top of page

Privacy Policy

A legal disclaimer
 

Effective Date: January 20, 2026
Store Name: Ravea (“Ravea,” “we,” “us,” “our”)
Business Location: Arizona, United States
Contact: RaveaJewelry@outlook.com | 623-252-2179
 

This Privacy Policy explains how Ravea collects, uses, discloses, and protects personal data when you visit our website, interact with us, or purchase jewelry from our online store (the “Site”). Our Site is built on Wix and we sell products via drop-shipping to customers in the United States. We may also receive visitors from the European Economic Area (“EEA”), the United Kingdom, and Switzerland; therefore, this policy includes disclosures required by the General Data Protection Regulation (“GDPR”) and similar laws.

By using our Site, you acknowledge you have read this Privacy Policy.

​​​

 

Who We Are (Data Controller)

For purposes of the GDPR, Ravea is the “data controller” of the personal data described in this Privacy Policy, meaning we determine how and why your personal data is processed.

Contact: RaveaJewelry@outlook.com | 623-252-2179

​​

 

Personal Data We Collect

We collect personal data directly from you, automatically from your device, and from third parties (such as payment providers). The types of personal data we may collect include:

A. Information you provide

  • Identity and contact data: name, email address, phone number, billing and shipping address

  • Account data (if created): username, password (stored by platform/securely), preferences

  • Order and transaction data: items purchased, order number, order history, returns/exchanges, messages about your order

  • Customer support communications: emails, chat messages, contact form submissions, call notes (where applicable)

  • Marketing preferences: subscription status, communication preferences

B. Payment data

  • Payments are processed via PayPal and/or credit/debit card payment processors.

  • We do not store complete card numbers or full payment credentials. Payment providers may collect payment details to complete your transaction.

C. Device and usage data (collected automatically)

  • Identifiers and technical data: IP address, device identifiers, browser type, operating system

  • Usage data: pages viewed, time spent, clickstream data, referring/exit pages

  • Approximate location: inferred from IP address

  • Cookie and tracking data: as described in Section 6

D. Data from third parties

  • Payment confirmation details (e.g., payment status, limited transaction references) from PayPal/payment providers

  • Delivery/shipping status from fulfillment and shipping partners

​​​

 

How We Use Personal Data

We use personal data for the following purposes:

  • To provide and operate the Site (including account features, checkout, and customer service)

  • To process orders and fulfill contracts (confirming orders, shipping, returns, and refunds)

  • To communicate with you about purchases, shipping updates, returns, and policy/service changes

  • To prevent fraud and enhance security (monitoring transactions, protecting the Site and users)

  • To improve our business and Site (analytics, performance, troubleshooting, product insights)

  • To send marketing communications where permitted and in line with your preferences

  • To comply with legal obligations (tax, accounting, consumer protection, and other applicable laws)

​​​

 

Legal Bases for Processing (GDPR)

When the GDPR applies, we process your personal data under one or more of the following legal bases:

  • Contract necessity: to fulfill your order and provide requested services (e.g., payment processing, shipping, customer support)

  • Legitimate interests: to operate, improve, and secure our business and Site, prevent fraud, and understand customer needs (balanced against your rights)

  • Consent: for certain cookies/trackers and marketing communications where required by law

  • Legal obligation: to comply with applicable laws, regulations, court orders, and lawful requests

You may withdraw consent at any time where processing is based on consent (see Sections 6 and 10).

​​​​

 

Drop-Shipping and Fulfillment

Ravea uses drop-shipping. This means we may share limited personal data with suppliers and logistics partners strictly as needed to fulfill and deliver your order, such as:

  • name

  • shipping address

  • phone number (if required by the carrier)

  • order contents and shipping method

We do not authorize suppliers to use your personal data for their own marketing.

​​​

 

Cookies and Similar Technologies

We use cookies and similar technologies (e.g., pixels, tags, local storage) to provide and improve the Site. Because our Site is built on Wix, Wix and integrated apps may place cookies that support site functionality, analytics, and security.

Types of cookies we may use

  • Strictly Necessary Cookies: required for core Site features (e.g., security, login, shopping cart, checkout). These are generally processed under legitimate interests and/or contract necessity and do not require consent in many jurisdictions.

  • Analytics Cookies: help us understand Site usage and performance (e.g., which pages are visited, errors, traffic sources). Where required, we use these based on consent.

  • Functional Cookies: remember preferences (e.g., language, region) and improve user experience.

  • Marketing/Advertising Cookies: used to deliver and measure advertising and track effectiveness. Where required, we use these based on consent.

