1. Introduction
Jewelry Top Shop (website: https://jewelrytopshop.com/) values your trust and is committed to protecting your privacy. We are a U.S.-based company located at 1209 Mountain Road PL NE STE 5573, Albuquerque, NM 87110, specializing in handcrafted jewelry and semi-precious gemstone designs. This Privacy Policy outlines how we collect, use, and safeguard your personal information. By using our services, you consent to the practices described herein.
2. Data Collected
Data Storage & Compliance
We are a U.S.-based company operating from “1209 Mountain Road PL NE STE 5573, Albuquerque, NM 87110”. Our website is hosted on U.S. servers with robust security measures. We comply with:
– CCPA (California Consumer Privacy Act)” for California residents
– U.S. data protection standards” for all customers
Information We Collect
Registration & Account Data
When you create an account, we store:
– Username & email address
– Shipping/billing addresses (if provided)
– Order history & preferences
“You can edit or delete most information via your account dashboard.”
Purchase & Payment Data
– For transactions, we use “Stripe” (PCI-DSS compliant).
– Stored securely by Stripe (never on our servers):
– Credit card last 4 digits
– Payment method type
– Transaction IDs
– “We retain:” Order details (items, size, shipping) for returns/support.
Returns & Refunds
To process returns:
– We retain order data for “30 days post-refund” for fraud prevention.
– See our full [Return Policy](#) for eligibility.
Customer Support
– Support inquiries are handled via encrypted email.
– Tickets are deleted after “24 months” of resolution.
Comments & Reviews
– Public reviews display your username (or “Anonymous” if preferred).
– We collect IP addresses for spam prevention.
Google Analytics
– Anonymized usage data only. Opt-out: [GA Opt-Out](https://tools.google.com/dlpage/gaoptout).
How We Use Your Data
Strictly to:
1. Process orders & payments
2. Provide customer support
3. Prevent fraud (monitoring login attempts)
4. Comply with legal obligations (e.g., tax records)
“We never sell your data or use it for third-party marketing.”
CCPA Rights (California Residents)
You may request:
✅ “Access” to your collected data
✅ “Deletion” of personal information (exceptions: fraud prevention, legal compliance)
✅ “Opt-out” of data sales (though we do not sell data)
Third Parties
– “Stripe” (payment processing): [Privacy Policy](https://stripe.com/privacy)
– “USPS/UPS” (shipping): Address verification only
– “Zoho Email” (support): Encrypted communications
Updates to This Policy
Changes will be posted on this page with a revised “Last Updated” date.
3. Embedded Content & Third-Party Services
Our website may feature embedded content from third-party platforms (e.g., Instagram jewelry showcases, YouTube tutorial videos, or Pinterest inspiration boards). This content behaves as if you visited the originating site directly. These platforms may:
– Collect data about your interaction
– Use cookies or tracking technologies
– Monitor activity if you’re logged into their service
Services We Use
Instagram Embeds
– Displays our jewelry collections via Instagram’s embed feature.
– Instagram’s [Privacy Policy](https://help.instagram.com/519522125107875) governs data collection.
YouTube Videos
– Embedded tutorials or product videos may use YouTube cookies.
– No data is shared until you interact (e.g., play the video).
– YouTube’s [Privacy Policy](https://policies.google.com/privacy) applies.
Pinterest Save Buttons
– Allows you to save products to Pinterest boards.
– Governed by Pinterest’s [Privacy Policy](https://policy.pinterest.com/en/privacy-policy).
Facebook & Twitter
– We do not currently embed timelines/widgets, but any future integration would follow the platforms’ policies:
– [Facebook](https://www.facebook.com/privacy/policy/)
– [Twitter](https://twitter.com/en/privacy)
Your Control
– To limit tracking, log out of third-party accounts before browsing.
– Adjust cookie settings via our [Cookie Policy](#) or your browser.
“Note: We prioritize minimal embedded content to protect your privacy. Where used, we select partners with transparent data practices.”
4. Cookies Policy
At Jewelry Top Shop, we use cookies to enhance your shopping experience and ensure our website functions properly. Cookies are small text files stored on your device that help us remember your preferences and improve our services.
