Fina - Imports

med-tech

Fina - Imports

Privacy Policy

Last Updated: 19/12/2025

Fina Imports LTD (“we”, “us”, or “our”) operates the website fina.com.mt. We are committed to protecting your personal data and respecting your privacy.

This policy explains how we collect, use, and store your information when you visit our website, purchase products, book courses, or attend appointments at Fina Med-tech Aesthetics.

1. WHO IS THE DATA CONTROLLER?

For the purposes of the General Data Protection Regulation (EU) 2016/679 (“GDPR”), the Data Controller responsible for your personal data is:

Fina Imports LTD Registered Address: Fina, Triq Salvu Psaila, Birkirkara Email: info@fina.com.mt

2. THE DATA WE COLLECT

We collect different types of data depending on how you interact with us:

2.1. Information You Give Us

  • Identity Data: Name, surname, username.

  • Contact Data: Billing address, delivery address, email address, and telephone number.

  • Financial Data: We do not store your full card details. Payments are processed via secure third-party gateways (e.g., Stripe, BOV, PayPal). We only see transaction reference numbers.

  • Profile Data: Your username and password, purchases made, and course history.

2.2. Special Category Data (Health & Medical)

  • Context: If you book a treatment with Fina Med-tech Aesthetics, we are required to collect sensitive health information (e.g., allergies, skin conditions, pregnancy status, medication) to ensure the safety of your treatment.

  • Consent: We collect this data based on explicit consent (via consultation forms) and for vital interests (to prevent injury).

  • Storage: This data is stored securely within our booking system (Fresha) and, where applicable, in physical records kept in a secure, locked location within our offices.

2.3. Automated Data (Cookies)

  • When you visit our site, we collect technical data such as your IP address, browser type, and operating system.

  • We use Google Analytics to understand website traffic and Meta/TikTok Pixels to tailor our advertising.

3. HOW WE USE YOUR DATA

We will only use your personal data when the law allows us to. Most commonly, we use your data to:

  • Process Orders: To deliver products you have purchased (Contractual Obligation).

  • Manage Bookings: To schedule salon appointments or courses (Contractual Obligation).

  • Communication: To send appointment reminders or updates regarding your order.

  • Marketing: To send you our newsletter, only if you have actively signed up via our website. You can unsubscribe at any time.

4. DATA SHARING

We do not sell your data to third parties. However, we may share your data with trusted third-party service providers who assist us in operating our business:

  • Booking Systems: We use Fresha to manage appointments and client records.

  • Payment Processors: To securely process your payments.

  • Delivery Couriers: To ship your product orders (we share your name, address, and phone number).

  • Analytics Providers: Google, Meta, and TikTok (in anonymised or aggregated formats) for website performance and advertising.

All third-party providers are contractually obliged to keep your data secure and use it only for the purposes we specify.

5. DATA SECURITY

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way.

  • Digital records are password-protected and restricted to authorised personnel.

  • Physical records (such as signed consent forms) are stored in locked facilities within our offices.

6. DATA RETENTION

We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

  • Tax & Financial Records: Retained for 7 years as required by Maltese Law.

  • Medical/Client Records: Retained for 7 years following your last visit, for insurance and liability purposes.

  • Marketing Data: Retained until you unsubscribe.

7. YOUR LEGAL RIGHTS

Under the GDPR, you have the right to:

  • Request access to your personal data (a “data subject access request”).

  • Request correction of the personal data that we hold about you.

  • Request erasure of your personal data (the “right to be forgotten”), where there is no good reason for us continuing to process it (e.g., after the legal retention period has expired).

  • Withdraw consent at any time where we are relying on consent to process your data (e.g., marketing).

To exercise any of these rights, please contact us at info@fina.com.mt.

8. COOKIES

Our website uses cookies to distinguish you from other users. We use a cookie consent manager (CookieYes) to allow you to manage your preferences.

  • Essential Cookies: Required for the website to function (e.g., the shopping cart).

  • Marketing/Analytics Cookies: Used to track visitors and ad performance. You may opt out of these via the cookie banner.

Shop

Korean Skin Care
Brows and Lashes
Hair
Body
Devices
Homecare
Perfumes

workshops

Content Creation
Social Media Management
Canva
Capcut

Facebook Instagram Phone-alt
Med-tech aesthetics