Managing cookies

  • You can adjust cookie preferences via any cookie banner/consent tool presented on the Site (where enabled).

  • You can also manage cookies through your browser settings (blocking, deleting, or limiting cookies).

  • Please note: disabling certain cookies may affect Site functionality, including checkout.

​​

 

Third-Party Service Providers (Processors)

We use third-party companies (“processors”) to operate our Site and provide services. These may process personal data on our behalf and under our instructions, including:

  • Wix (website hosting, storefront tools, forms, site operations, and certain analytics features)

  • Payment processors: PayPal and card payment processing partners used through our storefront checkout

  • Suppliers and fulfillment partners (drop-shipping vendors that pack/ship products)

  • Shipping/logistics providers (carriers and delivery partners)

  • Customer support tools (e.g., email service providers)

  • Analytics and marketing providers (where used and permitted)

We take reasonable steps to ensure our processors implement appropriate security measures and only process data for permitted purposes.

International Data Transfers

Ravea is based in the United States, and our service providers (including Wix and payment providers) may process and store personal data in the United States or other countries. If you access our Site from the EEA/UK/Switzerland, your personal data may be transferred outside your country of residence.

Where required by the GDPR, we rely on appropriate safeguards for international transfers, which may include:

  • Standard Contractual Clauses (SCCs) approved by the European Commission (and/or UK equivalents)

  • other legally recognized transfer mechanisms

You may contact us to request information about the safeguards we use for specific transfers.

 

 

How Long We Keep Your Data (Data Retention)

We retain personal data only as long as necessary for the purposes described in this Privacy Policy, including to meet legal, accounting, and reporting requirements.

Typical retention periods may include:

  • Order and transaction records: retained as needed for accounting, tax, chargeback handling, warranties, and legal compliance

  • Customer support records: retained as needed to resolve issues and maintain business records

  • Marketing records: retained until you unsubscribe or object (subject to legal requirements)

  • Technical logs and analytics: retained for a limited period consistent with operational needs and vendor settings

We may retain data longer where required by law or to establish, exercise, or defend legal claims.

 

Your Rights Under the GDPR

If the GDPR applies to you, you have the following rights (subject to applicable conditions and exceptions):

  • Right of access: request a copy of your personal data

  • Right to rectification: request correction of inaccurate or incomplete data

  • Right to erasure (“right to be forgotten”): request deletion of your personal data

  • Right to restrict processing: request we limit processing in certain situations

  • Right to data portability: receive your data in a structured, commonly used, machine-readable format and/or have it transferred to another controller (where technically feasible)

  • Right to object: object to processing based on legitimate interests and to direct marketing

  • Right to withdraw consent: where processing is based on consent (withdrawal does not affect lawfulness before withdrawal)

  • Rights related to automated decision-making: you have the right not to be subject to solely automated decisions with legal or similarly significant effects (where applicable). Ravea does not typically use such processing for customers.

How to exercise your rights
Contact us at RaveaJewelry@outlook.com. We may request information to verify your identity. We will respond within the timeframe required by applicable law (typically within one month under the GDPR, subject to extensions in limited cases).

 

Marketing Choices

You can opt out of marketing emails at any time by using the unsubscribe link in our emails or by contacting us. Transactional messages (e.g., order confirmations, shipping updates) will still be sent as they are necessary to fulfill your order.

 

Security

We use reasonable technical and organizational measures designed to protect personal data. However, no online platform can guarantee absolute security. Please use caution when sharing information online.

 

Children’s Privacy

Our Site is not intended for children under 16 in the EEA/UK (or under 13 in the United States), and we do not knowingly collect personal data from children. If you believe a child has provided personal data, contact us and we will take steps to delete it.

 

Third-Party Links

Our Site may contain links to third-party websites or services. We are not responsible for the privacy practices of third parties. Please review their privacy policies before providing personal data.

 

Right to Lodge a Complaint with a Supervisory Authority

If the GDPR applies to you, you have the right to lodge a complaint with a supervisory authority in the EEA/UK/Switzerland, particularly in the country where you live, work, or where you believe an infringement has occurred.

You may also contact us first so we can try to resolve your concern directly.

 

Updates to This Policy

We may update this Privacy Policy from time to time. We will post the updated version on this page and update the “Effective Date” above. Your continued use of the Site after changes become effective means you acknowledge the updated policy.

 

Contact Us

For questions, requests, or privacy concerns:

Ravea (Arizona, United States)
Email: RaveaJewelry@outlook.com
Phone: 623-252-2179

bottom of page