Gemphyra Jewelry Privacy Policy


At Gemphyra Jewelry, your privacy and the protection of your personal data are extremely important to us. This Privacy Policy explains how we collect, use, and protect your information when you visit our website or make a purchase from us.

Gemphyra is committed to complying with the General Data Protection Regulation (GDPR – Regulation (EU) 2016/679) and all other applicable data protection laws.

1. Information We Collect

When you visit our website, we may collect the following types of information:

  • Personal information: such as your name, email address, billing and shipping address, phone number, and payment information.

  • Technical data: such as your IP address, browser type, device information, and browsing behavior on our site.

  • Cookies: we use cookies to enhance your shopping experience and analyze website traffic. You can manage or disable cookies through your browser settings.

2. How We Use Your Information

We use your data to:

  • Process and deliver your orders.

  • Communicate with you regarding your order status, returns, and customer service.

  • Improve our website, products, and customer experience.

  • Send promotional offers or updates (only if you have opted in).

  • Comply with legal obligations and prevent fraudulent activities.

3. Legal Basis for Processing

Under the GDPR, we rely on the following legal bases for processing your personal data:

  • Contractual necessity – when processing is required to fulfill your order or provide our services.

  • Legal obligation – when we are required by law to retain certain data.

  • Legitimate interest – when we use your data to improve our services.

  • Consent – when you agree to receive marketing emails or newsletters.

You may withdraw your consent at any time by contacting us or unsubscribing from our emails.

4. Data Retention

We keep your personal information only for as long as necessary to fulfill the purposes described in this policy, or as required by law (for example, for tax and accounting purposes).

5. Sharing Your Information

We may share your information with:

  • Service providers such as payment processors, shipping companies, and IT support, who help us operate our business.

  • Legal authorities, when required by law or in response to valid requests.

We never sell or rent your personal information to third parties.

6. Data Security

We take appropriate technical and organizational measures to ensure your data is secure and protected from unauthorized access, alteration, or disclosure.

7. Your Rights Under GDPR

As an EU or EEA resident, you have the following rights:

  • Access your personal data.

  • Request correction or deletion of your data.

  • Restrict or object to data processing.

  • Request data portability.

  • Withdraw your consent at any time.

To exercise any of these rights, please contact us via our Contact Us page.

8. International Transfers

If we transfer your data outside the European Economic Area (EEA), we ensure that such transfers are protected by appropriate safeguards, such as EU Standard Contractual Clauses (SCCs) or equivalent legal protections.

9. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The latest version will always be available on this page with the updated date.

10. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your data rights, please contact us through our Contact Us page.