Please read ‘we’, ‘us’ or ‘our’ to mean ‘Completely Crystals®’ throughout this document, and ‘you’, ‘yours’ or ‘their’ refers to you yourself as the customer.
Please note: We do not store credit card details directly on our website and we do not share customer details with any 3rd parties unless directly related to your order purchase or shipping (ie. with payment or shipping vendors).
Last updated: 18/05/2021
Data Transfer / Security
Any sensitive data transferred between our customers and ourselves use encrypted 256-bit TLS1.2 (which succeeds SSL3.0) technology. Therefore, you can always be sure of the best security with us online.
1.1 A secure link is established when users login to their user account.
1.2 Your web-browser will display the padlock symbol when your connection is secure.
1.3 You should always have a secure connection when going through the checkout as either a guest or a member.
1.4 Our company’s online secure payments structure has passed the relevant industry-standard PCI DSS compliance testing in accordance with the Official PCI Security Standards Council.
Online payments can be made through the PayPal™, Stripe™ or Coinbase™ secure-payment systems.
2.1 Once you have made your orders and been through our checkout system you may choose to be redirected to an official PayPal site where they will process the payment for us.
2.2 If you do not have a PayPal account then payments can also be made to us by using a credit or debit card via the Stripe payment gateway. There is also an option to do this via PayPal.
2.3 We have a system to take your card details on our site (in conjunction with Stripe) so that you do not have to redirect to a payment gateway. We will not be storing any of your card details on our site. Any data transferred is securely encrypted.
2.4 If you tick the box to save your card details, these details are stored by the official major payment vendors and not by us.
2.5 Payments can also be made in Cryptocurrency via Coinbase. If you pay directly by logging into your Coinbase account (if you have one) at our checkout, the payment will clear almost immediately. If however, you do not have a Coinbase account, you can transfer manually via the blockchain using the details given when you checkout via this method, however, you will have to wait until this transaction can be confirmed or your order will automatically be cancelled within approximately one hour, if it does not clear in time or if you choose the back button. Please note that a manual transfer may incur a network fee (which goes to the miner/node verifying the transaction and not to us).
Names and addresses are stored in a physically secure, password-protected server (in the UK) when you create an account with us. When sending and receiving your information it is always encrypted using TLS1.2 (which succeeds SSL3.0) technology.
3.1 Accounts can be created or deleted at any time should you so wish to do so.
3.2 There is no charge for creating an account with us.
3.3 You must have an account in order to receive and use Reward Points for money off your next purchase and also to take advantage of exclusive coupon codes. You can also track your order history, initiate returns and keep a wish list with an account.
3.4 Should you wish to cancel/close your account, please contact us and we can do this for you.
3.5 Your information is only used for simple account order processing and if we need to contact you.
3.6 We do not share any of your account information with third parties apart from shipping companies solely for the purpose of dispatching your order to your given shipping address.
3.7 We store basic account information for people who order via eBay and Etsy. You have the right to view/amend or delete this data (after evidencing that you are the account owner).
3.8 You may choose whether or not to receive a newsletter.
3.9 You can also find an option to delete your account yourself by logging in and choosing this option from the menus.
Any data that is kept by us is subject to the relevant Data Protection Act laws.
4.1 None of your details will ever be passed on or revealed to a third party for marketing purposes by us.
4.2 We make every effort to make sure that your information is kept securely.
4.3 You have the right to check the data we hold about you by logging into your account online and you may at any time request an alteration or deletion of data held by us. You may also cancel your account with us at any time.
Active Data Analysis and Monitoring
We actively monitor customer usage statistics of our website usage for our own statistical purposes by using Google Analytics.
5.1 Google Analytics does not provide us with any information which could personally identify any particular user of our site to us.
6.1 Tracking data is used for the simple basic functionality of the site; for example:- in order to help a member to log into their account (https://completelycrystals.com cookies) and for tracking visitor statistics (google.com cookies).
6.2 We may track visitor statistics using Google Analytics for remarketing purposes (shown as double-click.com on your cookie list).
6.3 Tracking can be disabled with Ads preference manager from Google or with the Opt-out tool also from Google. This data will be used for display advertising purposes.
7.1 We retain information about your orders indefinitely, in order for you to keep track of your full order history and so that you can raise a query at any time.
7.2 Your passwords are fully encrypted on the database and not even we can see them.
7.3 We do not store any of your financial data on our website/servers. If you ever opt to save your card information it will be held on the servers of PayPal, Stipe, or Coinbase (or Worldpay who we have used in the past) who are fully vetted financial transaction solution suppliers.
7.4 You have the full unconditional right to have any or all of your data removed at any time. You can do this by logging into your account and requesting a cancellation of your account from the menus, or you can contact us and we will be more than happy to do this on your behalf.
Using a Social Account to log in
8.1 We collect your public profile data only from your consent that you grant before initiating Social Login, from the social network used to log in at our website.
8.2 This data includes your first name, last name, email address, link to your social media profile, unique identifier, link to social profile avatar.
8.3 This data is used to create your user profile on our website.
8.4 You can revoke this consent at any time by sending us an email.
Our Company Information Security Policy
The Company handles sensitive cardholder information daily. Sensitive Information must have adequate safeguards in place to protect the cardholder data, cardholder privacy, and to ensure compliance with various regulations, along with guarding the future of the organisation.
The Company commits to respecting the privacy of all its customers and to protecting any customer data from outside parties. To this end, management is committed to maintaining a secure environment in which to process cardholder information so that we can meet these promises.