Privacy Policy

We may collect the following types of information when you use our website:

• Account information — name, email address, phone number, and delivery address when you create an account or submit an enquiry
• Usage data — pages visited, time spent, browser type, device type, and referring URLs
• Cookies and tracking data — cookies used for authentication, analytics, and site functionality

We do not collect sensitive personal information such as financial details, health data, or government identifiers unless explicitly required and consented to.

Information we collect is used to:

• Process and manage your gem enquiries and orders
• Provide and maintain your member account
• Respond to enquiries submitted through our contact form
• Improve our website content and user experience
• Send you updates about your enquiries or membership (with your consent)
• Comply with legal obligations

We do not sell, rent, or trade your personal information to third parties.

Our website uses cookies — small text files stored on your device — to enhance your browsing experience. Cookies we use include:

• Essential cookies — for authentication and session management
• Analytics cookies — to measure traffic and usage patterns
• Functional cookies — to remember your preferences such as wishlist items

You can control or disable cookies through your browser settings. Note that disabling cookies may affect the functionality of some features on our site, including authentication.

Our website uses third-party services including AWS (for hosting and authentication), and analytics tools. We are not responsible for the privacy practices of third-party services. We encourage you to review their privacy policies independently.

We retain personal information only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. Enquiry submissions are retained for up to 24 months. Account data is retained while your account remains active, and for a reasonable period after closure.

Under the Australian Privacy Act 1988 and the Australian Privacy Principles (APPs), you have the right to:

• Request access to personal information we hold about you
• Request correction of inaccurate or outdated information
• Request deletion of your personal information, subject to legal requirements
• Withdraw consent for data processing where consent is the legal basis
• Lodge a complaint with the Office of the Australian Information Commissioner (OAIC)

To exercise any of these rights, please contact us.

We take reasonable steps to protect information we hold from misuse, loss, and unauthorised access. Our website is served over HTTPS with SSL encryption and we use industry-standard authentication services. However, no method of transmission over the internet is completely secure, and we cannot guarantee absolute security.

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will post the updated policy on this page with a revised "last updated" date. We encourage you to review this page periodically.