Our Privacy Policy
Last update: January 5, 2026
When you use the website https://www.fairlymade.com (the “Site”) and the solution available at https://app.fairlymade.com (the “Solution”), and in the context of managing our contractual relationships with our clients, we may collect personal data relating to you.
This privacy policy is intended to inform you of the manner in which we process such data in compliance with Regulation (EU) 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (the “GDPR”), as well as French law no. 78-17 of 6 January 1978 on information technology, data files and civil liberties (together, the “Applicable Law”).
1. DEFINITIONS
Fairly Made collects the following Personal Data from Users in the context of account creation and use of the Solution:
● “Client” means the legal entity that has subscribed to the Solution.
● “Supplier” means a company, business or entity involved in the production of goods, acting either on its own or by appointing another Supplier for the purposes of production.
● “Data Subjects” means the natural persons whose personal data are processed by Fairly Made.
● “Processor” means the company, individual or entity engaged by Fairly Made in connection with the processing of personal data as described below.
● “User” means the Client’s user.
The terms “Personal Data”, “Controller” and “Processing” shall have the meanings given to them in Article 4 of the GDPR.
2. IDENTIFICATION OF THE CONTROLLER
The Controller is Fairly Made, a simplified joint stock company (“société par actions simplifiée”), having its registered office at 76 Boulevard de Magenta, 75010, Paris, France, registered with the Paris Trade and Companies Register under number 839 942 190 (“Fairly Made”).
3. PERSONAL DATA COLLECTED AND ROLE OF FAIRLY MADE
3.1 Personal Data collected directly from Users
Fairly Made collects the following Personal Data from Users in the context of account creation and use of the Solution:
● First and last name
● Email address
● Telephone number
● Employer’s name
● Employer’s address
● Job title
● Connection data
● Log data: this includes IP address and geographic location (country, region, city), data flow information, event data (actions or occurrences), HTTP requests, URLinformation (full web address, path and query parameters), and user agentinformation (type of device used, software or browser used to access the web, operating system running on the device). Log data is collected for security monitoring purposes (abuse detection, fraud detection) and performance monitoring. Such data is deleted after thirty (30) days.
3.2 Personal Data collected directly from Suppliers
Fairly Made may collect the following Personal Data directly from Suppliers:
● First and last name
● Email address
● Telephone number
● Employer’s name
● Connection data
3.3 Personal Data collected indirectly from third parties
Fairly Made may collect the following Personal Data of Data Subjects indirectly:
● First and last name
● Email address
● Employer’s name
This collection is indirect insofar as it is not carried out directly with the Data Subject.
4. PROCESSING ACTIVITIES, THEIR PURPOSES AND LEGAL BASES
We store personal data strictly for the periods necessary for the purposes described in this Policy, in our contracts or in accordance with the law and the recommendations of the CNIL. These retention periods vary according to their purpose and are reviewed regularly.
the Client
It is specified that Fairly Made does not, in any way, sell or otherwise commercially exploit the Personal Data of Data Subjects.
5. OPERATIONAL PROCEDURES FOR EACH PROCESSING ACTIVITY
The Personal Data of Data Subjects are processed by Fairly Made as follows (depending on the specific processing activity):
● Data collection: Processings no. 1 to 6.
● Secure storage of data on authorised servers operated by Fairly Made or its providers (including hosting service providers): Proceedings No. 1 to 6.
6. RECIPIENTS OF PERSONAL DATA
The Personal Data of Data Subjects are processed for the purposes set out above and are intended exclusively for Fairly Made’s internal management teams and, where applicable, its Processors.
The categories of Processors (legal entities) to whom Fairly Made may disclose Personal Data include the following:
● Daily operations: Processors providing digital tools that support Fairly Made’s day-to-day operations, such as data hosting solutions, client and prospect management tools, and audience measurement and analytics services;
● Maintenance operations: Processors with access to Fairly Made’s technology in order to perform maintenance or address technical issues with the Solution in case of emergency;
● Public authorities: Public bodies to comply with legal obligations, as well as legal officers and judicial auxiliaries responsible for debt recovery.
