Data Protection

DATA PROTECTION DECLARATION

The person responsible for data processing is:

Rafael Bettschart

Mesrop Mashtots Aventue 39

0002 Yerevan, Armenia

We are pleased that you are interested in the Sahakian Jewelry Design online shop. The protection of your privacy is very important to us. Below, we will inform you in detail about how we handle your data if acquire our products in the European Union from a shop location based in Europe.

1. ACCESS DATA AND HOSTING

You can visit our websites without providing any personal information. Each time you access a website, the web server automatically saves a server log file, which includes the name of the requested file, your IP address, the date, and time of access, the amount of data transferred, and the requesting provider (access data). This access data is evaluated solely for the purpose of ensuring trouble-free operation of the site and improving our offerings. This is necessary to safeguard our legitimate interests in presenting our services correctly, in accordance with Art. 6(1)(f) GDPR, which are predominant in the context of a balancing of interests. All access data will be deleted no later than seven days after your visit to the site.

2. DATA PROCESSING FOR CONTRACT EXECUTION AND FOR ESTABLISHING CONTACT

2.1 DATA PROCESSING FOR CONTRACT EXECUTION

For the purpose of contract execution in accordance with Art. 6(1)(b) GDPR, we collect personal data if you voluntarily provide it to us as part of your order. Mandatory fields are marked as such because in these cases, we absolutely need the data to process the contract and cannot fulfill the order without it. The specific data collected can be viewed in the respective input forms.

Further details regarding the processing of your data, particularly concerning its transfer to our service providers for order, payment, and shipping processing purposes, can be found in subsequent sections of this data protection statement. After the contract has been fully processed, your data will be restricted for further processing and deleted following the expiration of tax and commercial retention periods in accordance with Art. 6(1)(c) GDPR, unless you have expressly consented to further use of your data under Art. 6(1)(a) GDPR, or we reserve the right to use the data in any other manner permitted by law, about which we will inform you in this statement.

2.2 CUSTOMER ACCOUNT

If you have given your consent in accordance with Art. 6(1)(a) GDPR by choosing to open a customer account, we will use your data for the purpose of creating a customer account and storing your data for future orders on our website. You can delete your customer account at any time by sending a message to the contact option described in this data protection statement, or by using a function provided for this purpose, in the customer account. After your customer account has been deleted, your data will also be deleted, unless you have expressly consented to further use of your data under Art. 6(1)(a) GDPR, or we reserve the right to use the data in any other manner permitted by law, about which we will inform you in this statement.

2.3 CONTACT

As part of customer communication, we collect personal data to process your inquiries in accordance with Art. 6(1)(b) GDPR, if you voluntarily provide it to us when contacting us (e.g., via contact form or email). Mandatory fields are marked as such because in these cases, we absolutely need the data to process your inquiry. The respective input forms indicate which data is collected. After your inquiry has been fully processed, your data will be deleted unless you have expressly consented to further use of your data under Art. 6(1)(a) GDPR, or we reserve the right to use the data in any other manner permitted by law, about which we will inform you in this statement.

3. DATA PROCESSING FOR THE PURPOSE OF SHIPPING

To fulfill the contract in accordance with Art. 6(1)(b) GDPR, we may share your data with the shipping service provider responsible for delivering the ordered goods, where necessary. This also applies to the transfer of data.

4. DATA PROCESSING FOR PAYMENT PROCESSING

When processing payments on our online shop, we collaborate with the following partners: technical service providers, credit institutions, and payment service providers. 

4.1 DATA PROCESSING FOR TRANSACTION PROCESSING

Depending on the selected payment method, we transfer necessary data for processing the payment transaction to our technical service providers, who assist us in order processing, or to the designated credit institutions or chosen payment service provider, as required for payment processing. This action is undertaken to fulfill the contract under Art. 6(1)(b) GDPR. In some instances, payment service providers collect necessary payment processing data themselves, such as through their website or via technical integration within the ordering process. The data protection policy of the respective payment service provider applies in such cases.

If you need any clarification about our payment processing partners and the basis of our cooperation with them, please consider using the contact option described in this data protection declaration.

4.2 DATA PROCESSING FOR THE PURPOSE OF FRAUD PREVENTION AND OPTIMIZATION OF OUR PAYMENT PROCESSES 

If necessary, we may provide our service providers with additional data, which they will use together with the necessary payment processing data as our processors for the purposes of fraud prevention and optimizing our payment processes (e.g., invoicing, handling disputed payments, accounting support). This is in accordance with Art. 6(1)(f) GDPR and serves to protect our legitimate interests in safeguarding against fraud and efficiently managing payments, which are paramount within the context of balancing interests.

