To ensure your security, this website has a SSL Certificate. You will see the secure "https" address that appears in the url along with the padlock.
The website and its content is owned by Blooming Lotus Jewelry (“Company”, “we”, “us”). The term “you” refers to the user or viewer of www.BloomingLotusJewelry.com (“Website” or "Site").
Information We May Collect
We collect personal information from you so that we can provide you with a positive experience when utilizing our Website or content. We will only collect the minimum amount of information necessary for us to fulfill our obligation to you. We may collect:
- A name and an email address so we can deliver our newsletter to you - you would be affirmatively consenting to this by providing this to us in our contact forms.
- Billing information including name, address and credit card information so that we can process payment to deliver our products or services to you under our contractual obligation.
- A name and an email address if you complete our contact form with a question. We may send you marketing emails with either your consent or if we believe we have a legitimate interest to contact you based on your contact or question.
Please note that the information above (“Personal Data”) that you are giving to us is voluntarily, and by you providing this information to us you are giving consent for us to use, collect and process this Personal Data. You are welcome to opt-out or request for us to delete your Personal Data at any point by contacting us at Jennifer@BloomingLotusJewelry.com.
If you choose not to provide us with certain Personal Data, you may not be able to participate in certain aspects of our Website or content.
Other Information We May Collect:
Anonymous Data Collection and Use
To maintain our Website’s high quality, we may use your IP address to help diagnose problems with our server and to administer the Website by identifying which areas of the Website are most heavily used, and to display content according to your preferences. Your IP address is the number assigned to computers connected to the Internet. This is essentially "traffic data" which cannot personally identify you, but is helpful to us for marketing purposes and for improving our services. Traffic data collection does not follow a user’s activities on any other websites in any way. Anonymous traffic data may also be shared with business partners and advertisers on an aggregate basis.
What We Do With Information We Collect
We may contact you with information that you provide to us based on these lawful grounds for processing:
- We may contact you if you give us your clear, unambiguous, affirmative consent to contact you.
- We will contact you under our contractual obligation to deliver goods or services you purchase from us.
- Legitimate Interest. We may contact you if we feel you have a legitimate interest in hearing from us. For example, if you sign up for a webinar, we may send you marketing emails based on the content of that webinar. You will always have the option to opt out of any of our emails.
We will use the Personal Data you give to us in order to process your payment for the purchase of goods or services under a contract. We only use third party payment processors that take the utmost care in securing data and comply with the GDPR.
Targeted Social Media and Behavioral Advertisements
We may use the data you provide to us to run social media advertisements and / or create look-alike audiences for advertisements.
We use Google Analytics to help us understand how our customers use the Site. You can read more about how Google uses your Personal Information here: https://policies.google.com/privacy?hl=en. You can also opt-out of Google Analytics here: https://tools.google.com/dlpage/gaoptout.
For more information about how targeted advertising works, you can visit the Network Advertising Initiative’s (“NAI”) educational page at http://www.networkadvertising.org/understanding-online-advertising/how-does-it-work.
You can opt out of targeted advertising by:
- FACEBOOK - https://www.facebook.com/settings/?tab=ads
- GOOGLE - https://www.google.com/settings/ads/anonymous
We may share the data you provide with service providers to help us provide our services and fulfill our contracts with you, as described above. For example:
- We use Shopify to power our online store. You can read more about how Shopify uses your Personal Information here: https://www.shopify.com/legal/privacy.
- We may share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant or other lawful request for information we receive, or to otherwise protect our rights.
Share with Third Parties
We may share your information with trusted third parties such as our newsletter provider, Klaviyo, in order to contact you via email, our merchant accounts to process payments, and Google / social media accounts in order to run advertisements and our affiliates.
Viewing by Others
Note that whenever you voluntarily make your Personal Data available for viewing by others online through this Website or its content, it may be seen, collected and used by others, and therefore, we cannot be responsible for any unauthorized or improper use of the information that you voluntarily share (i.e., sharing a comment on a blog post, posting in a Facebook group that we manage, sharing details on a group coaching call, etc.).
