Privacy policy

Stéfère

Privacy Policy & Cookie Policy

Effective Date: May 12, 2025  ·  Last Updated: May 12, 2026

Stefere LLC  ·  366 Madison Avenue, 3rd Floor, New York, NY 10017, USA

1. Introduction and Scope

Stefere LLC (“Stéfère,” “we,” “our,” or “us”) operates the online store and website located at stefere.world, as well as the associated domains sfere.com, stefere.us, and steferejewelry.com (collectively, the “Sites”). Our Sites are powered by Shopify. This Privacy Policy describes how we collect, use, disclose, and protect your personal information when you visit or use the Sites, create an account, make a purchase (including bespoke or custom orders), or otherwise communicate with us (collectively, the “Services”).

This Privacy Policy applies globally. We serve customers worldwide and are committed to meeting the privacy requirements of the jurisdictions in which we operate, including the General Data Protection Regulation (GDPR) for customers in the European Economic Area (EEA) and the United Kingdom, the California Consumer Privacy Act (CCPA/CPRA) for California residents, and applicable U.S. federal and New York State privacy laws.

If there is a conflict between our Terms of Service and this Privacy Policy, this Privacy Policy controls with respect to the collection, processing, and disclosure of your personal information.

Please read this Privacy Policy carefully. By using and accessing any of the Services, you acknowledge that you have read, understood, and agree to the collection, use, and disclosure of your information as described herein.

2. Personal Information We Collect

When we use the term “personal information,” we refer to information that identifies or can reasonably be linked to you or another individual. We may collect the following categories of personal information depending on how you interact with our Services.

2.1 Information You Provide Directly

  • Contact details including your full name, billing address, shipping address, phone number, and email address.
  • Account information including your username, password, security questions, preferences, and settings.
  • Payment information including credit card or debit card details processed securely through Stripe, our payment processor. We do not store full card numbers on our servers.
  • Transaction information including items you view, add to cart, wishlist, purchase, exchange, or return, and your complete order history.
  • Custom and bespoke order details including personalization preferences, ring sizes, gemstone selections, engraving instructions, and any other specifications you provide for made-to-order pieces.
  • Communications including the content of messages you send us via email, contact forms, or customer support inquiries.

2.2 Information Collected Automatically

  • Device and technical information including your IP address, browser type and version, operating system, device identifiers, and network information.
  • Usage information including how you navigate and interact with our Sites, pages visited, time spent, links clicked, and referring URLs.
  • Cookie and tracking data including information collected through cookies, pixel tags, web beacons, and similar technologies. Full details are set out in Section 16 (Cookie Policy) of this document.

2.3 Information from Third Parties

  • From Shopify, our e-commerce platform provider, who processes technical and transactional data on our behalf.
  • From Stripe, our payment processor, who may share transaction confirmation and fraud-screening data with us.
  • From advertising and analytics partners including Meta (Facebook/Instagram) and Google (YouTube/Google Ads), when you interact with our advertisements on those platforms.
  • From our retail partners, such as Saks Fifth Avenue, Maxfield, Lorenzo, Marissa Collection (USA), and our European and Asian retail stockists, where permitted by applicable law.

3. Legal Basis for Processing (EEA & UK Customers)

If you are located in the European Economic Area or the United Kingdom, we process your personal information on the following legal bases under the GDPR:

  • Performance of a contract: Processing necessary to fulfill your orders, process payments, arrange shipping, handle returns and exchanges, and manage your account.
  • Legitimate interests: Processing for fraud prevention, security, improving our Services, analyzing usage patterns, and direct marketing to existing customers where proportionate and not overridden by your rights.
  • Consent: Processing for non-essential cookies, targeted advertising, and certain marketing communications. You may withdraw your consent at any time without affecting the lawfulness of prior processing.
  • Legal obligation: Processing required to comply with applicable laws, tax obligations, and regulatory requirements.

4. How We Use Your Personal Information

We use your personal information for the following purposes:

  • Order fulfillment: To process and fulfill your purchases, including standard and bespoke/custom jewelry orders, arrange shipping, process payments via Stripe, and manage returns and exchanges.
  • Account management: To create and maintain your customer account, authenticate your identity, and manage your preferences.
  • Customer communications: To send order confirmations, shipping notifications, tracking updates, and respond to your inquiries.
  • Custom order management: To manage bespoke orders, including collecting specifications, confirming design details, processing full upfront payment, and keeping you informed of production progress.
  • Marketing and advertising: To send promotional emails and communications (with your consent where required), and to display targeted advertisements on third-party platforms such as Meta and Google, including globally targeted ad campaigns.
  • Analytics and improvement: To understand how customers use our Sites, analyze trends, and improve our products and Services.
  • Fraud prevention and security: To detect, investigate, and prevent fraudulent transactions, unauthorized account access, and other malicious activity.
  • Legal compliance: To comply with applicable laws, respond to legal processes, enforce our policies, and protect the rights of Stéfère and our customers.

