This Privacy Notice explains in detail the types of personal data we may collect about you when you interact with us. It also explains how we’ll store and handle that data, and keep it safe.
We know that there’s a lot of information here, but we want you to be fully informed about your rights, and how Mysterium Jewellery uses your data; for example.
We hope the following sections will answer any questions you have but if not, please do get in touch with us.
It’s likely that we’ll need to update this Privacy Notice from time to time. We’ll notify you of any significant changes via email, but you’re welcome to come back and check it whenever you wish.
When you are using the Mysterium Jewellery websites, Mysterium Jewellery is the data controller.
For simplicity throughout this notice, ‘we’ and ‘us’ means the Mysterium Jewellery and its brands.
The law on data protection sets out a number of different reasons for which a company may collect and process your personal data, including:
In specific situations, we can collect and process your data with your consent.
When collecting your personal data, we’ll always make clear to you which data is necessary in connection with a particular service.
In certain circumstances, we need your personal data to comply with our contractual obligations.
If the law requires us to, we may need to collect and process your data.
In specific situations, we require your data to pursue our legitimate interests in a way which might reasonably be expected as part of running our business and which does not materially impact your rights, freedom or interests.
We’ll only ask for and use your personal data collected for recommending items of interest and to tailor your shopping experience with us. Of course, it’s always your choice whether you share such details with us.
We want to give you the best possible customer experience. One way to achieve that is to get the richest picture we can of who you are by combining the data we have about you.
We then use this to offer you promotions, products and services that are most likely to interest you. In the case of you being a loyalty scheme member, we’ll also offer you relevant rewards.
The data privacy law allows this as part of our legitimate interest in understanding our customers and providing the highest levels of service.
Of course, if you wish to change how we use your data, you’ll find details in the ‘What are my rights?’ section below.
Remember, if you choose not to share your personal data with us, or refuse certain contact permissions, we might not be able to provide some services you’ve asked for.
Here’s how we’ll use your personal data and why:
We want to bring you offers and promotions that are most relevant to your interests at particular times. To help us form a better, overall understanding of you as a customer, we combine your personal data gathered as described above, for example your shopping history. For this purpose we may also combine the data that we collect directly from you with data that we obtain from third parties to whom you have given your consent to pass that data onto us.
We know how much data security matters to all our customers. With this in mind we will treat your data with the utmost care and take all appropriate steps to protect it.
We secure access to all transactional areas of our websites and apps using ‘https’ technology.
Access to your personal data is password-protected, and sensitive data such as payment card information) is secured and tokenised to ensure it is protected.
Whenever we collect or process your personal data, we’ll only keep it for as long as is necessary for the purpose for which it was collected.
At the end of that retention period, your data will either be deleted completely or anonymised, for example by aggregation with other data so that it can be used in a non-identifiable way for statistical analysis and business planning.
Some examples of customer data retention periods:
When you place an order, we’ll keep the personal data you give us for five years so we can comply with our legal and contractual obligations.
We sometimes share your personal data with trusted third parties.
Here’s the policy we apply to those organisations to keep your data safe and protect your privacy:
Examples of the kind of third parties we work with are:
Sharing your data with third parties for their own purposes:
We will only do this in very specific circumstances, for example:
Sometimes we will need to share your personal data with third parties and suppliers outside the European Economic Area (EEA), such as Australia or the USA.
If you are based outside the UK and place an order with us, we will transfer the personal data that we collect from you to our business in the UK.
The EEA includes all EU Member countries as well as Iceland, Liechtenstein and Norway.
For example, this might be required in order to fulfil your order, process your payment details or provide support services.
If we do this, we have procedures in place to ensure your data receives the same protection as if it were being processed inside the EEA. For example, our contracts with third parties stipulate the standards they must follow at all times. If you wish for more information about these contracts please contact our Data Protection Officer.
You have the right to request:
Whenever you have given us your consent to use your personal data, you have the right to change your mind at any time and withdraw that consent.
In cases where we are processing your personal data on the basis of our legitimate interest, you can ask us to stop for reasons connected to your individual situation. We must then do so unless we believe we have a legitimate overriding reason to continue processing your personal data, such as administration of an extended warranty.
You have the right to stop the use of your personal data for direct marketing activity through all channels, or selected channels. We must always comply with your request.
To protect the confidentiality of your information, we will ask you to verify your identity before proceeding with any request you make under this Privacy Notice.
If you have authorised a third party to submit a request on your behalf, we will ask them to prove they have your permission to act.
There are several ways you can stop direct marketing communications from us:
Please note that you may continue to receive communications for a short period after changing your preferences while our systems are fully updated.
If you feel that your data has not been handled correctly, or you are unhappy with our response to any requests you have made to us regarding the use of your personal data, you have the right to lodge a complaint with the Information Commissioner’s Office.
You can contact them by calling 0303 123 1113.
Or go online to www.ico.org.uk/concerns (opens in a new window; please note we can't be responsible for the content of external websites)
If you are based outside the UK, you have the right to lodge your complaint with the relevant data protection regulator in your country of residence. Details can be found in Section 16.
For all non-UK customers
This Privacy Notice shall be provided in English.
