Privacy policy
1. Controller
The controller within the meaning of the General Data Protection Regulation (GDPR) is:
Fratelli Diamanti GmbH
Vaihinger Straße 24
71063 Sindelfingen
Germany
Email: info@fratellidiamanti.com
2. Collection and Processing of Personal Data
We process personal data exclusively in accordance with the provisions of the GDPR and applicable German data protection laws.
Personal data means any information relating to an identified or identifiable natural person.
We may process the following categories of data:
-
Name and address
-
Delivery and billing address
-
Email address
-
Telephone number
-
Payment details
-
Order and transaction data
-
IP address
-
Device and usage data
3. Purpose of Data Processing
Personal data is processed for the following purposes:
-
Performance of contracts and order processing
-
Payment processing
-
Shipping and delivery
-
Customer communication
-
Compliance with legal obligations
-
Fraud prevention and IT security
4. Legal Basis
Processing is based on:
-
Article 6(1)(b) GDPR (contract performance)
-
Article 6(1)(c) GDPR (legal obligations)
-
Article 6(1)(f) GDPR (legitimate interests)
-
Article 6(1)(a) GDPR (consent, where applicable)
5. Data Sharing
We share data only where necessary, including with:
-
Payment service providers
-
Shipping providers
-
Shopify International Ltd. (E-commerce platform provider)
Data is transferred only to the extent necessary for contract performance.
6. Data Retention
Personal data is stored only for as long as necessary to fulfill contractual and statutory obligations.
7. Your Rights
Under GDPR, you have the right to:
-
Access (Art. 15 GDPR)
-
Rectification (Art. 16 GDPR)
-
Erasure (Art. 17 GDPR)
-
Restriction of processing (Art. 18 GDPR)
-
Data portability (Art. 20 GDPR)
-
Objection (Art. 21 GDPR)
You also have the right to lodge a complaint with a supervisory authority.