INFORMATION ON THE PROCESSING OF PERSONAL DATA PURSUANT TO ART. 13 OF REGULATION (EU) 2016/679
HOLDER OF THE TREATMENT
The owner of the data processing of Users of the website www.chiu.eu (hereinafter, the "Website") is the company Chiù Milano srl, with registered office in via Vincenzo Monti 32, Milan (hereinafter, the "Company"), who can be contacted by email at the address: info@chiu.eu.
Privacy and Cookie Policy
In compliance with the obligations deriving from national legislation (Legislative Decree 30 June 2003 n.196, Code regarding the protection of personal data) and community, (European regulation for the protection of personal data n. 679/2016, GDPR) and subsequent changes, this site respects and protects the privacy of visitors and users, making every possible and proportionate effort not to infringe the rights of users.
This privacy policy applies exclusively to the online activities of this site and is valid for visitors / users of the site. It does not apply to information collected through channels other than this website. The purpose of the privacy policy is to provide maximum transparency regarding the information that the site collects and how it uses it.
Compilation of the Contact form and Legal basis for the processing of data voluntarily entered
While browsing, the visitor can voluntarily interact with Raimondi Srl by contacting it via the " Contact " form. By doing so, the Data Controller will receive a message from the user and will be able to respond to requests from the same only if the user has correctly entered the contact details. Failure to provide contact data affects the successful outcome of the request and the provision of the service: the Data Controller will not be able to respond. By filling out the form, therefore, the user asks the Data Controller to follow up on his request and consents to the data communicated being used for this purpose. By using or consulting this site, visitors and users explicitly approve this privacy statement and consent to the processing of their personal data in relation to the methods and purposes described below.
The User can deny and withdraw consent at any time by contacting the Owner. However, denying consent may make it impossible to provide some services and the browsing experience on the site could be compromised. Any revocation does not affect the legitimacy of the treatment carried out previously.
Data collected during navigation and purposes
Like all websites, this site also makes use of log files in which information collected in an automated manner is stored during user visits. The information collected could be the following:
- internet protocol address (IP);
- type of browser and device parameters used to connect to the site;
- name of the internet service provider (ISP);
- date and time of visit;
- web page of the visitor's origin and exit;
- possibly the number of clicks.
The aforementioned information is processed in an automated form and collected in an exclusively aggregated form in order to verify the correct functioning of the site, and for security reasons, such information will be treated on the basis of the legitimate interests of the owner.
For security purposes (spam filters, firewalls, virus detection), the automatically recorded data may possibly also include personal data such as the IP address, which could be used, in accordance with applicable laws, in order to block attempts to damage the site itself or to cause damage to other users. These data are never used for the identification or profiling of the user, but only for the purpose of protecting the site and its users, such information will be treated on the basis of the legitimate interests of the owner.
If the site allows the insertion of comments, or in the case of specific services requested by the user, the site automatically detects and records some identification data of the user, including the email address. These data are voluntarily provided by the user at the time of the request to provide the service. By entering a comment or other information, the user expressly accepts the privacy policy, and in particular agrees that i data received will be used exclusively for the provision of the requested service and only for the time necessary for the provision of the service.
The information that users of the site will deem to make public through the services and tools made available to them, are provided by the user knowingly and voluntarily, exempting this site from any responsibility for any violations of the laws. It is up to the user to verify that they have permission to enter personal data of third parties or content protected by national and international regulations.
The data collected by the site during its operation are used exclusively for the purposes indicated above and kept for the time strictly necessary to carry out the specified activities. In any case, the data collected by the site will never be provided to third parties, for any reason, unless it is a legitimate request by the judicial authority and only in the cases provided for by law.
The data used for security purposes (blocking attempts to damage the site) are kept for 7 days. At the end of this period, the aforementioned data will be deleted.
Place of treatment
The data collected by the site are processed at the headquarters of the Data Controller, and at the web Hosting datacenter. The web hosting Aruba.it and Wix.com, which are external data processors, processing the data on behalf of the owner, are located in the European Economic Area and act in accordance with European standards.
Our company is hosted on the Wix.com platform. Wix.com provides us with the online platform that allows us to sell our products and services. Your data may be stored via Wix.com data storage, databases and general applications. Your data is stored by them on secure servers, protected by firewalls.
All direct payment gateways offered by Wix.com and used by our company adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands such as Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our store and its suppliers.
