Who we are

Our website address is: https://prettymejewelry.com.

Pretty Me Jewelry of Houston, hereafter referred to as PMJ, values its users’ privacy. This Privacy Policy will help you understand how we collect and use personal information from those who visit our website or make use of our online facilities and services, and what we will and will not do with the information we collect. Our policy has been designed and created to ensure those affiliated with PMJ of our commitment and realization of our obligation not only to meet, but to exceed, most existing privacy standards.

We reserve the right to make changes to this Policy at any given time. If you want to make sure that you are up to date with the latest changes, we advise you to frequently visit this Page. If at any time PMJ decides to make use of any personally identifiable information on file, in a manner vastly different from that which was stated when this information was initially collected, the user or users shall be promptly notified by email. Users at that time shall have the option as to whether to permit the use of their information in this separate manner.

This Policy applies to PMJ, and it governs any and all data collection and usage by us. Through the use of www.prettymejewelry.com, you are therefore consenting to the data collection procedures expressed in this Policy.

Please note that this Policy does not govern the collection and use of information by companies that PMJ does not control, nor by individuals not employed or managed by us. If you visit a website that we mention or link to, be sure to review its Privacy Policy before providing the site with information. It is highly recommended and suggested that you review the privacy policies and statements of any website you choose to use or frequent to better understand the way in which websites garner, make use of, and share the information collected.

Specifically, this Policy will inform you of the following – 

• What personally identifiable information is collected from you through our website;
• Why we collect personally identifiable information and the legal basis for such collection;
• How we use the collected information and with whom it may be shared;
• What choices are available to you regarding the use of your data; and
• The security procedures in place to protect the misuse of your information.

What personal data we collect and why we collect it

It is always up to you whether to disclose personally identifiable information to us, although if you elect not to do so, we reserve the right not to register you as a user or provide you with any products or services.

In addition, PMJ may have the occasion to collect non-personal anonymous demographic information, such as age, gender, household income, race and religion, as well as the type of browser you are using, IP address, or type of operating system, which will assist us in providing and maintaining superior quality service.

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Contact forms

PMJ may collect and make use of personal information to assist in the operation of our website and to ensure delivery of the products and services you need and request. At times, we may find it necessary to use personally identifiable information as a means to keep you informed of other possible products and/or services that may be available to you from www.prettymejewelry.com.

PMJ may also be in contact with you with regards to completing surveys and/or research questionnaire’s related to your opinion of current or potential future services that may be offered.

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Analytics

We are collecting your data for several reasons:

• To better understand your needs and provide you with the services you have requested;
• To fulfill our legitimate interest in improving our services and products;
• To send you promotional emails containing information we think you may like, when we have your consent to do so;
• To contact you to complete surveys or participate in other types of market research, when we have your consent to do so;
• To customize our website according to your online behavior and personal preferences.

Who we share your data with

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

Your contact information

PMJ greatly respects your privacy. We do maintain and reserve the right to contact you, if needed, for non-marketing  purposes such as bug alerts, security breaches, account issues, and/or changes in PMJ products and services. In certain circumstances, we may use our website, newspapers, or other public means to post a notice.

Children under the age of 13

PMJ website is not directed to, and does not knowingly collect personal identifiable information from, children under the age of thirteen (13). If it is determined that such information has been inadvertently collected on anyone under the age of thirteen (13), we shall immediately take the necessary steps to ensure that such information is deleted from our system’s database, or in the alternative, that verifiable parental consent is obtained for the use and storage of such information. Anyone under the age of thirteen (13) must seek and obtain parent or guardian permission to use this website.

Additional information

How we protect your data

PMJ takes precautions to protect your information. When you submit sensitive information via the website, your information is protected both online and offline. Wherever we collect sensitive information (e.g. credit card information), that information is encrypted and transmitted to us in a secure way. You can verify this by looking for a “lock icon” in the address bar and looking for “https” at the beginning of the webpage address.

While we use encryption to protect sensitive information transmitted online, we also protect your information offline. Only employees who need the information to perform a specific job (e.g. billing or customer service) are granted access to personally identifiable information.

The computers and servers, in which we store personally identifiable information, are kept in a secure environment. This is all done to prevent any loss, misuse, unauthorized access, disclosure or modification of the user’s personal information under our control.

