Data Processing Owner

Types of Data Collected

Among the personal data collected by this website, independently or through third parties, there are: telephone number, email, name, surname, cookie, province, country, zip code, date of birth, city, address, tax code, User ID, usage data, geographical location, unique identifiers of advertising devices (Google Advertiser ID or IDFA identifier, for example) and various types of data.

Full details on each type of data collected are provided in the dedicated sections of this privacy policy or through specific information texts displayed before the data collection.
Personal data can be freely provided by the user or, in the case of usage data, collected automatically when using this website.
Unless otherwise specified, all the data requested by this website are mandatory. If the user refuses to communicate them, it may be impossible for this website to provide the service. In cases where this website indicates some data as optional, users are free to refrain from communicating such data, without any consequence on the availability of service or on its operation.
Users who may have doubts about which data are mandatory, are encouraged to contact the owner.
The possible use of cookies - or other tracking tools - by this website or the owners of the third party services used by this website, where not otherwise specified, has the purpose of providing the service requested by the user, beyond To the further purposes described in this document and in the Cookie Policy, if available.

The user assumes the responsibility of the personal data of third parties obtained, published or shared through this website and guarantees to have the right to communicate them or spread them, freeing the holder from any responsibility towards third parties.

Mode and place of data processing collected

Treatment methods

The owner adopts the appropriate security measures to prevent access, disclosure, change or unauthorized destruction of personal data.
The processing is carried out by computer and / or telematic instruments, with organizational modes and with strictly related logics to the purposes indicated. In addition to the owner, in some cases, they could have access to data other subjects involved in organizing this website (administrative, commercial, marketing, legal staff, system administrators) or external subjects (such as third-party service providers, postal couriers , Hosting Providers, Computer companies, Communication Agencies) Also appointed, if necessary, responsible for the data controller. The updated list of managers can always be requested from the data controller.

Legal treatment basis

The owner deals with personal data relating to the user in case one of the following conditions: - the user has provided consent for one or more specific purposes; Note: in some orders the owner can be authorized to deal with personal data without having to exist the user's consent or another of the legal bases specified below, until the user opens ("opt-out") To this treatment. However, this is not applicable if the processing of personal data is regulated by the European legislation on the protection of personal data;
- treatment is necessary for the execution of a contract with the user and / or execution of pre-contractual measures;
- treatment is necessary to fulfill a legal obligation to which the owner is subject;
- treatment is necessary for the execution of a task of public interest or for the exercise of public powers of which the owner is invested;
- The treatment is necessary for the pursuit of the legitimate interest of the owner or third parties. However, it is always possible to request the owner to clarify the real legal basis of each treatment and in particular to specify whether the treatment is based on the law, provided by a Contract or necessary to conclude a contract.

Sight

The data is dealt with at the operating offices of the owner and in any other place where the parties involved in the treatment are localized. For more information, contact the owner.
User's personal data may be transferred to a country other than the one in which the user is. To obtain further information on the treatment site, the user can refer to the realtive section to details on the processing of personal data.

The user has the right to obtain information about the legal base of the transfer of data outside the European Union or to an international organization of international public law or consisting of two or more countries, such as the UN, as well as With regard to safety measures adopted by the owner to protect data.

If one of the transfers as described above, the user can refer to the respective sections of this document or ask for information to the owner by contacting the details reported at the opening.

Retention period

The data is treated and preserved for the time required by the purposes for which they were collected.

Therefore:

- Personal data collected for purposes linked to the execution of a contract between the owner and the user will be held until the execution of this contract is completed.
- Personal data collected for purposes attributable to the legitimate interest of the owner will be held up to the satisfaction of this interest. The user can obtain more information about the legitimate interest pursued by the owner in the relevant sections of this document or by contacting the owner.

When the treatment is based on the user's consent, the owner can preserve personal data longer until they are revoked. Furthermore, the owner could be obliged to preserve personal data for a longer period in compliance with a legal obligation or by order of an authority.

At the end of the preservation period the personal data will be deleted. Therefore, to explain this deadline the right of access, cancellation, rectification and the right to data portability can no longer be exercised.

Purpose of data processing collected

User data is collected to allow the owner to provide their services, as well as for the following purposes: access to third-party accounts, contact the user, contact management and sending messages, payments management, tag management , Management of support and contact requests, Heat mapping and recording sessions, hosting and backend infrastructure, interaction with live chat platforms, interaction with support and feedback platforms, interaction with social networks and external platforms, position-based interactions , Infrastructure Monitoring, Optimization and Traffic Distribution, Spam Protection, Advertising, Registration and Authentication, Remarketing and Behavioral Targeting, Platform and Hosting Services, Statistics, Content Performance Test and Features (A / B Testing), Transfer of data outside the EU and viewing content from external platforms.

