Privacy policy

Privacy Policy – Tooth Gems World

This Privacy Policy describes how Tooth Gems World (hereinafter “we”) collects, uses and protects your personal data when you visit the website https://toothgemsworld.com (the “Site”) and/or when you make a purchase on it.

Language – Prevailing version
This Policy is written in French. In the event of a translation, only the French version shall prevail in case of contradiction, translation error or difference in interpretation.

1) Data controller

The data controller is J & K Entreprise, operating the Tooth Gems World brand.

Contact
Email: contact@toothgemsworld.fr

2) Personal data we collect

Depending on how you use the Site, we may collect the following categories of data:

2.1 Automatically collected data (browsing)

  • technical data: IP address, device type, browser, operating system;
  • browsing data: pages viewed, interactions, source (referrer), search terms (where applicable);
  • cookies and trackers: session identifiers, cart, preferences, audience measurement, advertising, depending on your choices.

2.2 Order-related data (purchase / shipping / billing)

  • identity and contact details: last name, first name, email, phone number;
  • addresses: billing and shipping;
  • order information: products, quantities, purchase history, exchanges with support;
  • payment: we do not store your bank card details; they are processed by secure payment providers integrated into the platform (tokenization/3DS, etc.).

2.3 Marketing data (newsletters / SMS)

  • communication preferences (subscribe/unsubscribe, opt-in/opt-out);
  • delivery history and management via Shopify Messaging: sending, unsubscribe and, depending on configuration, performance statistics (e.g., interactions/clicks).

3) Purposes and legal bases

We process your personal data only when necessary and on one of the legal bases provided by applicable regulations (performance of a contract, legal obligation, legitimate interest, consent).

  • Process and fulfil your orders (payment, preparation, shipping, invoicing, after-sales service) – Performance of a contract.
  • Customer relationship management (claims, support, tracking) – Performance of a contract / Legitimate interest.
  • Accounting and legal obligations (invoices, supporting documents) – Legal obligation.
  • Site security and fraud preventionLegitimate interest and/or legal obligation depending on the case.
  • Audience measurement and Site improvementConsent where required (non-essential trackers); otherwise legitimate interest for strictly necessary trackers.
  • Newsletters & SMS via Shopify MessagingConsent and/or, where applicable, communications about similar products/services with the option to object at any time.

4) Newsletters and SMS – Unsubscribe

If you sign up to our communications, we may send you emails (newsletters) and SMS messages via Shopify Messaging.

  • Emails: unsubscribe at any time via the link included in each email.
  • SMS: opt out at any time following the instructions in the SMS (e.g., replying STOP or using a link, depending on the system).
  • Direct contact: contact@toothgemsworld.fr.

5) Data sharing (recipients)

We share your data only with providers necessary for operating the Site and delivering services, including:

  • Shopify: store hosting, e-commerce tools, and Shopify Messaging communication tools (emails/SMS).
  • Payment providers: payment processing and transaction security.
  • Carriers / logistics: shipping, tracking, delivery.
  • Technical providers: maintenance, security and operation of the Site.

We may also disclose your data if required by law or to respond to a lawful request from an authority.

6) Data location and international transfers

6.1. Where your data is hosted
Our data is primarily processed and hosted within the European Union / European Economic Area (EU/EEA), notably via Shopify’s infrastructure. Shopify may dynamically rebalance storage and processing across multiple hosting regions to ensure reliable and scalable infrastructure.

For merchants located in Europe, Shopify indicates that store data, order data and customers’ personal data are stored “at rest” in Europe by default for eligible new merchants. However, even when data is stored in Europe, certain processing may involve international data transfers (for example within the Shopify group and/or to onward sub-processors) in order to operate the services.