What data breach procedures we have in place

PMJ cyber security policy outlines our guidelines and provisions for preserving the security of our data and technology infrastructure.

The more we rely on technology to collect, store and manage information, the more vulnerable we become to severe security breaches. Human errors, hacker attacks and system malfunctions could cause great financial damage and may jeopardize our company’s reputation.

For this reason, we have implemented a number of security measures. We have also prepared instructions that may help mitigate security risks. We have outlined both provisions in this policy.

Scope

This policy applies to all our employees, contractors, volunteers and anyone who has permanent or temporary access to our systems and hardware.

Policy elements

Confidential data

Confidential data is secret and valuable. Common examples are:

• Unpublished financial information
• Data of customers/partners/vendors
• Patents, formulas or new technologies
• Customer lists (existing and prospective)

All employees are obliged to protect this data. In this policy, we will give our employees instructions on how to avoid security breaches.

Protect personal and company devices

When employees use their digital devices to access company emails or accounts, they introduce security risk to our data. We advise our employees to keep both their personal and company-issued computer, tablet and cell phone secure. They can do this if they:

• Keep all devices password protected.

• Choose and upgrade a complete antivirus software.

• Ensure they do not leave their devices exposed or unattended.

• Install security updates of browsers and systems monthly or as soon as updates are available.

• Log into company accounts and systems through secure and private networks only.

We also advise our employees to avoid accessing internal systems and accounts from other people’s devices or lending their own devices to others.

When new hires receive company-issued equipment they will receive instructions for:

• [Disk encryption setup]

• [Password management tool setup]

• [Installation of antivirus/ anti-malware software]

They should follow instructions to protect their devices and refer to our [Security Specialists/ Network Engineers] if they have any questions.

Keep emails safe

Emails often host scams and malicious software (e.g. worms.) To avoid virus infection or data theft, we instruct employees to:

• Avoid opening attachments and clicking on links when the content is not adequately explained (e.g. “watch this video, it’s amazing.”)

• Be suspicious of clickbait titles (e.g. offering prizes, advice.)

• Check email and names of people they received a message from to ensure they are legitimate.

• Look for inconsistencies or “give-aways” (e.g. grammar mistakes, capital letters, excessive number of exclamation marks.)

If an employee isn’t sure that an email they received is safe, they can refer to our [IT Specialist.]

Manage passwords properly

Password leaks are dangerous since they can compromise our entire infrastructure. Not only should passwords be secure so they won’t be easily hacked, but they should also remain secret. For this reason, we advice our employees to:

• Choose passwords with at least eight characters (including capital and lower-case letters, numbers and symbols) and avoid information that can be easily guessed (e.g. birthdays.)

• Remember passwords instead of writing them down. If employees need to write their passwords, they are obliged to keep the paper or digital document confidential and destroy it when their work is done.

• Exchange credentials only when absolutely necessary. When exchanging them in-person isn’t possible, employees should prefer the phone instead of email, and only if they personally recognize the person they are talking to.

• Change their passwords every two months.

Remembering a large number of passwords can be daunting. We will purchase the services of a password management tool which generates and stores passwords. Employees are obliged to create a secure password for the tool itself, following the abovementioned advice.

Transfer data securely

Transferring data introduces security risk. Employees must:

• Avoid transferring sensitive data (e.g. customer information, employee records) to other devices or accounts unless absolutely necessary. When mass transfer of such data is needed, we request employees to ask our [Security Specialists] for help.

• Share confidential data over the company network/ system and not over public Wi-Fi or private connection.

• Ensure that the recipients of the data are properly authorized people or organizations and have adequate security policies.

• Report scams, privacy breaches and hacking attempts

Our [IT Specialists/ Network Engineers] need to know about scams, breaches and malware so they can better protect our infrastructure. For this reason, we advise our employees to report perceived attacks, suspicious emails or phishing attempts as soon as possible to our specialists. Our [IT Specialists/ Network Engineers] must investigate promptly, resolve the issue and send a companywide alert when necessary.

Our Security Specialists are responsible for advising employees on how to detect scam emails. We encourage our employees to reach out to them with any questions or concerns.

