Privacy Policy
1. Introduction
We take the protection of your personal data seriously. This statement informs you about the nature, scope, and purpose of the processing of personal data when you use our website.
“Personal data” means any information relating to an identified or identifiable natural person, such as your name, email address or IP address.
2. Person responsible
Arvind Kumar Samodia
Ringstrasse 2B
50996 Cologne
Phone: +49 221 94101900
Email: info@finegems-collection.de
3. Data processing when visiting our website
When you visit our website, your browser automatically transmits access data that is temporarily stored in server log files. This includes:
- Name of the page or file accessed
- Date and time of access
- IP address
- Amount of data transferred
- Referrer URL (previous page)
- Browser and operating system
Purpose and legal basis:
This processing ensures the functionality and security of the website (Art. 6 (1) (f) GDPR – legitimate interest).
4. Contact options
Email and contact form
If you contact us (e.g. via contact form or email), we process the data you provide (e.g. name, email address, message content).
-
Legal basis:
-
If your request relates to a contract or pre-contractual measures: Art. 6 (1) (b) GDPR
-
In other cases: Art. 6 (1) (f) GDPR (legitimate interest in communication)
-
You can object to the processing at any time if it is based on Art. 6 (1) (f) GDPR.
5. Customer accounts and orders
Creating a customer account
When you register for an account, we process the data you provide to manage your profile and orders.
-
Legal basis: Your consent (Art. 6 (1) (a) GDPR)
-
You can revoke your consent at any time; we will then delete your account.
Order processing
To fulfill your order we process your:
-
Name, address, email address, telephone number (if provided)
-
Payment information
-
Ordered items
-
Delivery and billing addresses
-
Legal basis: Art. 6 (1) (b) GDPR (performance of contract)
-
If necessary, data may be passed on to payment service providers, shipping companies and IT service providers.
6. Payment services
We use PayPal Checkout and other payment services to process online transactions.
PayPal
PayPal (Europe) S.à rl et Cie, SCA, 22-24 Boulevard Royal, L-2449 Luxembourg
-
Purpose: Payment processing
-
Legal basis: Art. 6 (1) (b) GDPR
-
PayPal may conduct credit checks (Art. 6 (1) (f) GDPR – fraud prevention).
Other services integrated into PayPal
Depending on your payment choices, data may be shared with:
- Immediately (SOFORT GmbH)
- Giropay (Paydirekt GmbH)
- Klarna (Klarna AB)
- Ratepay (Ratepay GmbH)
The data is transferred to process payments (Art. 6 (1) (b) GDPR). Credit checks may be conducted (Art. 6 (1) (f) GDPR).
Learn more:
7. Cookies and consent management
We use cookies to ensure the functionality and performance of our website.
Technically necessary cookies
These cookies are essential for basic website functions.
-
Legal basis: Section 25 (2) TTDSG, Article 6 (1) (f) GDPR (legitimate interest)
You can control or delete cookies through your browser settings. Disabling cookies may limit the functionality of the website.
Consent Management Tool – GDPR-compliant cookie
To obtain and manage cookie consent in accordance with the GDPR, we use a consent tool from beeclever GmbH.
-
Legal basis: Art. 6 (1) (c) GDPR (legal obligation)
8. External services and plug-ins
Shariff Social Media Buttons
To protect your privacy, social media buttons (e.g. from Instagram) only establish a connection when you actively click on them.
Instagram Privacy Policy: https://help.instagram.com/155833707900388
Note: Instagram is operated by Meta Platforms, Inc. (USA). Data may be transferred to third countries in accordance with standard contractual clauses.
Google reCAPTCHA
We use Google reCAPTCHA to protect our website from spam and abuse.
Provider: Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland
-
Legal basis: Art. 6 (1) (f) GDPR (security interest)
-
Data such as your IP address and browsing behavior may be processed.
More information:
9. Data storage
We only store personal data for as long as necessary for the stated purposes or as required by legal obligations (e.g. tax or commercial law).
After the retention periods have expired, your data will be deleted unless you have consented to further processing.
10. Your rights
Under the General Data Protection Regulation, you have the following rights:
- Right to information (Article 15 GDPR)
- Right to rectification (Article 16 GDPR)
- Right to erasure (Article 17 GDPR)
- Right to restriction of processing (Article 18 GDPR)
- Right to data portability (Article 20 GDPR)
- Right of objection (Art. 21 GDPR)
To exercise these rights, please contact us using the contact details provided above.
Right to complain
You can also lodge a complaint with your local data protection authority in accordance with Art. 77 GDPR.
11. Right of objection (Article 21 GDPR)
You have the right to object at any time to the processing of your personal data based on Art. 6 (1) (f) GDPR (legitimate interests) for reasons arising from your particular situation.
If you object, we will no longer process your data unless we can demonstrate compelling legitimate grounds for the processing or the processing serves to assert, exercise or defend legal claims.