PRIVACY POLICY

Information document pursuant to and in accordance with Article 13 Regulation (EU) 2016/679 (GDPR)

Pursuant to Regulation (EU) 2016/679 (hereinafter “GDPR”), this page describes how personal data are processed. his is a disclosure that is made pursuant to Art. 13 GDPR. This information does not apply to other third-party websites that may be consulted through links on this website, for which no responsibility is accepted.

 

Personal data that can be processed

Personal data: any information concerning an identified or identifiable natural person (“data subject“); an identifiable person is any natural person who can be identified, directly or indirectly, by reference in particular to an identifier such as a name, an identification number, location data, an online identifier, or to one or more features of his or her physical, physiological, genetic, mental, economic, cultural or social identity (C26, C27, C30 GDPR).

Data of contractors/users.

 

Navigation data

The computer systems and software procedures used to operate this site acquire, in the course of their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.

This category of data includes IP addresses or domain names of computers and terminals used by users, the addresses in URI/URL (Uniform Resource Identifier/Locator) notation of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters related to the user’s operating system and computer environment.

 

Data communicated voluntarily.

The optional, explicit and voluntary sending of messages to the contact addresses indicated on this site and/or the completion of data collection forms involves the subsequent acquisition of the sender’s address, which is necessary to respond to requests, as well as any other personal data entered.

Information about the processing of personal data carried out through social media platforms

About the processing of personal data carried out by the operators of the Social Media platforms used by the Owner, please refer to the information rendered by them through their respective privacy policies. The Owner processes personal data conferred by users through the pages of dedicated Social Media platforms, in order to manage interactions with users (comments, public posts, etc.) and in compliance with current regulations.

 

Specific disclosures

Specific disclosures may be present on the pages of the Site in relation to particular services or processing of the data provided.

 

Cookies and other tracking systems. What are they? What are they for?

For Cookies and other tracking systems see the cookies policy found in the footer of the site and at the following link.

 

1. WHO IS THE DATA CONTROLLER? HOW TO CONTACT HIM?

The Data Controller is ANGELO CAPPELLINI & C. S.R.L. A SOCIO UNICO, with registered office in Via Milano no. 39 – 22060 Cabiate (CO) in the person of its pro-tempore Legal Representative, whom you may contact for any information by e-mail privacy@acluxurygroup.com

2. PURPOSE OF PROCESSING, LEGAL BASIS, PERIOD OF DATA RETENTION AND NATURE OF CONFERMENT

In addition to navigation, personal data will be processed for:

3. TO WHOM WILL PERSONAL DATA BE DISCLOSED? RECIPIENTS OF THE DATA

Personal data will be disclosed, also according to the purposes envisaged in specific areas, to entities that will process the data as autonomous Data Controllers, or Data Processors (Art. 28 GDPR) and processed by individuals (Art. 29 GDPR) acting under the authority of the Data Controller and Data Processors on the basis of specific instructions given regarding the purposes and methods of processing, for specific purposes according to the area of reference. Data will be disclosed to recipients in the following categories:

  • Subjects, who provide services for the website and communication networks, including e-mail, host and website management;
  • Subjects based in Italy, with whom the Owner has signed agreements and prior consent, where applicable;
  • For direct marketing, prior consent to subjects for the management of direct marketing activities;
  • Competent authorities for fulfillment of legal obligations and/or provisions of public bodies, upon request

A list of Data Processors is available by writing to privacy@acluxurygroup.com or the other contact details above.

 

4. WILL THE DATA BE TRANSFERRED TO NONSEE COUNTRIES?

Personal data will be transferred to countries outside the EEA in order to fulfill related purposes according to the data processing purposes. The data will be transferred according to Article 44 et seq. of the GDPR:

Art. 45 to third country international organizations for which the Commission has intervened with an adequacy assessment: country Switzerland, for site hosting, management, development and maintenance services.

In case of consent to the release of certain categories of cookies and/or in general in case of transfer outside the European Economic Area, the transfer will be carried out in compliance with Articles 44 et seq. of Reg. UE 2016/679. For information about the guarantees inherent in the transfer of data outside the EEA write to privacy@acluxurygroup.com.

 

5. IS THERE AN AUTOMATED PROCESS?

Personal data will be subject to traditional manual, electronic, and automated processing. It should be noted that fully automated decision-making processes are not carried out.

With reference to the profiling activity, possibly carried out upon the express consent of the interested party as indicated in the purposes, it will be carried out through the intervention of the operator who will process the profile of the interested party and analyze his habits and consumption choices, in order to improve the commercial offer and services of the owner (non-automated profiling).

 

6. WHAT ARE YOUR RIGHTS? HOW CAN YOU EXERCISE THEM?

You may assert your rights as expressed in Art. 15 et seq. GDPR, by contacting the Data Controller at the e-mail address privacy@acluxurygroup.com, or at the contacts listed above. You have the right, at any time, to request access to your personal data (art.15), rectification (art.16), deletion of the same (art.17), and restriction of processing (art.18). The data controller shall communicate (art. 19) to each of the recipients to whom the personal data were transmitted any rectification or deletion or restriction of processing carried out. The data controller shall notify the data subject of these recipients if the data subject so requests. In the cases provided for, you have the right to the portability of your data (art.20), in which case it will be provided to you in a structured, commonly used, machine-readable format. He or she has the right to object (Art.21) at any time to the processing of data based on legitimate interest, and in cases where the legal basis is consent, he or she has the right to revoke the consent given without affecting the lawfulness of the processing based on the consent before revocation.

To stop receiving automated direct marketing communications (e-mail, SMS-type messages, instant messaging) write an e-mail to privacy@acluxurygroup.com with the subject line “unsubscribe from automated” or use our automatic unsubscribe systems provided for e-mail only (opt-out).

To stop receiving traditional direct marketing communications (operator phone calls and paper mail) write an e-mail to privacy@acluxurygroup.com with the subject line “unsubscribe from traditional.”

To stop receiving marketing communications, write an e-mail to privacy@acluxurygroup.com with the subject line “unsubscribe marketing.”

You may revoke your consent to (non-automated) profiling by writing an e-mail to privacy@acluxurygroup.com with the subject line “no profiling.”

In the event that the data subject believes that the processing of personal data carried out by the Data Controller is in violation of the provisions of Regulation (EU) 2016/679, the data subject has the right to lodge a complaint with the Supervisory Authority, in particular in the member state where the data subject normally resides or works or in the place where the alleged violation of the regulation occurred (Garante Privacy https://www.garanteprivacy.it/), or to take appropriate legal action.

 

7. CHANGES TO THE DISCLOSURE

The Owner reserves the right to change, update, add or remove portions of this policy. In order to facilitate verification and modification of the text, the disclosure will contain the date it was updated.

 

Update date: November the 23rd, 2023

***