Privacy Policy – Fanaa Jewelry
1. Data Controller
[Fana Jewelry Handelsbolag]
Org.nr: [969800-0446]
Registered address: [Faktorsgatan 13, 252 46 Helsingborg, Sweden]
Email: [info@fanaajewelry.com]
Fanaa Jewelry is the data controller for personal data processed through this website in accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR) and Swedish data protection law.

2. Personal Data We Collect
When You Place an Order
Name
Billing and shipping address
Email address
Phone number
Order details
Payment information (processed securely by third-party payment providers)
We do not store full credit card details.
When You Contact Us
Name
Email address
Message content
When You Subscribe to Marketing
Email address
Purchase behavior (if marketing tracking is enabled)
Automatically Collected Data
IP address
Browser type
Device information
Cookie identifiers
Usage and interaction data

3. Legal Basis for Processing
We process personal data based on:
Contractual necessity
To process and deliver orders.
Legal obligation
To comply with Swedish accounting law (Bokföringslagen). Order data is stored for 7 years.
Legitimate interest
Fraud prevention, website security, and business analytics.
Consent
For newsletter subscriptions and marketing tracking (Google, Pinterest, TikTok).

4. Payment Processing
Payments are processed securely by third-party providers (e.g. Swedbank Pay, Verifone, Klarna if applicable). These providers act as independent data controllers under their own privacy policies.

5. Marketing & Tracking Technologies
We use third-party services that may collect data via cookies and tracking pixels:
Google (Analytics and Ads)
Mailchimp (email marketing)
Pinterest (conversion tracking)
TikTok (advertising tracking)
Jetpack (security and website statistics)
These services may process data outside the EU/EEA, including the United States. Where such transfers occur, appropriate safeguards such as Standard Contractual Clauses (SCCs) are used.
You may withdraw consent to marketing cookies at any time via your browser settings or cookie banner.

6. Cookies
We use cookies to:
Enable cart and checkout functionality
Analyze website traffic
Measure advertising performance
Improve user experience
Essential cookies cannot be disabled without affecting website functionality.

7. Data Retention
Order data: 7 years (legal requirement)
Customer accounts: until deletion request
Marketing data: until consent is withdrawn
Contact inquiries: up to 12 months

8. Sharing of Personal Data
We may share data with:
Payment providers
Shipping carriers
Email marketing providers (Mailchimp)
Advertising partners (Google, Pinterest, TikTok)
Hosting and security providers
We do not sell personal data.

9. Your Rights Under GDPR
You have the right to:
Access your personal data
Request correction
Request deletion (where legally possible)
Restrict processing
Object to processing
Data portability
Withdraw consent
You may contact us at: [Email]
You also have the right to lodge a complaint with the Swedish Authority for Privacy Protection (IMY).

10. Security
We implement appropriate technical and organizational measures to protect personal data from unauthorized access, alteration, or loss.