5. How We Disclose Your Personal Information

We do not sell your personal information. We may disclose your personal information to the following categories of third parties for legitimate business purposes:

  • Shopify: As our e-commerce platform, Shopify processes your personal information to provide the Services. Please review the Shopify Consumer Privacy Policy at privacy.shopify.com.
  • Stripe: As our payment processor, Stripe handles payment card data securely. Please review Stripe’s Privacy Policy at stripe.com/privacy.
  • Shipping and logistics providers: FedEx (for deliveries within the United States) and local/regional carriers (for international deliveries) receive your name, address, and order details to fulfill deliveries.
  • Marketing and advertising partners: Meta (Facebook/Instagram) and Google (YouTube/Google Ads) receive data to enable targeted advertising campaigns. You may opt out of targeted advertising as described in Section 9.
  • Analytics providers: We use analytics tools to understand how our Sites are used and to improve the customer experience.
  • Professional advisors: Including lawyers, accountants, and auditors where necessary for legal or financial compliance.
  • Corporate transactions: In connection with a merger, acquisition, financing, or sale of business assets, your information may be transferred to the relevant parties.
  • Legal and regulatory authorities: When required by law, court order, or governmental authority, or to protect the rights, property, or safety of Stéfère, our customers, or others.
  • Retail partners: Where you purchase Stéfère products through our authorized retail partners — Saks Fifth Avenue, Maxfield, Lorenzo, and Marissa Collection (USA); La Reserve, Mademoiselle Jeanne, Frojo, and Doux Joaillier (Europe); Lane Crawford, Moda Operandi, and LEVADE (Hong Kong) — those retailers’ own privacy policies apply to data they collect directly.

6. Our Relationship with Shopify

The Services are hosted and powered by Shopify Inc. Shopify collects and processes personal information about your access to and use of the Sites in order to provide and improve the Services. Information you submit through the Sites will be transmitted to and processed by Shopify, which may be located in countries other than your country of residence.

Shopify may use your personal information in connection with features and services it provides to multiple merchants on its platform. In these circumstances, Shopify acts as a data controller in its own right and is responsible for responding to requests you make regarding such use. To learn more about Shopify’s data practices and to exercise your rights, visit: https://privacy.shopify.com/en.

7. Custom and Bespoke Order Data

When you commission a custom or bespoke jewelry piece, we collect additional personal information necessary to create your unique item, including but not limited to sizing information, gemstone and material preferences, design specifications, engraving text, and any other personalization details you provide.

This information is used exclusively to fulfill your custom order and to maintain records of your commission for quality assurance, after-sales service, and legal compliance purposes. Custom order data is retained for a period of seven (7) years following order completion to support warranty claims, insurance valuations, and legal obligations.

Please note: All custom and bespoke orders require full payment upfront. Custom orders are non-refundable and non-exchangeable once production has commenced. Cancellations are not accepted after order confirmation and payments are non-refundable. Please review our Refund & Returns Policy for full details.

8. Your Rights and Choices

Depending on where you reside, you may have the following rights regarding your personal information. These rights are not absolute and may be subject to exceptions under applicable law.

8.1 Rights Available to All Customers

  • Right to Access / Know: You may request access to the personal information we hold about you.
  • Right to Delete: You may request deletion of your personal information, subject to legal retention obligations.
  • Right to Correct: You may request correction of inaccurate personal information we maintain about you.
  • Right to Portability: You may request a copy of your data in a portable format.
  • Opt out of Marketing: You may unsubscribe from promotional emails at any time by clicking the unsubscribe link in any marketing email. We may still send transactional emails related to your account or orders.

8.2 Additional Rights for EEA and UK Residents (GDPR)

  • Right to Object: You may object to processing based on legitimate interests, including direct marketing.
  • Right to Restrict Processing: You may request that we limit processing of your data in certain circumstances.
  • Right to Withdraw Consent: Where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
  • Right to Lodge a Complaint: You have the right to lodge a complaint with your national data protection authority. A list of EEA supervisory authorities is available at edpb.europa.eu.

