Privacy Policy
Last Updated: April 28, 2026
We respect your privacy and are committed to protecting your personal data. This Privacy Policy describes how we handle your data when you use our website or services. We are committed to complying with the General Data Protection Regulation (GDPR) and Slovak law.
1. Who We Are
Thesauri s.r.o.
Karpatske namestie 10A, 831 06 Bratislava, Slovakia
Email: jewellery@thesauri.eu
We do not have a designated Data Protection Officer. For all privacy-related matters, please contact us at the above email address.
2. What Information We Collect
We collect the following types of personal data:
-
Identity Data: name, email address, billing and shipping address, phone number.
-
Transaction Data: purchase history, payment method (via third-party gateway), and proof of purchase including order or receipt numbers.
-
Guarantee & Warranty Data: clear photographs documenting product issues submitted for Lifetime Guarantee or warranty claims.
-
Technical Data: IP address, browser type, device information, cookies.
-
Communication Data: marketing preferences, and correspondence. We collect this data directly from you when you use our website, place orders, contact us, or initiate a return or guarantee claim.
3. Legal Basis for Processing
We process your personal data on the following legal grounds:
-
Contractual necessity: to fulfil and manage your orders and process Lifetime Guarantee or warranty claims (providing your data is required to enter into and perform the contract; if you do not provide it, we cannot process your order or claim) .
-
Legal obligation: for tax, accounting, and regulatory requirements.
-
Consent: for marketing communications and optional cookies (you are not obliged to provide this data; refusal will not affect your orders).
-
Legitimate interest: to improve our website and customer experience.
4. How We Use Your Data
We use your personal data to:
-
Process and fulfil your orders, including the evaluation and resolution of Lifetime Guarantee and warranty claims .
-
Provide customer support.
-
Communicate order updates and marketing (if consented).
-
Improve our website and services.
-
Comply with legal obligations.
5. Sharing Your Data
We only share your data with trusted third parties as necessary, including:
-
Wix.com: our website and e-commerce platform.
-
Payment processors: such as Stripe and PayPal.
-
Logistics providers: DHL Express and Slovak Post to facilitate worldwide delivery.
-
Legal authorities: if required by law.
All third-party service providers are subject to confidentiality and GDPR-compliant processing agreements.
6. International Transfers
Some third-party providers may process your data outside the European Economic Area (EEA). In such cases, we ensure that appropriate safeguards (e.g. Standard Contractual Clauses) are in place to protect your data. You may request a copy of these safeguards by contacting us.
7. Cookie Policy
We use cookies and similar technologies to enhance your browsing experience, analyse website traffic, and personalise content and ads.
What are cookies?
Cookies are small text files stored on your device when you visit our website. They help us remember your preferences, improve site functionality, and analyse site usage.
Types of cookies we use:
-
Strictly necessary cookies: Required for the operation of our website. These cookies do not require your consent.
-
Analytical/performance cookies: Help us understand how visitors use our site (e.g. Google Analytics). These cookies are used only with your consent.
-
Functional cookies: Allow us to remember your preferences and provide enhanced features. Used only with your consent.
-
Marketing/advertising cookies: Used to deliver relevant ads and track the effectiveness of our marketing campaigns. Used only with your consent.
Third-party cookies:
Some cookies are set by third-party services we use (such as Google Analytics, Facebook Pixel, etc.). These third parties may collect data about your online activities over time and across different websites.
Managing cookies:
You can manage your cookie preferences at any time using our cookie banner or by adjusting your browser settings. You can withdraw your consent for non-essential cookies at any time. Refusing non-essential cookies will not affect your ability to use our website.
For more details about the specific cookies we use, their purpose, and duration, please refer to our Cookie Settings.
8. Data Retention
We retain personal data only as long as necessary for the purpose it was collected:
-
Order and transaction data: 10 years, as required by Slovak tax and accounting legislation.
-
Lifetime Guarantee and Warranty Data: For the duration of the product's lifespan or as long as the guarantee remains valid, to verify eligibility for free replacements, refunds, or store credits.
-
Marketing data: Until you withdraw your consent.
-
Website analytics data: Up to 26 months.
9. Your Rights Under GDPR
You have the following rights regarding your personal data:
-
Access: The right to request copies of the personal data we hold about you.
-
Correction: The right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
-
Deletion (Right to be Forgotten): The right to request that we erase your personal data, under certain conditions.
-
Restrict or Object to Processing: The right to request that we restrict the processing of your personal data or object to our processing of your data.
-
Data Portability: The right to request that we transfer the data we have collected to another organisation, or directly to you.
-
Withdraw Consent: The right to withdraw your consent at any time for processing based on consent (e.g., marketing or optional cookies).
-
Lodge a Complaint: The right to lodge a complaint with a supervisory authority.
To exercise any of these rights, please contact us at: jewellery@thesauri.eu.
10. Supervisory Authority
If you believe your data protection rights have been violated, you have the right to lodge a complaint with the relevant supervisory authority:
For EU/EEA residents:
Office for Personal Data Protection of the Slovak Republic
Budova Park one, Námestie 1.mája 18
811 06 Bratislava, Slovenská republika
Website: www.dataprotection.gov.sk
Phone: +421 2 32 31 32 14 / +421 2 32 31 32 49
For US residents:
While the GDPR does not directly apply to US residents, we commit to providing similar privacy protections. You may contact the Federal Trade Commission (FTC) regarding privacy concerns:
Website: www.ftc.gov
Phone: 1-877-FTC-HELP (1-877-382-4357)
11. Security
We use SSL encryption and follow PCI-DSS and other industry standards to protect your personal data. While no method of transmission over the internet or electronic storage is 100% secure, we take all reasonable and commercially acceptable steps to ensure the safety of your information.
12. Automated Decision-Making and Profiling
We do not use your personal data for automated decision-making or profiling that would produce legal or similarly significant effects on you.
13. Age of Consent
By using this Website and purchasing our Products, you confirm that you are at least twenty-one (21) years old and legally capable of entering into a binding contract. In accordance with our Terms & Conditions, orders placed by individuals under the age of twenty-one (21) will be refused.
14. Changes to This Policy
We reserve the right to modify this Privacy Policy at any time. Any changes or clarifications will take effect immediately upon their publishing on the Website. If we make material changes to this policy, we will notify you here that it has been updated, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we use and/or disclose it.
Contact Us
For questions or concerns regarding this Privacy Policy or how we handle your data, please contact:
Thesauri s.r.o.
Karpatske namestie 10A, 831 06 Bratislava, Slovakia