EU General Data Protection Regulation

We respect your right to privacy and protect all data you voluntarily provide us with in accordance to the European Union General Data Protection Regulation (GDPR), article 6, 1, litra a. We, as the responsible party for the collection of data, are:
STINE VESTEN
CVR: 35372784
Gammel Kongevej 130a
1850 Frederikberg C, Denmark
mail@stinevesten.com

How we store your data
We collect and use information about you to ensure you will have the best possible experience with us when you buy your one-of-a-kind piece of Fine Jewellery. All data that you voluntarily provide us when purchasing from us – either at our Web Shop or in our physical boutique – is encrypted and stored in a password protected database with restricted access.

The data you provide us with are stored to ensure you the best possible service now and in the future. Our records of your personal information are kept safe and protected until you request to have them deleted.

How we use your data
When you make a purchase at our boutique or in our web shop, we will collect information necessary for us to fulfill your order.

When you pay by card, we collect your payment information in order for us to process the order. All credit card information is handled with the utmost confidentiality. When you provide the card information it is transmitted via an encrypted connection to our Payment Processor, Stripe for our online Web Shop and  IZettle for our physical boutique. Stripe and IZettle uses and processes your payment information in accordance with their Privacy Policy and according to the EU General Data Protection Regulation. We do not store your payment information, other than zip code and country, which we require for billing and to comply with tax and other government regulations.

All customers paying by card are subject to validation checks. We reserve the right to delay any order if fraud is suspected.

When you place an order with us or otherwise need services, such as resizing or repairs, we will need to take additional contact details and delivery information, such as address and telephone number, from you so we can complete your order. We use third party couriers to deliver your order and will need to share your contact information with them for this purpose. Everything is treated with utmost confidentiality and in compliance with GDPR.

We Never Sell Your Personal Information
All personal information collected is used for our internal use only. We do not rent, sell or share personal information about you or non-affiliated companies except when absolutely necessary under the following circumstances:
· Third parties who provide services on our behalf such as online and other payments, processing credit card transactions, handling credit checks and fraud preventions. 
· Third parties who provide services on our behalf online, such as our website hosts Shopify and one.com. Everything is treated with confidentiality and in compliance with GDPR.
· Third parties who provide services on our behalf such as courier delivery services.
· We may disclose your personal information to any law enforcement agency, court regulator or government authority if we believe it necessary to comply with legal or regulatory obligations.

How To Access, Correct, Limit, Object Or Delete Your Personal Information
You have the right to request access to any personal information that we have about you in our records and to know the purpose of the registration, where it originates from and the categories of the personal data.

You are entitled to correct any inaccuracies or update any out-of-date information we have stored about you.

You have the right to have any of your personal information deleted altogether. If you wish to do so, then let us know and we will delete any information we have on you save by those required by the law. 

You may be entitled to limited treatment of your personal information. In these cases we will only be able to process your information, with the exception of storage, with your consent or if a legal claim should arise and needs to be enforced or defended, or for the protection of important social interests or a person.

You have the right to object to our processing of your personal data.

You have the right in certain cases to receive the personal information we have stored on you in an easily accessed and machine-readable manner. You also have the right to transfer such data from one data manager to another without any delay or hindrance.

You always have the right to revoke your consent. You can do so by contacting us on the e-mail listed below.

If you wish to exercise any of these rights, then please contact us at mail@stinevesten.com