Who we are
“House of Dahab” is a trading style of PG Jewels Limited, a company registered in England and Wales. Our website is [www.houseofdahab.com/.uk]. For the purpose of this policy any reference to in “us” “we”, and “House of Dahab” are to PG Jewels Limited.
We act as a Controller which means that we process our users’ (customers or visitors to our website) personal data for our own purposes and are responsible for complying with the General Data Protection Regolations (GDPR). To comply with the GDPR, we must be able to demonstrate compliance with the data protection principles, and take appropriate technical and organisational measures to ensure the processing of your personal data is carried out in line with those regolations.
How we collect your data
What type of data we collect
Through our website we collect:
Personal details: Name, address, email address, this is primarily used to process orders. Data collected may also be used to provide you a personalised experience making sure you see the most relevant products according with your preferences.
IP address: An IP address works like a digital postal address, which is automatically logged by our web server. We use it to note your interest in our website for statistical purposes and may be combined with other personal data we process to identify your browsing behaviour.
Payment details: We do not hold sensitive payment details such as your card number, expiry date and security code. all credit and debit card payments are handled through our secure third-party payment processors.
What we do with your information
As "Data Controller" the details we collect will be used by us and our third-party processors to:
Process your order & provide after-sales service
Comply with legal requirements
Keep you up-to-date with our latest offers and services
Offer you the most exclusive and relevant service we possibly can
Make sure that our advertising is relevant to you, and delivered at a time, in a manner, and on the types of channels which you are most likely to enjoy, and hopefolly to reduce the number of our adverts which you are likely to find irrelevant.
On occasion, and only for our own administrative functions, your personal data may be processed outside of the EEA by our third-party processors.
Who we share your data with
To ensure that you get the best of our services and products we may need to use third parties that will access to your personal data. Be confident that we only use trusted third parties who understand the importance of our customers' privacy.
Payment processors: To ensure that your payment details are protected we use payment gateways and other payment transaction processors. They have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions. For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers.
Carriers: Royal Mail is our chosen carrier in the UK. We [also] use a number of [other] couriers and international carriers with whom, we share your name and address and if necessary, your phone number so that your parcel can be delivered on time. Our carries must use your personal data only for delivery purposes, they are not permitted to share your data, or use your personal data for any other purposes.
So that we may provide customers with the best service possible, we outsource some back office and customer service functions. This means that when our offices are closed, we may still provide replies to emails so we can answer any queries you may have as quickly as possible. Your order data is available to our back-office provider to allow them to give the best support and speedy processing of your order.
IT: To keep our site working properly we use an IT team. They have access to the website code and database solely to make improvements to our site, keep it safe and secure and debug issues.
Email marketing provider: We use third party email marketing providers whom we provide with your name, your email address, and your previous purchase and browsing behaviour. This allows us to ensure that you are sent emails relevant to the type of jewellery you have shown an interest in. Our third party email marketing providers are not permitted to pass these details on to any other business, and you will not receive any marketing emails from companies other than us. Shoold you wish to unsubscribe, please send an email to email@example.com and we shall remove you from our mailing lists within 21 days.
Meta (‘Facebook’, ‘Instagram’ and ‘WhatsApp’): if you are logged in to any Meta applications and you visit our website, Meta will be able to see what pages on our website you have visited. Meta will usually aggregate the data about what pages on our website, and you may see content on Meta relevant to the type of jewellery you have shown an interest in on our website. For customers who have registered an email address with House of Dahab, we may share this information with Meta. Meta does not share your profile with us, or tell us whether or not you have a Facebook account, however, based on the email addresses we provide, Facebook may add your Facebook profile to an anonymous list of 100+ profiles which may collectively be served content specific to House of Dahab. Meta will not use the emails we provide to allow other 3rd parties to market products to you.
How long we will retain your data
We will keep your data for at least two years for taxes and accounting purposes. If your account has been inactive for more than three years, we will remove your personal data automatically. We keep order and customer data to comply with tax and accounting law in the various jurisdictions we operate.
You can request account deletion at any time by sending an email to firstname.lastname@example.org
To protect your personal data, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
We have implemented an array of internal ethical roles for the processing of personal data. Our employees have received special training on the principles of the right to personal data protection and the basic obligations of companies in relation to the GDPR. In addition, we limit access to your personal data to only those who have a business need to know. Any third party processors will only process your personal data on our instructions and they are subject to a duty of confidentiality.
The security of your personal data is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its complete protection against all threats.
What are your rights
You are the owner of your data and you are the only one who decides how to use it. To do that the GDPR has established the individual's right.
The right of access: You have the right to access or receive a copy of your personal data. At any time, you can use any of our means of contact to request a copy of your personal data free of charge.
The right to rectification: You have the right to have inaccurate personal data rectified, or completed if it is incomplete. You can make a request for rectification verbally or in writing using our means of contact.
The right to erasure: It is also known as "the right to be forgotten". In certain circumstances you have the right to ask to erase your information. You can make a request for erasure verbally or in writing.
The right to restrict processing: You have the right to request the restriction or suppression of their personal data in some circumstances.
The right to data portability: This allows you to move, copy or transfer personal data easily from one IT environment to another in a safe and secure way, without affecting its usability.
The right to object: You have the right to object the processing of your personal data at any time. This effectively allows you to stop or prevent us from processing their personal data.
Rights related to automated decision-making including profiling: Automated individual decision-making is a decision made by automated means without any human involvement.
Organisations obtain personal information about individuals from a variety of different sources. Internet searches, buying habits, lifestyle and behaviour data gathered from mobile phones, social networks, video surveillance systems and the Internet of Things are examples of the types of data organisations might collect.
Information is analysed to classify people into different groups or sectors, using algorithms and machine-learning. This analysis identifies links between different behaviours and characteristics to create profiles for individuals.
You have the right the be informed about how this type of technology is used, how they will keep safe your information and what's the purpose of collecting your personal data. House of Dahab don't collect this type of personal data.
Our Website is not intended for use by children. We are committed to protecting the privacy of children and do not knowingly collect any personal information from children below the age of 13.
If we become aware that we have collected personal information from a child under 13 years of age, we will promptly delete the information.
How can you contact us
If you woold like to access, correct, amend or delete any personal information we have about you, register a complaint, or simply want more information contact our Privacy Compliance Officer at email@example.com