Privacy policy

Privacy Policy

Effective Date: June 13, 2025

This Privacy Policy describes how Nafis Jewellery ("we," "us," or "our"), operated under NAFISA FZE and licensed in SRTIP Free Zone, Sharjah, United Arab Emirates, collects, uses, discloses, and protects your personal information when you access or interact with our services, including purchases, browsing, or account creation on our website (the "Service"). By accessing or using our Service, you agree to this Privacy Policy.

1. Definitions

  • Personal Data: Any information that identifies, relates to, or can reasonably be linked to an individual.

  • Usage Data: Data collected automatically, including IP address, browser type, session duration, pages visited, and interactions.

  • Cookies: Small files stored on your device to enhance user experience and analytics.

  • Service Provider: Any third-party vendor or tool that processes data on our behalf, including Shopify, analytics tools, and logistics providers.

2. Information We Collect

We collect the following categories of information:

a. Personal Data You Provide

  • Name, email address, phone number

  • Shipping and billing address

  • Payment information (processed securely via Shopify payments or third-party gateways)

  • Order history and customer support communications

b. Automatically Collected Data

  • Device type, operating system, IP address, browser type

  • Session time, referring URLs, click behavior, time spent on pages

c. Social Media Logins (If Used)

  • If you register or log in via platforms like Google, Facebook, or Instagram, we may receive data such as your name, email address, and profile information subject to your consent

3. How We Use Your Information

We use your personal data to:

  • Process and fulfill orders

  • Personalize your shopping experience

  • Provide customer service and respond to inquiries

  • Send order updates and promotional offers (you can opt out at any time)

  • Improve our website, services, and product offerings

  • Ensure the security and integrity of our systems

  • Comply with legal and regulatory obligations

4. Legal Basis for Processing (GDPR Compliance)

If you reside in the EU or UK, we process your data under one or more of the following legal bases:

  • Your consent

  • Performance of a contract

  • Legal obligations

  • Legitimate interests

5. Sharing and Disclosure

We may share your data with:

  • Shopify (our e-commerce platform host) to facilitate website functionality, order processing, and secure transactions

  • Service providers such as logistics companies, marketing platforms, IT support, and analytics providers

  • Government authorities or law enforcement, when legally required

  • Affiliates or successors, in case of a business transfer, merger, or acquisition

We do not sell your personal data.

6. Cookies and Tracking Technologies

We use cookies, pixels, and similar technologies to:

  • Remember login sessions

  • Track cart activity

  • Measure traffic and engagement

  • Personalize content and ads

You can manage cookie preferences in your browser settings. Disabling cookies may affect site functionality.

7. Data Retention

We retain your data as long as:

  • You have an account with us

  • Required for fulfilling orders, resolving disputes, or compliance with legal obligations

Usage data may be retained for shorter durations unless used for analytics or security purposes.

8. Your Rights

Depending on your location, you may have the right to:

  • Access the personal data we hold about you

  • Request correction or deletion

  • Withdraw consent

  • Object to or restrict certain processing

  • Request data portability

To exercise these rights, contact us at nafisjewelleryco@gmail.com. We may request identity verification.

9. Children's Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect data from minors. If we become aware of such collection, we will delete the information promptly.

10. International Data Transfers

As Shopify and other service providers may process data outside the UAE, your data may be transferred internationally. We rely on appropriate safeguards such as standard contractual clauses.

11. Security Measures

We implement physical, electronic, and administrative safeguards to protect your data. However, no system is completely secure. Please avoid sending sensitive data via unsecured methods.

12. Third-Party Links

Our site may contain links to third-party sites. We are not responsible for the content or privacy practices of those sites. Please review their privacy policies separately.

13. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices or for legal reasons. We will notify you of material updates by posting on our site and updating the "Effective Date."

14. Contact Us

For questions or requests related to this Privacy Policy, please contact us:

Email: nafisjewelleryco@gmail.com
Address: Level 9B Sheikh Zayed Road, Block B - B42-163, SRTIP Free Zone, Sharjah, United Arab Emirates