6.2. Safeguards (GDPR / equivalents)
When transfers of data outside the EU/EEA and/or outside the United Kingdom are necessary, Shopify indicates that it implements recognized legal mechanisms, including: (i) an adequacy decision (e.g., Canada, where applicable); and/or (ii) Standard Contractual Clauses (SCC) incorporated into data processing and transfer agreements (DPA), to govern transfers within the Shopify group and to onward sub-processors, together with appropriate technical and organizational measures.

6.3. Onward sub-processors
To operate the platform, Shopify may use onward sub-processors (e.g., technical services such as cloud hosting, logging, load balancing, content delivery, analytics and internal logging), governed by contractual obligations and security measures.

If our processing activities change in the future, we will update this Policy accordingly to reflect such changes and the applicable safeguards.

7) Data retention periods

We keep your data only for as long as necessary for the purposes for which it is processed, and then delete it or securely archive it.

  • Order data / contractual relationship: for as long as needed to manage the order, after-sales service and claims.
  • Accounting (invoices, tax/accounting obligations): archived for up to 10 years.
  • Marketing (email / SMS via Shopify Messaging): until withdrawal of consent or 3 years from your last interaction (depending on the case and applicable legal basis).
  • Cookies and trackers: duration varies depending on the cookie; in principle, limited to 13 months for trackers subject to consent, depending on your choices.
  • Requests relating to your rights: the time needed to handle the request, then evidential archiving if necessary.

8) Cookies and consent management

The Site uses cookies and similar technologies. A consent banner is displayed and managed via Shopify tools. You can accept, refuse or configure certain trackers according to the options provided.

Refusing certain cookies may affect some Site features (e.g., cart, preferences, personalization).

Cookies – Consent banner and categories
The Site displays a consent banner managed through Shopify tools. You can accept, refuse or customize your choices (via “Manage preferences” / “Save my choices”) and change them at any time.

  • Strictly necessary: essential for the Site to function properly (e.g., login, cart). They cannot be disabled.
  • Personalization: store details about your actions/preferences to personalize your experience.
  • Advertising: used to optimize our marketing communications and show you ads on other websites, depending on your choices.
  • Analytics: help us understand how you interact with the Site to identify areas for improvement, depending on your choices.

In accordance with applicable regulations, personalization, advertising and analytics cookies/trackers are placed/read only if you consent. Strictly necessary cookies remain active because they are essential for the Site to operate.

9) Your rights

You have rights regarding your personal data: access, rectification, erasure, restriction, objection (in particular to marketing), data portability (where applicable), and withdrawal of consent at any time when processing is based on consent.

To exercise your rights: contact@toothgemsworld.fr. Proof of identity may be requested if necessary to secure your request.

You may also lodge a complaint with the competent supervisory authority in your country of habitual residence, your place of work, or the place where the alleged infringement occurred (within the EU/EEA).

10) Security

We implement reasonable technical and organizational measures to protect your data against unauthorized access, loss, alteration or disclosure. Since no system is infallible, absolute security cannot be guaranteed.

11) Minors

The Site is not intended for persons under 18 years of age.

12) Changes

We may change this Policy at any time to reflect legal, technical or operational developments. The applicable version is the one published on the Site.

Legal information — J & K Entreprise

Tooth Gems World is an entity exclusively owned by J & K Entreprise.

J & K Entreprise is a French limited liability company (SARL) with share capital of €1,000, registered with the Paris Trade and Companies Register, 952 621 456 R.C.S. Paris.

  • SIREN: 952621456
  • VAT number: FR37952621456
  • Registered office: 60 rue François Ier, 75008 Paris, France
  • Contact: contact@toothgemsworld.fr

Free delivery

Free delivery in European Union for purchases over 150€!

Customer service

YOU CAN CONTACT US:
Directly via the chat-box
By email: contact@toothgemsworld.fr
On Instagram: @ToothGemsWorld

Promotion

ENJOY 10% OFF YOUR FIRST ORDER WITH TGW10

Secure payment

All payment information is encrypted and all our payments are subject to biometric or unique code authentication in order to validate the payment.