These Processors are required to maintain strict confidentiality, ensure the security of the data to which they have access, use such data solely for the purposes of performing the tasks assigned to them, and comply with Applicable Law.
7. RETENTION PERIODS FOR PERSONAL DATA
The Personal Data of Data Subjects are processed by Fairly Made from the moment of their direct or indirect collection. Such Personal Data are used throughout the contractual relationship and retained for the duration set out below, in accordance with applicable legal and regulatory provisions.
In particular:
- Identification and contact data (such as customer account details, identifiers and passwords, orders, invoicing and payment information, as well as information relating to communications about the evolution of the services and offers) are retained for the entire duration of the contractual relationship. Following the end of the contractual relationship, such data may be retained for a maximum period of three (3) years from the date of the last order for services and/or documents issued by the Data Subjects, unless the Data Subject has requested earlier deletion of their Personal Data by contacting Fairly Made at the following address: dpo@fairlymade.com
- Data relating to the performance of the contract, including data necessary for customer account management, order processing, invoicing and payments, are retained for a period of ten (10) years from the date of the last order for services and/or documents issued by the Data Subjects.- Connection and usage data are retained for a period of one (1) year. Connection logs are anonymised after a period of three (3) months.
8. RIGHTS OF DATA SUBJECTS
Data Subjects benefit from the rights provided under applicable data protection law, in particular the right to request from Fairly Made access to their Personal Data, the rectification or erasure of such data, the restriction of Processing concerning them, the right to object to the Processing, and the right to data portability. These rights may be exercised by writing to the following address: dpo@fairlymade.com.
Data Subjects have the following rights under the conditions set out by Applicable Law:
● Right to information: this privacy policy is intended to fulfil this right.
● Right of access: at any time, to all of their Personal Data.
● Right to rectification: of inaccurate, outdated or incomplete Personal Data.
● Right to restriction of Processing: in certain cases as set out in Article 18 of the GDPR.
● Right to erasure: of Personal Data, in particular where the data is no longer necessary for the purpose of the Processing, where the Data Subject has withdrawn their consent, or where the Processing is unlawful, subject to FairlyMade’s legal retention obligations.
● Right to lodge a complaint with a supervisory authority: in France, the CNIL.
● Right to define post-mortem instructions: relating to the storage, erasure and disclosure of their Personal Data after death.
● Right to withdraw consent at any time: for Processing based on consent. Such withdrawal shall not affect the lawfulness of Processing carried out prior to withdrawal.
● Right to data portability: of Personal Data provided to the Controller, in a structured, commonly used and machine-readable format, and the right to have that data transmitted to a third party designated by the Data Subject.
● Right to object: to the Processing of their Personal Data. However, Fairly Made may continue such Processing where it has legitimate grounds to do so or where it is necessary for the establishment, exercise or defence of legal claims.
Data Subjects may exercise these rights at the address indicated above. Fairly Made may request additional information or documents to verify the identity of the Data Subject. Any Data Subject may contact the CNIL if they believe that Fairly Made has not complied with Applicable Law (information on how to file a complaint with the CNIL is available directly on its website).
9. DATA TRANSFERS
Fairly Made limits, as far as possible, the selection of Processors that process Personal Data in countries outside the European Union. However, in the context of fulfilling the purposes set out in this privacy policy and for data management purposes, Fairly Made may transfer Personal Data to countries outside the European Union that do not provide an adequate level of protection.
Where such transfers occur, Fairly Made undertakes to implement all appropriate technical and organisational measures to ensure the security of the Personal Data of Data Subjects. Furthermore, Fairly Made requires its Processors to comply with the obligations set out under Applicable Law.
10. COOKIES
For more information about how we manage cookies, please refer to our Cookie Policy.
11. DATA PROTECTION OFFER
Fairly Made’s Data Protection Officer can be contacted at the following address: dpo@fairlymade.com.
12. MODIFICATIONS
Fairly Made may amend this policy at any time, in particular to comply with changes in laws, case law, editorial or technical developments. Such amendments shall apply as of the effective date of the revised version. You are therefore encouraged to consult this policy regularly to stay informed of any updates. Nevertheless, we will inform you of any material changes to this privacy policy.
.png)
.svg)
