This Privacy and Personal Data Protection Policy explains the terms under which the Filigree Discoveries brand processes Customers' personal data, as well as the rights they may exercise, in accordance with the provisions of Regulation (EU) 2016/ 679 of the European Parliament and of the Council – General Data Protection Regulation (GDPR) – and other applicable national legislation on privacy and data protection.

At Filigree Discoveries we are aware that the use of your personal data will have to be treated consciously and based on a relationship of trust.

This page serves for a clear understanding of how we collect, use, share and protect our customers' personal data when they use our services or visit our website. We respect your privacy and process your data in strict compliance with current legislation.

What personal data is collected and processed?

The personal data collected by the Filigree Discoveries brand are limited to those strictly necessary for the purpose of the treatment, namely, the name, address, tax number, telephone number and email address, but other data necessary for the supply of products or services may be collected. services.

When and for what purpose do we collect personal data?

Depending on how the customer interacts with the Filigree Discoveries brand (online, over the phone and/or in person), we collect various types of information about them. Some of the personal data are mandatory. The Filigree Discoveries brand will inform you of this obligation. The provision of incorrect or inaccurate data is the sole responsibility of the customer.

The collection and processing of personal data by the Filigree Discoveries brand has the following purposes:

Customer management: since the Filigree Discoveries brand is dedicated to the sale of jewelry and fashion accessories only in an online store, of the items sold by it, the processing of your data is necessary for the fulfillment of the purchase and sale contract or provision of services to be concluded or even to carry out pre-contractual measures at the request of the customer, such as budgets.

Customer Service: We use your Personal Data for customer service purposes, including responding to your queries. This process will typically involve the use of certain personal contact information and information relating to the reason for your inquiry (eg technical question, product question/complaint, question of a general nature, etc.).

Customer Generated Content: This refers to any content you create that you then share with us, for example on a social network such as Facebook or Instagram. Some examples include photographs, videos, personal stories or other similar content. Where permitted, we collect and publish customer-generated content relating to a variety of activities, including contests and other promotions, community website features, consumer engagement, and third-party social media activities.

Private campaigns and promotional actions: with your consent, we use your Personal Data to provide you with information about products or services (eg communications or campaigns or promotions). This can occur through means such as e-mail, advertisements, SMS and telephone contacts. Consent to the processing of personal data for direct marketing purposes can be revoked at any time. Some of our campaigns and promotions may be carried out on third party websites and/or social networks.

How long do we keep your data?

The period of time during which personal data are stored and maintained varies according to the purpose for which the information is processed, after which they will be anonymized or destroyed. Within the scope of the purposes described in this Privacy Policy, your personal data will be kept for a maximum period of 10 years, counting from the last contact made.

How do we keep your personal data safe?

We use a variety of security measures, including encryption and authentication tools, to help protect and maintain the security, integrity and availability of your personal data. Although the transmission of data via the internet or website cannot guarantee complete security against intrusions, we and our service providers and business partners make the best efforts to implement and maintain physical, electronic and procedural security measures aimed at protecting your personal data in accordance with applicable data protection requirements.

Children's Privacy

Children and/or persons under the age of 18 must not provide personal data without the consent of parents or their legal representatives. We do not request personal data from children, and we guarantee that such data will not be used and/or disclosed, in any form, to third parties, without due prior authorization.

How can you access, rectify, update, limit, delete, oppose the processing of your personal data, or withdraw consent?

Without prejudice to the provisions of the RGPD, the holder of the personal data may do so, directly or upon written request, using the contacts made available for this purpose in this document.

How can you complain?

Without prejudice to being able to submit complaints directly to the Filigree Discoveries brand, through the contacts made available for this purpose, the customer/user can complain directly to the Control Authority, which is the National Data Protection Commission (CNPD), using the contacts made available by this entity for this purpose.

How can you find out about any changes to the personal data protection policy of the Filigree Discoveries brand?

This Privacy Policy may be changed throughout the continuous development process of our websites, depending on the implementation of new legal requirements and/or technologies with a view to improving the service we provide. For this reason, we recommend regular and periodic consultation of this statement, which you can view and print from the website of the Filigree Discoveries brand, through the link “Privacy Policy”.

contact us

In case of doubt about the processing of personal data, you can contact us.

Upon written request sent through our contact page, the aforementioned contact will be informed in writing, and in accordance with the applicable legislation, whether the storage of your personal data was carried out and, if so, what data was stored.