4.3 IDENTITY AND CREDIT CHECK WHEN SELECTING KLARNA AND FURTHER MORE PAYMENT SERVICES

If you choose to use the payment services offered by Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sweden (hereinafter 'Klarna'), we ask for your consent in accordance with Art. 6(1)(a) GDPR to transmit the necessary data for payment processing and for identity and credit checks to Klarna. In Germany, the credit agencies listed in Klarna's privacy policy [https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/privacy] may be used for identity and credit checks. Klarna uses the information received regarding the statistical likelihood of payment default to make an informed decision about establishing, executing, or terminating the contractual relationship. You may revoke your consent at any time by sending a message to the contact option specified in this privacy policy. Please note that revoking consent may affect our ability to offer certain payment options. You may also revoke your consent directly to Klarna regarding the use of your personal data at any time.

5. ADVERTISING BY E-MAIL

If you subscribe to our newsletter, we will use the data required for this purpose, or provided separately by you, to regularly send you our email newsletter based on your consent in accordance with Art. 6(1)(a) GDPR. You can unsubscribe from the newsletter at any time by sending a message to the contact option described below or via the unsubscribe link provided in the newsletter. After unsubscribing, we will delete your email address from the mailing list unless you have expressly consented to further use of your data under Art. 6(1)(a) GDPR, or we reserve the right to use the data in any other manner permitted by law, as described in this declaration.

6. COOKIES AND OTHER TECHNOLOGIES

GENERAL INFORMATION

To enhance your experience on our website and enable the use of specific functions, we utilize technologies, including cookies, on various pages. Cookies are small text files that are automatically stored on your device. Some of the cookies we use are deleted at the end of your browser session (session cookies), while others remain on your device and allow us to recognize your browser on your next visit (persistent cookies).

We use technologies that are essential for certain functions of our website (e.g., shopping cart functionality). These technologies collect and process IP addresses, visit times, device and browser information, and details of your website usage (e.g., contents of the shopping cart). This is conducted in the interest of optimizing our website presentation, which constitutes our predominant legitimate interest under Art. 6(1)(f) GDPR.

You can find the cookie settings for your browser under the following links: Microsoft Edge™ [https://support.microsoft.com/de-de/help/4027947/microsoft-edge-delete-cookies] / Safari™ [https://support.apple.com/de-de/guide/safari/sfri11471/12.0/mac/10.14] / Chrome™ [https://support.google.com/chrome/answer/95647?hl=de&hlrm=en] / Firefox™ [https://support.mozilla.org/de/products/firefox/protect-your-privacy/cookies] / Opera™ [https://help.opera.com/de/latest/web-preferences/#cookies]

7. INTEGRATION OF THE TRUSTED SHOPS TRUSTBADGE/OTHER WIDGETS

We integrate Trusted Shops widgets (e.g., Trusted Shops Trustbadge) into this website to display Trusted Shops services (e.g., seal of approval, collected reviews) and offer Trusted Shops products to buyers after an order.

This integration serves our legitimate interests in optimal marketing and secure shopping, as per Art. 6(1)(f) GDPR, which outweigh other interests. The Trustbadge and its associated services are provided by Trusted Shops GmbH, Subbelrather Str. 15C, 50823 Cologne (Trusted Shops), with whom we share data protection responsibilities under Art. 26 GDPR. In this data protection notice, we outline the essential contractual details as per Art. 26(2) GDPR.

The Trustbadge is provided by a US Content Delivery Network (CDN) provider under joint responsibility. We ensure an appropriate level of data protection through standard data protection clauses and other contractual measures. Further information on data protection at Trusted Shops GmbH can be found on their website.

When you access the Trustbadge, the web server automatically saves a server log file, which includes your IP address, the date, and time of access, the amount of data transferred, and the requesting provider (access data), documenting the access. The IP address is anonymized immediately after collection, ensuring that stored data cannot be personally attributed to you. The server log file is stored in a secure database for analyzing security issues and is automatically deleted or anonymized no later than 90 days after creation. This process, in accordance with Art. 6(1)(f) GDPR, serves the legitimate interests of both us and Trusted Shops in preventing misuse and fraud, optimizing offers and websites, and ensuring the smooth operation of the website, Trustbadge, or other Trusted Shops widgets. 

Additional personal data will be transferred to Trusted Shops GmbH if you choose to use Trusted Shops products after completing an order or if you are already registered to use them. Personal data is automatically collected from the order data for this purpose. To determine if you are already registered for Trusted Shops services, a neutral parameter—a cryptographic hash of your email address—is used for automatic verification. This hash value is irreversible and ensures that Trusted Shops cannot decrypt your email address during transmission. The parameter is automatically deleted after verification. 

This process is necessary to check your registration status for Trusted Shops services and serves our and Trusted Shops' overriding legitimate interests in providing buyer protection associated with specific orders and transactional evaluation services, as per Art. 6(1)(f) GDPR. If you are registered, further processing will adhere to the contractual agreement between you and Trusted Shops. If not yet registered, you will have the opportunity to register for the first time. Subsequent processing after registration also aligns with the contractual terms with Trusted Shops. If you choose not to register, all transmitted data will be automatically deleted by Trusted Shops, thereby eliminating any personal reference.