By placing an order with Mysterium-Jewellery, browsing our website, including for analytics and website usage research, and/or agreeing to receive direct marketing electronic communications as described in this Privacy Notice and our Cookies Notice, you expressly consent to the processing of your personal data by us or on behalf of us. Of course, you still have the right to ask us not to process your data in these ways, and if you do so, we will respect your wishes.
Sometimes we will need to transfer your personal data between countries to enable us to supply the goods or services you have requested. In the ordinary course of business, we may transfer your personal data to third parties located in the UK to your country of residence. You hereby expressly consent to such overseas use, transferring and disclosure of your personal data outside of your country of residence for such purposes.
We shall endeavour to ensure that reasonable steps are taken to procure that all such third parties outside of your country of residence shall not use your personal data other than for that part of the purposes as set out in this Privacy Notice and to adequately protect the confidentiality and privacy of your personal data.
We will ensure that any third parties only process your personal data in accordance with their legitimate interests. These third parties may be subject to laws that differ from the laws which apply in the country where you reside. We do not actively take steps to ensure that any overseas recipient of your personal data complies with the laws which apply in your country.
If you have any questions, please contact us and we will respond within your local timeframe response requirements. To complain about an alleged breach of this Privacy Notice or our privacy obligations at law, please provide us with as much detail as possible in relation to your complaint. We will take any privacy complaint seriously and any complaint will be assessed with the aim of resolving any issue in a timely and efficient manner.
We hope this Privacy Notice has been helpful in setting out the way we handle your personal data and your rights to control it.
This notice was last updated on 18th June 2019
To make full use of the online shopping and personalised features on mysterium-jewellery.co.uk, your computer, tablet or mobile phone will need to accept cookies, as we can only provide you with certain personalised features of this website by using them.
Our cookies don't store sensitive information such as your name, address or payment details: they simply hold the 'key' that, once you're signed in, is associated with this information. However, if you'd prefer to restrict, block or delete cookies from mysterium-jewellery.co.uk, or any other website, you can use your browser to do this.
Each browser is different, so check the 'Help' menu of your particular browser (or your mobile phone's handset manual) to learn how to change your cookie preferences.
Here's a list of the main cookies we use, and what we use them for. They may collect personal data. You'll find information about 3rd party cookies below.
When you visit mysterium-jewellery.co.uk you may notice some cookies that aren't related to Mysterium-Jewellery. If you go on to a web page that contains embedded content, for example from YouTube, you may be sent cookies from these websites. We don't control the setting of these cookies, so please check the third-party websites for more information about their cookies and how to manage them.
Please note that we can't be responsible for the content of external websites.
Links open in a new window - please note that we can't be responsible for the content of external websites.
To find out more, please check What are cookies (opens in a new window; please be aware that we can’t be responsible for the content of external websites).
If you don't wish to enable cookies on your computer, that will mean that your experience of using our website site will be impaired - as some of the cookies help us to identify and resolve errors for example, or determine relevant related products to show you when you're browsing. Most web browsers have cookies enabled, but see the Managing cookies section for help to turn them on should you need to.
If you'd like to opt out, please go to the Network Advertising Initiative website (opens in a new window - please note that we're not responsible for the content of external websites).
Do not track (DNT) is a feature offered by some browsers, with some newer browsers offering it as default. If you enable it, it sends a signal to websites to request that your browsing isn't tracked, for example by third party ad or social networks, or analytic companies.
You can opt out of tracking and analytics on this website by changing your settings.
At present no industry-wide uniform standard has been agreed and adopted to determine how DNT requests should be managed, so our website doesn’t currently respond to DNT requests. Until that standard is established, we'll continue to review DNT and other new technologies, but won't respond to DNT requests.
We're giving you this information as part of our initiative to both comply with legislation, and make sure we're transparent and clear about your privacy when using our website.
The table below lists the cookies we collect and what information they store.
|Cookie Name||Cookie Description|
|FORM_KEY||Stores randomly generated key used to prevent forged requests.|
|PHPSESSID||Your session ID on the server.|
|GUEST-VIEW||Allows guests to view and edit their orders.|
|PERSISTENT_SHOPPING_CART||A link to information about your cart and viewing history, if you have asked for this.|
|STF||Information on products you have emailed to friends.|
|STORE||The store view or language you have selected.|
|MAGE-CACHE-SESSID||Facilitates caching of content on the browser to make pages load faster.|
|MAGE-CACHE-STORAGE||Facilitates caching of content on the browser to make pages load faster.|
|MAGE-CACHE-STORAGE-SECTION-INVALIDATION||Facilitates caching of content on the browser to make pages load faster.|
|MAGE-CACHE-TIMEOUT||Facilitates caching of content on the browser to make pages load faster.|
|SECTION-DATA-IDS||Facilitates caching of content on the browser to make pages load faster.|
|PRIVATE_CONTENT_VERSION||Facilitates caching of content on the browser to make pages load faster.|
|X-MAGENTO-VARY||Facilitates caching of content on the server to make pages load faster.|
|MAGE-TRANSLATION-FILE-VERSION||Facilitates translation of content to other languages.|
|MAGE-TRANSLATION-STORAGE||Facilitates translation of content to other languages.|