Privacy policy

Privacy Policy 

Last updated: 2025-01-01

Who we are

Our website address is: https://tatianamarquesjewelry.com.

This Privacy Policy explains how we process the personal data of users who visit our site and interact with our services. By accessing or using this website, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

1.1 Personal Data
We may collect the following personal information:

  • Name
  • Email address
  • IP address
  • Browsing data (cookies)
  • Transaction data (such as payment information, where applicable)
  • Other information you provide when using our services

Applicable Laws:

  • Regulation (EU) 2016/679, Article 6(1)(b) and (f): Processing of personal data is necessary for the performance of a contract or for the legitimate interests pursued by the data controller.
  • Law No. 58/2019, of August 8, Article 6 and 9: Adapting the GDPR to national legislation, establishes that personal data processing must comply with the principles of lawfulness, transparency, minimization, and security.

1.2 Comment Data
When visitors leave comments on our site, we collect the data shown in the comment form, as well as the IP address and the user agent of the browser to help detect spam. An anonymous string created from your email address (also known as a hash) may be sent to the Gravatar service to check if you are using it.

Applicable Laws:

  • Regulation (EU) 2016/679, Article 6(1)(f): Processing of personal data is necessary for the legitimate interests of the data controller (spam prevention).

2. How We Use the Information

We use the information collected for the following purposes:

  • Processing transactions and providing our services
  • Personalizing the user experience
  • Improving our website and services
  • Sending communications related to our products and services (with your consent)
  • Detecting and preventing fraud
  • Ensuring website and data security
  • Complying with legal obligations

Applicable Laws:

  • Regulation (EU) 2016/679, Article 6(1)(b): Necessary for the performance of a contract.
  • Regulation (EU) 2016/679, Article 6(1)(a): Consent for marketing communications.
  • Law No. 58/2019, of August 8, Article 6: Adapting the GDPR to national legislation.

3. Cookies

We use cookies to enhance the user experience, perform analytics, and personalize content. The cookies we use may be session cookies (temporary) or persistent cookies (long-term).

Applicable Laws:

  • Regulation (EU) 2016/679, Article 6(1)(a): Explicit consent from the user for the installation of cookies, except for those essential for the functioning of the site.
  • Law No. 58/2019, of August 8, Article 5: Establishes legal requirements for cookie usage and obtaining consent for their use.

You can control cookie usage in your browser settings. For more information, please refer to our Cookie Policy.

4. Data Security

We take appropriate security measures to protect personal data against unauthorized access, alteration, disclosure, or destruction. We use encryption, firewalls, and other security technologies to ensure that data is stored securely.

Applicable Laws:

  • Regulation (EU) 2016/679, Article 32: The data controller must implement technical and organizational measures to ensure the security of personal data.

5. Policy for Minors

This site is not directed to children under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will take immediate steps to delete that information.

Applicable Laws:

  • Regulation (EU) 2016/679, Article 8: Processing of data from minors is only permitted with parental consent when the child is under 16 years old.

6. Consent for Marketing

By providing your personal data, you agree to receive marketing communications, including offers and news related to our products and services. You can unsubscribe from our promotional messages at any time by clicking the "Unsubscribe" link included in all our communications.

Applicable Laws:

  • Regulation (EU) 2016/679, Article 6(1)(a): Explicit consent for marketing communications.
  • Law No. 58/2019, of August 8, Article 6 and 9: Establishes that data processing for marketing purposes must be done with express consent.

7. Data Processors

We may use third-party service providers to assist in operating our website and providing our services. These data processors are subject to contractual agreements that ensure the protection of your personal data.

Applicable Laws:

  • Regulation (EU) 2016/679, Article 28: Establishes the conditions for using data processors and the requirements to ensure compliance with data protection.

8. Breach Notification

In the event of a personal data breach that may affect your rights and freedoms, we will take immediate steps to mitigate the risks and notify affected users within 72 hours, as required by the General Data Protection Regulation (GDPR).

Applicable Laws:

  • Regulation (EU) 2016/679, Article 33: The data controller must notify the competent supervisory authority of a personal data breach.
  • Regulation (EU) 2016/679, Article 34: Notify data subjects of a breach that may result in risks to their rights and freedoms.

9. Data Retention

Personal data will be retained only for as long as necessary to fulfill the purposes for which it was collected. For users who register on our site, we store the personal information provided in their user profile. Users can view, edit, or delete their personal information at any time.

Comment data is kept indefinitely to enable the automatic moderation of future comments.

Applicable Laws:

  • Regulation (EU) 2016/679, Article 5(1)(e): Personal data must be kept only for as long as necessary for the purposes for which it was collected.
  • Law No. 58/2019, of August 8, Article 5: Reinforces the principles of data minimization and retention limitation.

10. User Rights over Their Data

Under the GDPR, users have the following rights regarding their personal data:

  • Right of Access: You can request a copy of your personal data stored.
  • Right to Rectification: You can correct or update the personal data we hold about you.
  • Right to Erasure: You can request the deletion of your personal data, subject to certain conditions.
  • Right to Data Portability: You can request the transfer of your data to another service provider.
  • Right to Restrict Processing: You can request that the processing of your data be restricted under certain circumstances.
  • Right to Object: You can object to the processing of your personal data for certain purposes, such as direct marketing.

Applicable Laws:

  • Regulation (EU) 2016/679, Articles 15-22: Establishes the rights of data subjects.
  • Law No. 58/2019, of August 8, Articles 14-21: Adapts national law to the rights of data subjects under the GDPR.

11. International Data Transfers

Personal data may be transferred and stored on servers outside the European Economic Area (EEA). We will take all necessary measures to ensure that your data is secure and protected in compliance with applicable data protection laws, including entering into agreements with standard contractual clauses.

Applicable Laws:

  • Regulation (EU) 2016/679, Article 44: Establishes the conditions for international data transfers.
  • Law No. 58/2019, of August 8, Article 44: Reinforces provisions on international data transfers outside the EEA.

12. Changes to the Privacy Policy

We may update this Privacy Policy periodically. When we do, we will post the updated version on our website and update the last modification date. We recommend that you regularly check this page to stay informed about how we protect your personal data.

13. Who Your Data is Shared With

Data may be shared with third parties only in the following situations:

  • With service providers who help us operate our site and provide our services, such as payment processors and marketing platforms.
  • To comply with legal obligations, protect the rights or property of the company, or in response to legal requests from authorities.

Applicable Laws:

  • Regulation (EU) 2016/679, Article 28: The data controller must ensure that any data sharing with processors is done in compliance with data protection laws.

14. Where Your Data is Sent

Visitor comments may be checked through an automatic spam detection service, such as Akismet.

Contact

If you have any questions about this Privacy Policy or wish to exercise your rights regarding your personal data, please contact us at: geral@tatianamarquesjewelry.com.