PRIVACY POLICY
Version: 01/02/2025
At Kozi Jewelry, we respect and protect your privacy. This Privacy Policy explains how we collect, use, store, and safeguard your personal data when you visit our website (www.kozijewelry.com) or purchase our products.
Our practices comply with the General Data Protection Regulation (GDPR) and the Estonian Personal Data Protection Act (Isikuandmete kaitse seadus).
DATA WE COLLECT
We may collect and process the following categories of personal data:
Identity Data
Name, email address, phone number, billing and shipping addresses.
Payment Data
Payment information (processed securely by certified third-party payment processors; we do not store full payment details).
Order Data
Purchase details, order history, returns, and customer service interactions.
Technical Data
IP address, browser type, device information, cookies, and site usage behavior.
Marketing Preferences
Your preferences regarding newsletters and promotional communications.
HOW WE COLLECT YOUR DATA
Directly from you
When you place an order, contact us, create an account, or subscribe to marketing communications.
Automatically
Through cookies, analytics tools, and tracking technologies when you browse our website.
From third parties
Payment processors, delivery companies, fraud prevention services, and marketing partners.
WHY WE COLLECT YOUR DATA
We use your personal data to:
• Process, deliver, and manage your orders.
• Handle payments and send order confirmations.
• Provide customer support.
• Communicate regarding purchases or service inquiries.
• Send marketing communications with your consent.
• Maintain website security and prevent fraud.
• Improve our services, website functionality, and user experience.
LEGAL BASIS FOR PROCESSING
We process your data under the following lawful bases:
• Contractual necessity: To fulfill and deliver your orders.
• Legal obligations: For tax, accounting, and regulatory compliance under Estonian law.
• Consent: For marketing communications or optional features.
• Legitimate interest: For website security, fraud prevention, and business improvement.
SHARING YOUR DATA
We share your personal data only with trusted third parties that help us operate our business:
• Payment processors (for secure online payments)
• Logistics and delivery partners
• IT service providers (hosting, security, maintenance)
• Marketing and analytics partners (only with consent)
We do not sell your personal data to any third party.
All partners operate under GDPR-compliant agreements.
INTERNATIONAL DATA TRANSFERS
If your data is transferred outside the European Union or Estonia, we ensure appropriate safeguards such as:
• Standard Contractual Clauses (SCCs)
• Adequacy decisions
• GDPR-compliant contractual protections
COOKIES
We use cookies and similar technologies to:
• Improve site functionality
• Personalize content
• Analyze website traffic
• Enhance your shopping experience
You may modify your cookie settings in your browser at any time.
Please refer to our Cookie Policy for more information.
DATA RETENTION
We store your data only as long as necessary for the purposes collected:
• Order & purchase data: 7 years (as required by Estonian accounting and tax law)
• Customer accounts: Deleted after 2 years of inactivity
• Marketing data: Until you withdraw your consent
• Support communications: Up to 2 years
YOUR RIGHTS
Under GDPR and Estonian data protection law, you have the right to:
• Access your personal data
• Correct inaccurate or incomplete information
• Request deletion (“right to be forgotten”)
• Withdraw consent at any time
• Object to or restrict processing
• Request data portability
• File a complaint with the Estonian Data Protection Inspectorate
To exercise your rights, contact us at:
SECURITY MEASURES
We apply strict security practices including:
• Encrypted data transmission
• Secure server environments
• Restricted staff access
• Regular security audits
These measures help protect your data from unauthorized access or misuse.
UPDATES TO THIS POLICY
We may update this Privacy Policy periodically to reflect legal changes or improvements in how we manage personal data. Updated versions will always be available on our website.
CONTACT US
If you have questions or concerns about how we handle your data, you may contact us at:
If you believe your rights have been violated, you may file a complaint with:
Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon)
