Privacy Policy

Welcome to Ash & Jade Jewelry (www.ashandjade.com). We are committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy outlines how we collect, use, and protect your information when you visit our website and make purchases.

1. Data We Collect

We may collect the following types of personal data: IP address, browser type, operating system, cookies.

When you make a purchase or attempt to make a purchase through our Store, we collect information from you, including name, email address, postal address, phone number, username, password. Credit card details and billing address are collected processed by secure third-party payment processors (Stripe).

We collect communication preferences and subscription choices. With your permission may send you promotional emails about your order, our Store updates and products.

2. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Contractual Necessity: Processing is necessary to fulfill a contract (e.g., to process your order).
  • Legal Obligation: Processing is necessary to comply with legal obligations.
  • Consent: You have given us consent to process your data for specific purposes (e.g., marketing).

3. How We Use Your Data

We use your personal data for the following purposes:

  • To process and fulfill orders.
  • To manage your account.
  • To provide customer support.
  • To send order confirmations and updates.
  • To send marketing communications (with your consent).
  • To improve our website and services.
  • To comply with legal obligations.
  • To prevent fraud and ensure security.

4. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy or as required by law. Order data is kept for as long as needed for accounting and legal purposes. Account data is kept as long as your account is active. Marketing data is kept until you withdraw your consent.

5. Data Sharing

We may share your personal data with:

  • Service Providers: Third-party companies that assist us with payment processing, shipping, and marketing.
  • Legal Authorities: When required by law or to protect our rights.

6. Your Rights

Under the GDPR, you have the following rights:

  • Right to Access: You can request access to your personal data.
  • Right to Rectification: You can request corrections to inaccurate data.
  • Right to Erasure (Right to be Forgotten): You can request the deletion of your data.
  • Right to Restriction of Processing: You can request limitations on how we process your data.
  • Right to Data Portability: You can request a copy of your data in a portable format.
  • Right to Object: You can object to the processing of your data.
  • Right to Withdraw Consent: You can withdraw your consent at any time.
  • Right to Lodge a Complaint: You can lodge a complaint with a supervisory authority.

7. Cookies

We use cookies to enhance your browsing experience. You can manage your cookie preferences through your browser settings.

8. Security

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time.