Privacy Policy

Your privacy is important to us. This policy explains how we collect, use, and protect your personal information when you use our services.

Last updated: August 30, 2025

🔒Privacy Overview

At Grown Gem, we respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, make purchases, or interact with our services.

We believe in transparency about our data practices and your rights. This policy applies to all information collected through our website, mobile applications, customer service interactions, and related services.

Our Commitment

We never sell your personal information to third parties. We use your data only to provide better service, process your orders, and improve your shopping experience.

📋Information We Collect

Personal Information You Provide

Account Information

  • • Full name
  • • Email address
  • • Password (encrypted)
  • • Phone number
  • • Date of birth (optional)

Billing & Shipping

  • • Billing address
  • • Shipping address
  • • Payment information
  • • Purchase history
  • • Order preferences

Communication Data

  • • Customer service inquiries
  • • Live chat conversations
  • • Survey responses
  • • Product reviews
  • • Marketing preferences

Bespoke Orders

  • • Design specifications
  • • Uploaded files (CAD, images)
  • • Project requirements
  • • Budget information
  • • Timeline preferences

Information Automatically Collected

  • Device Information: IP address, browser type, operating system, device identifiers
  • Usage Data: Pages viewed, time spent, click patterns, search queries
  • Location Data: General location based on IP address (not precise GPS)
  • Shopping Behavior: Cart contents, wishlist items, browsing history
  • Performance Data: Website loading times, error reports, feature usage

Information from Third Parties

  • Payment Processors: Transaction verification and fraud prevention data
  • Shipping Partners: Delivery status and tracking information
  • Social Media: Profile information when you connect social accounts
  • Analytics Providers: Aggregated usage statistics and trends
  • Marketing Platforms: Campaign performance and engagement metrics

⚙️How We Use Your Information

Primary Uses

Order Processing

  • • Process and fulfill orders
  • • Handle payments securely
  • • Arrange shipping and delivery
  • • Send order confirmations
  • • Provide customer support

Account Management

  • • Create and maintain accounts
  • • Authenticate users
  • • Store preferences
  • • Manage wishlists
  • • Track order history

Service Improvement

  • • Analyze usage patterns
  • • Improve website functionality
  • • Develop new features
  • • Optimize user experience
  • • Fix technical issues

Communication

  • • Send transactional emails
  • • Provide customer support
  • • Send marketing messages
  • • Share product updates
  • • Conduct surveys

Legal Basis for Processing (GDPR)

Contractual Necessity

Processing required to fulfill your orders and provide services

Legitimate Interest

Improving services, fraud prevention, and security

Consent

Marketing communications and optional features

Legal Compliance

Meeting legal and regulatory requirements

🤝Information Sharing

We Never Sell Your Data

We do not sell, rent, or trade your personal information to third parties for their marketing purposes. Your data is used solely to provide and improve our services.

When We Share Information

Service Providers

We share information with trusted partners who help us operate our business:

  • Payment Processors: Stripe, PayPal for secure transactions
  • Shipping Companies: FedEx, UPS for order fulfillment
  • Email Services: Automated transactional emails
  • Analytics: Google Analytics for website optimization
  • Customer Support: Help desk and chat platforms
  • Cloud Storage: Secure data hosting and backup

Legal Requirements

We may disclose information when required by law or to protect our rights:

  • • Compliance with legal processes (subpoenas, court orders)
  • • Government requests for law enforcement purposes
  • • Protection against fraud, security threats, or illegal activity
  • • Enforcement of our Terms and Conditions
  • • Protection of rights, property, or safety of users

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity. We will notify you before your information becomes subject to a different privacy policy.

Data Protection Measures

  • All service providers sign strict data processing agreements
  • Regular audits of third-party security practices
  • Minimal data sharing - only what's necessary for the service
  • Encryption in transit and at rest for sensitive information
  • Regular review and termination of unnecessary data sharing relationships

🛡️Data Security

Security Measures

Technical Safeguards

  • • SSL/TLS encryption for all data transmission
  • • Advanced firewall protection
  • • Regular security scans and penetration testing
  • • Secure cloud infrastructure
  • • Encrypted data storage

Administrative Controls

  • • Limited access to personal information
  • • Employee background checks
  • • Regular security training
  • • Incident response procedures
  • • Data access logging and monitoring

Physical Security

  • • Secure data center facilities
  • • Restricted access controls
  • • 24/7 monitoring and surveillance
  • • Environmental controls
  • • Backup and disaster recovery

