Privacy Policy

Privacy Policy | G&D Jewelry

Privacy Policy

Effective Date: June 11, 2026  |  Last Updated: June 11, 2026

🔒 Your privacy matters to us. At G&D Jewelry, we are dedicated to protecting your personal information and ensuring transparency. This Privacy Policy explains how we collect, use, share, and safeguard your data when you visit our website https://gndjewellery.com (the “Site”) and purchase jewelry products including jewelry sets, necklaces, earrings, rings, pendants, fashion jewelry, and luxury jewelry.

We operate in full compliance with applicable privacy laws (GDPR, CCPA, etc.) and eCommerce best practices. We never sell your personal data to third parties. By using our website, you agree to the terms described below. If you do not agree, please refrain from using our services.

1. Information We Collect

To provide you with an exceptional shopping experience, we collect several types of information:

  • Directly provided information: When you create an account, place an order, subscribe to our newsletter, or contact customer support, you voluntarily provide data such as your name, email address, shipping/billing address, phone number, and payment details.
  • Automatically collected information: When you browse our store, we automatically receive your IP address, browser type, device identifiers, operating system, referring URLs, pages viewed, and timestamps. This helps us improve site functionality and prevent fraud.
  • Third-party sources: We may receive information from payment processors (e.g., transaction confirmation), shipping carriers (delivery status), or analytics tools (Google Analytics).

2. Personal Information

“Personal information” refers to data that can identify you as an individual. For G&D Jewelry customers, this includes:

  • Full name
  • Billing and shipping addresses
  • Email address & phone number
  • Account login credentials (stored in encrypted, hashed format)
  • Order history, product preferences, and wishlist items
  • Communication records (support chats, emails)

Payment card details (full PAN, CVV, expiry) are never stored on our servers — they are processed directly by our PCI DSS compliant payment gateways. We only retain transaction IDs and last 4 digits for reference.

3. Order and Payment Information

When you purchase handcrafted jewelry from G&D Jewelry, we collect:

  • Order details: Product SKUs, quantity, price, customization notes (if any), and gift messages.
  • Payment information: We use trusted payment gateways (Stripe, PayPal, and other secure processors) to handle credit/debit card transactions, digital wallets, and bank transfers. Your payment data is encrypted via SSL/TLS and never sold or rented.
  • Billing & shipping addresses: Required for order fulfillment, tax calculation, and fraud screening.

All payment processing complies with PCI DSS (Payment Card Industry Data Security Standard). You can review the privacy policies of our payment partners at any time.

4. How We Use Customer Information

We use collected information for legitimate business purposes, including:

  • Processing and fulfilling your orders (including shipping confirmations and tracking).
  • Managing your customer account and providing order history.
  • Communicating with you regarding your orders, returns, or customer service inquiries.
  • Sending marketing communications (only with your explicit consent) such as new jewelry collections, exclusive offers, and style inspiration – you may opt out at any time.
  • Improving our website, product recommendations, and personalizing your shopping journey.
  • Preventing fraudulent transactions, enhancing security, and complying with legal obligations.
  • Analyzing trends and usage data via Google Analytics to optimize performance.

We do not use automated decision-making that legally affects you without human oversight.

5. Cookies and Tracking Technologies

Our website uses cookies and similar technologies (web beacons, pixels) to enhance user experience, analyze site traffic, and support eCommerce functionality. Cookies are small text files stored on your device.

Types of cookies we use:

  • Essential cookies: Required for core functions such as shopping cart, secure checkout, and login sessions. These include woocommerce_cart_hash, woocommerce_items_in_cart, wp_woocommerce_session_ – without them, our store cannot operate properly.
  • Functional cookies: Remember your preferences (currency, language, recently viewed items) to improve your experience.
  • Analytics cookies: Help us understand visitor behavior (e.g., pages visited, time on site) via Google Analytics.
  • Advertising cookies: Used by Google Shopping and remarketing campaigns to show you relevant jewelry ads based on browsing history.

You can manage or disable cookies through your browser settings. However, disabling essential cookies may prevent you from completing purchases or using certain site features.

6. Google Analytics and Google Services

We use Google Analytics 4 (GA4) to collect anonymized data about website traffic, user interactions, and sales performance. GA4 helps us identify popular products, optimize page load speeds, and improve our marketing campaigns. Google Analytics may set cookies that collect your IP address (truncated/anonymized before storage), browser type, and device information.

IP anonymization is enabled to protect your identity. We do not allow Google to share analytics data with other Google services without our permission. Data retention for GA4 is set to 26 months, after which it is automatically deleted.

You can opt out of Google Analytics entirely by installing the Google Analytics Opt-out Browser Add-on.

Additionally, we use Google Tag Manager to manage tracking scripts efficiently. Google’s advertising features may be used for remarketing and demographic reporting, but only with your consent where required by law.

7. Google Shopping and Merchant Center Compliance

G&D Jewelry participates in Google Shopping and Google Merchant Center to showcase our jewelry products. To remain compliant with Google’s policies:

  • We provide accurate product data (title, description, price, availability, shipping information) without misleading claims.
  • We do not upload sensitive customer information (e.g., email addresses or payment data) to Merchant Center.
  • For personalized advertising and dynamic remarketing, we obtain user consent through cookie banners (when legally required).
  • We fully adhere to Google’s Customer Data Policies – specifically regarding notice, consent, and data handling.
  • Customers can opt out of personalized Google Shopping ads by visiting Google Ads Settings.

