Privacy Policy

Privacy Policy


 

PRIVACY POLICY
Caramelle Rossella sas di Marta Priori
rossellacaramelle.com

In compliance with the obligations deriving from the national legislation (Privacy Code) and the Community one (European General Regulation n. 679/2016) concerning the protection of personal data, Caramelle Rossella sas di Marta Priori respects and protects the privacy of visitors and users.
This privacy statement applies to both the collection of information from the website and other channels.

1 – Legal basis of the processing

With the use or consultation of this site, visitors and users explicitly approve this privacy statement and consent to the processing of their personal data in relation to the methods and purposes described below , including any disclosure to third parties if necessary for the provision of a service.
The provision of data and therefore the consent to the collection and processing of data is optional, the user can deny consent, and can revoke an already given consent at any time. However, denying consent may make it impossible to provide certain services and the browsing experience on the site would be compromised.

2 – Purpose of the processing

The  processing of personal data  means: registration, storage, organization, consultation, selection, extraction, comparison, processing, use, modification, interconnection, blocking, communication, cancellation and destruction, transfer or distribution, or the combination of two or more such operations.
The processing of data collected by the site, in addition to the related purposes, instrumental and necessary for the provision of the service, is aimed at the following purposes:

2.1 – Statistics

Collection of data and information in an exclusively aggregated and anonymous form in order to verify the correct functioning of the site.
None of this information is related to the natural person-user of the site, and does not allow it to be identified in any way.

2.2 – Security

Collection of data and information in order to protect the security of the site and of users (spam filters, firewalls, virus detection) and to prevent or expose fraud or abuse against the website.
The data is automatically recorded and may also include personal data (IP address) that could be used, in accordance with the relevant laws in force, in order to block attempts to damage the site itself or cause damage to other users, or in any case harmful activities or constituting a crime. These data are never used for identifying or profiling the User and are periodically deleted.

2.3 – Ancillary activities

Communicate data to third parties that perform functions necessary or instrumental to the operation of the service, and to allow third parties to carry out technical and other activities on our behalf.
This site uses suppliers to carry out certain activities, analyze data, provide marketing assistance and provide services to customers.
Suppliers have access only to personal data that is necessary to perform their duties, and they undertake not to use the data for other purposes, and are required to process personal data in accordance with current regulations.

This category of data is kept only for the period of time necessary for the provision of the service.

3 – Data collected

This site collects user data in two ways.

3.1 – Data collected in an automated manner

During user navigation, the following information can be collected and stored in the site log files:

  • Internet protocol address (IP);
  • Browser type;
  • Device parameters used to connect to the site;
  • Name of the internet service provider (ISP);
  • Date and time of visit;
  • Web page of the visitor’s origin (referral) and exit;

This data is used to analyze user trends and collect data in aggregate form, administer and guarantee the security of the site, and is in no way attributable to the identity of the User.

3.2 – Data provided voluntarily

The site can collect other data in case of voluntary use of services by users, such as commenting, communication services (forms for contacts and sending emails):

  • name and surname;
  • email address;
  • telephone number
  • other fields

These data are provided voluntarily by the User at the time of requesting the service and will be used exclusively for the provision of the requested service and processed only for the time necessary for the provision of the service.
The data collected by the site are not provided to third parties, unless it is a legitimate request by the judicial authority and only in the cases provided for by law. The data, however, may be provided to third parties if this is necessary for the provision of a specific service requested by the User, or for tax purposes or for the execution of security checks or site optimization.

4 – Data retention period

The data collected are processed for the time necessary for the purposes for which they were collected, and in any case not beyond the time prescribed by law.
The data required for tax purposes are kept until the assessments relating to the corresponding tax period are defined, therefore for at least 10 years and more if the relative annuity is not yet prescribed for tax purposes.
Upon expiration, the data will be deleted or anonymized, unless there are other purposes for their preservation (eg warranty provision obligations, tax obligations).

