Privacy policy

PRIVACY POLICY (13 REG. EU 2016/679 GDPR)

Code on the Protection of Personal Data (Legislative Decree No. 196 of June 30, 2003, the "Code") as well as by the GDPR, European Regulation 2016/679 (the "Regulation") in force since May 25, 2018.

Information on the processing of personal data

This document in compliance with the provisions of Articles 13 and 14 of GDPR Reg.EU 2016/679 (European Regulation for the Protection of Personal Data), constitutes a complete information for the processing of your personal data while browsing the website www.persianedambrosio.it

Data controller: D'AMBROSIO S.r.l. Via Madonna del Ponte, snc84022 Campagna (SA) / info@persianedambrosio.it

D'AMBROSIO S.r.l. has appointed its own Data Protection Officer (DPO) who can be contacted using the contact us section on the website or the following email: dpo@persianedambrosio.it

Data Processed
The types of data that are processed are data that are indispensable for the use you make of our website.
Mainly we only use the information that users who browse our site (whether private clients, companies or professionals) provide us through explicit consent.

Our goal is to illustrate and sell our products and services as well as provide assistance that can be requested at any time through the following forms:
1)Contact form - Data processed: first and last name, email, phone number.
2) Newsletter subscription - Data processed: email address.
3) Product registration and billing - Data processed: first name, last name, tax code (or VAT number), address, email, phone, unique code, pec.

System Data
The computer systems and software procedures responsible for the operation of the Site acquire in the course of their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.

This category of data includes IP addresses or domain names, of the computers used by users connecting to the Website, the URI (Uniform Resource Identifier) notation addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error) and other parameters related to the user's operating system and computer environment.

These data are used for the sole purpose of obtaining anonymous statistical information on the use of the Site and to check its correct functioning, specifying that they are deleted immediately after processing.

Browsing Cookies
Any use of Cookies or other tracking tools by this Application where not otherwise specified, is for the purpose of providing the Service you requested, in addition to the additional purposes described herein, in particular: to provide you with easier navigation on the Site; to allow easier access to users registered on the Site and other initiatives offered through the Site; to provide a higher level of security, statistical analysis (e.g. in relation to traffic on the Site) and system administration.

Session cookies are stored in a temporary memory and are deleted when the user closes the browser; they also avoid the use of other computer techniques potentially detrimental to the confidentiality of users' browsing and do not allow the acquisition of personal data identifying the user. We refer all information to the Automatic Cookies that can be consulted in the appropriate section.

Types of Data Collected
Personal Data is freely provided by the User for the purpose of commercial activities on our site. If the User refuses to communicate his/her data through the appropriate format, it may be impossible to provide the requested Services.

With your consent, some of the data disclosed, such as your email address, may be used for marketing purposes for commercial purposes.

The user may, however, at any time request not to receive further communications by following the directions at the bottom of the e-mail messages received or by contacting the Data Controller and/or the Data Protection Officer.

Purposes and legal basis for processing
The data provided will be processed, in accordance with and to the effects of the GDPR, for the following purposes:
- Instrumental to the establishment and execution of the existing relationship;
- Giving assistance in case it is necessary to identify the customer;
- Fulfilling legal obligations;
- Promotional and commercial information on products and services distributed.

Method of treatment

Personal data are processed using manual, computer and automated systems. 

Personal data will be kept only as long as necessary to fulfill the purpose for which it was collected or to meet legal or regulatory requirements.

The Data Controller shall take specific security measures in order to ensure that the Processing is carried out in compliance with the GDPR, having particular regard to the prevention of the loss of such data, unlawful or incorrect use or unauthorized access to databases.

Server and Web site
The Web site is an interface; data are stored on a single central secure and controlled server. If registration is provided, the user will be able to access his or her data using login credentials.

Recipients of the data
We guarantee that the data will NOT be transferred to third parties outside the relationship and in particular will NOT be transferred to non-EU subjects.
The data may be communicated to the following recipients:
- employees and collaborators of our company D'AMBROSIO s.r.l. who will process the data in the capacity of "data processor" or "data controller";
- natural and legal persons, or professional firms, who provide our company with services and activities of assistance and advice on fiscal and legal matters or who carry out activities necessary for the execution of the contractual relationship;
- companies for the management of opinions on your purchasing experience.

Data Retention Period
The data you provide will be processed for as long as your interest in maintaining a living relationship with our website and being informed and updated about our products and services remains. However, billing data (if any) will be retained by law for 10 years starting from the date of issuance.

Communication and Dissemination of Data
The personal data collected on the Site are not subject to dissemination or communication and will not be sold or transferred to third parties.
This is without prejudice, in any case, to the communication or dissemination of data required, in accordance with the law, by police forces, judicial authorities, information and security bodies or other public entities for purposes of defense or state security or the prevention, detection or suppression of crimes.

Rights of the data subject
Pursuant to the European Regulation 679/2016 (GDPR) and national legislation, the data subject may in the manner and within the limits provided by the current legislation, exercise the following rights:

  • request confirmation of the existence of personal data concerning him/her (data subject's right of access - Article 15 of Regulation 679/2016);
  • Know its origin;
  • Receive intelligible communication;
  • Have information about the logic, methods and purposes of processing;
  • request the updating, rectification, integration, deletion, transformation into anonymous form, and blocking of data processed in violation of the law, including data no longer necessary to achieve the purposes for which they were collected (right to rectification and deletion - Articles 16 and 17 of Regulation 679/2016);
  • Right to restrict and/or object to the processing of data concerning him/her (Article 18 of Regulation 679/2016);
  • Right of revocation;
  • Right to data portability (Article 20 of Regulation 679/2016);
  • in cases of consent-based processing, receive their data provided to the data controller, in a structured, machine-readable form and in a format commonly used by an electronic device;
  • The right to lodge a complaint with the Supervisory Authority (data subject's right of access - Article 15 of Regulation 679/2016 (www.garanteprivacy.it)

Access to your data and their rectification and restriction can be performed by writing to the above-mentioned contact details. Permanent cancellation or revocation of consent is possible by contacting us through the contact form or by responding to our communications through appropriate links (unsubscribe). You may at any time request information and/or changes in the management of your data at the following address: dpo@persianedambrosio.it

Security of your personal data
We follow strict security procedures in the storage and disclosure of personal data to protect it against accidental loss, destruction or damage. The data that users provide to us is protected with SSL (Secure Socket Layer) technology. SSL is the standard method of encrypting personal data and credit card numbers that enables their secure transfer over the Internet.

Credit Card Data
We do not handle credit card data and other forms of payment that may be available on our website. Credit card data is processed and stored by the banking system, which handles credit card transactions. It is always the banking system that processes and stores the data if you request that recurring payment be made by automatic credit card charge or that the data be stored so that you do not have to provide it when making new purchases. The payment banking system acts as the data controllerby providing the information and requesting, if necessary, consent for processing.