To obtain additional detailed information on the purposes of treatment and personal data concretely relevant for each purpose, the user can refer to the relevant sections of this document.

Facebook permissions requested by this website

This website can request some Facebook permissions that allow you to perform actions with the Facebook account of the user and collect information, including personal data, from it. This service allows this website to connect with the user's account on the Facebook Social Network, provided by Facebook Inc.

For more information on follow-up permits, refer to the Facebook permissions documentation   Facebook permissions documentation and irivacy policy of Facebook

The required permissions are as follows:

Basic information

The basic user information recorded on Facebook that normally include the following data: ID, name, image, genre and localization language and, in some cases the "friends" of Facebook. If the user has made further data available publicly, they will be available.

Access to private data

It allows access to private user data and friends.

Details on the processing of personal data

Personal data is collected for the following purposes and using the following services:

Access to third-party services accounts

This type of services allow this website to withdraw data from your accounts on third parties and perform actions with them. These services are not automatically activated, but require the express authorization of the user.

Access to the Facebook account (this website)

This service allows this website to connect with the user's account on the social network Facebook, provided by Facebook, Inc. Required permissions: access to private data. Place of treatment: United States - Privacy Policy. Subject adherent to Privacy Shield.

Access to the Twitter account (Twitter, Inc.)

This service allows this website to connect with the user's account on the Twitter Social Network, provided by Twitter, Inc.
Personal data collected: various types of data as specified by the Privacy Policy of the Service.
Place of treatment: United States - Privacy Policy. Subject adherent to Privacy Shield.
Luogo del trattamento: Stati Uniti – Privacy Policy. Soggetto aderente al Privacy Shield.

Contact the User

Contact via phone (this Website)

Users who provided their own phone number may be contacted for commercial or promotional purposes linked to this website, as well as to satisfy support requests.
Personal data collected: telephone number.

Mailing list or newsletter (this Website)

With registration at the mailing list or the newsletter, the user's email address is automatically inserted into a list of contacts to which email messages can be transmitted containing information, even of commercial and promotional nature, related to this website. L ' User email address could also be added to this list as a result of registration to this website or after making a purchase.
Personal data collected: zip code, city, surname, cookie, date of birth, email, address, nation, name, telephone number and province.

Contact form (this Website)

The user, filling out the contact form, consent to their use to respond to requests for information, estimate, or any other nature indicated by the module header.
Personal data collected: zip code, city, social security number, surname, date of birth, email, user ID, address, nation, name and fax number.

Contact and send messages management

This type of services allows you to manage a database of email contacts, telephone contacts or contacts of any other type, used to communicate with the user.
These services may also allow you to collect data relating to the date and time of displaying messages from the user, as well as the user interaction with them, like the information on the clicks on the links entered in messages.

Payment management

Payment management services allow this website to process credit card payments, bank transfer or other tools. The data used for payment are acquired directly by the requested payment service manager without being in any way covered by this website.
Some of these services could also allow the programmed sending of messages to the user, such as emails containing invoices or payment notifications.

Braintree (Paypal)

BRAINTREE is a payment service provided by BRAINTREE, a division of Paypal, Inc.
Personal data collected: various types of data as specified by the Privacy Policy of the Service.
Place of treatment: Consult the Privacy Policy of Paypal - Privacy Policy.

Consorzio Triveneto (Nexi Payments SpA)

Consorzio Triveneto is a payment service provided by Nexi Payments Spa.
Personal data collected: various types of data as specified by the Privacy Policy of the Service.
Place of treatment: Italy - Privacy policy.

PayPal (Paypal)

PayPal is a payment service provided by PayPal Inc., which allows the user to make payments online.
Personal data collected: various types of data as specified by the Privacy Policy of the Service.
Place of treatment: Consult the Privacy Policy of Paypal - Privacy Policy.

Consel (Consel S.P.A.)

Consel is a payment service provided by Consel S.P.A., which allows the user to make payments with financing methods.
Personal data collected: various types of data as specified by the Privacy Policy of the Service.
Place of treatment: Consel Policy Privacy Policy - Privacy Policy.

Tag management

This type of services is functional to the centralized management of tags or scripts used on this website.
The use of these services involves flowing user data through them and, if necessary, their retention.

