PRIVACY POLICY

Version: 01/02/2025

At Kozi Jewelry, we respect and protect your privacy. This Privacy Policy explains how we collect, use, store, and safeguard your personal data when you visit our website (www.kozijewelry.com) or purchase our products.

Our practices comply with the General Data Protection Regulation (GDPR) and the Estonian Personal Data Protection Act (Isikuandmete kaitse seadus).

DATA WE COLLECT

We may collect and process the following categories of personal data:

Identity Data

Name, email address, phone number, billing and shipping addresses.

Payment Data

Payment information (processed securely by certified third-party payment processors; we do not store full payment details).

Order Data

Purchase details, order history, returns, and customer service interactions.

Technical Data

IP address, browser type, device information, cookies, and site usage behavior.

Marketing Preferences

Your preferences regarding newsletters and promotional communications.

HOW WE COLLECT YOUR DATA

Directly from you

When you place an order, contact us, create an account, or subscribe to marketing communications.

Automatically

Through cookies, analytics tools, and tracking technologies when you browse our website.

From third parties

Payment processors, delivery companies, fraud prevention services, and marketing partners.

WHY WE COLLECT YOUR DATA

We use your personal data to:

• Process, deliver, and manage your orders.

• Handle payments and send order confirmations.

• Provide customer support.

• Communicate regarding purchases or service inquiries.

• Send marketing communications with your consent.

• Maintain website security and prevent fraud.

• Improve our services, website functionality, and user experience.

LEGAL BASIS FOR PROCESSING

We process your data under the following lawful bases:

• Contractual necessity: To fulfill and deliver your orders.

• Legal obligations: For tax, accounting, and regulatory compliance under Estonian law.

• Consent: For marketing communications or optional features.

• Legitimate interest: For website security, fraud prevention, and business improvement.

SHARING YOUR DATA

We share your personal data only with trusted third parties that help us operate our business:

• Payment processors (for secure online payments)

• Logistics and delivery partners

• IT service providers (hosting, security, maintenance)

• Marketing and analytics partners (only with consent)

We do not sell your personal data to any third party.

All partners operate under GDPR-compliant agreements.

INTERNATIONAL DATA TRANSFERS

If your data is transferred outside the European Union or Estonia, we ensure appropriate safeguards such as:

• Standard Contractual Clauses (SCCs)

• Adequacy decisions

• GDPR-compliant contractual protections

COOKIES

We use cookies and similar technologies to:

• Improve site functionality

• Personalize content

• Analyze website traffic

• Enhance your shopping experience

You may modify your cookie settings in your browser at any time.

Please refer to our Cookie Policy for more information.

DATA RETENTION

We store your data only as long as necessary for the purposes collected:

• Order & purchase data: 7 years (as required by Estonian accounting and tax law)

• Customer accounts: Deleted after 2 years of inactivity

• Marketing data: Until you withdraw your consent

• Support communications: Up to 2 years

YOUR RIGHTS

Under GDPR and Estonian data protection law, you have the right to:

• Access your personal data

• Correct inaccurate or incomplete information

• Request deletion (“right to be forgotten”)

• Withdraw consent at any time

• Object to or restrict processing

• Request data portability

• File a complaint with the Estonian Data Protection Inspectorate

To exercise your rights, contact us at:

📧 privacy@kozijewelry.com

SECURITY MEASURES

We apply strict security practices including:

• Encrypted data transmission

• Secure server environments

• Restricted staff access

• Regular security audits

These measures help protect your data from unauthorized access or misuse.

UPDATES TO THIS POLICY

We may update this Privacy Policy periodically to reflect legal changes or improvements in how we manage personal data. Updated versions will always be available on our website.

CONTACT US

If you have questions or concerns about how we handle your data, you may contact us at:

privacy@kozijewelry.com

If you believe your rights have been violated, you may file a complaint with:

Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon)