What information do we collect from you?
We will collect and process the following data about you:
- Information that you provide by filling in forms on our sites. This includes information provided at the time of registering to use our site, subscribing to our service, posting material or requesting further services including, for example, name, home and/or business address, email address, telephone number, demographic information such as age and/or other information that may identify you as an individual, username and password if you create an account on our site and such other information as may be necessary for the purposes identified in this Policy. We may also ask you for information when you enter a competition or promotion sponsored by us, sign-up for e-mail newsletters and when you report a problem with our site.
- If you contact us, we may keep a record of that correspondence.
- We may also ask you to complete surveys that we use for research purposes, although you do not have to respond to them.
- Details of (if applicable) transactions and appointment bookings you carry out through our site and of the fulfilment of your orders.
- Any other data you may provide to us in connection with our services and/or our site, including but not limited to:
- information you provide when you compile wishlists or other gift registries;
- information you provide when you use interactive areas of our site;
- information you provide when using the Account features, including the Preference Centre, Newsletter subscriptions and Register My Diamond features;
- email addresses of your friends and other that you give us in relation to a service; and
- pictures, videos and messages which you submit to us either via our social media sites (including by use of hashtags associated with us) or our site.
- Information collected from your use of our website or other digital services:
- Details of your visits to our site and information generated in the course of the use our site (including the timing, frequency and pattern of service use) including, but not limited to, traffic data, location data, weblogs and other communication data, whether this is required for our own billing purposes or otherwise as set out in this Policy, and the resources that you access;
- We will collect information about how you interact with our adverts and newsletters, including whether you open or click links in any correspondence. If you do not interact with our communications for a period of time we will use this information to assess whether to continue to send you communications;
- We may collect information about the device you use to access our website or digital services, including where available your IP address, operating system and browser type, for system administration and to report aggregate information to our advertisers. This is statistical data about our users' browsing actions and patterns. We use this information for internal system administration, to help diagnose problems with our server, and to administer our site. Such information may also be used to gather broad demographic information, such as country of origin and internet service provider.
Any or all of activities with regard to our site usage information may be performed on our behalf by our service providers (see the Service Providers section below).
Our server automatically collects data about your server’s internet address when you visit us. This information, known as an Internet Protocol address, or IP Address, is a number that’s automatically assigned to your computer by your internet service provider whenever you’re on the internet. When you request pages from our site, our servers may log your IP Address and sometimes your domain name. Our server may also record the referring page that linked you to us (e.g., another website or a search engine); the pages you visit on our site; the website you visit after our site; the ads you see and/or click on; other information about the type of web browser, computer, platform, related software and settings you are using; any search terms you have entered on our site or a referral site; and other web usage activity and data logged by our web servers.
We may also use personal data we obtain from social media (for example, Facebook, Instagram, Twitter, YouTube and WeChat to display on our site, our social media pages and for our (and our businesses’) research and analytics purposes. This is usually personal data that you submit to us (e.g. on our site or our social media pages) or you bring to our attention using hashtags or tagging relating to us, our business, our industry and our interests.
Why do we collect this information?
We process your personal information for the following reasons:
- To fulfil our promise to you where we agree to provide you with our products and services in order to:
- process information at your request to take steps to enter into a contract for sale or for services;
- provide you with our products and services, including the Register My Diamond service;
- process payments;
- make deliveries;
- maintain business and service continuity;
- send service communications so that you receive a full and functional service and so we can perform our obligations to you. These may be sent by email or post or, if the circumstances require it, we may contact you by phone. These will include notifications about changes to our service; and
- record information to facilitate your rights under guarantee.
- On the basis of your consent:
- Where we rely on your consent for processing this will be brought to your attention when the information is collected from you or be a result of a request by you, such as you choosing to share your wishlists or gift registry;
- To display your messages/captions, photos and/or videos (which may include 'likes', comments or other reactions to such messages/captions, photos and/or videos) on our site
We will contact you with direct marketing communications if you consent to us doing so and you have the right to withdraw consent at any time. See the What are your rights? section below for more information.
- To provide you with the best service and improve and grow our business (our legitimate interests) we will process information in order to:
- provide you with a personalised service;
- improve our products and services;
- keep our site and systems safe and secure;
- understand our customer base and purchasing trends;
- tailor advertising to you;
- create custom audiences on social media sites based on your information and engagement with us so we can target our advertising to similar audiences;
- defend against or exercise legal claims and investigate complaints; and
- understand the effectiveness of our marketing.
We will also carry out analytics to improve our products and services as set out above.
You have the right to object to processing carried out for our legitimate interests. See the What are your rights? section below for more information.
- To comply with legal requirements relating to:
- the provision of products and services;
- data protection;
- health and safety;
- anti-money laundering;
- fraud investigations;
- assisting law enforcement; and
- any other legal obligations placed on us from time to time.
How long do we keep hold of your information?
We will keep information about you for a maximum of 6 years after the end of our relationship with you unless obligations to our regulators require otherwise or we are required remove such data from our records.
Who might we share your information with?
For the purposes set out in the ‘Why do we collect this information?’ section above, we will share your personal information with:
- the following categories of third parties, some of whom we appoint to provide services, including:
- business partners, subsidiaries, suppliers and sub-contractors for the performance of any contract we enter into with you.
(such as website or database hosting companies, address list hosting companies, e-mail service providers, distribution companies, fulfilment companies and other similar service providers that use such personal data on our engagement).
- analytics and search engine providers that assist us in the improvement and optimisation of our site.
(such as analytics companies, social media management and analysis providers, social media companies that provide advertising, media, marketing and advertising companies and other similar service providers that use such personal data on Our engagement).
- Customer survey providers in order to receive feedback and improve our services.
- business partners, subsidiaries, suppliers and sub-contractors for the performance of any contract we enter into with you.
- any member of our group of companies.
- marketing agencies, media agencies and analytics providers in the form of aggregate statistics regarding user behaviour as a measure of interest in, and use of, our site and marketing e-mails in the form of aggregate data, such as overall patterns or demographic reports. These third parties will not be able to relate this data to identifiable individuals.
Additionally, we will disclose your personal information to the relevant third party:
- In the event that we sell or buy any business or assets, in which case we will disclose your personal data to the prospective seller or buyer of such business or assets.
- If we are acquired by a third party, in which case personal data held by us about our customers will be one of the transferred assets.
How is your data stored and kept secure?
At Forevermark, we take your safety and security very seriously and we are committed to protecting your personal and financial information. All information kept by us is stored on our secure servers. Where we have given you (or where you have chosen) a password that enables you to access certain parts of our service, you are responsible for keeping this password confidential. We ask you not to share a password with anyone and we recommend that you change your password every three months.
While We have implemented reasonable technical and organisational precautions to protect the security and integrity of personal data provided to Our Site, due to the inherent nature of the internet as an open global communications vehicle, We cannot guarantee that information, during transmission through the internet or while stored on Our system or otherwise in Our care, will be absolutely safe from intrusion by others, such as hackers. We do however maintain physical, electronic and procedural safeguards to protect your Personal Data.
We may transfer and store your data outside the European Economic Area ("EEA") or your country. We will only do so if adequate protection measures are in place in compliance with data protection legislation. It may also be processed by staff operating outside the EEA or your country who work for us or for one of our service providers for the purposes outlined in this Policy. Such staff may be engaged in, among other things, the fulfilment of your order, the processing of your payment details and the provision of support services.
More specifically, we may transfer your data to your local Forevermark entity for the purpose of managing our relationship with you and for the purposes outlined in this Policy.
A list of local Forevermark entity locations can be found here:
Forevermark Limited (UK)
20 Carlton House Terrace, London, SW1Y 5AN, UK
Suite 4608, The Park Place, No. 1601, Nanjing West Road, Shanghai 200040, China
Forevermark KK (Japan)
Yebisu Garden Place Tower 30F, 4-20-3 Ebisu, Shibuya-ku, Tokyo, 150-6030, Japan
Forevermark Hong Kong
26/F Kinwick Centre, 32 Hollywood Road, Central, Hong Kong
Forevermark Diamond Private Ltd, Construction House A, 3rd Floor 24th Road, Khar (West) Mumbai, 400 052, India
Forevermark US Inc
300 First Stamford Place. Stamford, CT, 06902, USA
We have put in place European Commission approved standard contractual clauses to protect this data. You have a right to ask us for a copy of these clauses (by contacting us as set out below).
We also transfer information to suppliers who are outside the EEA and use standard contractual clauses or other authorised transfer methods, such as relying on a supplier's Privacy Shield certification. For example, we use Salesforce Marketing Cloud to process data for customer relationship management purposes. Their servers are hosted in the US and they are certified under Privacy Shield. You have a right to ask us for a copy of the standard contractual clauses or a copy of the other methods used (by contacting us as set out below).
Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
What are your rights?
Where processing of your personal data is based on consent, you can withdraw that consent at any time.
You have the following rights. You can exercise these rights at any time by contacting us at email@example.com or Forevermark Customer Services, 20 Carlton House Terrace, London, SW1Y 5AN. You have the right:
- to ask us not to process your personal data for marketing purposes. We will inform you (before collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third party for such purposes;
- To ask us not to process your personal data where it is processed on the basis of legitimate interests provided that there are no compelling reasons for that processing;
- To ask us not to process your personal data for scientific or historical research purposes, where relevant, unless the processing is necessary in the public interest.
- to request from us access to personal information held about you;
- to ask for the information we hold about you to be rectified if it is inaccurate or incomplete;
- to ask for data to be erased provided that the personal data is no longer necessary for the purposes for which it was collected, you withdraw consent (if the legal basis for processing is consent), you exercise your right to object, set out below, and there are no overriding legitimate ground for processing, the data is unlawfully processed, the data needs to be erased to comply with a legal obligation or the data is children’s data and was collected in relation to an offer of information society services;
- to ask for the processing of that information to be restricted if the accuracy of that data is contested, the processing is unlawful, the personal data is no longer necessary for the purposes for which it was collected or you exercise your right to object (pending verification of whether there are legitimate grounds for processing);
- to ask for data portability if the processing is carried out by automated means and the legal basis for processing is consent or contract.
Should you have any issues, concerns or problems in relation to your data, or wish to notify us of data which is inaccurate, please let us know by contacting us using the contact details above. In the event that you are not satisfied with our processing of your personal data, you have the right to lodge a complaint with the relevant supervisory authority, which is the Information Commissioner’s Office (ICO) in the UK, at any time. The ICO’s contact details are available here: https://ico.org.uk/concerns/.
Our site may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies or content contained on those sites. Please check these policies before you submit any personal data to these websites.
For the purposes of data protection legislation, the data controller is Forevermark Limited, a company registered in England and Wales under company number 06501918 and our registered office is at 20 Carlton House Terrace, London, SW1Y 5AN.