Privacy Policy
1. Data Controller
This policy is governed by [Your Brand Name], a registered entity under [Jurisdiction Law]. We protect your privacy with the highest industry standards.
This policy is governed by [Your Brand Name], a registered entity under [Jurisdiction Law]. We protect your privacy with the highest industry standards.
2. Data We Collect
- Personal Information: Names, email addresses, shipping/billing addresses, phone numbers, payment details (processed via PCI-DSS compliant systems).
- Usage Data: Browsing history, product views, search queries, IP addresses.
- Customization Data: Design preferences, metal/gemstone choices for bespoke orders.
- Marketing Preferences: Subscription status for jewelry updates and offers.
3. How We Use Your Data
- Order Fulfillment: Process payments, coordinate shipping, ensure timely delivery.
- Personalization: Recommend products based on preferences (e.g., anniversary gift suggestions).
- Security: Monitor for fraud and unauthorized access.
- Compliance: Meet tax, anti-money laundering, and consumer protection laws.
4. Privacy Commitment
- No Data Sales: We never sell, rent, or trade your personal information.
- Third-Party Restrictions: Service providers (e.g., FedEx, PayPal) are contractually obligated to protect your data.
- Data Minimization: Collect only information necessary for service fulfillment.
5. Security Measures
-
Technical Safeguards:
- AES-256 encryption for sensitive data
- Two-factor authentication for administrative access
- Regular penetration testing
- Physical Security: Servers stored in ISO 27001-certified facilities.
- Employee Training: All staff trained on privacy and security protocols.
6. Your Rights
- Access: Request a copy of your data.
- Correction: Update inaccurate information.
- Deletion: Erase data under GDPR/CCPA guidelines.
- Portability: Transfer data to another provider.
- Opt-Out: Unsubscribe from marketing at any time.
7. Data Retention
- Transaction data: 7 years (financial compliance).
- Customization data: 2 years post-order completion.
- Marketing data: Until you unsubscribe.
8. International Transfers
Data may be processed globally but protected by:
Data may be processed globally but protected by:
- EU Standard Contractual Clauses (SCCs)
- U.S. Privacy Shield Framework
9. Children's Privacy
This site is not intended for minors under 16. We do not knowingly collect their data.
This site is not intended for minors under 16. We do not knowingly collect their data.
10. Policy Updates
Material changes will be announced 30 days in advance via email and website notifications.
Material changes will be announced 30 days in advance via email and website notifications.
Contact Us
Email: Lizilike1996@outlook.com
Email: Lizilike1996@outlook.com