Management of support and contact requests

This type of services allows this website to manage support and contact requests received by email or other tools, such as the contact form.
The personal data processed depend on the information provided by the user within the messages and the instrument used for communication (for example the email address).

Interaction with live chat platforms

This type of services allows you to interact with live chat platforms, managed by third parties, directly from the pages of this website. This allows the user to contact the support service of this website or this website to contact the User while he is browsing his pages.
If an interaction service with live chat platforms is installed, it is possible that, even if users do not use the service, the same collect usage data relating to the pages in which it is installed. Furthermore, live chat conversations could be recorded.

Widget of Zopim (Zopim Technologies Pte Ltd)

The Zopim widget is an interaction service with the Zopim live chat platform, provided by Zopim Technologies Pte Ltd.
Personal data collected: cookies and usage data.
Place of treatment: Singapore - Privacy policy.

This type of services allows you to make interactions with social networks, or with other external platforms, directly from the pages of this website.
The interactions and information acquired by this website are in any case subject to the user's privacy settings related to each social network.
In the event that an interaction service with social networks is installed, it is possible that, even if users do not use the service, the same collect traffic data relating to the pages in which it is installed.

Facebook Like Button and Widget (Facebook, Inc.)

The "Like" button and Facebook social widgets are interaction services with the Facebook Social Network, provided by Facebook, Inc.
Personal data collected: cookies and usage data.
Place of treatment: United States - Privacy Policy. Subject adherent to Privacy Shield.

Tweet Button and widget  (Twitter, Inc.)

The Tweet TWEET button and social widgets are interaction services with the Twitter Social Network, provided by Twitter, Inc.
Personal data collected: cookies and usage data.
Place of treatment: United States - Privacy Policy. Subject adherent to Privacy Shield.

 Pinterest “Pin it”  Button and widget  (Pinterest)

The Pinterest "Pin IT" and social widget button are interaction services with the Pinterest platform, supplied by Pinterest Inc.
Personal data collected: cookies and usage data.
Place of treatment: United States - Privacy Policy.

Location-based interactions

Geolocation (this Webiste)

This website can collect, use and share data related to the user's geographical position, in order to provide position-based services.
Most browsers and devices provide default tools to deny geographical tracking. If the user has expressly authorized this possibility, this website can receive information on its actual geographical position.

Personal data collected: geographical position.

Infrastructure monitoring

This type of services allows this website to monitor the use and behavior of components of the same, to allow the improvement of the performance and functionality, maintenance or troubleshooting.
The personal data processed depend on the characteristics and methods of implementing these services, which by their nature filter the activity of this website.

Traffic optimization and distribution

This type of services allows this website to distribute its contents through the servers located in the territory and to optimize the performance of the same.
The personal data processed depend on the characteristics and methods of implementing these services, which by their nature filter communications between this website and the user's browser.
Given the distributed nature of this system, it is difficult to determine the places where the contents are transferred, which may contain user data.

Registration and authentication

With registration or authentication, the user allows the application to identify it and give him access to dedicated services.
Depending on what is indicated below, registration and authentication services could be supplied with the aid of third parties. If this happens, this application will be able to access some data stored by the third service used for registration or identification.

Google OAuth (Google Inc.)

Google Oauth is a recording and authentication service provided by Google Inc. and connected to the Google Network.
Personal data collected: various types of data as specified by the Privacy Policy of the Service.
Place of treatment: United States - Privacy Policy. Subject adherent to Privacy Shield.

Facebook Authentication (Facebook, Inc.)

Facebook Authentication is a recording and authentication service provided by Facebook, Inc. and connected to the Facebook Social Network.
Personal data collected: various types of data as specified by the Privacy Policy of the Service.
Place of treatment: United States - Privacy Policy. Subject adherent to Privacy Shield.

PrestaShop (PrestaShop S.A.)

PrestaShop is a platform provided by PrestaShop S.A. which allows the owner to develop, operate and host a website dedicated to e-commerce.
Personal data collected: various types of data as specified by the Privacy Policy of the Service.
Place of treatment: France - Privacy policy.

Data transfer outside the EU

The owner can transfer the personal data collected within the EU to third countries (ie, all countries that are not part of the EU) only in accordance with a specific legal basis. Therefore, these data transfers are carried out according to one of the legal bases described below.

The user can request information to the owner on the applicable legal basis applicable to each individual service.