5 – Transfer of collected data to third parties and countries outside the EU

The personal data of users / customers are an essential component of our work and the transfer to third parties is not included in our activities. However, in carrying out its activities and performing the services requested by users, this site may have to transfer certain data to third parties that perform specific instrumental tasks linked to those of the site. The suppliers have access to only the data necessary for the performance of their specific task, and are required to treat them in accordance with this Statement.
In the case of transfer of a company or production unit, the personal data of the Clients fall within the corporate assets that are transferred, but remain subject to the commitments set forth in this Notice, except for requests for new consent.
In the case of the data is transferred to companies located outside the European Union (for example Google, Facebook and Microsoft – for LinkedIn and Skype) , we make sure that they are transferred in compliance with the regulations in force on the subject and in particular with the rules set by the General Regulations for the protection of personal data. The transfer is authorized based on specific decisions of the European Union and the Guarantor for the protection of personal data  http://www.garanteprivacy.it/home/provvedimenti-normativa/normativa/normativa-comunitaria-e-intenazionale/trasferimento- data-to-third-countries , in particular decision 1250/2016 (Privacy Shield  http://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX%3A32016D1250  – here page information of the Italian Guarantor http://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/5306161 ), for which no further consent is required.
The user with the activation of the contract expressly consents to the transfer of data in the cases indicated above.

6 – Cookies

This site uses cookies and similar technologies. Cookies allow us to store information on visitor preferences, allow us to verify the correct functioning of the site and improve its functionality by customizing the content of the pages based on the type of browser used, or to simplify navigation by automating the procedures (eg Login, site language) and for the analysis of the use of the site by visitors.
This site uses the following categories of cookies:

Technical cookies

The cookies of this category include both persistent cookies and session cookies, which make it possible to distinguish between the connected users, avoiding that a service is provided to the wrong user and therefore are the consequence of an express user request, and are also used for security of the site and of the users themselves. Without these cookies, the site or parts of it may not work properly. Cookies in this category are always sent from our domain, and consent is not required for them.

Analytical cookies

Cookies in this category are used to collect information on the correct use of the site and on user behavior for statistical analysis purposes, to improve the site and simplify its use. This type of cookie collects anonymous information about user activity on the site and how they arrived at the site and the pages visited. Cookies in this category are sent from the site itself or from third-party domains.

Third-party cookies

This site also acts as an intermediary for third-party cookies, used to provide additional services and features to visitors and to improve the use of the site itself, such as social media buttons. Some of these cookies are profiling cookies, that is used by third parties to collect information on user behavior and interests in order to provide personalized advertising.

6.1 – Consent for the use of cookies

By using the site, by continuing to browse the site, or by clicking on the banner at the first access to the site, the visitor expressly consents to the use of cookies and similar technologies , and in particular the registration of these cookies on his terminal for the above purposes indicated, or when accessing information on your terminal through cookies.

6.2 – Refusal or revocation of consent to cookies

The user can refuse the use of cookies and can at any time revoke a consent already given. As the cookies are connected to the browser used,  THEY CAN BE DISABLED DIRECTLY FROM THE BROWSER , thus refusing / revoking the consent to the use of cookies.
DISABLING COOKIES MAY PREVENT THE CORRECT USE OF SOME FUNCTIONS OF THE SITE , in particular the services provided by third parties may not be accessible, and therefore may not be viewable: YouTube videos or other video sharing services; the social buttons of social networks; Google maps.

The instructions for disabling cookies via the browser, and for the eventual elimination of cookies already present on the User’s device, can be found on the following web pages:

Mozilla Firefox

https://support.mozilla.org/it/kb/Attivare%20e%20disattivare%20i%20cookie

Windows Internet Explorer

https://support.microsoft.com/en-us/help/278835/how-to-delete-cookie-files-in-internet-explorer

Google Chrome

https://support.google.com/chrome/answer/95647?hl=it

Opera

http://help.opera.com/Windows/10.00/it/cookies.html

Apple Safari

https://support.apple.com/it-it/HT201265

You can find more information about cookies and how to manage them by consulting the website  www.aboutcookies.org .

6.3 – Third-party cookies

This privacy policy does not apply to services provided by third parties, and this site has no control over their cookies, entirely managed by third parties, and has no access to information collected through these cookies. As a result, information on the use of third-party cookies, on the purposes of the same, as well as on the methods for disabling them, are provided directly by the third parties on the pages indicated below.
Generally, user tracking does not involve identifying the user, unless the User is already registered with the service and is not already logged in, in which case it is understood that the User has already expressed his consent directly to the third party. time of registration to the relevant service (eg Facebook).

In particular, this site uses cookies from the following third parties.

6.3.1 – Google Inc.

–  Google Analytics : web analysis tool used in order to allow us to examine the use of the site by users, compile reports on site activity and user behavior, check how often users visit the site, how the site is tracked down and which pages are visited most frequently. The information is combined by Google with information collected from other sites in order to create a comparative picture of the use of the site compared to other sites in the same category.
Data collected : browser identifier, date and time of interaction with the site, page of origin, IP.
Place of data processing : USA.
The data collected does not allow the personal identification of users, and is not crossed with other information relating to the same person. They are treated in aggregate form and anonymized (truncated to the last octet). According to a specific agreement, Google Inc. is prohibited from crossing such data with that obtained from other services.

