Privacy Policy

1. Introduction

We take the protection of your personal data seriously. This statement informs you about the nature, scope, and purpose of the processing of personal data when you use our website.

“Personal data” means any information relating to an identified or identifiable natural person, such as your name, email address or IP address.

2. Person responsible

Arvind Kumar Samodia
Ringstrasse 2B
50996 Cologne
Phone: +49 221 94101900
Email: info@finegems-collection.de

3. Data processing when visiting our website

When you visit our website, your browser automatically transmits access data that is temporarily stored in server log files. This includes:

  • Name of the page or file accessed
  • Date and time of access
  • IP address
  • Amount of data transferred
  • Referrer URL (previous page)
  • Browser and operating system

Purpose and legal basis:
This processing ensures the functionality and security of the website (Art. 6 (1) (f) GDPR – legitimate interest).

4. Contact options

Email and contact form

If you contact us (e.g. via contact form or email), we process the data you provide (e.g. name, email address, message content).

  • Legal basis:

    • If your request relates to a contract or pre-contractual measures: Art. 6 (1) (b) GDPR

    • In other cases: Art. 6 (1) (f) GDPR (legitimate interest in communication)

You can object to the processing at any time if it is based on Art. 6 (1) (f) GDPR.

5. Customer accounts and orders

Creating a customer account

When you register for an account, we process the data you provide to manage your profile and orders.

  • Legal basis: Your consent (Art. 6 (1) (a) GDPR)

  • You can revoke your consent at any time; we will then delete your account.

Order processing

To fulfill your order we process your:

  • Name, address, email address, telephone number (if provided)

  • Payment information

  • Ordered items

  • Delivery and billing addresses

  • Legal basis: Art. 6 (1) (b) GDPR (performance of contract)

  • If necessary, data may be passed on to payment service providers, shipping companies and IT service providers.

6. Payment services

We use PayPal Checkout and other payment services to process online transactions.

PayPal

PayPal (Europe) S.à rl et Cie, SCA, 22-24 Boulevard Royal, L-2449 Luxembourg

  • Purpose: Payment processing

  • Legal basis: Art. 6 (1) (b) GDPR

  • PayPal may conduct credit checks (Art. 6 (1) (f) GDPR – fraud prevention).

For more information: PayPal Privacy Policy

Other services integrated into PayPal

Depending on your payment choices, data may be shared with:

  • Immediately (SOFORT GmbH)
  • Giropay (Paydirekt GmbH)
  • Klarna (Klarna AB)
  • Ratepay (Ratepay GmbH)

The data is transferred to process payments (Art. 6 (1) (b) GDPR). Credit checks may be conducted (Art. 6 (1) (f) GDPR).

Learn more:

7. Cookies and consent management

We use cookies to ensure the functionality and performance of our website.

Technically necessary cookies

These cookies are essential for basic website functions.

  • Legal basis: Section 25 (2) TTDSG, Article 6 (1) (f) GDPR (legitimate interest)

You can control or delete cookies through your browser settings. Disabling cookies may limit the functionality of the website.

Consent Management Tool – GDPR-compliant cookie

To obtain and manage cookie consent in accordance with the GDPR, we use a consent tool from beeclever GmbH.

  • Legal basis: Art. 6 (1) (c) GDPR (legal obligation)

Further information: gdpr-legal-cookie.com

8. External services and plug-ins

Shariff Social Media Buttons

To protect your privacy, social media buttons (e.g. from Instagram) only establish a connection when you actively click on them.

Instagram Privacy Policy: https://help.instagram.com/155833707900388

Note: Instagram is operated by Meta Platforms, Inc. (USA). Data may be transferred to third countries in accordance with standard contractual clauses.

Google reCAPTCHA

We use Google reCAPTCHA to protect our website from spam and abuse.

Provider: Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland

  • Legal basis: Art. 6 (1) (f) GDPR (security interest)

  • Data such as your IP address and browsing behavior may be processed.

More information:

9. Data storage

We only store personal data for as long as necessary for the stated purposes or as required by legal obligations (e.g. tax or commercial law).

After the retention periods have expired, your data will be deleted unless you have consented to further processing.

10. Your rights

Under the General Data Protection Regulation, you have the following rights:

  • Right to information (Article 15 GDPR)
  • Right to rectification (Article 16 GDPR)
  • Right to erasure (Article 17 GDPR)
  • Right to restriction of processing (Article 18 GDPR)
  • Right to data portability (Article 20 GDPR)
  • Right of objection (Art. 21 GDPR)

To exercise these rights, please contact us using the contact details provided above.

Right to complain

You can also lodge a complaint with your local data protection authority in accordance with Art. 77 GDPR.

11. Right of objection (Article 21 GDPR)

You have the right to object at any time to the processing of your personal data based on Art. 6 (1) (f) GDPR (legitimate interests) for reasons arising from your particular situation.

If you object, we will no longer process your data unless we can demonstrate compelling legitimate grounds for the processing or the processing serves to assert, exercise or defend legal claims.