Cookies
As is customary on all websites, this site also uses cookies, small text files that allow you to store information on visitor preferences, to improve the functionality of the site, to simplify navigation by automating procedures (eg. Login, site language) and for the analysis of the use of the site.
Session cookies are essential in order to distinguish between connected users, and are useful to prevent a requested functionality from being provided to the wrong user, as well as for security purposes to prevent cyber attacks on the site. Session cookies do not contain personal data and last only for the current session, i.e. until the browser is closed. Consent is not required for them.
The functionality cookies used by the site are strictly necessary for the use of the site, in particular they are linked to an express request for functionality by the user (such as Login), for which no consent is required.
By using the site, the visitor agrees to the use of cookies by approving them in the appropriate window.
Disabling cookies
Cookies are connected to the browser used and CAN BE DISABLED DIRECTLY FROM THE BROWSER, thus refusing / revoking consent to the use of cookies. It should be noted that disabling cookies may prevent the correct use of some functions of the site itself.
Third party cookies
This site also acts as an intermediary for third-party cookies, used to provide additional services and features to visitors and to improve the use of the site, such as buttons for social media, or videos. This site has no control over third party cookies, which are entirely managed by third parties. As a result, the information on the use of these cookies and their purposes, as well as on the methods for disabling them, are provided directly by the third parties on the pages indicated below by means of communication in a specific window.
Plugin & Social Network
This site also incorporates plugins and / or buttons for social networks, in order to allow easy sharing of content on your favorite social networks. These plugins are programmed so as not to set any cookies when accessing the page, to safeguard user privacy. Eventually cookies are set, if so provided by social networks, only when the user makes effective and voluntary use of the plugin. Please note that if the user browses being logged into the social network then he has already consented to the use of cookies conveyed through this site at the time of registration to the social network.
The collection and use of the information obtained through the plugin are governed by the respective privacy policies of the social networks, to which please refer.
- Facebook - https://www.facebook.com/privacy/explanation
- TripAdvisor - https://tripadvisor.mediaroom.com/IT-policy-sui-cookies
- Instagram - https://help.instagram.com/519522125107875
- Google Analytics https://policies.google.com/privacy?hl=it
- Clicky - Web analytics https://clicky.com/terms/privacy
- Wix https://it.wix.com/about/privacy
Transfer of data to non-EU countries
This site may share some of the data collected with services located outside the European Union area. In particular with Google, Facebook, Twitter and Microsoft (LinkedIn) through social plugins. The transfer is authorized on the basis of specific decisions of the European Union and the Guarantor for the protection of personal data, in particular decision 1250/2016 ( Privacy Shield - here the information page of the Italian Guarantor ), for which no further consent is required. The companies mentioned above guarantee their adherence to the Privacy Shield.
Security measures
This site processes user data in a lawful and correct manner, adopting appropriate security measures to prevent unauthorized access, disclosure, modification or unauthorized destruction of data. The processing is carried out using IT and / or telematic tools, with organizational methods and with logic strictly related to the purposes indicated. In addition to the owner, in some cases, categories of employees involved in the organization of the site (administrative, commercial, marketing, legal, system administrators) or external subjects (such as suppliers of third party technical services, postal couriers) may have access to the data. hosting providers, IT companies, communication agencies).
User rights
Pursuant to European Regulation 679/2016 (GDPR) and national legislation, the User can, according to the methods and within the limits established by current legislation, exercise the following rights:
- request confirmation of the existence of personal data concerning him (right of access);
- know its origin;
- receive intelligible communication;
- have information about the logic, methods and purposes of the processing;
- request the updating, rectification, integration, cancellation, transformation into anonymous form, blocking of data processed in violation of the law, including those no longer necessary for the pursuit of the purposes for which they were collected;
- in cases of consent-based processing, receive the data provided to the owner at the cost of any support, in a structured and readable form by a data processor and in a format commonly used by an electronic device;
- the right to lodge a complaint with the Supervisory Authority (Privacy Guarantor - www.garanteprivacy.it);
- the right to take action in the appropriate judicial offices
- as well as, more generally, to exercise all the rights that are recognized by the current provisions of the law.
Requests should be addressed to the Data Controller.
In the event that the data are processed on the basis of legitimate interests, the rights of the data subjects are guaranteed (except the right to portability which is not provided for by the regulations), in particular the right to object to the processing that can be exercised by sending a request to the data controller.
This privacy policy is updated on 28-10-2020