8.3 Additional Rights for California Residents (CCPA/CPRA)

If you are a California resident, you have the following additional rights:

  • Right to Know: The categories and specific pieces of personal information collected, used, disclosed, or sold about you.
  • Right to Delete: Personal information we have collected from you, subject to certain exceptions.
  • Right to Correct: Inaccurate personal information we maintain about you.
  • Right to Opt Out of Sale or Sharing: We do not sell your personal information. We do share data with advertising partners (Meta, Google) for targeted advertising purposes, which may constitute “sharing” under the CPRA. You may opt out by contacting us or using our cookie consent tool.
  • Right to Limit Use of Sensitive Personal Information: You may direct us to limit the use of sensitive personal information to purposes necessary to provide the Services.
  • Right to Non-Discrimination: We will not discriminate against you for exercising any of your privacy rights.

To exercise any of these rights, please contact us at info@stefere.com or in writing at 366 Madison Avenue, 3rd Floor, New York, NY 10017, USA. We may need to verify your identity before processing your request. We will respond within 30 days (GDPR) or 45 days (CCPA), extendable by an additional 45 days with notice.

9. International Transfers of Personal Information

Stéfère is headquartered in New York, USA. Your personal information may be transferred to, stored, and processed in the United States and other countries where our service providers operate, including Shopify (Canada/USA) and Stripe (USA).

If we transfer personal information from the European Economic Area, the United Kingdom, or Switzerland to countries not recognized as providing an adequate level of data protection, we will implement appropriate safeguards, such as the European Commission’s Standard Contractual Clauses (SCCs) or the UK International Data Transfer Agreement (IDTA), to protect your information.

10. Data Security and Retention

10.1 Security

We implement reasonable technical and organizational security measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction. These include SSL/TLS encryption for data in transit, secure payment processing through Stripe’s PCI DSS-compliant infrastructure, and access controls limiting who within our organization can access personal data. No method of transmission over the internet is completely secure and we cannot guarantee absolute security.

10.2 Retention

We retain personal information for as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required by law:

  • Account data: Retained for the duration of your account and up to 5 years after account closure.
  • Transaction and order data: Retained for 7 years to comply with tax, accounting, and legal obligations.
  • Custom/bespoke order data: Retained for 7 years after order completion.
  • Marketing data: Retained until you opt out or withdraw consent, plus a reasonable period thereafter.
  • Security and fraud prevention logs: Retained for up to 2 years.

11. Children’s Privacy

Our Services are not directed to children under the age of 16. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at info@stefere.com and we will take steps to delete such information. As of the effective date of this Privacy Policy, we do not have actual knowledge that we sell or share personal information of individuals under 16 years of age.

12. Third-Party Websites and Links

Our Sites may contain links to third-party websites, including our social media profiles on Facebook, Instagram, and YouTube. We are not responsible for the privacy practices or content of those sites. We encourage you to review the privacy policies of any third-party sites you visit.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational and regulatory reasons. When we make material changes, we will update the “Last Updated” date and, where required by applicable law, provide additional notice. We encourage you to review this Privacy Policy periodically.

14. Complaints

If you have complaints about how we process your personal information, please contact us at info@stefere.com. If you are located in the EEA or UK, you also have the right to lodge a complaint with your local data protection supervisory authority.

15. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

For the purpose of applicable data protection laws, Stefere LLC is the data controller of your personal information. For data processed by Shopify on its own behalf, please contact Shopify directly via privacy.shopify.com/en.

Cookie Policy

Part of this Privacy Policy  ·  Effective Date: May 12, 2025  ·  Last Updated: May 12, 2026

16. What Are Cookies

Cookies are small text files placed on your device when you visit a website. They are widely used to make websites function efficiently, to improve the user experience, and to provide information to website operators. Cookies may be set by the website you are visiting (“first-party cookies”) or by third-party services operating on that website (“third-party cookies”).

In addition to cookies, we may also use similar tracking technologies such as pixel tags, web beacons, and local storage objects, which function in a comparable way. All references to “cookies” in this section include these similar technologies unless stated otherwise.

17. Cookies We Use

We use the following categories of cookies on our Sites:

Strictly Necessary Cookies

Always active — cannot be disabled

These cookies are essential for the Sites to function and cannot be switched off. They are set in response to actions you take, such as logging in, adding items to your cart, or setting privacy preferences. Without these cookies, the Sites cannot operate properly.

Examples: Shopify session cookies (cart, checkout), authentication tokens, security cookies.

