Caramelle Rossella sas di Marta Priori
In compliance with the obligations deriving from the national legislation (Privacy Code) and the Community one (European General Regulation n. 679/2016) concerning the protection of personal data, Caramelle Rossella sas di Marta Priori respects and protects the privacy of visitors and users.
This privacy statement applies to both the collection of information from the website and other channels.
1 – Legal basis of the processing
With the use or consultation of this site, visitors and users explicitly approve this privacy statement and consent to the processing of their personal data in relation to the methods and purposes described below , including any disclosure to third parties if necessary for the provision of a service.
The provision of data and therefore the consent to the collection and processing of data is optional, the user can deny consent, and can revoke an already given consent at any time. However, denying consent may make it impossible to provide certain services and the browsing experience on the site would be compromised.
2 – Purpose of the processing
The processing of personal data means: registration, storage, organization, consultation, selection, extraction, comparison, processing, use, modification, interconnection, blocking, communication, cancellation and destruction, transfer or distribution, or the combination of two or more such operations.
The processing of data collected by the site, in addition to the related purposes, instrumental and necessary for the provision of the service, is aimed at the following purposes:
2.1 – Statistics
Collection of data and information in an exclusively aggregated and anonymous form in order to verify the correct functioning of the site.
None of this information is related to the natural person-user of the site, and does not allow it to be identified in any way.
2.2 – Security
Collection of data and information in order to protect the security of the site and of users (spam filters, firewalls, virus detection) and to prevent or expose fraud or abuse against the website.
The data is automatically recorded and may also include personal data (IP address) that could be used, in accordance with the relevant laws in force, in order to block attempts to damage the site itself or cause damage to other users, or in any case harmful activities or constituting a crime. These data are never used for identifying or profiling the User and are periodically deleted.
2.3 – Ancillary activities
Communicate data to third parties that perform functions necessary or instrumental to the operation of the service, and to allow third parties to carry out technical and other activities on our behalf.
This site uses suppliers to carry out certain activities, analyze data, provide marketing assistance and provide services to customers.
Suppliers have access only to personal data that is necessary to perform their duties, and they undertake not to use the data for other purposes, and are required to process personal data in accordance with current regulations.
This category of data is kept only for the period of time necessary for the provision of the service.
3 – Data collected
This site collects user data in two ways.
3.1 – Data collected in an automated manner
During user navigation, the following information can be collected and stored in the site log files:
- Internet protocol address (IP);
- Browser type;
- Device parameters used to connect to the site;
- Name of the internet service provider (ISP);
- Date and time of visit;
- Web page of the visitor’s origin (referral) and exit;
This data is used to analyze user trends and collect data in aggregate form, administer and guarantee the security of the site, and is in no way attributable to the identity of the User.
3.2 – Data provided voluntarily
The site can collect other data in case of voluntary use of services by users, such as commenting, communication services (forms for contacts and sending emails):
- name and surname;
- email address;
- telephone number
- other fields
These data are provided voluntarily by the User at the time of requesting the service and will be used exclusively for the provision of the requested service and processed only for the time necessary for the provision of the service.
The data collected by the site are not provided to third parties, unless it is a legitimate request by the judicial authority and only in the cases provided for by law. The data, however, may be provided to third parties if this is necessary for the provision of a specific service requested by the User, or for tax purposes or for the execution of security checks or site optimization.
4 – Data retention period
The data collected are processed for the time necessary for the purposes for which they were collected, and in any case not beyond the time prescribed by law.
The data required for tax purposes are kept until the assessments relating to the corresponding tax period are defined, therefore for at least 10 years and more if the relative annuity is not yet prescribed for tax purposes.
Upon expiration, the data will be deleted or anonymized, unless there are other purposes for their preservation (eg warranty provision obligations, tax obligations).
5 – Transfer of collected data to third parties and countries outside the EU
The personal data of users / customers are an essential component of our work and the transfer to third parties is not included in our activities. However, in carrying out its activities and performing the services requested by users, this site may have to transfer certain data to third parties that perform specific instrumental tasks linked to those of the site. The suppliers have access to only the data necessary for the performance of their specific task, and are required to treat them in accordance with this Statement.
In the case of transfer of a company or production unit, the personal data of the Clients fall within the corporate assets that are transferred, but remain subject to the commitments set forth in this Notice, except for requests for new consent.
In the case of the data is transferred to companies located outside the European Union (for example Google, Facebook and Microsoft – for LinkedIn and Skype) , we make sure that they are transferred in compliance with the regulations in force on the subject and in particular with the rules set by the General Regulations for the protection of personal data. The transfer is authorized based on specific decisions of the European Union and the Guarantor for the protection of personal data http://www.garanteprivacy.it/home/provvedimenti-normativa/normativa/normativa-comunitaria-e-intenazionale/trasferimento- data-to-third-countries , in particular decision 1250/2016 (Privacy Shield http://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX%3A32016D1250 – here page information of the Italian Guarantor http://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/5306161 ), for which no further consent is required.
The user with the activation of the contract expressly consents to the transfer of data in the cases indicated above.
6 – Cookies
This site uses the following categories of cookies:
The cookies of this category include both persistent cookies and session cookies, which make it possible to distinguish between the connected users, avoiding that a service is provided to the wrong user and therefore are the consequence of an express user request, and are also used for security of the site and of the users themselves. Without these cookies, the site or parts of it may not work properly. Cookies in this category are always sent from our domain, and consent is not required for them.