Submission, Storage, Sharing and Transferring of Personal Data
Personal Data that you provide to us is stored internally or through a data management system. Your Personal Data will only be accessed by those who help to obtain, manage or store that information, or who have a legitimate need to know such Personal Data (i.e., our hosting provider, newsletter provider, payment processors or team members).
We retain your Personal Data for the minimum amount of time necessary to provide you with the information and / or services that you requested from us. We may include certain Personal Data for longer periods of time if necessary for legal, contractual and accounting obligations.
To use certain features of the Website or its content, you may need a username and password. You are responsible for maintaining the confidentiality of the username and password, and you are responsible for all activities, whether by you or by others, that occur under your username or password and within your account. We cannot and will not be liable for any loss or damage arising from your failure to protect your username, password or account information. If you share your username or password with others, they may be able to obtain access to your Personal Data at your own risk.
You agree to notify us immediately of any unauthorized or improper use of your username or password or any other breach of security. To help protect against unauthorized or improper use, make sure that you log out at the end of each session requiring your username and password.
We will use our best efforts to keep your username and password(s) private and will not otherwise share your password(s) without your consent, except as necessary when the law requires it or in the good faith belief that such action is necessary, particularly when disclosure is necessary to identify, contact or bring legal action against someone who may be causing injury to others or interfering with our rights or property.
How You Can Access, Update or Delete Your Personal Data
You have the right to:
- Request information about how your Personal Data is being used and request a copy of what Personal Data we use.
- Restrict processing if you think the Personal Data is not accurate, unlawful, or no longer needed.
- Rectify or erase Personal Data and receive confirmation of the rectification or erasure. (You have the “right to be forgotten”).
- Withdraw your consent at any time to the processing of your Personal Data.
- Lodge a complaint with a supervisory authority if you feel we are using your Personal Data unlawfully.
- Receive Personal Data portability and transference to another controller without our hindrance.
- Object to our use of your Personal Data.
- Not be subject to an automated decision based solely on automatic processing, including profiling, which legally or significantly affects you.
You may unsubscribe from our e-newsletters or updates at any time through the unsubscribe link at the footer of all email communications. If you have questions or are experiencing problems unsubscribing, please contact us at Jennifer@BloomingLotusJewelry.com
We take commercially reasonable steps to protect the Personal Data you provide to us from misuse, disclosure or unauthorized access. We only share your Personal Data with trusted third parties who use the same level of care in processing your Personal Data. That being said, we cannot guarantee that your Personal Data will always be secure due to technology or security breaches. Should there be a data breach of which we are aware, we will inform you immediately.
We have a no spam policy and provide you with the ability to opt-out of our communications by selecting the unsubscribe link at the footer of all e-mails. We have taken the necessary steps to ensure that we are compliant with the CAN-SPAM Act of 2003 by never sending out misleading information. We will not sell, rent or share your email address.
Third Party Websites
We may link to other websites on our Website. We have no responsibility or liability for the content and activities of any other individual, company or entity whose website or materials may be linked to our Website or its content, and thus we cannot be held liable for the privacy of the information on their website or that you voluntarily share with their website. Please review their privacy policies for guidelines as to how they respectively store, use and protect the privacy of your Personal Data.
Children’s Online Privacy Protection Act Compliance
We do not collect any information from anyone under 18 years of age in compliance with COPPA (Children’s Online Privacy Protection Act) and the GDPR (General Data Protection Regulation of the EU). Our Website and its content is directed to individuals who are at least 18 years old or older.
Notification of Changes
Data Controller and Processors
We are the data controllers as we are collecting and using your Personal Data. We use trusted third parties as our data processors for technical and organizational purposes, including for payments and email marketing. We use reasonable efforts to make sure our data processors are GDPR- compliant.
Use of "Cookies"
We may use the standard "cookies" feature of major web browsers. We do not set any personally identifiable information in cookies, nor do we employ any data-capture mechanisms on our Website other than cookies. You may choose to disable cookies through your own web browser’s settings. However, disabling this function may diminish your experience on our Website and some features may not work as intended.
