- Directive 2002/58/EC – on “personal data processing and protection of private life in the field of electronic communications”.
- Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (“General Data Protection Regulation”).
While consulting this web site, data on identified or identifiable people can be processed. The Data Controller is R3unite Srl.
SECTION 1 – WHAT DO WE DO WITH YOUR INFORMATION?
When you purchase something from our store, as necessary part of the process, we collect the personal information you give us such as your name, address and email address. The optional, explicit and voluntary providing of personal data by you entails the subsequent acquisition of the data you provided. Such data will be processed by R3unite Srl, mainly with electronic means, in order to follow up your request.
When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system.
Email marketing (if applicable): With your permission, we may send you emails general updates, also concerning (i) our store and (ii) our new products.
SECTION 2 – CONSENT
Age of consent
By using this site, you represent that you are at least the age of majority in your state or province of residence, or that you are the age of majority in your state or province of residence and you have given us your consent to allow any of your minor dependents to use this site.
How do you get my consent?
When you provide us with necessary personal information to (i) complete a transaction, (ii) verify your credit card, (iii) place an order, (iv) arrange for a delivery or return a purchase, we imply that you consent to our collecting it and using it for that specific reason only.
When we ask for your personal information for a secondary reason, like to subscribe our newsletter or marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to refuse to provide required personal data. However, in this case you could entail the impossibility of obtaining what you asked.
We will not sell, distribute or lease your personal information to third parties unless we have your permission or are required by law to do so.
How do I withdraw my consent? If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at anytime, by mailing us at: firstname.lastname@example.org
SECTION 3 – SHARING, COMMUNICATION AND SPREADING OF DATA
Personal data can be transferred or communicated to other companies for activities strictly connected and instrumental to the efficiency of the service, such as the management of the information system.
The personal data provided by the users who purchase our products used solely to carry out the service or performance required and are communicated to third parties only if it’s needed for such purpose (companies that take care of packaging or shipment).
Apart from these cases, personal data won’t be either communicated or granted to anybody, unless it’s provided by the agreement or authorized by the subjects. In this case, personal data could be sent to third parties, but only in case: a) there’s an explicit consent to share the data with third parties; b) the information must be shared with third parties in order to carry out the service required; c) it’s needed to meet requests by the Judicial Authority or Public Security. No data deriving from the web service will be spread
SECTION 4 – WOOCOMMERCE
Our store is hosted on WooCommerce. They provide us with the online e-commerce platform in order to sell our products and services to you.
Your data is stored through WooCommerce’s data storage, databases and the general WooCommerce application. They store your data on a secure server behind a firewall.
Payment: if you choose a direct payment gateway to complete your purchase, then WooCommerce stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). You will be required to provide a credit/debit card number and related financial information (such as CVV, expiration date, and billing address), or other payment information (such as via PayPal or Apple Pay), depending on the form of payment you choose. Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.
All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover.
PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
For more insight, you may also want to read WooCommerce Terms of Service (https://woocommerce.com/terms-conditions/) or Privacy Statement (https://automattic.com/privacy/)
SECTION 5 – THIRD-PARTY SERVICES
Generally, third-party providers will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us.
However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions.
For these providers, you should read their privacy policies in order to understand the manner in which these providers will handle your personal information. In particular, remember that certain providers may be located in or have facilities that are located a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.
Links: When you click on links on our store, they may direct you away from our site. We are not responsible for the privacy practices of other sites. You should read their privacy statements.
Google analytics: Our store uses Google Analytics to help us learn about who visits our site and what pages are being looked at
SECTION 6 – RIGHTS OF THE INTERESTED PARTIES
Regarding the processing of the aforementioned data, pursuant to par.15 et seq of the EU Regulation 2016/679, We remind you the right:
- to access of Personal Data concerning you;
- to obtain the rectification (correction of inaccurate data or integration):
- to erasure the Personal Data processed unlawfully or in case one of the reasons specified in Article 17 of the EU Regulation exists.