Preference Cookies

Require consent

These cookies allow our Sites to remember choices you make, such as your country or region, currency preference, and language settings. They enable us to provide a more personalized experience and remember your preferences between visits.

Examples: Country/region selector, currency preference, language settings.

Analytics Cookies

Require consent

These cookies allow us to count visits and understand how visitors interact with our Sites. They help us measure and improve the performance of our Sites by providing information about which pages are visited most often, how long visitors spend on each page, and how they arrived at our Sites. All information collected is aggregated and anonymized where possible.

Examples: Shopify analytics, Google Analytics (_ga, _gid, _gat).

Marketing and Advertising Cookies

Require consent

These cookies are set by our advertising partners, including Meta (Facebook/Instagram) and Google (YouTube/Google Ads). They are used to build a profile of your interests and show you relevant advertisements on other websites and platforms. They work by uniquely identifying your browser and device. If you do not allow these cookies, you may still see advertising, but it will be less targeted to your interests.

Examples: Meta Pixel (_fbp, _fbc), Google Ads conversion tags (IDE, _gcl_au), remarketing cookies.

18. Third-Party Cookies

Some cookies on our Sites are set by third parties. We have no direct control over these cookies. The third parties operating on our Sites and their respective privacy and cookie policies are as follows:

19. Cookie Consent and Management

When you first visit our Sites, you will be presented with a cookie consent banner powered by Shopify’s built-in cookie consent tool. This banner allows you to accept or decline non-essential cookies before they are placed on your device.

  • Accept all cookies: All cookie categories, including analytics and marketing cookies, will be activated.
  • Decline non-essential cookies: Only strictly necessary cookies will be placed. Analytics and marketing cookies will not be activated.

You may change or withdraw your consent at any time. To do so, please clear your browser cookies and revisit our Sites, at which point the consent banner will be displayed again. You may also manage cookie preferences through your browser settings as described in Section 20.

Please note that strictly necessary cookies are placed without requiring consent, as they are essential for the Sites to function. Withdrawing consent for non-essential cookies will not affect the lawfulness of any processing carried out prior to withdrawal.

20. Managing Cookies Through Your Browser

Most web browsers allow you to control cookies through their settings. You can typically set your browser to refuse cookies, delete existing cookies, or notify you when a cookie is being placed. Please note that disabling cookies may affect the functionality of our Sites, including your ability to add items to your cart, complete a purchase, or maintain a logged-in session.

For guidance on how to manage cookies in your specific browser, please refer to:

21. Opting Out of Targeted Advertising

In addition to managing cookies through our consent tool or your browser, you may opt out of targeted advertising directly through the platforms we use:

22. Global Privacy Control (GPC)

We honor the Global Privacy Control (GPC) opt-out preference signal. If you visit our Sites with the GPC signal enabled in your browser, we will treat this as a request to opt out of the sale or sharing of your personal information for targeted advertising purposes for that browser and device. Where we are able to associate the device with a Shopify account, we will apply the opt-out to that account as well. To learn more about Global Privacy Control, visit globalprivacycontrol.org.

23. Cookie Retention Periods

Cookies are either session cookies (deleted when you close your browser) or persistent cookies (remain on your device for a set period). The approximate retention periods for the main cookies used on our Sites are:

  • Shopify session cookies: Session (deleted on browser close) or up to 1 year.
  • Google Analytics (_ga): 2 years.
  • Google Analytics (_gid): 24 hours.
  • Meta Pixel (_fbp): 90 days.
  • Google Ads (IDE): Up to 13 months.
  • Cookie consent preference: Up to 1 year.

24. Updates to This Cookie Policy

We may update this Cookie Policy from time to time to reflect changes in the cookies we use or for other operational, legal, or regulatory reasons. Any changes will be reflected in the “Last Updated” date at the top of this document. We encourage you to review this section periodically.

This Privacy Policy and Cookie Policy were prepared in accordance with applicable U.S. federal law, New York State law, the General Data Protection Regulation (EU) 2016/679, the UK GDPR, the California Consumer Privacy Act (Cal. Civ. Code § 1798.100 et seq.) as amended by the CPRA, the ePrivacy Directive (2002/58/EC), and other applicable global privacy and cookie law frameworks. Nothing in this document constitutes legal advice. Stéfère recommends consulting qualified legal counsel for specific legal guidance.

Stefere LLC  ·  366 Madison Avenue, 3rd Floor, New York, NY 10017, USA  ·  info@stefere.com  ·  stefere.world