💎Welcome Offer: AED 199 OFF your first jewelry order.

Privacy Policy

Effective Date: January 2026

At Thessah.ae, we are committed to protecting your privacy and ensuring you have a positive experience on our website. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our platform, including any related applications, and purchase jewelry or gold products.

1. Information We Collect

We collect information in the following ways:

1.1 Information You Provide Directly

  • Account Registration: Name, email address, phone number, password
  • Shipping & Billing: Full address, emirate, postal code, phone number
  • Payment Information: Credit/debit card details (processed securely via payment gateways; we do not store full card numbers)
  • Communication: Messages, inquiries, feedback, and product reviews
  • KYC/AML Verification: Identity documents (passport/Emirates ID), proof of address for high-value gold purchases

1.2 Information Collected Automatically

  • Device Information: Device type, operating system, browser type
  • Usage Data: Pages visited, time spent, click patterns, search queries
  • IP Address & Location: General location (city/emirate level, not exact coordinates)
  • Cookies & Tracking: Session cookies, persistent cookies, pixels (see Cookies section below)
  • Analytics: Google Analytics, heatmaps, conversion tracking

1.3 Information from Third Parties

  • Payment processors (to verify transactions)
  • Shipping & logistics partners (for delivery tracking)
  • Fraud detection services
  • Social media platforms (if you link your accounts)

2. How We Use Your Information

  • Order Processing: Fulfilling purchases, calculating shipping, processing refunds
  • Customer Service: Responding to inquiries, resolving complaints, managing returns
  • Payment Processing: Securely processing transactions with PCI-DSS compliant processors
  • KYC/AML Compliance: Verifying customer identity and preventing money laundering per UAE regulations
  • Marketing & Communications: Sending newsletters, promotional offers, product updates (with your consent)
  • Website Improvement: Analyzing user behavior, personalizing content, enhancing user experience
  • Fraud Prevention: Detecting and preventing unauthorized transactions and account abuse
  • Legal Compliance: Meeting UAE legal obligations, responding to government requests
  • Gold Rate Updates: Notifying you of price changes and market alerts

3. How We Share Your Information

We DO NOT sell your personal data to third parties. However, we share information in these cases:

  • Service Providers: Payment processors, shipping companies, email providers (under confidentiality agreements)
  • Legal Compliance: UAE authorities when required by law or court order
  • Business Transfers: In case of merger, acquisition, or sale of assets (with notice)
  • Fraud Prevention: Fraud detection and prevention services
  • Your Consent: When you explicitly agree to share information

4. Data Retention

  • Account Information: Retained for the duration of your account and 3 years after closure (for legal/tax purposes)
  • Transaction Records: Retained for 7 years per UAE tax regulations
  • KYC/AML Documents: Retained for 5 years per UAE AML regulations
  • Marketing Data: Retained until you unsubscribe
  • Cookies: Session cookies deleted when you close your browser; persistent cookies last up to 1 year

5. Cookies & Tracking Technologies

We use cookies and similar technologies to enhance your experience:

  • Essential Cookies: Required for website functionality (login, cart, checkout)
  • Performance Cookies: Analytics to measure website performance and user engagement (Google Analytics)
  • Marketing Cookies: Retargeting ads on social media and other platforms (Facebook Pixel, Google Ads)
  • Personalization Cookies: Remembering preferences, recently viewed items, wishlist

You can disable cookies in your browser settings, but some functionality may be limited.

6. Data Security

  • SSL Encryption: All data transmitted over HTTPS with 256-bit encryption
  • PCI DSS Compliance: Payment processing meets international security standards
  • Secure Servers: Data stored on secured, firewalled servers with access controls
  • Employee Training: Staff trained on data protection and confidentiality
  • Regular Audits: Security assessments and penetration testing conducted regularly

Note: While we implement strong security measures, no system is 100% secure. We cannot guarantee absolute protection against unauthorized access.

7. Your Privacy Rights & Choices

Under UAE personal data protection laws, you have the right to:

  • Access: Request a copy of your personal data
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your data (subject to legal retention requirements)
  • Opt-Out: Unsubscribe from marketing emails at any time
  • Data Portability: Request your data in a portable format
  • Restrict Processing: Request limitation of how your data is used

To exercise these rights, contact us at support@thessah.ae with your request and proof of identity.

8. Automated Decision-Making & Profiling

  • Fraud Detection: We use automated systems to detect suspicious transactions and prevent fraud
  • Personalization: Algorithms recommend products based on your browsing and purchase history
  • AML Screening: Automated checks against sanctions lists and AML watchlists

You have the right to request human review of automated decisions. Contact us for details.

9. Third-Party Links & Services

Our website may contain links to third-party websites and integrations (social media, payment gateways). We are not responsible for their privacy practices. Please review their privacy policies before providing personal information.

10. Children's Privacy

Thessah.ae is not intended for individuals under 18 years old. We do not knowingly collect data from children. If we become aware of data from a minor, we will delete it promptly. Parents/guardians concerned about their child's data should contact us immediately.

11. International Data Transfers

Your data is primarily stored in the UAE. If we transfer data internationally (e.g., to payment processors or cloud providers), we ensure adequate safeguards and compliance with UAE data protection regulations.

12. Anti-Money Laundering (AML) & Know Your Customer (KYC)

Thessah.ae complies with UAE AML/CFT regulations and Central Bank of UAE requirements. We may:

  • Request identity verification for high-value transactions (gold purchases over AED 50,000)
  • Conduct customer due diligence and ongoing transaction monitoring
  • Screen customers against international sanctions lists
  • Report suspicious transactions to financial intelligence units as legally required
  • Retain KYC documents for 5 years after transaction completion

13. Email & Marketing Communications

Opt-In Model: We send promotional emails only if you have opted in. Each email includes an "Unsubscribe" link.

  • Newsletter: Weekly/monthly updates on new jewelry, gold rates, and special offers
  • Transactional Emails: Order confirmations, shipping updates, invoices (required for order fulfillment)
  • Abandoned Cart: Reminders if you leave items in your cart (only if opted in)
  • Personalized Recommendations: Products based on your browsing history

14. Social Media & Retargeting Ads

We may use retargeting pixels from platforms like Facebook, Instagram, and Google to show you relevant jewelry ads. You can opt out of targeted advertising in your platform settings:

  • Facebook: Settings → Ads → Ad Preferences
  • Google: Google Account → Data & Privacy → Ad Settings
  • Instagram: Settings → Ads → Ad Preferences

15. Policy Updates & Changes

We may update this Privacy Policy to reflect changes in technology, law, or our practices. Major changes will be announced via email or website notification. Continued use of the website indicates acceptance of the updated policy.

16. Data Protection Officer & Complaints

If you have concerns about how we handle your data or wish to file a complaint:

  • Contact us first: support@thessah.ae
  • We will respond within 30 days
  • If unresolved, you may lodge a complaint with the UAE authorities

17. Contact Us

For privacy-related inquiries, data access requests, or concerns:

Business Name: Thessah

Website: https://www.thessah.ae

Email: support@thessah.ae

Customer Support (UAE): +971

Last Updated: January 2026

Home
Categories
Cart