Data Controller
Shopping Service Ditta individuale di Julian Gjoka
Via Montanara, 4
56025 Pontedera (Pisa)
Owner's email address: violeta.cascina@gmail.com
Types of Data collected
Among the Personal Data collected by this Website, either independently or through third parties, are: Cookies; Usage Data; email address; first name; last name.
Complete details on each type of data collected are provided in the dedicated sections of this privacy policy or through specific informational texts displayed prior to the data collection itself. Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically during the use of this Website. Unless otherwise specified, all Data requested by this Website is mandatory. If the User refuses to provide them, this Website may not be able to provide the Service. In cases where this Website specifies some Data as optional, Users are free to refrain from communicating such Data without any consequences on the availability or functioning of the Service. Users who have doubts about which Data are mandatory are encouraged to contact the Data Controller. Any use of Cookies - or other tracking tools - by this Website or by third-party service providers used by this Website, unless otherwise specified, is intended to provide the Service requested by the User, in addition to any other purposes described in this document and in the Cookie Policy, if available.
The User assumes responsibility for Personal Data of third parties obtained, published, or shared through this Website and guarantees to have the right to communicate or disclose them, freeing the Data Controller from any liability towards third parties.
Methods and place of processing of the collected Data
Processing methods
The Data Controller processes Personal Data relating to the User if one of the following conditions applies:
- The User has given consent for one or more specific purposes. Note: In some jurisdictions, the Data Controller may be permitted to process Personal Data without the User's consent or another legal basis specified below until the User objects ("opt-out") to such processing. However, this is not applicable if the processing of Personal Data is governed by European legislation on the protection of Personal Data.
- Processing is necessary for the performance of a contract with the User and/or for pre-contractual measures.
- Processing is necessary to comply with a legal obligation to which the Data Controller is subject.
- Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Data Controller.
- Processing is necessary for the purposes of the legitimate interests pursued by the Data Controller or by a third party.
It is always possible to ask the Data Controller to clarify the specific legal basis for each processing operation and in particular whether the processing is based on law, provided for by a contract, or necessary to enter into a contract.
Location
The Data is processed at the Data Controller's operating offices and in any other place where the parties involved in the processing are located. For further information, please contact the Data Controller. The User's Personal Data may be transferred to a country other than their own. For more details regarding the processing location, the User can refer to the section concerning the details of Personal Data processing.
The User has the right to obtain information regarding the legal basis of data transfers outside the European Union or to an international organization governed by public international law or established by two or more countries, such as the United Nations (UN), as well as information about the security measures taken by the Data Controller to protect the Data.
The User can verify whether one of the described transfers takes place by examining the section of this document concerning the details of Personal Data processing or by requesting information from the Data Controller using the contact details provided at the beginning.
Retention period
The Data is processed and stored for the time necessary for the purposes for which it was collected.
Therefore:
- Personal Data collected for purposes related to the performance of a contract between the Data Controller and the User will be retained until the completion of such contract.
- Personal Data collected for purposes related to the legitimate interests of the Data Controller will be retained until such interests are fulfilled. The User can obtain further information regarding the legitimate interest pursued by the Data Controller in the relevant sections of this document or by contacting the Data Controller.
When processing is based on the User's consent, the Data Controller may retain Personal Data longer until such consent is revoked. Additionally, the Data Controller may be obliged to retain Personal Data for a longer period in compliance with a legal obligation or upon order of an authority.
At the end of the retention period, Personal Data will be deleted. Therefore, upon expiration of this period, the right to access, delete, rectify, and the right to data portability cannot be exercised.
Purposes of the processing of collected data
The User's Data is collected to allow the Data Controller to provide the Service, fulfill legal obligations, respond to requests or enforcement actions, protect its rights and interests (or those of Users or third parties), detect fraudulent activities, as well as for the following purposes: Statistical purposes, Displaying content from external platforms, Tag management, Contacting the User, and Registration and authentication.
For detailed information on the purposes of processing and the Personal Data processed for each purpose, Users can refer to the section "Details on the processing of Personal Data."