Furthermore, you have the right to lodge a complaint with a supervisory authority in case you consider that the rights indicated above have not been recognized.
SECTION 7 – SECURITY, PROCESSING METHODS AND STORAGE PERIOD
Personal data are processed, even through the use of automated tools, for the time strictly necessary to achieve the purposes for which they were collected, or for which they have been gathered.
We take reasonable precautions to protect your personal information and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed. Specific safety measures are observed in order to prevent the loss of data, the illegal or wrong use of them and any unauthorized access. R3unite Srl took all minimum security measures provided by the law and inspiring to the main international standards it took further security measures in order to minimize the risks concerning secrecy, availability and integrity of the personal data gathered and processed.
If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards
SECTION 8 – COOKIES
- Help remember and process the items in the shopping cart.
- Understand and save user’s preferences for future visits.
- Keep track of advertisements.
- Compile aggregate data about site traffic and site interactions in order to offer better site experiences and tools in the future. We may also use trusted third-party services that track this information on our behalf.
You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser settings. Since browser is a little different, look at your browser’s Help Menu to learn the correct way to modify your cookies.
The cookies used by us do not allow a person to be identified individually. Cookies do not contain any personal information so it cannot link you as a person to any name or surname. Only the IT system on which the cookie is stored can be identified via its IP address.
If the policy should be changed, the new version will be published in this page of the web site and will take effect immediately upon its posting on the website.
If we make material changes to this policy, we will notify you here that it has been updated.
If our store is acquired or merged with another company, your information may be transferred to the new owners so that we may continue to sell products to you
QUESTIONS AND CONTACT INFORMATION
If you would like to: access, correct, amend or delete any personal information we have about you, register a complaint, or simply want more information contact our Privacy Compliance Officer by email at email@example.com or mail at via Castiglioni 6, Busto Arsizio (VA), 21052, Italy [Re: Privacy Compliance Officer].
INFORMATION FOR CALIFORNIAN CONSUMERS
This part of the document uses the term “personal information” as it is defined in The California Consumer Privacy Act (CCPA).
CATEGORIES OF PERSONAL INFORMATION COLLECTED, DISCLOSED OR SOLD
In this section we summarize the categories of personal information that we’ve collected, disclosed or sold and the purposes thereof. You can read about these activities in detail in the section titled “Detailed information on the processing of Personal Data” within this document.
INFORMATION WE COLLECT: THE CATEGORIES OF PERSONAL INFORMATION WE COLLECT
We have collected the following categories of personal information about you: identifiers and internet information.
We will not collect additional categories of personal information without notifying you.
HOW WE COLLECT INFORMATION: WHAT ARE THE SOURCES OF THE PERSONAL INFORMATION WE COLLECT?
We collect the above mentioned categories of personal information, either directly or indirectly, from you when you use this application.
For example, you directly provide your personal information when you submit requests via any forms on this Application. You also provide personal information indirectly when you navigate this application, as personal information about you is automatically observed and collected. Finally, we may collect your personal information from third parties that work with us in connection with the Service or with the functioning of this Application and features thereof.
HOW WE USE THE INFORMATION WE COLLECT: SHARING AND DISCLOSING OF YOUR PERSONAL INFORMATION WITH THIRD PARTIES FOR A BUSINESS PURPOSE
We may disclose the personal information we collect about you to a third party for business purposes. In this case, we enter a written agreement with such third party that requires the recipient to both keep the personal information confidential and not use it for any purpose(s) other than those necessary for the performance of the agreement.
We may also disclose your personal information to third parties when you explicitly ask or authorize us to do so, in order to provide you with our Service.
To find out more about the purposes of processing, please refer to the relevant section of this document.
SALE OF YOUR PERSONAL INFORMATION
For our purposes, the word “sale” means any “selling, renting, releasing, disclosing, disseminating, making available, transferring or otherwise communicating orally, in writing, or by electronic means, a consumer’s personal information by the business to another business or a third party, for monetary or other valuable consideration”.
