Privacy Policy
Last updated: March 16, 2025
This Privacy Policy explains how Soleya Jewellery collects, uses, processes, and protects your personal data. We take your privacy seriously and are committed to transparency regarding how your personal information is handled.
Data Controller
Soleya Jewellery (Ziva CPH Jewelry ApS)
Bredgade 36B, 4.
1260 Copenhagen
Denmark
Email: info@soleyajewellery.com
Personal Data We Collect
We collect and process the following categories of personal data:
- Identification data: Name, email address, phone number, billing/shipping address
- Transaction data: Payment details, purchase history, transaction records
- Technical data: IP addresses, browser information, device type, cookie data, visit duration
- Marketing data: Email subscriptions, preferences, interactions with our marketing communications
Purposes of Data Processing
We collect and use personal data for the following purposes:
- Processing your orders, transactions, and managing payments
- Delivering our products and services effectively
- Communicating with you about your orders, inquiries, and customer service requests
- Enhancing your experience on our website (improving website functionality, ease of use, and customization)
- Conducting analytics to improve our marketing and promotional strategies
- Sending newsletters or promotional communications (subject to your consent)
If we intend to use your personal data for purposes other than those listed above, we will clearly communicate this in advance and obtain your consent as required by law.
Legal Basis for Data Processing
Soleya Jewellery processes personal data under the following legal bases:
- Contractual Necessity: To fulfill orders, process payments, and deliver purchased products.
- Consent: For marketing communications and newsletter subscriptions.
- Legal Obligations: To comply with regulatory requirements and maintain accurate transaction records.
- Legitimate Interests: For website optimization, security, and fraud prevention.
Data Retention
We retain your personal data only as long as necessary to fulfill the purposes for which it was collected or to comply with legal obligations:
- Transactional data: 5 years, to comply with bookkeeping laws.
- Marketing data: Until consent is withdrawn or no longer valid.
- Technical data: Up to 24 months from the date of your last interaction.
Sharing Personal Data with Third Parties
We may share your data with the following categories of third parties:
- E-commerce platform: Shopify (hosting, payment gateway)
- Analytics and Marketing: Google Analytics, Google Ads, Facebook Ads
- Email Marketing: Mailchimp or similar providers
- Logistics and Shipping Partners: Providers responsible for shipping and delivery services
We ensure data processors comply with privacy regulations and have contractual agreements to secure your data appropriately.
International Data Transfers
Personal data may be transferred outside the EU/EEA to service providers (e.g., Shopify or Google) located in countries deemed secure by the European Commission or protected by Standard Contractual Clauses approved by the EU.
Data Security
We implement strict security measures to protect your personal data:
- SSL encryption on our website
- Secure payment processing
- Limited internal access to personal data
- Regular reviews of data protection policies and practices
Your Data Privacy Rights
Under GDPR and Danish data protection laws, you have the following rights:
- Right of Access: Access personal data we hold about you
- Right to Rectification: Correct inaccuracies in your personal data
- Right to Erasure: Request deletion of personal data under specific conditions
- Right to Restrict Processing: Temporarily restrict data processing in certain cases
- Right to Data Portability: Request a copy of your personal data in a structured, digital format
- Right to Object: Object to processing for marketing purposes
To exercise these rights, please contact us at info@soleyajewellery.com. If you feel your rights are violated, you may lodge a complaint with Datatilsynet (the Danish Data Protection Authority).
Automated Decision-Making and Profiling
We do not currently use personal data for profiling or automated decision-making. If this changes, you will be clearly informed and given the opportunity to object.
International Data Transfers
Some personal data may be transferred outside the EU/EEA to trusted data processors. We ensure appropriate safeguards, including Standard Contractual Clauses, are in place for such transfers.
Changes to Our Privacy Policy
This policy may be updated periodically. Any changes will be posted here with the date clearly indicated. Please revisit this page regularly to stay informed about our privacy practices.
Contact Information
For questions, concerns, or complaints regarding your personal data or our privacy policy, please contact:
Soleya Jewellery
Bredgade 36B, 4.
1260 Copenhagen
Denmark
Email: info@soleyajewellery.com