Data transfer from the EU and / or Switzerland to the United States based on the Privacy Shield (this website)

When this is the legal basis, the transfer of personal data from the EU or Switzerland to the United States takes place based on the Privacy Shield EU - USA or Switzerland - USA agreement.
In particular, personal data is transferred to subjects who are self-certified within the framework of the Privacy Shield and therefore guarantee an adequate level of protection of the data transferred. The services affected by the transfer of data are listed in the respective sections of this document. Among them, those who adhere to Privacy Shield can be identified by consulting its privacy policy or verifying the status of their registration in the official list of Privacy Shield.
User's rights pursuant to Privacy Shield are always described in form up to date on the US Department of Trade Department. The transfer of personal data from the EU or Switzerland to the United States to non-(more) subjects registered in Privacy Shield is admissible only in other valid legal basis. Users can request information to the owner on such legal bases.

Personal data collected: various types of data.

Transfer of data to countries that guarantee European standards (this website)

When this is the legal basis, the transfer of personal data from the EU to third countries takes place on the basis of an adequacy decision adopted by the European Commission. The European Commission adopts adequacy decisions with reference to individual third countries which considers to ensure a level of protection of personal data comparable to that provided for by European legislation on personal data protection. The user can view the updated list of adequacy decisions on the European Commission's website.

Personal data collected: various types of data.

Display of content from external platforms

This type of services allows you to view content hosted on external platforms directly from the pages of this website and interact with them.
In the event that a service of this type is installed, it is possible that, even if users do not use the service, the same harvest traffic data relating to the pages in which it is installed.

Google Fonts (Google Inc.)

Google Fonts is a visualization service of fonts managed by Google Inc. which allows this website to integrate these content within their pages.
Personal data collected: usage data and various types of data as specified by the Privacy Policy of the Service.
Place of treatment: United States - Privacy Policy. Subject adherent to Privacy Shield.

More information on personal data

Analysis of user data and forecasts ("Profiling")

The owner could treat usage data collected through this website to create or update user profiles. This type of treatment allows the owner to evaluate choices, preferences and user behavior for specific purposes in the respective sections of this document.
Utility profiles can also be created thanks to automated tools, such as algorithms, which can also be offered by third parties. To obtain more information about the profiling activity, the user can refer to the respective sections of this document.
The user has at any time right to oppose this profiling activity. To find out more about user rights and how to exercise them, the user can refer to the section of this document related to user rights.

Unambiguous identification of the device

This website can trace users by saving a unique identification code of their device, for statistical purposes or to preserve user preferences.

Push Notification

This Website can send push notification to the User.

Automated decision-making processes

When a decision that can produce legal effects for the user or can analogously affect its person is taken exclusively with technological tools and without human intervention, there is a automated decision-making process.
Within the scope of the purposes described in this document, this website could use the user's personal data to make decisions based completely or partially on automated processes. This website resorts to automated decision-making processes to the extent that it is necessary to conclude or carry out a contract between the user and the owner or, if requested by the legislation, subject to the consent given by the user.
Automated decisions depend on technological tools provided by the owner or third parties and are generally based on algorithms that respond to predefined criteria. The logic at the base of automated decision-making processes aims at:

- Allow or improve the decision-making process;
- guarantee users a fair and impartial treatment;
- reduce potential damage resulting from human error, personal fairiness or other similar circumstances that could determine discontinuations or imbalances in the treatment of individuals;
- Reduce the risk of non-fulfillment to the obligations of a contract by the user.

To get more information on purposes, any third-party services and logical specifications of automated decision-making processes adopted by this website, the user can refer to the respective sections of this document.

Effects of automated decision-making processes and user rights subject to them

Users subject to this type of treatment can exercise specific rights to prevent or limit the potential effects of automated decision-making processes. In particular, users are entitled to:

- receive an explanation regarding any decision taken at the outcome of an automated decision-making process and expressing an opinion in this regard;
- Challenge the decision by asking the owner to reconsider it or adopt a new decision on different bases;
- Request and obtain a human intervention in the treatment of treatment. To obtain more information on user rights and their exercise the user can refer to the section of this document related to user law.

Sale of goods and services online

The personal data collected is used for the delivery of services to the user or for the sale of products, including payment and any delivery. The personal data collected to perfect the payment may be those relating to the credit card, to the current account used for the transfer or other payment instruments provided. Payment details collected from this website depend on the payment system used.

Rights of User

Users can exercise certain rights with reference to data processed by the owner.

