Back to Home

Privacy Policy

Last updated: 2026-01-29

1. Data Controller

The data controller for your personal data is:

Fraway
Email: hello@fraway.io

2. Data We Collect

We collect and process the following categories of personal data:

Analytics Data (with consent)

  • IP address (anonymized)
  • Browser type and version
  • Device type and operating system
  • Pages visited and time spent
  • Referral source

Contact Form Data

  • Name
  • Email address
  • Company name (optional)
  • Message content

Technical Data

  • Cloudflare Turnstile verification tokens
  • Theme preference (light/dark mode)
  • Cookie consent preferences

3. Purposes and Legal Basis

We process your data for the following purposes:

Website analytics

Your consent (Art. 6(1)(a) GDPR)

To understand how visitors use our website and improve user experience.

Responding to inquiries

Legitimate interest (Art. 6(1)(f) GDPR)

To respond to your contact form submissions and provide requested information.

Security

Legitimate interest (Art. 6(1)(f) GDPR)

To protect our website from spam and abuse using Cloudflare Turnstile.

4. Third-Party Processors

We share data with the following third-party service providers:

Provider Purpose Location Safeguards
Google Analytics Website analytics USA Standard Contractual Clauses (SCCs)
Cloudflare Security, CDN, bot protection USA Standard Contractual Clauses (SCCs)
FormBold Contact form processing USA Standard Contractual Clauses (SCCs)
Google Fonts Web fonts delivery USA Standard Contractual Clauses (SCCs)

5. Data Retention

We retain your data for the following periods:

Analytics data 26 months
Contact form submissions 3 years
Consent records 1 year after withdrawal

6. Your Rights

Under the GDPR, you have the following rights:

Right of access

Obtain confirmation of whether we process your data and request a copy.

Right to rectification

Request correction of inaccurate personal data.

Right to erasure

Request deletion of your personal data ('right to be forgotten').

Right to restriction

Request limitation of processing in certain circumstances.

Right to data portability

Receive your data in a structured, machine-readable format.

Right to object

Object to processing based on legitimate interests.

Right to withdraw consent

Withdraw consent at any time without affecting prior processing.

7. How to Exercise Your Rights

To exercise any of your rights, please contact us at hello@fraway.io. We will respond within 30 days. If you are not satisfied with our response, you have the right to lodge a complaint with your local data protection authority. In Italy, this is the Garante per la protezione dei dati personali (www.garanteprivacy.it).

8. International Data Transfers

Some of our service providers are located in the United States. We ensure appropriate safeguards are in place through Standard Contractual Clauses (SCCs) approved by the European Commission.

9. Changes to This Policy

We may update this Privacy Policy from time to time. The 'Last updated' date at the top indicates when it was last revised. For material changes, we will notify you via a notice on our website.