This means that, for example, a sale can happen whenever an application runs ads, or makes statistical analyses on the traffic or views, or simply because it uses tools such as social network plugins and the like.
YOUR RIGHT TO OPT OUT OF THE SALE OF PERSONAL INFORMATION
You have the right to opt out of the sale of your personal information. This means that whenever you request us to stop selling your data, we will abide by your request.
Such requests can be made freely, at any time, without submitting any verifiable request, simply by following the instructions below.
INSTRUCTIONS TO OPT OUT OF THE SALE OF PERSONAL INFORMATION
If you’d like to know more, or exercise your right to opt out in regard to all the sales carried out by this application, both online and offline, you can contact us for further information using the contact details provided in this document.
WHAT ARE THE PURPOSES FOR WHICH WE USE YOUR PERSONAL INFORMATION?
We may use your personal information to allow the operational functioning of this Application and features thereof (“business purposes”). In such cases, your personal information will be processed in a fashion necessary and proportionate to the business purpose for which it was collected, and strictly within the limits of compatible operational purposes.
We may also use your personal information for other reasons such as for commercial purposes (as indicated within the section “Detailed information on the processing of Personal Data” within this document), as well as for complying with the law and defending our rights before the competent authorities where our rights and interests are threatened or we suffer an actual damage.
We will not use your personal information for different, unrelated, or incompatible purposes without notifying you.
YOUR CALIFORNIA PRIVACY RIGHTS AND HOW TO EXERCISE THEM
THE RIGHT TO KNOW AND TO PORTABILITY
You have the right to request that we disclose to you:
- the categories and sources of the personal information that we collect about you, the purposes for which we use your information and with whom such information is shared;
- in case of sale of personal information or disclosure for a business purpose, two separate lists where we disclose:
- for sales, the personal information categories purchased by each category of recipient; and
- for disclosures for a business purpose, the personal information categories obtained by each category of recipient.
The disclosure described above will be limited to the personal information collected or used over the past 12 months.
If we deliver our response electronically, the information enclosed will be “portable”, i.e. delivered in an easily usable format to enable you to transmit the information to another entity without hindrance – provided that this is technically feasible.
THE RIGHT TO REQUEST THE DELETION OF YOUR PERSONAL INFORMATION
You have the right to request that we delete any of your personal information, subject to exceptions set forth by the law (such as, including but not limited to, where the information is used to identify and repair errors on this Application, to detect security incidents and protect against fraudulent or illegal activities, to exercise certain rights etc.).
If no legal exception applies, as a result of exercising your right, we will delete your personal information and direct any of our service providers to do so.
HOW TO EXERCISE YOUR RIGHTS
To exercise the rights described above, you need to submit your verifiable request to us by contacting us via the details provided in this document.
For us to respond to your request, it’s necessary that we know who you are. Therefore, you can only exercise the above rights by making a verifiable request which must:
- provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative;
- describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.
We will not respond to any request if we are unable to verify your identity and therefore confirm the personal information in our possession actually relates to you.
If you cannot personally submit a verifiable request, you can authorize a person registered with the California Secretary of State to act on your behalf.
If you are an adult, you can make a verifiable request on behalf of a minor under your parental authority.
You can submit a maximum number of 2 requests over a period of 12 months.
HOW AND WHEN WE ARE EXPECTED TO HANDLE YOUR REQUEST
We will confirm receipt of your verifiable request within 10 days and provide information about how we will process your request.
We will respond to your request within 45 days of its receipt. Should we need more time, we will explain to you the reasons why, and how much more time we need. In this regard, please note that we may take up to 90 days to fulfill your request.
Our disclosure(s) will cover the preceding 12 month period.
Should we deny your request, we will explain you the reasons behind our denial. We do not charge a fee to process or respond to your verifiable request unless such request is manifestly unfounded or excessive. In such cases, we may charge a reasonable fee, or refuse to act on the request. In either case, we will communicate our choices and explain the reasons behind it.