A cookie is a small amount of information that’s downloaded to your computer or device when you visit our Site. We use a number of different cookies, including functional, performance, advertising, and social media or content cookies. Cookies make your browsing experience better by allowing the website to remember your actions and preferences (such as login and region selection). This means you don’t have to re-enter this information each time you return to the site or browse from one page to another. Cookies also provide information on how people use the website, for instance whether it’s their first time visiting or if they are a frequent visitor.
We use the following cookies to optimize your experience on our Site and to provide our services.
Cookies Necessary for the Functioning of the Store
|_ab||Used in connection with access to admin.|
|_secure_session_id||Used in connection with navigation through a storefront.|
|cart||Used in connection with shopping cart.|
|cart_sig||Used in connection with checkout.|
|cart_ts||Used in connection with checkout.|
|checkout_token||Used in connection with checkout.|
|secret||Used in connection with checkout.|
|secure_customer_sig||Used in connection with customer login.|
|storefront_digest||Used in connection with customer login.|
|_shopify_u||Used to facilitate updating customer account information.|
Reporting and Analytics
|_landing_page||Track landing pages|
|_orig_referrer||Track landing pages|
|_shopify_sa_p||Shopify analytics relating to marketing & referrals.|
|_shopify_sa_t||Shopify analytics relating to marketing & referrals.|
The length of time that a cookie remains on your computer or mobile device depends on whether it is a “persistent” or “session” cookie. Session cookies last until you stop browsing and persistent cookies last until they expire or are deleted. Most of the cookies we use are persistent and will expire between 30 minutes and two years from the date they are downloaded to your device.
You can control and manage cookies in various ways. Please keep in mind that removing or blocking cookies can negatively impact your user experience and parts of our website may no longer be fully accessible.
Most browsers automatically accept cookies, but you can choose whether or not to accept cookies through your browser controls, often found in your browser’s “Tools” or “Preferences” menu. For more information on how to modify your browser settings or how to block, manage or filter cookies can be found in your browser’s help file or through such sites as www.allaboutcookies.org.
Additionally, please note that blocking cookies may not completely prevent how we share information with third parties such as our advertising partners. To exercise your rights or opt-out of certain uses of your information by these parties, please follow the instructions in the “Behavioral Advertising” section above.
Do Not Track
Please note that because there is no consistent industry understanding of how to respond to “Do Not Track” signals, we do not alter our data collection and usage practices when we detect such a signal from your browser.
Pursuant to the General Data Protection Regulation (“GDPR”), if you are a resident of the European Economic Area (“EEA”), we process your personal information under the following lawful bases:
- Your consent;
- The performance of the contract between you and the Site;
- Compliance with our legal obligations;
- To protect your vital interests;
- To perform a task carried out in the public interest;
- For our legitimate interests, which do not override your fundamental rights and freedoms.
If you are a resident of the EEA, you have the right to object to processing based solely on automated decision-making (which includes profiling), when that decision-making has a legal effect on you or otherwise significantly affects you.
Our processor Shopify uses limited automated decision-making to prevent fraud that does not have a legal or otherwise significant effect on you.
Services that include elements of automated decision-making include:
Temporary denylist of IP addresses associated with repeated failed transactions. This denylist persists for a small number of hours.
Temporary denylist of credit cards associated with denylisted IP addresses. This denylist persists for a small number of days.
If you are a resident of the EEA, you have the right to access the Personal Information we hold about you, to port it to a new service, and to ask that your Personal Information be corrected, updated, or erased. If you would like to exercise these rights, please contact us through the contact information below.
Your Personal Information will be initially processed in Ireland and then will be transferred outside of Europe for storage and further processing, including to Canada and the United States. For more information on how data transfers comply with the GDPR, see Shopify’s GDPR Whitepaper:
For more information about our privacy practices, if you have questions, or if you would like to make a complaint, please contact us by e-mail at Jennifer@BloomingLotusJewelry.com.