Payment Security

  • • PCI DSS compliance
  • • Tokenized payment processing
  • • No storage of full credit card numbers
  • • Fraud detection systems
  • • Secure payment gateways

Security Incident Response

In the unlikely event of a security incident, we have procedures in place to:

  • • Immediately contain and assess the incident
  • • Notify affected users within 72 hours
  • • Work with law enforcement if necessary
  • • Implement additional safeguards to prevent recurrence
  • • Provide support and resources to affected users

Your Role in Security

  • Use strong, unique passwords for your account
  • Enable two-factor authentication when available
  • Keep your contact information updated
  • Report suspicious activity immediately
  • Log out of shared or public computers
  • Keep your devices and browsers updated

🍪Cookies & Tracking Technologies

What Are Cookies

Cookies are small text files stored on your device when you visit our website. They help us provide a better user experience by remembering your preferences and improving site functionality.

Types of Cookies We Use

Essential Cookies

Required for basic website functionality:

  • • Shopping cart contents
  • • User authentication
  • • Security and fraud prevention
  • • Website preferences

Performance Cookies

Help us understand how you use our site:

  • • Page load times
  • • Popular content
  • • User journey analysis
  • • Error tracking

Functional Cookies

Enhance your experience with personalized features:

  • • Language preferences
  • • Regional settings
  • • Customized content
  • • Remember login status

Marketing Cookies

Used for advertising and marketing purposes:

  • • Targeted advertisements
  • • Social media integration
  • • Campaign effectiveness
  • • Retargeting campaigns

Third-Party Tracking

Analytics & Advertising Partners

  • Google Analytics: Website traffic and user behavior analysis
  • Facebook Pixel: Social media advertising and conversion tracking
  • Google Ads: Search and display advertising campaigns
  • Hotjar: User experience analysis and heatmaps

Managing Cookies

Your Cookie Choices

  • Browser Settings: Most browsers allow you to refuse or delete cookies
  • Opt-Out Tools: Use industry opt-out tools for advertising cookies
  • Do Not Track: We honor Do Not Track browser signals
  • Essential Cookies: Cannot be disabled as they're necessary for site function

Note: Disabling cookies may limit website functionality and personalization features.

📧Marketing Communications

Types of Communications

Transactional Emails

Essential communications about your orders:

  • • Order confirmations
  • • Shipping notifications
  • • Account updates
  • • Password resets
  • • Customer service responses

*These cannot be unsubscribed from as they're essential for service

Marketing Emails

Promotional content you can opt into:

  • • New product announcements
  • • Special offers and discounts
  • • Jewelry care tips
  • • Industry news and trends
  • • Personalized recommendations

*Easy unsubscribe option in every email

Consent and Preferences

How We Obtain Consent

  • Account Registration: Opt-in checkbox for marketing communications
  • Checkout Process: Optional newsletter subscription
  • Website Forms: Explicit consent for specific communications
  • Double Opt-In: Email confirmation for newsletter subscriptions

Personalization

We use your purchase history, browsing behavior, and preferences to send relevant content. This includes:

  • Product recommendations based on your interests
  • Special offers for items in your wishlist
  • Birthday and anniversary reminders
  • Size-specific promotions based on past purchases
  • Styling tips for your jewelry collection

Opting Out

Multiple Ways to Unsubscribe

  • Email Links: One-click unsubscribe in every marketing email
  • Account Settings: Manage preferences in your account dashboard
  • Customer Service: Contact us to update your preferences
  • Preference Center: Choose specific types of communications

Processing opt-out requests may take up to 48 hours. You may still receive transactional emails related to your orders.

CAN-SPAM Compliance

  • Clear identification of emails as advertisements
  • Truthful subject lines and sender information
  • Valid physical business address in every email
  • Honor opt-out requests within 10 business days
  • Monitor third-party marketing on our behalf

⚖️Your Rights & Choices

Your Privacy Rights

Access & Transparency

  • Right to Know: What personal information we collect
  • Data Access: Request a copy of your personal data
  • Processing Purposes: Understand how we use your information
  • Third Parties: Know who we share data with

Control & Correction

  • Data Correction: Update inaccurate information
  • Preference Management: Control marketing communications
  • Account Settings: Modify privacy preferences
  • Consent Withdrawal: Revoke previously given consent

Deletion & Portability

  • Right to Delete: Request removal of personal data
  • Data Portability: Export your data in a readable format
  • Account Closure: Delete your account and associated data
  • Processing Restriction: Limit how we use your data

Objection & Complaints

  • Processing Objection: Object to certain data uses
  • Automated Decisions: Request human review
  • File Complaints: Contact supervisory authorities
  • Legal Remedies: Seek compensation for damages

