categories and specific pieces of personal information we have collected, the sources of that information, the business or commercial purposes for collecting it, and the categories of third parties with whom we have shared it.
• Right to delete personal information we have collected, subject to certain exceptions.
• Right to correct inaccurate personal information.
• Right to portability in a machine-readable format.
• Right to opt out of the "sale" or "sharing" of personal information for cross-context behavioral advertising and the use of sensitive personal information for inferences.
• Right to limit the use of certain sensitive personal information (where applicable).
• Right to non-discrimination for exercising your rights.

How to exercise your rights. To submit a request, email us at hair@drhamptons.com with the subject line "Privacy Rights Request" and include enough information for us to verify your identity (such as the email address used to place your order) and the nature of your request. We will respond within the timeframe required by applicable law (generally 45 days, with an additional 45-day extension where reasonably necessary).

Authorized agents. You may designate an authorized agent to make a request on your behalf. We may require the agent to provide proof of authorization and may require you to verify your identity directly with us.

Appeals. If we deny a privacy request, you may appeal by replying to our denial email with the subject line "Privacy Rights Appeal."

14.California Disclosures (CCPA/CPRA)

This section provides additional information for California residents under the CCPA/CPRA.

Categories Collected (Last 12 Months)

In the preceding twelve (12) months, we have collected the following categories of personal information defined under the CCPA: identifiers; customer records (Cal. Civ. Code § 1798.80(e)); commercial information; internet or other electronic network activity information; geolocation data (general); audio, electronic, or visual information (e.g., customer service recordings); and inferences drawn from the foregoing. We do not knowingly collect "sensitive personal information" as defined by the CCPA for the purpose of inferring characteristics about you.

Sales and Sharing

We do not sell personal information for monetary consideration. Some advertising-related uses of cookies and pixels may be considered a "sale" or "sharing" of personal information under California law. To opt out of such sales/sharing, use the "Do Not Sell or Share My Personal Information" link or set the Global Privacy Control ("GPC") signal in a supported browser; we honor GPC as a valid opt-out signal for the browser on which it is enabled.

Notice of Financial Incentive

From time to time we may offer financial incentives (such as discounts) in exchange for the collection, retention, or use of certain personal information (such as your email address). The material terms of any such program will be presented at the point of sign-up, and you may withdraw at any time by emailing hair@drhamptons.com. We have a good-faith belief that the value of the personal information collected is reasonably related to the value of the offer to you, calculated by reference to the expense incurred to provide the incentive.

Shine the Light

California Civil Code § 1798.83 permits California residents to request certain disclosures regarding the disclosure of personal information to third parties for direct marketing purposes. To make such a request, contact us at hair@drhamptons.com.

15.Other State Disclosures

Residents of Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Montana, Tennessee, Iowa, Indiana, Delaware, New Jersey, New Hampshire, Minnesota, Maryland, Rhode Island, and other states with comprehensive consumer privacy laws may have rights similar to those described in Sections 13 and 14, subject to applicable thresholds and exceptions. To exercise rights, follow the procedure in Section 13. Where applicable law provides a right to appeal, you may appeal a denial as described above.

16.Do Not Track

Most browsers offer a "Do Not Track" ("DNT") setting. Because there is no industry-standard interpretation of DNT signals, we do not currently respond to DNT signals. We do honor the Global Privacy Control ("GPC") opt-out signal as described in Section 14.

17.International Users

The Services are intended for users located in the United States. If you access the Services from outside the United States, you understand and acknowledge that your information will be transferred to, stored, and processed in the United States, where data-protection laws may differ from those of your jurisdiction. By using the Services, you consent to such transfer and processing.

18.Third-Party Sites

The Site may contain links to third-party websites, products, or services. We are not responsible for the privacy practices or content of those third parties. We encourage you to review the privacy policies of any third-party sites you visit.

19.Changes to This Policy

We may update this Policy from time to time. When we make material changes, we will revise the "Last Updated" date at the top of this Policy and, where required by applicable law, provide additional notice (such as by email or a prominent notice on the Site). Your continued use of the Services after changes become effective constitutes your acceptance of the revised Policy.

20.Contact Us