Search

Privacy Policy​

Brand / Controller: FATA’ SMALTI S.R.L. (trading as Francesca Fabbrini)
Registered office: Via Don Luigi Sturzo 150, 52100 Arezzo (AR), Italy
VAT / Tax ID: IT02357580519
Contact: contact@francescafabbrini.com
Effective date: 06 Oct 2025

We respect your privacy. This Policy explains how we collect, use, disclose and protect personal data when you visit our website, create an account (Customer or Representative), submit an application to become a Representative, or purchase our products.

If you apply or act on behalf of a company, you confirm you are authorised to provide the data and accept this Policy for that company.

We respect your privacy. This Policy explains how we collect, use, disclose and protect personal data when you visit our website, create an account (Customer or Representative), submit an application to become a Representative, or purchase our products.

If you apply or act on behalf of a company, you confirm you are authorised to provide the data and accept this Policy for that company.

1. Who we are & scope

FATA’ SMALTI S.R.L. is the data controller for personal data processed via our website and related services. This Policy applies to:

  • Site visitors (browsing, cookies/analytics),

  • Customers (creating an account, purchasing),

  • Representative applicants and approved Representatives (application review and account use).

2. What data we collect​

a) Data you provide to us

  • Identification and contact data (name, company, VAT/tax ID, billing/shipping address, email, phone/WhatsApp, website).

  • Account data (username, password – stored hashed).

  • Application data (territory, lines of interest, experience, documents you upload).

  • Order data (products, amounts, shipping preferences, notes).

  • Communications (emails, chat/messages, support requests).

  • Marketing choices (newsletter/consent preferences).

b) Data collected automatically

  • Device/usage data (IP address, browser type, pages viewed, time stamps, referring URLs).

  • Cookies and similar technologies (see Cookies below).

c) Data from third parties

  • Payment and anti-fraud results from payment providers.

  • Delivery information from carriers.

  • Basic data from social/media logins if you choose them.

We do not intentionally collect special category data (e.g., health, religion). Please do not include such data in free-text fields.

3. Why we use your data (legal bases)

We process personal data only when a legal basis applies under GDPR/UK GDPR:

  • Contract – to create/manage your account; process and deliver orders; provide support; manage a Representative account once approved.

  • Pre-contract / Legitimate interests – to review and contact you about a Representative application you submit; to improve the site and services; to prevent fraud/abuse; and to show role-based information (e.g., public price vs representative price) when you are logged in.

  • Consent – for email marketing where required; for non-essential cookies/analytics; and when you tick “I agree to be contacted about my application”.

  • Legal obligations – tax, accounting, consumer and product safety obligations; responding to lawful requests.

You can withdraw consent at any time (it won’t affect processing already done).

4. How we use your data

  • Accounts & orders: register you; verify login; process payments (via payment processors); arrange shipping; send order emails and invoices; handle returns/warranty.

  • Representative applications: evaluate your application, contact you, and if approved, enable a Representative role.

  • Pricing visibility for Representatives: when logged in with a Representative or Admin role, you may see both Public Price (PVP) and Representative Price (PV) on product pages; at checkout only PV is charged to Representative accounts. This is role-based display logic, not automated decision-making with legal effects.

  • Support & communications: respond to your requests and service messages.

  • Security & fraud prevention: detect, prevent and investigate suspicious or abusive activity.

  • Analytics & site improvement: aggregate usage to improve our content, products and UX.

  • Marketing (optional): send newsletters or product updates if you opt in.

We do not sell your personal data.

5. Cookies and similar technologies

We use essential cookies to operate the site (e.g., cart, login). With your consent where required, we may use analytics and performance cookies to understand usage and improve the site, and marketing cookies to measure campaigns.
You can manage preferences at any time via the cookie banner or your browser settings. Blocking some cookies may affect functionality.

6. Sharing your data

We share data only as needed, under contracts that require confidentiality and security:

  • Hosting and IT providers (website/platform, security, backup).

  • Payment processors (process payments, fraud checks).

  • Shipping and logistics providers (deliver orders, manage returns).

  • Email/communication services (transactional and service emails).

  • Professional advisers and authorities (legal, tax, regulatory) where required.

  • Corporate events (e.g., merger or acquisition) in compliance with law.

Some providers may be outside the EEA/UK. In that case, we use appropriate safeguards (e.g., EU Standard Contractual Clauses, UK IDTA/Addendum, or adequacy decisions).

7. Retention

We keep data only as long as necessary for the purposes above:

  • Orders & invoices: kept for the periods required by tax/accounting law (often up to 10 years under Italian law).

  • Customer & Representative accounts: kept while the account is active; if you request deletion, we anonymise or delete where no longer legally needed.

  • Representative applications (not approved): typically up to 24 months from our last contact, unless a longer period is required for legal reasons.

  • Marketing data: until you opt out or after 24 months of inactivity, whichever comes first.

  • Logs/security: short, just long enough to ensure security and investigate incidents.

8. Your rights (EU/EEA & UK)

You have the right to access, rectify, erase, restrict or object to processing, and to data portability. You also have the right to withdraw consent at any time and to lodge a complaint with your local authority.
In Italy, the authority is the Garante per la protezione dei dati personali.

To exercise rights, email contact@francescafabbrini.com. We may need to verify your identity. We aim to respond within one month.

9. Children

Our site is not directed to children under 16. If you believe a child provided data to us, contact us and we will delete it where required by law.

10. Security

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse or alteration. No method of transmission or storage is 100% secure.

11. International transfers
Where we transfer data outside the EEA/UK, we rely on adequacy decisions or implement the EU Standard Contractual Clauses (and relevant UK mechanisms), plus supplementary measures where appropriate.

12. Changes to this Policy

We may update this Policy from time to time. We will post the new version with an updated Effective date. Significant changes may be notified by email or site notice.

13. Contact us

Via Don Luigi Sturzo 150, 52100 Arezzo (AR), Italy
Email: contact@francescafabbrini.com

0
    0
    Your Shopping Bag
    Your bag is emptyStart Shopping
    Keep Browsing