Privacy Policy
Website: https://asfiajewelry.com
About
Asfia Jewelry is committed to protecting your privacy. We only process the data that we need to provide or improve our services, and we handle all information about you and your use of our services with care. Your data will not be shared with third parties for commercial purposes. This privacy policy applies to the use of the website and the services provided through Asfia Jewelry. It describes what information we collect, how we use this information, and under what conditions we may share it with third parties. We also explain how we store your data, how we protect it against misuse, and your rights regarding the personal data you provide us. If you have any questions about our privacy policy, please contact our privacy officer. You can find the contact details at the end of this privacy policy.
Data Processing
Below is an explanation of how we process your data, where we store it, the security techniques we use, and who has access to your data.
E-commerce Software
We use web hosting and email services from Shopify, Google G Suite, and Klaviyo. Our web hosting provider has access to the personal data collected via our website, which is necessary for providing technical support. They will not use this data for any other purposes. Based on our agreement, our web hosting provider is required to take necessary precautions and security measures to protect your personal data.
Our webshop is developed using Shopify software, and we host it on a self-managed server. We have implemented the necessary security measures, such as SSL encryption and a strong password policy, to safeguard your personal data.
Email/Mailing Lists
For business email communication, we use the services provided by our web host. They have implemented technical and organizational measures to prevent misuse, loss, or unauthorized access to your data. Our web host does not have access to our mailbox, and we treat our email communication confidentially.
Purpose Data Processing
We use your data solely to provide our services to you. This means that the purpose of processing your data is directly related to the task you assign to us. We do not use your data for targeted marketing purposes. If you share information with us, and we use this information to contact you later—outside the scope of a specific request—we will ask for your explicit consent first. Your data is not shared with third parties, except when necessary to meet accounting and administrative obligations. These third parties are bound by confidentiality agreements.
Automatically Collected Data
Information that is automatically collected by our website (such as your anonymized IP address, web browser, and operating system) is processed solely to provide our services or to improve them. This information is not considered personal data.
Collaboration in Tax and Criminal Investigations
In certain cases, we may be legally required to share your data to assist in a tax or criminal investigation. In such cases, we are obliged to comply with these requests, but we will object where possible to protect your privacy rights.
Retention Periods
We retain your data as long as you remain a customer with us. This means that we keep your customer profile until you notify us that you no longer wish to use our services. Such a notification will also be considered a request to be forgotten. However, we are required to retain invoices with your personal data due to administrative obligations, which will be securely stored for the duration of the relevant retention period. Employees will no longer have access to your customer profile or any documents produced in connection with your service request.
Currencies
Your Rights
Under applicable law, you have certain rights regarding the personal data that we process or that is processed on our behalf. Below, we explain these rights and how you can invoke them. To prevent misuse, we only send invoices and copies of your data to email addresses you have provided. If you wish to receive this information at another email address or via post, we may require further identification. We maintain records of requests and will keep anonymized data in cases where a request for deletion is made.
-
Right of Access
You have the right to access your data at any time. You can submit a request to our privacy contact. We will respond within 30 days with a copy of your data, as well as a list of the processors handling your data. -
Right to Rectification
You have the right to correct any personal data we process that is inaccurate or incomplete. You can request corrections through our privacy contact, and we will notify you within 30 days if the correction has been made. -
Right to Restriction of Processing
You can request to limit the processing of your data at any time. This request can also be submitted to our privacy contact, and we will confirm within 30 days whether the processing will be restricted. -
Right to Data Portability
You have the right to request that your data, processed by us, be transferred to a third party of your choice. We will provide your data in a structured, machine-readable format within 30 days of receiving your request. -
Right to Object
You may object to the processing of your personal data at any time. We will cease processing your data immediately while we assess your objection. If your objection is valid, we will return all data and cease processing it further. Additionally, you have the right not to be subjected to automated decision-making or profiling. If you believe this right applies, please contact our privacy officer.
Changes to the Privacy Policy
We reserve the right to change our privacy policy at any time. However, this page will always display the most current version. If a new privacy policy impacts the way we process your personal data, we will notify you via email.
Legal Contact Information
Email: legal@asfiajewelry.com