Facebook-f Instagram Pinterest

    Last updated: September 21, 2025

    This Privacy Policy explains how Gresha Jewels(“we”, “us”, or “our”) collects, uses, shares, and protects personal information when you visit or make a purchase from our website, mobile apps, physical stores, or otherwise interact with our services. It also describes your rights and choices about your personal data. This policy is written for jewellery retailers and follows common industry practices and legal requirements used by leading jewellery brands and ecommerce retailers.

    1. Scope & who we are

    This Privacy Policy applies to all personal data we collect about:

      • Visitors to our websites and apps;

      • Customers who make purchases in store or online;

      • People who contact our customer support, sign up for marketing, or otherwise interact with us.

    If you live in the European Economic Area (EEA), United Kingdom, California, or other jurisdictions with privacy laws, additional legal notices and rights may apply (see sections on Your Rights and California/US Residents). Our contact details for privacy questions are below. 

    2. Categories of personal information we collect

    We collect only what is reasonably necessary to deliver products and services, run our business, and comply with legal obligations. Typical categories include:

    Identity & account data: name, date of birth (where needed for verification), username, password.
    Contact data: postal address (billing/shipping), email address, phone number.
    Transaction data: order details, payment method (we do not store full card numbers — payments processed by our payment providers), purchase history, returns.
    Device & usage data: IP address, browser type, device identifiers, pages visited, referring site, cookies and similar technologies.
    Marketing & preference data: marketing consent, newsletter subscription, wishlists, product preferences.
    Customer service data: correspondence, complaint records, photos you supply for repairs/custom orders.

    These categories reflect common practice for jewellery ecommerce sites.

    3. How we collect personal data

      • Directly from you: when you create an account, place an order, sign up for marketing, request support, enter contests, or visit a store.

      • Automatically: through cookies and analytics when you browse our site.

      • From third parties: e.g., payment processors, delivery partners, identity verification services, marketing platforms, social networks (if you sign in via social login).

      • From public sources: for fraud prevention and background checks (where allowed).

    4. Purposes & legal basis for processing

    We use personal data for these main purposes:

      • To provide products & services: process orders, deliver items, handle returns, repairs, or engraving requests. (Contractual necessity.)

      • Payments & fraud prevention: to verify payments and prevent fraud. (Contractual/legitimate interest.)

      • Customer service: to respond to inquiries and complaints. (Contractual/legitimate interest.)

      • Marketing & personalization: where you’ve consented, to send offers and personalize product recommendations. (Consent or legitimate interest, depending on jurisdiction.)

      • Compliance & legal: to comply with laws, tax and accounting requirements, and legal process. (Legal obligation.)

      • Analytics & site improvement: to analyze usage and improve the site and product offerings. (Legitimate interest.)

    We balance legitimate interests (e.g., preventing fraud, keeping accounts secure) against your privacy rights and provide opt-outs where required by law.

    5. Cookies & tracking technologies

    We use cookies, pixel tags, local storage and similar technologies for:

      • Essential site operation (cart, security).

      • Performance and analytics (understanding site use).

      • Advertising and personalization (retargeting, product recommendations).

    You can manage cookie preferences via our cookie banner or your browser settings. For California residents and other regions, we provide an opt-out for certain tracking/“sale” activities.

    6. Sharing your information (third parties)

    We may share personal data with:

      • Service providers: payment processors, shipping carriers, CRM and email platforms, cloud hosting, customer support platforms.

      • Professional advisors: auditors, legal and tax advisors as required.

      • Affiliated companies: our parent company and subsidiaries where necessary.

      • Marketing partners and platforms: only with appropriate safeguards or your consent.

      • Law enforcement or as legally required: to respond to subpoenas, enforce our Terms, or protect rights.

    We require third parties to use reasonable security and only process data for the purposes we specify. Where required by law or contracts, we enter data processing agreements and conduct due diligence. 

    7. International transfers & safeguards

    Because we operate globally, personal data may be transferred to and processed in countries outside your home country. Where transfers are made from the EEA/UK, we rely on appropriate safeguards (e.g., EU Standard Contractual Clauses) or other legal mechanisms. If you would like details about those safeguards, contact us. 

    8. Data security

    We use industry-standard measures (encryption in transit — HTTPS/SSL, access controls, network security) to protect personal data. We also work with third-party security experts to test and improve our systems. However, no system is perfect — in the unlikely event of a data incident affecting personal data, we will follow applicable breach notification rules and notify affected individuals and regulators as required. (See Security & Breach Practices.) Recent industry events highlight the importance of vigilance and rapid response. 

    9. Data retention

    We retain personal information only as long as necessary for the purposes outlined (for example: until you close your account plus a reasonable period for legal, tax and audit requirements). Retention periods vary by data category — purchase records may be retained longer for tax/accounting, while marketing lists are retained only while you remain subscribed or until you opt out. If you want specific retention timelines, contact us. 

    10. Your privacy rights (how to access, correct, delete, and object)

    Depending on your location, you may have rights including:

      • The right to access a copy of your personal data.

      • The right to correct or update inaccurate data.

      • The right to request deletion (“right to be forgotten”), subject to legal exceptions.

      • The right to portability (receive your data in a commonly used format).

      • The right to object to or restrict processing (e.g., for direct marketing).

      • For California residents: the right to know, delete, and opt-out of sale/sharing of personal information, and non-discrimination for exercising privacy rights.

    To make a request, use our privacy webform, email, or postal address below. We may need to verify your identity before fulfilling requests. We will respond within the timeframes required by law. 

    11. Marketing communications

    We will only send marketing messages when you have consented (where required) or when you have an existing customer relationship and we rely on legitimate interest (where permitted). Each marketing message includes an easy unsubscribe link. If you opt out, we’ll stop marketing but may still send transactional messages (order confirmations, delivery notices). 

    12. Children’s privacy

    Our services are not intended for children under 16 (or a higher minimum set by local law). We do not knowingly collect personal data from children; if a parent believes we have collected their child’s data, contact us and we will take steps to delete it. 

    13. Third-party links & social features

    Our website may contain links to third-party sites and embedded social features. This Privacy Policy doesn’t apply to their practices — check third parties’ privacy notices before providing your information. 

    14. How to lodge a complaint

    If you have a privacy concern, please contact us first (details below). You may also lodge a complaint with a data protection authority in your jurisdiction (for example: an EU/EEA supervisory authority or the California Attorney General for CCPA matters). We will cooperate with regulators as required. 

    15. Changes to this policy

    We may update this Privacy Policy from time to time. When we do, we will post the revised date at the top and, where appropriate, provide a prominent notice (for material changes). Your continued use of our services after such updates are posted constitutes acceptance of the changes.

    16. Contacts & requests

    Privacy contact / Data Protection Officer (if applicable):
    Email: greshajewels@gmail.com
    Address: Ashton under Lyne Manchester

    Crafted with passion and precision, our jewelry celebrates timeless beauty and unforgettable moments. Discover elegance designed to shine with you, today and forever.

    Facebook-f Instagram Pinterest
    You have been successfully Subscribed! Ops! Something went wrong, please try again.

    Important Links

    Privacy Policy

    Return/Exchange Policy

    Shipping Policy

    Terms & Services

    Company

    About Us

    Contact Us

    FAQs

    Contact

    greshajewels@gmail.com

    +44 7450 730032

    Ashton under Lyne Manchester

    © 2025 GRESHA JEWELS