Additional measures

To reduce the likelihood of security breaches, we also instruct our employees to:

• Turn off their screens and lock their devices when leaving their desks.

• Report stolen or damaged equipment as soon as possible to [HR/ IT Department].

• Change all account passwords at once when a device is stolen.

• Report a perceived threat or possible security weakness in company systems.

• Refrain from downloading suspicious, unauthorized or illegal software on their company equipment.

• Avoid accessing suspicious websites.

We also expect our employees to comply with our social media and internet usage policy.

Our [Security Specialists/ Network Administrators] should:

• Install firewalls, anti malware software and access authentication systems.
• Arrange for security training to all employees.
• Inform employees regularly about new scam emails or viruses and ways to combat them.
• Investigate security breaches thoroughly.
• Follow this policies provisions as other employees do.

Our company will have all physical and digital shields to protect information.

Remote employees

Remote employees must follow this policy’s instructions too. Since they will be accessing our company’s accounts and systems from a distance, they are obliged to follow all data encryption, protection standards and settings, and ensure their private network is secure.

We encourage them to seek advice from our [Security Specialists/ IT Administrators.]

Disciplinary Action

We expect all our employees to always follow this policy and those who cause security breaches may face disciplinary action:

• First-time, unintentional, small-scale security breach: We may issue a verbal warning and train the employee on security.
• Intentional, repeated or large scale breaches (which cause severe financial or other damage): We will invoke more severe disciplinary action up to and including termination.
  We will examine each incident on a case-by-case basis.

Additionally, employees who are observed to disregard our security instructions will face progressive discipline, even if their behavior hasn’t resulted in a security breach.

Take security seriously

Everyone, from our customers and partners to our employees and contractors, should feel that their data is safe. The only way to gain their trust is to proactively protect our systems and databases. We can all contribute to this by being vigilant and keeping cyber security top of mind.

Disclosure of information

PMJ may not use or disclose the information provided by you except under the following circumstances:

• as necessary to provide services or products you have ordered;
• in other ways described in this Policy or to which you have otherwise consented;
• in the aggregate with other information in such a way so that your identity cannot reasonably be determined;
• as required by law, or in response to a subpoena or search warrant;
• to outside auditors who have agreed to keep the information confidential;
• as necessary to enforce the Terms of Service;
• as necessary to maintain, safeguard and preserve all the rights and property of PMJ.

Unsubscribe or Opt-Out

All users and visitors to our website have the option to discontinue receiving communications from us by way of email or newsletters.

To discontinue or unsubscribe from our website, please send an email to – customer_care@prettymejewelry.com and place “Unsubscribe” in the subject matter.

If you wish to unsubscribe or opt-out from any third-party websites, you must go to that specific website to do so.

PMJ will continue to adhere to this Policy with respect to any personal information previously collected.

Links to other websites

Our website does contain links to affiliate and other websites. PMJ does not claim nor accept responsibility for any privacy policies, practices and/or procedures of other such websites. Therefore, we encourage all users and visitors to be aware when they leave our website and to read the privacy statements of every website that collects personally identifiable information.

This Privacy Policy Agreement applies only and solely to the information collected by our website.

Industry regulatory disclosure requirements

Notice to European Union Users

PMJ’s operations are located primarily in the United States. If you provide information to us, the information will be transferred out of the European Union (EU) and sent to the United States. (The adequacy decision on the EU-US Privacy became operational on August 1, 2016. This framework protects the fundamental rights of anyone in the EU whose personal data is transferred to the U.S. for commercial purposes. It allows the free transfer of data to companies that are certified in the U.S. under the Privacy Shield.) By providing personal information to us, you are consenting to its storage and use as described in this Policy.

Acceptance of Terms

By using this website, you are hereby accepting the terms and conditions stipulated within the Privacy Policy Agreement. If you are not in agreement with our terms and conditions, then you should refrain from further use of our sites. In addition, your continued use of our website following the posting of any updates or changes to our terms and conditions shall mean that you agree and accept any such changes.

How to contact us – 

If you have any questions or concerns regarding the Privacy Policy Agreement related to our website, please feel free to contact us at the following email or telephone number:

• customer_care@prettymejewelry.com
• Phone: (832)471-6044