Cookies in this category are used to collect information on the correct use of the site and on user behavior for statistical analysis purposes, to improve the site and simplify its use. This type of cookie collects anonymous information about user activity on the site and how they arrived at the site and the pages visited. Cookies in this category are sent from the site itself or from third-party domains.
This site also acts as an intermediary for third-party cookies, used to provide additional services and features to visitors and to improve the use of the site itself, such as social media buttons. Some of these cookies are profiling cookies, that is used by third parties to collect information on user behavior and interests in order to provide personalized advertising.
6.2 – Refusal or revocation of consent to cookies
DISABLING COOKIES MAY PREVENT THE CORRECT USE OF SOME FUNCTIONS OF THE SITE , in particular the services provided by third parties may not be accessible, and therefore may not be viewable: YouTube videos or other video sharing services; the social buttons of social networks; Google maps.
The instructions for disabling cookies via the browser, and for the eventual elimination of cookies already present on the User’s device, can be found on the following web pages:
Windows Internet Explorer
You can find more information about cookies and how to manage them by consulting the website www.aboutcookies.org .
6.3 – Third-party cookies
Generally, user tracking does not involve identifying the user, unless the User is already registered with the service and is not already logged in, in which case it is understood that the User has already expressed his consent directly to the third party. time of registration to the relevant service (eg Facebook).
6.3.1 – Google Inc.
– Google Analytics : web analysis tool used in order to allow us to examine the use of the site by users, compile reports on site activity and user behavior, check how often users visit the site, how the site is tracked down and which pages are visited most frequently. The information is combined by Google with information collected from other sites in order to create a comparative picture of the use of the site compared to other sites in the same category.
Data collected : browser identifier, date and time of interaction with the site, page of origin, IP.
Place of data processing : USA.
The data collected does not allow the personal identification of users, and is not crossed with other information relating to the same person. They are treated in aggregate form and anonymized (truncated to the last octet). According to a specific agreement, Google Inc. is prohibited from crossing such data with that obtained from other services.
– Google Maps : Google service that offers street maps and localization for urban businesses. Set cookies on map pages.
Data collected : number and behavior of the users of the maps, information on the page displayed, preferences on the display (zoom level, etc.).
Place of data processing : USA.
Disabling Google Inc. cookies.
Data transmitted to Google is stored on Google’s servers in the United States. For more information on the use of the data and their treatment by Google it is recommended to view the information provided by Google at the following internet address: https://www.google.com/intl/it/policies/privacy/ .
Further information on Google Analytics cookies can be found on the following page: https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage
The User can selectively disable the action of Google Analytics by installing the appropriate component provided by Google (opt out) on your browser. To disable data collection by Google Analytics, please refer to the following link: https://tools.google.com/dlpage/gaoptout .
The User can selectively disable DoubleClick DART Cookies preventing their connection with his browser, to the appropriate web page: https://adssettings.google.it/authenticated?hl=it#display_optout .
6.3.2 – Social Plugin
This site also incorporates plugins and / or buttons for social networks, in order to allow easy sharing of content on your favorite social networks. These plugins do not set a cookie, but if it is already present on the visitor’s computer, they are able to read it and use it according to its settings. The collection and use of information by such third parties are governed by the respective privacy policies to which you are requested to refer.
https://www.google.com/intl/it/policies/privacy// (cookie information link https://www.google.it/intl/it/policies/technologies/cookies/ )
7 – Safety measures
The data controller processes visitor / user data in a lawful and correct manner, taking appropriate security measures to prevent unauthorized access, disclosure, modification or unauthorized destruction of the data, as well as unlawful use of the data. Processing is carried out using IT and / or telematic tools, with organizational methods and logic strictly related to the purposes indicated, and the data is stored and stored in secure facilities with access limitations and personnel verification. Access to information is strictly limited to authorized personnel.
The website is constantly monitored to verify any security breaches and to ensure that the information is secure.
In addition to the Owner, in some cases, the categories of employees involved in the organization of the site (administrative, commercial, marketing, legal, system administrators) or external parties (such as third party technical service providers, postal couriers, hosting providers, IT companies, communication agencies).
It is important that you take appropriate protections against unauthorized access to your password and your computer. Always make sure you are logged out when using a shared computer with other users.
8 – User Rights
Pursuant to art. 7 of Legislative Decree 30 June 2003, n. 196 http://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/1311248 and the General Regulations for the protection of personal data, the User can, in the manner and within the limits provided by current legislation:
- object in whole or in part, for legitimate reasons, to the processing of personal data concerning him for the purpose of sending advertising materials or direct sales or for carrying out market research or commercial communication;
- Request confirmation of the existence of personal data concerning him;
- Know its origin;
- Receive intelligible communication;
- Have information about the logic, methods and purposes of the processing;
- request the updating, rectification, integration, cancellation, transformation into anonymous form, blocking of data processed in violation of the law, including those no longer necessary for the pursuit of the purposes for which they were collected;
- in the case of treatment based on consent, to receive at the sole cost of any support, its data provided to the holder, in a structured and readable form by a data processor and in a format commonly used by an electronic device
- the right to submit a complaint to the supervisory authority (Privacy Guarantor – link to the Guarantor’s page http://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/4535524);
- As well as, more generally, exercise all the rights that are recognized by the current legal provisions.
Requests should be addressed to the Data Controller .
9 – Subjects for processing
The data controller in accordance with the laws in force is: Caramelle Rossella sas by Marta Priori with registered office in Via San Vincenzo 1/4 – 16121 Genova mail firstname.lastname@example.org
Data Processor – VHosting Solution srl Unipersonale (Provider). Agreement document
10 – Updates