Types of Cookies We Use
1. Essential Cookies
– Required for basic website functionality
– Enable features like:
* Secure login and account access
* Shopping cart retention
* Checkout process completion
– Examples:
* `session_id` – Maintains your secure session
* `cart_token` – Remembers items in your cart
2. Performance Cookies
– Help us understand how visitors use our site
– Collect anonymous data to improve:
* Page loading speeds
* Navigation flow
* Product discovery
– Includes Google Analytics (with IP anonymization)
3. Preference Cookies
– Remember your selections for:
* Currency preference
* Language settings
* Recently viewed items
4. Marketing Cookies
– Used only with your consent
– Help show relevant jewelry recommendations
– May be used for retargeting ads (opt-out available)
Cookie Management
You can control cookies through:
– Our cookie consent banner when you first visit
– Your browser settings (usually found in Privacy/Preferences)
– Third-party opt-out tools for advertising cookies
*Note:* Disabling essential cookies may affect your ability to:
– Complete purchases
– Access your account
– Use key website features
For more details about specific cookies we use, please contact us at privacy@jewelrytopshop.com.
Last Updated: 05.01.2025
5. Data Access & Confidentiality
Who Can Access Your Information
At Jewelry Top Shop, we implement strict data access controls:
For All Website Visitors:
– No personal data is collected or stored unless you:
– Create an account
– Make a purchase
– Contact our support team
For Registered Customers:
Your data is accessible only to:
1. Authorized Personnel
– Limited staff members who:
* Process and fulfill orders (customer service/shipping teams)
* Provide technical support (requires your explicit consent per inquiry)
– Access is restricted to job-essential information only
2. Secure Systems
– Payment processors (Stripe) for transaction completion
– Shipping carriers (USPS/UPS/FedEx) for delivery purposes
Third-Party Access:
We never sell or share your data with:
– Marketing agencies
– Data brokers
– Unaffiliated third parties
Exceptions:
– Legal compliance (if required by U.S. law enforcement with valid subpoena)
– Service providers bound by strict NDAs (e.g., website hosting)
Our Security Measures
– Role-based access controls (RBAC) limit internal data viewing
– Mandatory employee privacy training
– Regular security audits
You Maintain Control:
– View/edit your data via account dashboard
– Request access/deletion via [privacy@jewelrytopshop.com](mailto:privacy@jewelrytopshop.com)
6. Third-Party Data Sharing
At Jewelry Top Shop, we prioritize your privacy and only share necessary data with trusted partners to fulfill your orders and provide exceptional service. Here’s how we handle your information:
Limited & Secure Data Sharing
We never sell, rent, or trade your personal data (name, email, payment details) to third parties for marketing or advertising purposes.
Essential Service Providers
Your data may be securely shared with:
1. Payment Processors (Stripe)
– Required to complete transactions
– Shared: Transaction amount, last 4 digits of payment card (full card details are never stored on our servers)
– [Stripe Privacy Policy](https://stripe.com/privacy)
2. Shipping Carriers (USPS, UPS, FedEx)
– Required for order delivery
– Shared: Name, shipping address, contact phone number (for delivery updates)
– Tracking numbers are provided via email
3. E-commerce Platform Providers
– Website hosting and security services
– Data is anonymized where possible
4. Customer Support Tools
– Encrypted email systems for handling inquiries
– Support tickets are stored securely and deleted after resolution
Your Data Rights
– You may request details of third-party data sharing
– Opt out of non-essential data processing (where applicable)
– Review our partners’ privacy policies via the links above
*Note:* We only work with U.S.-based providers that adhere to strict data protection standards.