How to Exercise Your Rights

Contact Methods

📧
Email

privacy@growngem.com

💬
Live Chat

Available on our website

⚙️
Account Settings

Manage preferences online

Response Timeline

  • Standard Requests: Response within 30 days
  • Complex Requests: May require up to 60 days with notification
  • Urgent Matters: Priority handling for security concerns
  • Verification Process: Identity confirmation may be required

Limitations and Exceptions

While we honor your privacy rights, some limitations may apply:

  • Legal obligations may prevent deletion of certain records
  • Legitimate business interests may require data retention
  • Technical limitations may affect immediate data removal
  • Security measures may require identity verification
  • Some requests may incur reasonable administrative fees

🏛️California Privacy Rights (CCPA/CPRA)

California Consumer Privacy Act (CCPA)

California residents have additional privacy rights under the California Consumer Privacy Act and California Privacy Rights Act (CPRA). These rights are in addition to any other rights you may have.

California-Specific Rights

Information Rights

  • • Right to know what personal information is collected
  • • Right to know if personal information is sold or shared
  • • Right to know business purposes for collection
  • • Right to access personal information

Control Rights

  • • Right to delete personal information
  • • Right to opt-out of the sale of personal information
  • • Right to limit use of sensitive personal information
  • • Right to non-discrimination for exercising rights

Categories of Personal Information

We Collect:
  • • Identifiers (name, email, phone)
  • • Commercial information (purchase history)
  • • Internet activity (browsing behavior)
  • • Geolocation data (general location)
  • • Audio/visual data (customer service calls)
Sensitive Information:
  • • Payment information (tokenized)
  • • Account login credentials
  • • Personal communications
  • • Precise geolocation (with consent)

Do We "Sell" Personal Information?

No, We Do Not Sell Personal Information

We do not sell personal information as traditionally understood. However, under the broad CCPA definition, some data sharing activities might be considered "sales":

  • Advertising Cookies: Some marketing cookies may be considered data sharing
  • Analytics: Sharing with analytics providers for website optimization
  • Social Media: Pixels and plugins for social media advertising

You can opt-out of these activities using our "Do Not Sell My Personal Information" link or cookie settings.

Exercising California Rights

How to Submit Requests

  • Email: privacy@growngem.com with "California Privacy Request" in subject
  • Phone: (954) 278-6000 (ask for privacy team)
  • Online Form: Privacy request form on our website
  • Mail: 10120 South Eastern Ave, Suite 200, Henderson, NV 89052

Verification Process

To protect your privacy, we verify the identity of individuals making privacy requests:

  • Matching at least two data points we have on file
  • Additional verification for sensitive information requests
  • Authorized agents must provide written authorization
  • Response provided to verified email address or phone number

Non-Discrimination

We will not discriminate against you for exercising your California privacy rights. We will not:

  • Deny goods or services to you
  • Charge different prices or rates
  • Provide different levels or quality of service
  • Suggest that you will receive different treatment

📞Contact Us About Privacy

Privacy Team Contact

📧 Email Support

Privacy Inquiries:
privacy@growngem.com

General Support:
support@growngem.com

Response within 24-48 hours

📱 Phone Support

(954) 278-6000

Monday - Friday: 9 AM - 6 PM PST
Saturday: 10 AM - 4 PM PST
Ask for "Privacy Team"

Mailing Address

📍 Privacy Officer

Grown Gem - Privacy Department
10120 South Eastern Ave, Suite 200
Henderson, NV 89052
United States

Data Protection Officer

For EU residents or complex privacy matters, you can contact our Data Protection Officer directly:

Email: dpo@growngem.com
Subject Line: "DPO - [Your Privacy Concern]"

What to Include in Your Privacy Request

  • Clear Request: Specify what privacy right you're exercising
  • Identity Information: Name and email address associated with your account
  • Account Details: Order numbers or account information for verification
  • Specific Details: What information you want accessed, corrected, or deleted
  • Preferred Response: How you'd like to receive our response

Supervisory Authorities

If you're not satisfied with our privacy practices, you have the right to file a complaint with relevant supervisory authorities:

EU Residents

Contact your local Data Protection Authority or the lead supervisory authority in your country.

California Residents

California Attorney General's Office Privacy Unit

We're Here to Help

We take your privacy seriously and are committed to addressing your concerns promptly and thoroughly. Don't hesitate to reach out with any questions about our privacy practices or your data rights.

Your Cart

Your cart is empty

My Account

Please sign in to access your account