Privacy Policy

(Article 13 of Regulation (EU) 2016/679 – GDPR)

1. Data Controller

The Data Controller of personal data is:

Armeria Meschieri di Possetto Paola

Registered office: Via Bagaini 15, 21100 Varese (VA), Italy

VAT number: 03353780129

Contact email: hello@armeriameschieri.com

2. Scope of Application

This Privacy Policy applies exclusively to the B2B portal reserved for professional users of Armeria Meschieri.

Access to the portal is allowed only to business users (B2B) following registration and manual approval by the Data Controller.

Private consumers (B2C) are expressly excluded from the use of this website. Private customers may refer to the B2C portal at armeriameschieri.com.

3. Categories of Personal Data Processed

The Data Controller may collect and process the following categories of personal data:

a) Account and registration data

  • First and last name
  • Company name
  • VAT number
  • Email address
  • Username and login credentials
  • Any contact details voluntarily provided by the user

Passwords are managed through encrypted systems and are never readable by the Data Controller.

b) Order-related data

  • Billing address
  • Shipping address
  • Order history
  • Fiscal and administrative information
  • Custom product configuration data
  • Notes or requests voluntarily entered by the customer

c) Technical and usage data

  • IP address
  • Log and security data
  • Browser and device information

Such data is collected mainly in aggregated form and used for technical and security purposes.

4. Purposes of Processing and Legal Bases

Personal data is processed for the following purposes:

  • Creation and management of the B2B user account
  • Execution of purchase contracts and order management
  • Fulfillment of legal, tax, and accounting obligations
  • Customer support and operational assistance
  • Website security and abuse prevention

The legal bases for processing are the performance of a contract, compliance with legal obligations, and the legitimate interest of the Data Controller.

5. B2B Commercial Communications

The portal currently does not send promotional or marketing communications.

In the future, the Data Controller may send commercial communications exclusively to existing B2B customers, regarding products or services similar to those already purchased, based on the legitimate interest of the Data Controller in accordance with applicable regulations.

Users may object at any time by contacting: hello@armeriameschieri.com

6. Cookies and Analytics Tools

The website uses technical cookies necessary for its proper functioning.

Statistical analysis tools (such as Google Analytics) may be implemented to analyze website usage in aggregated form.

Where non-technical cookies are used, users will be informed through an appropriate cookie banner and may give or withdraw consent in accordance with applicable law.

7. Data Recipients

Personal data may be shared with external parties acting as Data Processors, including:

  • Hosting and infrastructure service providers
  • IT and maintenance service providers
  • Email and communication service providers
  • Accounting, tax, and legal consultants

Personal data will not be disclosed.

8. Data Retention

Personal data is retained only for the time strictly necessary to fulfill the purposes for which it was collected, in particular:

  • Account data: for the duration of the commercial relationship
  • Order and invoicing data: 10 years, as required by tax and accounting regulations
  • Technical and security data: for limited periods

9. Data Subject Rights

Users may exercise their rights under Articles 15–22 of the GDPR at any time, including:

  • Right of access
  • Right to rectification
  • Right to erasure
  • Right to restriction of processing
  • Right to object

Requests may be sent to: hello@armeriameschieri.com

10. Transfers Outside the European Union

If certain service providers store or process data outside the European Union, such transfers will take place in compliance with GDPR requirements, including adequacy decisions or standard contractual clauses.

11. Changes to This Privacy Policy

The Data Controller reserves the right to modify this Privacy Policy at any time.

Any changes will be published on this page.