7. Data Retention Periods
At Jewelry Top Shop, we retain your personal information only as long as necessary to serve you and comply with legal obligations. Here’s our retention policy:
Customer Accounts & Purchases
– Active accounts: Retained indefinitely until you request deletion
– Order records: 5 years (for tax and warranty purposes)
– Inactive accounts: Automatically anonymized after 3 years of inactivity
Support Communications
– Tickets/emails: 2 years after resolution
– Product inquiries: 1 year (unless resulting in a purchase)
Website Interactions
– Comments/reviews: Displayed indefinitely unless deleted by you
– Cart abandonment data: 30 days
– Analytics data: Anonymized after 14 months
Your Control Over Data
You can at any time:
1. Delete your account (except for order records we must retain)
2. Edit profile information via your dashboard
3. Request deletion of specific data points by emailing privacy@jewelrytopshop.com
*Note:* We may retain certain information when required by:
– U.S. tax laws (typically 5 years for purchase records)
– Warranty obligations (for product registration)
– Fraud prevention systems
8. Security & Data Protection
Advanced Security Measures
At Jewelry Top Shop, we implement rigorous protections for your data:
1. Encryption & Network Security
– 256-bit SSL/HTTPS encryption on all pages
– PCI-DSS compliant payment processing via Stripe
– Secure hosting with regular vulnerability scans
2. Account Protection
– Two-factor authentication (2FA) available for all accounts
– Automated brute-force attack prevention
– Regular password rotation enforced for staff systems
3. Data Breach Response
If a breach occurs, we will:
1. Notify affected customers within 72 hours of confirmation
2. Provide clear guidance on protective steps
3. Cooperate fully with law enforcement investigations
4. Publicly disclose the nature of the breach (without compromising security)
4. Continuous Monitoring
– 24/7 system surveillance for unusual activity
– Annual third-party security audits
– Employee cybersecurity training every 6 months
Your Role in Security
We recommend you:
– Use strong, unique passwords
– Enable 2FA in your account settings
– Avoid public Wi-Fi when accessing sensitive account information
– Monitor account activity regularly
*Report suspicious activity immediately to:* security@jewelrytopshop.com
9. Your Data Rights & Choices
Your Privacy Controls
As a Jewelry Top Shop customer, you have the right to:
1. Access & Portability
– Request a copy of your personal data (account details, order history, communications)
– Receive it in a machine-readable format
2. Correction & Deletion
– Update inaccurate account information via your dashboard
– Request deletion of non-essential data (e.g., saved addresses, wishlists)
3. Service Limitations
– Opt out of marketing communications (while retaining transactional emails)
– Restrict certain data processing where legally permitted
*Note:* We cannot delete:
– Completed order records (required for U.S. tax compliance)
– Data essential for active warranties or fraud prevention
CCPA Rights (California Residents)
Under the California Consumer Privacy Act, you may:
✅ Request disclosure of data collection categories
✅ Opt out of “sales” of personal information (though we do not sell data)
✅ Designate an authorized agent to act on your behalf
How to Exercise Rights:
Submit requests via:
– Your account settings
– Email: [privacy@jewelrytopshop.com](#)
– Toll-free: [Insert Number] (for California residents)
We respond within 45 days (CCPA requirement) and provide data free of charge.
International Customers
While we primarily serve U.S. customers, we voluntarily extend:
– GDPR-like rights to EU/UK residents where feasible
– Data transfer safeguards for international orders
Suggested Addition:
*”For custom jewelry clients, design consultation records are retained for 3 years to serve warranty claims and facilitate future commissions.”*
10. External Websites & Third-Party Links
Our Policy on External Links
Jewelry Top Shop may provide links to:
– Trusted jewelry industry partners (gem certification labs, ethical sourcing organizations)
– Shipping carriers (USPS/UPS/FedEx tracking)
– Social media platforms (Instagram/Pinterest for design inspiration)
Important Disclosures
1. No Endorsement
– Links do not imply our endorsement of their privacy practices
– We do not screen external sites for compliance
2. Your Responsibility
– Social media/share buttons only activate when clicked
– Review the privacy policy of any site you visit
3. Liability Limitation
– We are not responsible for:
* Data collection by linked sites
* Content accuracy on third-party platforms
* Security breaches outside our domain
Recommended Precautions
– Check for “HTTPS” in the URL before entering personal data
– Look for privacy certifications (TRUSTe, BBB) on shopping partners’ sites
– Contact us before sharing sensitive information via external links
11. Legal Disclosure of Your Information
When We May Disclose Your Data
Jewelry Top Shop may release your personal information when legally required to do so, including in the following circumstances:
1. Legal Requests & Investigations
– In response to valid subpoenas, court orders, or government requests
– To comply with U.S. federal, state, or local laws
2. Fraud & Illegal Activity Prevention
– If we suspect fraudulent transactions, counterfeit claims, or unlawful conduct
– To protect the safety, rights, or property of our business, customers, or the public
3. Third-Party Legal Actions
– In connection with civil litigation (e.g., disputes over transactions, intellectual property)
Our Commitment to Transparency
– Where permitted by law, we will attempt to notify you before disclosing your data (unless prohibited by court order or law enforcement directive).
– You may have the right to challenge the request (e.g., file a motion to quash).
Your Acknowledgment
By using our services, you understand that we may disclose information when legally compelled, and you release Jewelry Top Shop from liability for such disclosures made in good faith.
International Considerations
– For non-U.S. customers, we will assess legal requests in accordance with applicable international laws (where possible).
– Data transfers will comply with U.S. legal standards and any relevant cross-border agreements.