Privacy Policy

Caratpillar is an independent diamond price comparison and market intelligence website. We are not a diamond retailer and do not sell diamonds or jewelry. Our service consists of aggregating publicly available diamond pricing data from third-party retailers and presenting it in a comparative format for informational purposes.

For GDPR purposes, Caratpillar is the data controller for personal data collected through this website.

Contact: privacy@caratpillar.com

2.1 Data you provide voluntarily

• Email address — when you subscribe to our newsletter or set a price alert
• Preferred language and locale — set automatically from browser preferences or manually via the language switcher
• Price alert preferences — diamond specifications and target price thresholds you configure

2.2 Data collected automatically

• Pages visited and time spent — collected via server-side logging, without personal identifiers where possible
• Referring website — the URL that brought you to Caratpillar (domain only, no full URLs from external sites)
• Country of access — derived from your IP address at the network level (not stored individually)
• Browser type and device category — for technical performance optimization

2.3 Data we do NOT collect

• We do not collect payment information (we do not sell anything)
• We do not create user accounts or profiles without explicit consent
• We do not use invasive fingerprinting techniques
• We do not knowingly collect data from children under 16

We process personal data only for specific, legitimate purposes and only where we have a lawful basis to do so under GDPR.

Email newsletter (Lawful basis: Consent)
If you subscribe to our weekly diamond price update newsletter, we use your email address to send you that newsletter. You may unsubscribe at any time via the link in every email. We will delete your email address within 30 days of unsubscribe request.

Price alerts (Lawful basis: Consent)
If you set a price alert, we use your email address and specified diamond preferences to notify you when that price threshold is crossed. Alerts expire automatically after 6 months.

Analytics (Lawful basis: Legitimate interest)
We collect aggregated, non-personally-identifiable usage data to understand which content is most useful and to improve the service. We do not use this data to identify individual users.

Legal compliance (Lawful basis: Legal obligation)
We may retain certain data as required by applicable law, including for tax and accounting purposes.

Caratpillar participates in affiliate programs with diamond retailers. When you click a link to a retailer on our site, we may earn a commission if you make a purchase. This is at no additional cost to you.

When you click through to a third-party retailer, you leave Caratpillar and are subject to that retailer's own privacy policy and terms of service. We have no control over the data practices of these third parties and encourage you to review their privacy policies before making a purchase.

Retailers we link to include, but are not limited to: Blue Nile, Whiteflash, Brilliant Earth, Ritani, BAUNAT, and Diamonds-USA. Each of these operates independently and has its own data processing practices.

Our affiliate links may set cookies on your device as part of the affiliate program tracking. See Section 5 for more detail.

Caratpillar uses minimal cookies. Here is what we use and why:

Strictly necessary cookies
di_locale — stores your language preference (e.g. "en", "it"). First-party cookie, expires in 30 days. No personal data beyond language preference. Cannot be disabled without breaking the language selection feature.

Affiliate tracking cookies
When you click a link to a third-party retailer, that retailer's affiliate program may set a tracking cookie on your device. This cookie is set by the retailer (not by Caratpillar) and allows the retailer to attribute any subsequent purchase to our referral. The duration and data collected are governed by the retailer's privacy policy. These cookies are only set when you actively click a retailer link.

Analytics
We do not currently use Google Analytics or any third-party analytics service that sets cookies. Our server-side analytics use aggregated, anonymized data only.

Managing cookies
You can delete cookies at any time through your browser settings. Blocking the di_locale cookie will not prevent you from using the site but will reset your language preference on each visit.

We retain personal data for the minimum time necessary for the purpose for which it was collected:

• Newsletter subscribers: until you unsubscribe, then deleted within 30 days
• Price alerts: until the alert triggers or expires (6 months maximum), then deleted
• Server logs (anonymized): 90 days
• Aggregated analytics data: indefinitely (no personal data)

You may request deletion of your data at any time by contacting us at privacy@caratpillar.com.

If you are located in the European Economic Area, United Kingdom, or Switzerland, you have the following rights regarding your personal data:

• Right of access — request a copy of the personal data we hold about you
• Right to rectification — request correction of inaccurate data
• Right to erasure — request deletion of your data ("right to be forgotten")
• Right to restriction — request that we limit processing of your data
• Right to data portability — receive your data in a structured, machine-readable format
• Right to object — object to processing based on legitimate interests
• Right to withdraw consent — where processing is based on consent, withdraw it at any time without affecting prior processing

To exercise any of these rights, contact us at privacy@caratpillar.com. We will respond within 30 days. You also have the right to lodge a complaint with your national data protection authority.

Caratpillar uses the following third-party services that may process data outside the EEA:

• Supabase (database) — hosted on AWS in the EU region (Frankfurt). Supabase is subject to the EU-US Data Privacy Framework.
• Vercel (hosting) — edge network with nodes globally. Vercel is subject to standard contractual clauses for EU data.
• Mailchimp (email) — US-based. Mailchimp is subject to the EU-US Data Privacy Framework.

Where data is transferred outside the EEA, we ensure appropriate safeguards are in place (Standard Contractual Clauses or adequacy decisions).

Caratpillar is not directed at children under 16 years of age. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us at privacy@caratpillar.com and we will delete it promptly.

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date at the top of this page. For significant changes, we will notify newsletter subscribers by email. Continued use of Caratpillar after changes constitutes acceptance of the updated policy.

For any privacy-related questions, data subject requests, or concerns, contact us at:

We aim to respond to all privacy requests within 30 calendar days.