We never share individual purchase data with Google in a way that identifies you personally without explicit consent.

8. Third-Party Services

To run our online jewelry store efficiently, we rely on trusted third-party service providers. Each provider has its own privacy policy and data processing agreements where required by law.

  • Payment Processors: Stripe, PayPal, and other PCI-compliant gateways. They process your payment details securely; we only receive transaction confirmation.
  • Shipping & Fulfillment: Carriers (e.g., USPS, FedEx, DHL, local postal services) receive your name, address, and phone number solely for delivery purposes.
  • Email Marketing: Klaviyo or Mailchimp (optional) – used to send order confirmations and promotional emails if you opt in. You can unsubscribe anytime.
  • Website Hosting & Analytics: WordPress, WooCommerce, secure hosting providers, and Google services as described above.
  • Fraud Prevention & Security: Tools that analyze order risk without storing unnecessary personal data.

Important: We do not sell, rent, or trade your personal information to any third parties for their own marketing purposes. Any data shared with third parties is limited to the purpose of fulfilling your order or improving our services.

9. Data Security and Protection

Protecting your jewelry purchase data is a top priority. We implement industry-standard security measures:

  • SSL/TLS encryption: All data transmitted between your browser and our website is encrypted using 256-bit SSL certificates.
  • Access controls: Only authorized personnel with a legitimate need can access personal data; they are bound by confidentiality agreements.
  • Regular security scans: Our WooCommerce platform is regularly patched and scanned for vulnerabilities.
  • PCI compliance: Our payment partners handle card data, ensuring we never store full card details. We are PCI DSS compliant as a merchant.
  • Data breach protocol: In the unlikely event of a security breach affecting your personal information, we will notify affected users and relevant supervisory authorities within 72 hours, as required by GDPR/CCPA.

While no system is 100% secure, we continuously update our security practices to safeguard your information.

10. Customer Rights

Depending on your location, you have certain rights regarding your personal data. G&D Jewelry respects all applicable privacy laws including the GDPR (EU/UK), CCPA (California), and others.

  • Right to Access: Request a copy of the personal data we hold about you.
  • Right to Rectification: Correct inaccurate or incomplete information (e.g., update your shipping address).
  • Right to Erasure (“Right to be Forgotten”): Request deletion of your personal data, subject to legal retention obligations (e.g., tax records).
  • Right to Restrict Processing: Limit how we use your data while we verify its accuracy or legitimacy.
  • Right to Data Portability: Receive your data in a structured, machine-readable format (e.g., CSV).
  • Right to Object: Opt out of direct marketing or certain profiling activities at any time.
  • Right to Withdraw Consent: If we rely on consent for processing (e.g., marketing emails), you may withdraw it without affecting previous lawful processing.
  • California “Do Not Sell My Personal Information”: We do not sell personal data. Still, California residents may contact us to confirm no sale occurs.

To exercise any of these rights, please email us at support@gndjewellery.com. We will verify your identity and respond within 30 days (or as required by law). You also have the right to lodge a complaint with your local data protection authority.

11. Data Retention

We retain personal information only as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law.

  • Account data: Retained while your account is active. After 2 years of inactivity, we may delete or anonymize account information.
  • Order records: Kept for 7 years to comply with tax, accounting, and warranty obligations (e.g., returns/repairs for jewelry).
  • Analytics data: Google Analytics data stored for 26 months; after that, aggregated data may be retained but no longer linked to individual identifiers.
  • Marketing data: If you unsubscribe, we keep your email on a suppression list to honor your opt-out request.

After the retention period, data is securely deleted or irreversibly anonymized.

12. International Users

G&D Jewelry is an international online store serving customers worldwide. Your personal information may be transferred to and processed in countries other than your own, including the United States and the European Economic Area (EEA), where our servers and service providers are located.

For users in the European Union, UK, or Switzerland, we ensure appropriate safeguards are in place for data transfers, such as:

  • Standard Contractual Clauses (SCCs) adopted by the European Commission.
  • Data processing agreements with third parties that meet GDPR standards.

By using our website and providing your information, you consent to the transfer and processing of your data as described. We are committed to maintaining a high level of protection regardless of where your data resides.

13. Children’s Privacy

Our website is intended for adults (age 18 and older) who can legally make purchases. G&D Jewelry does not knowingly collect or solicit personal information from anyone under the age of 16 (or under 13 in jurisdictions following COPPA).

If we discover that we have inadvertently collected personal data from a child under the relevant age threshold, we will delete such information immediately. Parents or guardians who believe their child has provided us with personal data should contact us at support@gndjewellery.com.

14. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or operational needs. If we make material changes, we will notify you by:

  • Posting a prominent notice on our website prior to the change becoming effective, and/or
  • Sending an email to registered users (if we have your email address).

The “Last Updated” date at the top of this page indicates when the policy was last revised. Your continued use of the Site after any modifications constitutes acceptance of the updated policy. We encourage you to review this page regularly.

15. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal data, please contact our Privacy Team:

Business Name: G&D Jewelry
Website: https://gndjewellery.com
Email: support@gndjewellery.com
Contact Form: https://gndjewellery.com/contact

For data protection inquiries, you may also reach our appointed representative (if any) by email. We aim to respond to all legitimate requests within 15–30 business days.


© 2026 G&D Jewelry. All rights reserved. This Privacy Policy forms part of our Terms of Service and does not create any third-party beneficiary rights. Prior to making any legal decision based on this document, consult appropriate legal counsel – this policy is provided for informational purposes and represents our current data handling practices.