Privacy Policy
**PRIVACY POLICY**
**Effective Date**: | **Last Updated**: March 5, 2025
---
### **1. INFORMATION COLLECTION AND PROCESSING**
We collect and process personal data as follows:
**1.1 Directly Provided Information**
• **Order Processing**: When you purchase from our store, we collect:
• Full name
• Billing/shipping address
• Email address
• Payment details (processed securely via third-party gateways; see Section 4).
*Purpose*: To fulfill contractual obligations, process transactions, and provide customer support.
**1.2 Automatically Collected Data**
• **Technical Information**: Including IP address, device type, browser type, and ISP.
• **Usage Data**: Pages visited, time spent, and clickstream data via cookies (see Section 6).
*Purpose*: Legitimate interests in website analytics, fraud prevention, and service optimization.
**1.3 Marketing Communications**
With your explicit consent, we may use your email to send promotional materials. You may withdraw consent anytime via the unsubscribe link or by contacting us.
---
### **2. LEGAL BASIS AND CONSENT MANAGEMENT**
**2.1 Lawful Grounds**
We process data based on:
• Contractual necessity (e.g., order fulfillment)
• Legitimate interests (e.g., security, analytics)
• Explicit consent (e.g., marketing).
**2.2 Consent Withdrawal**
You may revoke consent for marketing or data processing (where applicable) by emailing **service@gemeaning.com**. This does not affect the lawfulness of prior processing.
---
### **3. DATA DISCLOSURE AND SHARING**
**3.1 Legal Obligations**
We may disclose data to comply with legal requirements, enforce terms of service, or protect rights.
**3.2 Third-Party Service Providers**
We engage vendors for:
• Payment processing (e.g., Stripe, PayPal)
• Website hosting and analytics (e.g., Google Analytics)
• Email marketing (e.g., Mailchimp).
*Note*: These providers operate under their own privacy policies and may process data in jurisdictions with differing laws.
---
### **4. INTERNATIONAL DATA TRANSFERS**
If data is transferred outside your jurisdiction, we implement safeguards such as:
• Standard Contractual Clauses (SCCs)
• Adequacy decisions under GDPR.
---
### **5. DATA SECURITY MEASURES**
We employ industry-standard protections:
• **Encryption**: SSL/TLS for data transmission; AES-256 for stored payment data.
• **Access Controls**: Restricted to authorized personnel.
• **Audits**: Regular security assessments.
---
### **6. COOKIES AND TRACKING TECHNOLOGIES**
**6.1 Types of Cookies**
• Essential (e.g., session cookies)
• Analytical (e.g., Google Analytics)
• Marketing (e.g., retargeting pixels).
**6.2 Management**
Adjust preferences via browser settings or our cookie banner. Note: Disabling cookies may impair site functionality.
---
### **7. CHILDREN'S PRIVACY**
Our services are not directed to individuals under the **age of 16** (or higher per jurisdictional requirements). We do not knowingly collect data from minors without parental consent.
---
### **8. DATA RETENTION**
We retain personal data:
• For order fulfillment: 7 years (tax compliance)
• Marketing data: Until consent withdrawal
• Analytics: Aggregated/anonymized after 2 years.
---
### **9. YOUR RIGHTS**
Subject to applicable laws, you may:
• Access, correct, or delete your data
• Restrict or object to processing
• Request data portability
• Lodge complaints with a supervisory authority.
Submit requests to **service@gemeaning.com** with verification details.
---
### **10. POLICY UPDATES**
We may revise this policy to reflect operational changes or legal requirements. Material changes will be notified via:
• Email (for account holders)
• A prominent website banner.
---
**CONTACT INFORMATION**
For inquiries or to exercise your rights:
• **Email**: service@gemeaning.com