As part of the joint responsibility between us and Trusted Shops GmbH, if you have any questions about data protection or wish to assert your rights, please contact Trusted Shops GmbH, whose contact details can be found here [https://www.trustedshops.de/impressum/#datenschutz]. You can find further information on data protection at the following link here [https://www.trustedshops.com/tsdocument/CONSUMER_MEMBERSHIP_TERMS_de.pdf]. Irrespective of this, you can always contact us using the contact details described in this data protection declaration. If necessary, your request will then be forwarded to the other responsible party for response.

8. SOCIAL MEDIA

8.1 SOCIAL PLUGINS FROM META, TIKTOK & CO.

We use social buttons from social networks on our website. These buttons are integrated into the page as HTML links, ensuring that no connection is established with the servers of the respective provider when you visit our website. If you click on one of these buttons, the website of the respective social network will open in a new window or tab in your browser. From there, you can interact by liking or sharing content.

8.2 OUR ONLINE PRESENCE ON META, TIKTOK & CO.

If you have consented to this in accordance with Art. 6(1)(a) GDPR with the respective social media operator, your data will be automatically collected and stored for market research and advertising purposes when you visit our online presence on the mentioned social media platforms. From this data, user profiles are created using pseudonyms, which may be used, for example, to display targeted advertisements within and outside the platforms that are likely to correspond to your interests. This process typically involves the use of cookies. For detailed information on data processing and usage by the respective social media operators, as well as your rights and privacy protection settings, please refer to the data protection notices provided by the operators linked below. If you require further assistance in this matter, you may contact us.

Facebook and Instagram are services provided by META., 4 Grand Canal Square, Dublin 2, Ireland ('Facebook Ireland'). Information automatically collected by Facebook Ireland about your use of our online presence on Facebook and Instagram is usually transferred to servers of Facebook, Inc., 1601 Willow Road, Menlo Park, California 94025, USA, where it is stored. There is currently no adequacy decision from the European Commission regarding data transfers to the USA. Our collaboration with them is based on standard data protection clauses adopted by the European Commission. Data processing when visiting a Facebook or Instagram fan page is conducted under an agreement between joint controllers in accordance with Art. 26 GDPR. Further information on insights data can be found on their website.

9. CONTACT OPTIONS AND YOUR RIGHTS

9.1 YOUR RIGHTS

As a data subject, you have the following rights:

* pursuant to Art. 15 GDPR, the right to request information about your personal data processed by us to the extent specified therein;

* pursuant to Art. 16 GDPR, the right to immediately request the correction of incorrect or incomplete personal data stored by us;

* pursuant to Art. 17 GDPR, the right to request the deletion of your personal data stored by us, unless further processing is necessary

* to exercise the right to freedom of expression and information;

* to fulfill a legal obligation;

* for reasons of public interest or

* to assert, exercise or defend legal claims;

* pursuant to Art. 18 GDPR, the right to request the restriction of the processing of your personal data, provided that

* you dispute the accuracy of the data;

* the processing is unlawful, but you refuse to delete it;

* we no longer need the data, but you need it to assert, exercise or defend legal claims or

* you have objected to the processing in accordance with Art. 21 GDPR;

* in accordance with Art. 20 GDPR, the right to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transmitted to another controller;

* in accordance with Art. 77 GDPR, the right to complain to a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence or work or our company headquarters.

Right of objection

If we process personal data as described above to protect our legitimate interests, which prevail in the context of a balancing of interests, you have the right to object to this processing for the future. If the processing is conducted for direct marketing purposes, you can exercise this right at any time as described above. For processing carried out for other purposes, you may only object if there are reasons arising from your particular situation.

Upon exercising your right to object, we will cease processing your personal data for these purposes unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or if the processing is necessary for the establishment, exercise, or defense of legal claims.

However, this does not apply to processing for direct marketing purposes, where we will promptly cease such processing of your personal data..

9.2 CONTACT OPTIONS

If you have any questions regarding the collection, processing, or use of your personal data, including inquiries about information, correction, restriction, or deletion of data, as well as revocation of consent granted or objection to specific data usage, please contact us directly using the contact details provided in our legal notice.

10. NEWSLETTER

Email advertising with newsletter registration: If you subscribe to our newsletter, we will use the data required for this purpose or separately provided by you to regularly send you our email newsletter based on your consent in accordance with Art. 6(1)(a) GDPR. You can unsubscribe from the newsletter at any time, either by sending a message to the contact option described below or via an unsubscribe link provided in the newsletter. After unsubscribing, we will delete your email address unless you have expressly consented to further use of your data, or we reserve the right to use the data in any other way permitted by law and as informed in this declaration.