In particular, the user has the right to:

- Revoke the consent at any time. The user can revoke the consent to the processing of their previously expressed personal data.
- Opposing the processing of its data. The user can oppose the processing of his data when it takes place on a legal basis other than consensus. Further details on the right of opposition are indicated in the section below.
- access its data. The user has the right to obtain information on the data processed by the owner, on detereminated aspects of the treatment and to receive a copy of the data processed.
- Check and request rectification. The user can verify the correctness of his data and requesting the update or correction.
- Get the treatment limitation. When certain conditions occur, the user can request the limitation of the processing of their data. In this case the owner will not deal with the data for any other purpose if not their conservation.
- Get the cancellation or removal of your personal data. When certain conditions occur, the user can request the cancellation of his own data by the owner.
- Receive your data or make them transfer to another holder. The user has the right to receive his data in structured format, of common use and readable by an automatic device and, where technically feasible, to obtain the transfer without obstacles to another holder. This provision is applicable when the data is processed with automated instruments and the treatment is based on the user's consent, on a contract that the user is part or on contractual measures connected to it.
- Propose complaint. The user can propose a complaint to the protection authority of the protection of personal data competent or acting in judicial site.

Details on the right of opposition

When personal data are treated in the public interest, in the exercise of public powers of which the owner is invested or to pursue a legitimate interest of the owner, users are entitled to oppose treatment for reasons related to their particular situation.

It is made to users who, where their data were treated with direct marketing purposes, can oppose treatment without providing any motivation. To find out if the data holder with direct marketing purposes users can refer to the respective sections of this document.

How to exercise rights

To exercise user rights, users can address a request to the owner's contact details indicated in this document. Requests are deposited free of charge and processed by the owner as soon as possible, in any case within a month.

More information on treatment

Defense in court

User's personal data can be used by the owner suggested or in the preparatory phases of its possible self-defense establishment in the use of this website or the services connected by the user.
The user declares to be aware that the owner could be obliged to reveal data by order of public authorities.

Specific information

At the request of the user, in addition to the information contained in this privacy policy, this website could provide the user with additional and contextual information concerning specific services, or the collection and processing of personal data.

System log and maintenance

For necessities related to operation and maintenance, this website and any third-party services it used could collect system logs, ie files that record interactions and which can also contain personal data, such as the user IP address.

Information not contained in this policy

Further information in relation to the processing of personal data may be requested at any time to the data controller using contact details.

Response to requests "Do Not Track"

This website does not support "Do Not Track" requests.
To find out if any third-party services used supports, the user is invited to consult the respective privacy policy.

Changes to this privacy policy

The data controller reserves the right to make changes to this Privacy Policy at any time giving information to users on this page and, if possible, on this website as well as, if technically and legally feasible, by sending a notification to users through one of the contact details of which the owner is in possession. Please contact this page regularly, referring to the date of last modification indicated at the bottom.

If the changes affect treatments whose legal basis is the consent, the owner will re-collect the user's consent, if necessary.

Definitions and legal references

Personal Data

Any information is given, directly or indirectly, even in connection with any other information, including a personal identification number, make a natural person identified or identifiable.

Usage Data

Information is automatically collected through this website (also from third-party applications integrated on this website), including: IP addresses or domain names of the computer used by the user that connects with this website, addresses in URI notation (Uniform Resource Identifier), the time of the request, the method used to forward the request to the server, the size of the file obtained in response, the numeric code indicating the status of the response from the server (good end, error, etc. .) The country of origin, the characteristics of the browser and the operating system used by the visitor, the various time connotations of the visit (for example the time of permanence on each page) and the details relating to the itinerary followed within the application, With particular reference to the sequence of the pages consulted, to the parameters relating to the operating system and the computer environment of the user.

User

The individual who uses this website that, unless otherwise specified, coincides with the interested party.

Interested

The natural person to refer to personal data.

Head of treatment (or manager)

The natural, legal person, the Public Administration and any other entity that deals with personal data on behalf of the owner, according to the provisions of this Privacy Policy.

Treatment holder (or owner)

The natural or legal person, the public authority, the service or other body which, individually or together with others, determines the aims and means of the processing of personal data and the instruments adopted, including safety measures relating to operation and to the Using this website. The owner of the treatment, except as otherwise specified, is the owner of this website.

This Website (or this Application)

The hardware or software tool through which users' personal data are collected and treated.

Service

The service provided by this website as defined in the relevant terms (if present) on this site / application.

European Union (or UE)

Unless otherwise specified, each reference to the European Union contained in this document is intended to all the current Member States of the European Union and the European Economic Area.

Cookie

Small portion of data stored inside the user's device.

Legal references

This privacy statement is drawn up on the basis of multiple legislative orders, including articles 13 and 14 of Regulation (EU) 2016/679.
If not otherwise specified, this privacy information only concerns this website.