Last updated: February 2026
GemSurf (“we”, “our”, or “us”) is committed to protecting the privacy of our users. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use the GemSurf platform, including our website, directory, and related services.
By using GemSurf, you agree to the collection and use of information in accordance with this policy.
When you create an account, request Diamond Status access, or submit a verification request, we may collect your name, email address, company name, phone number, and any additional information you choose to provide.
For suppliers in our directory, we collect business information including company name, contact details, product categories, booth or showroom locations, photographs, video content, owner interviews, certifications, and business descriptions. This information is gathered during our in-person verification visits and from publicly available trade directories.
When you visit our platform, we automatically collect certain technical information, including your IP address, browser type, device type, operating system, referring URLs, pages viewed, and the dates and times of your visits.
We use the information we collect to:
GemSurf uses Supabase as our primary database and authentication provider. Supabase stores data on secure, encrypted servers. User authentication data, including email addresses and session tokens, is managed through Supabase Auth.
Supplier directory data, including business profiles, photographs, and video content, is stored securely and served through our platform. We implement appropriate technical and organizational measures to protect your data against unauthorized access, alteration, disclosure, or destruction.
GemSurf uses cookies and similar technologies to maintain your session, remember your preferences, and understand how you use our platform. These include:
You can control cookie settings through your browser preferences. However, disabling essential cookies may prevent you from using certain features of the platform.
We may use third-party services to support the operation of our platform. These services may have access to your information only as necessary to perform their functions and are obligated not to disclose or use it for other purposes. Our third-party service providers include:
Depending on your location, you may have the following rights regarding your personal information:
To exercise any of these rights, please contact us at privacy@gemsurf.com. We will respond to your request within 30 days.
We retain your personal information for as long as necessary to provide our services, comply with legal obligations, resolve disputes, and enforce our agreements. Supplier profile data is retained for as long as the listing is active in our directory. Account data is retained for as long as your account remains active.
If you request deletion of your account or personal data, we will process your request within 30 days, subject to any legal obligations requiring us to retain certain information.
GemSurf is a business-to-business platform intended for trade professionals. Our services are not directed at individuals under the age of 18, and we do not knowingly collect personal information from children. If we become aware that we have collected information from a child, we will take steps to delete it promptly.
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will notify you by updating the “Last updated” date at the top of this page and, where appropriate, through a notice on our platform.
We encourage you to review this policy periodically to stay informed about how we protect your information.
If you have any questions or concerns about this Privacy Policy or our data practices, please contact us:
