Privacy Policy

1. Introduction

This privacy policy explains what information Conrad Jewelry collects, how it is used, and the choices you have. We aim to collect only what we need to run the site and respond to you.

2. Information We Collect

Information you provide

When you contact us through the contact form, we collect:

• Your name
• Your email address
• The subject and message you submit

Information collected automatically

When you use the site, we process:

• Your IP address — used transiently to rate-limit form submissions and prevent abuse. When a contact submission is stored, the IP is first reduced to its network prefix (for example, 203.0.113.42 becomes 203.0.113.0) so the stored record is not tied to an individual device.
• If analytics are enabled (off by default), aggregate usage data such as device and browser type, pages visited, referrer, and page-performance metrics. The default-ready analytics options are cookie-less and do not profile individual visitors.

3. How We Use Your Information

• To respond to inquiries you send through the contact form
• To protect the site from spam and abuse (rate limiting)
• To operate, secure, and maintain the website
• If analytics are enabled, to understand aggregate usage and improve the site
• To comply with legal obligations

4. Storage and Service Providers

We do not sell or trade your personal information. We share it only with the service providers needed to operate the site, and to comply with the law or protect our rights:

• Email delivery — contact-form messages are sent to us via Resend.
• Database — contact submissions are stored in a Turso (libSQL) database.
• Hosting & optional analytics — the site is hosted on Vercel, which also provides the optional cookie-less analytics and performance metrics noted above.

These providers may process data in the regions where they operate.

5. Cookies and Local Storage

By default this site sets no tracking cookies. Your cookie-consent choice is stored in your browser's localStorage for up to 12 months — it stays on your device and is not sent to a server. If an analytics provider that requires consent is enabled, its scripts load only after you select “Accept.” You can change or withdraw your choice at any time using the “Cookie settings” link in the site footer.

6. Data Retention

• Contact submissions are kept for up to 12 months and then automatically deleted, unless we need to retain a message longer to resolve your request.
• Rate-limiting records are transient and expire within the rate-limit window (typically minutes to an hour).
• Your consent choice is stored for up to 12 months (see above).

7. Data Security

The site is served over HTTPS with strict transport security, and stored contact records keep only an anonymized IP prefix. No method of transmission or storage is completely secure, so we cannot guarantee absolute security.

8. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.

9. Your Rights

Depending on your location, you may have the right to:

• Access the personal data we hold about you
• Correct inaccurate data
• Request deletion of your data
• Restrict or object to processing of your data
• Request data portability
• Withdraw consent at any time, where processing is based on consent
• Lodge a complaint with your local data-protection authority

10. Changes to This Policy

We may update this privacy policy from time to time. We will post the new policy on this page and update the “Last updated” date above.