–  Google Maps : Google service that offers street maps and localization for urban businesses. Set cookies on map pages.
Data collected : number and behavior of the users of the maps, information on the page displayed, preferences on the display (zoom level, etc.).
Place of data processing : USA.

Disabling Google Inc. cookies.
Data transmitted to Google is stored on Google’s servers in the United States. For more information on the use of the data and their treatment by  Google it  is recommended to view the information provided by Google at the following internet address:  https://www.google.com/intl/it/policies/privacy/ .

Further information on Google Analytics cookies can be found on the following page:  https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage

The User can   selectively disable the action of Google Analytics by installing the appropriate component provided by Google (opt out) on your browser. To disable data collection by Google Analytics, please refer to the following link:  https://tools.google.com/dlpage/gaoptout .
The User can   selectively disable DoubleClick DART Cookies preventing their connection with his browser, to the appropriate web page:  https://adssettings.google.it/authenticated?hl=it#display_optout .

6.3.2 – Social Plugin

This site also incorporates plugins and / or buttons for social networks, in order to allow easy sharing of content on your favorite social networks. These plugins do not set a cookie, but if it is already present on the visitor’s computer, they are able to read it and use it according to its settings. The collection and use of information by such third parties are governed by the respective privacy policies to which you are requested to refer.

Facebook

https://www.facebook.com/about/privacy/  (cookie information link  https://www.facebook.com/help/cookies/ )

Twitter

https://twitter.com/privacy?lang=it  (cookie information link  https://support.twitter.com/articles/20170519-uso-dei-cookie-e-di-altre-tecnologie-simili-da-parte -of-twitter

LinkedIn

https://www.linkedin.com/legal/privacy-policy  (cookie information link  https://www.linkedin.com/legal/cookie-policy )

Google+

https://www.google.com/intl/it/policies/privacy//  (cookie information link  https://www.google.it/intl/it/policies/technologies/cookies/ )

7 – Safety measures

The data controller processes visitor / user data in a lawful and correct manner, taking appropriate  security measures  to prevent unauthorized access, disclosure, modification or unauthorized destruction of the data, as well as unlawful use of the data. Processing is carried out using IT and / or telematic tools, with organizational methods and logic strictly related to the purposes indicated, and the data is stored and stored in secure facilities with access limitations and personnel verification. Access to information is strictly limited to authorized personnel.
The website is constantly monitored to verify any security breaches and to ensure that the information is secure.
In addition to the Owner, in some cases, the categories of employees involved in the organization of the site (administrative, commercial, marketing, legal, system administrators) or external parties (such as third party technical service providers, postal couriers, hosting providers, IT companies, communication agencies).

It is important that you take appropriate protections against unauthorized access to your password and your computer. Always make sure you are logged out when using a shared computer with other users.

8 – User Rights

Pursuant to art. 7 of Legislative Decree 30 June 2003, n. 196  http://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/1311248  and the General Regulations for the protection of personal data, the User can, in the manner and within the limits provided by current legislation:

  • object in whole or in part, for legitimate reasons, to the processing of personal data concerning him for the purpose of sending advertising materials or direct sales or for carrying out market research or commercial communication;
  • Request confirmation of the existence of personal data concerning him;
  • Know its origin;
  • Receive intelligible communication;
  • Have information about the logic, methods and purposes of the processing;
  • request the updating, rectification, integration, cancellation, transformation into anonymous form, blocking of data processed in violation of the law, including those no longer necessary for the pursuit of the purposes for which they were collected;
  • in the case of treatment based on consent, to receive at the sole cost of any support, its data provided to the holder, in a structured and readable form by a data processor and in a format commonly used by an electronic device
  • the right to submit a complaint to the supervisory authority (Privacy Guarantor – link to the Guarantor’s page  http://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/4535524);
  • As well as, more generally, exercise all the rights that are recognized by the current legal provisions.

Requests should be addressed to the  Data Controller .

9 – Subjects for processing

The data controller  in accordance with the laws in force is: Caramelle Rossella sas by Marta Priori with registered office in Via San Vincenzo 1/4 – 16121 Genova mail rossella@rossellacaramelle.com

Data Processor – VHosting Solution srl Unipersonale (Provider). Agreement document

10 – Updates

This privacy policy is updated on 21 May 2018.