Who we are
Tenute Olbios S.a.r.l.. Via Loiri, 83 – 07026 Olbia (SS – Italia) – tel./fax +39 0789 641003 email@example.com
Our site is www.tenuteolbios.com
This policy is updated in accordance with Regulation (EU) 2016/679, (hereinafter “GDPR”) is valid and effective from 25 May 2018 and will automatically replace any pre-existing information for all users of our services and platforms.
We promote our wine and wine business and sell our products online.
As part of our activities, we collect, use, process and communicate some data concerning you, as we will describe to you. Attention: our information only concerns the services we provide directly and our platforms.
This policy does not concern other websites that you will eventually consult through the links and / or images on which you will eventually click: we therefore invite you to carefully read the privacy policies of the other sites you visit.
In addition to Italy, where we are based, we operate with other EU countries and non-EU countries, providing services and in particular by selling our products and services to users located in these countries.
With reference to our products and services, this information also applies to these cross-border processing and in the context of all our business activity, as well as to any third party suppliers we use to manage the payment and delivery of our products and the booking of our services, as well as providing and promoting any offers and discounts.
PURPOSE AND CHARACTERISTICS OF THE DATA TREATMENT
If you use our services and visit our platforms interacting with them, we become aware, with automated processes (even if you do not activate our services and do not register) of some data relating to navigation (Cookies).
However, these data reach us in an absolutely anonymous form and do not allow us to identify you, or to associate the data we know with the name and / or other personal information that traces back to you, except for the possibility that you provide them spontaneously by contacting our Customer Care service: firstname.lastname@example.org
We do not ask you for express consent to the processing of data because, being anonymous data, they are not “personal data”, that is, referable or traceable to you.
WHY WE PROCESS ANONYMOUS DATA
The data acquired as part of our activities are used for:
- provide you and improve our services
- statistical purposes management of access systems to portals and services.
Since and as long as the processing of your data takes place anonymously, you DO NOT have: the right to access, or to obtain information regarding the processing; the right to request the correction and deletion of your data and to obtain the relative communication to third party recipients; the right to be forgotten about your data; the right to restrict the processing of your data; the right to data portability.
WHICH DATA WE KNOW AND HOW WE DO
When you place an order or write to our Customer Care to ask for assistance, we acquire the personal and contact data that you communicate to us and / or that we ask you as they are essential for the fulfillment of your request for assistance (name, surname, contact address , telephone number).
From this moment, the previously anonymous data becomes “personal” data, that is, traced back or traceable to you.
The processing of this data has its legal basis in the need to process your request for assistance and make you exercise your rights.
WHEN AND WHY WE PROCESS YOUR DATA
The data acquired as part of the ecommerce service and / or Customer Care are used for:
- provide you with the assistance you request;
- profiling for statistical purposes.
- measure the effectiveness of the services.
If we intend to process your data for further and different purposes, we will notify you in advance, and you can exercise your right to revoke and limit the processing in the ways established by the GDPR.
YOUR RIGHTS AND THE POSSIBILITY OF OPPOSITIONS TO THE PROCESSING
Unless the case in wich data are processed anonymously, you have the right to obtain information regarding the processing we perform (right of access to data), to request the correction and deletion of your data and to obtain the related communication to third parties. recipients to whom we have communicated them;
- the right to be forgotten about your data;
- the right to limit the processing of your data;
- the right to data portability.
As foreseen by the articles 15-20 of the GDPR (http://www.garanteprivacy.it/regolazioneue)
If you want to exercise one of these rights, write to email@example.com
In any case, you ALWAYS have the right to lodge a complaint with a supervisory authority.
YOU CAN OPPOSE THE TREATMENT
According to the provision contained in art. 21 GDPR:
1) justifying your request with reasons related to your particular situation, you have the right to object at any time to the processing of personal data concerning you, including profiling, when the processing is carried out pursuant to Article 6, paragraph 1, letters e) or f) and therefore when the treatment:
a) it is necessary for the performance of a task of public interest or related to the exercise of public authority vested in the data controller;
b) it is necessary for the pursuit of the legitimate interest of the data controller or of third parties, provided that your interests, or your fundamental rights and freedoms do not prevail, which instead require the protection of personal data, in particular if you are a minor .
if you want to object to the processing, write to firstname.lastname@example.org
2) without having to provide reasons, you always have the right to object at any time to the processing of personal data concerning you that is carried out for direct marketing purposes, including profiling connected to direct marketing; if you want to object to the processing, write to email@example.com
HOW WE STORE YOUR DATA, AND TO WHOM WE COMMUNICATE IT
Your data, personal and otherwise, are kept only on computer storage spaces, ours and / or used by third-party companies, for which we provide and demand an adequate level of protection.
For this purpose only we transfer them and communicate them to third party recipients from whom we use the storage and hosting spaces and to all intermediaries or accessories, necessary to manage the sale, shipping and payment of the products you may have purchased.
HOW LONG WE TREAT THEM
We process and store your personal data and not all the time:
in which you use our services;
useful and corresponding, at most, to the limitation period provided for by Italian law for the exercise of your rights, and to the extent necessary to fulfill our legal obligations starting from your last interaction with us (for example, since you visited the ‘last time our platform or did you interact with our services);
useful and necessary in the event of ascertaining responsibility for hypothetical computer crimes against our platforms or the platforms of our business partners.
After this deadline your data is definitively made anonymous, so that it can no longer be traced back to you.
HOW WE PROTECT YOU
We protect your personal data by adopting all the technical and administrative security measures we deem appropriate and to reduce the risk of loss, incorrect use, unauthorized access, disclosure and tampering of data.
We have also established general rules for our employees and contractors, which are binding to protect your personal data and comply with our privacy obligations in the best way we know.
If we collaborate with a business partner, we demand reassurance on the observance, also on its part, of the measures necessary to protect the processing of your data in accordance with the GDPR.
We performed an Impact Assessment on Data Protection (VIP) with reference to automatic profiling and automated processing pursuant to art. 35 of the GDPR, which you can consult with a request to the DPO.