Privacy Policy
The purpose of this document is to inform the natural person (hereinafter "Data Subject") regarding the processing of his personal data (hereinafter "Personal Data") collected by the data controller, Fabrizio Domenico Scuratti, Via C. Pessi 4, 20834, Nova Milanese, MB, Tax Code SCRFRZ67R17F704J, VAT number 07039920967, e-mail address takeinshop22@gmail.com, (hereinafter "Data Controller""), through the www.takeinshop.com website (hereinafter "Application").
Changes and updates will be binding as soon as they are published on the Application. In case of non-acceptance of the changes made to the Privacy Policy, the interested party is required to cease using this Application and may request the Owner to delete their Personal Data.
1 Categories of Personal Data processed
The Data Controller processes the following types of Personal Data provided voluntarily by the Data Subject:
· Contact details: name, surname, address, e-mail, telephone, images, authentication credentials, any additional information sent by the interested party, etc.
· Tax and payment data: tax code, VAT number, credit card details, bank account details, etc.
The Data Controller processes the following types of Personal Data collected automatically:
· Technical data: Personal Data produced by the devices, applications, tools and protocols used, such as, for example, information on the device used, IP addresses, browser type, type of Internet provider (ISP). Such Personal Data may leave traces that, in particular when combined with unique identifiers and other information received from servers, can be used to create profiles of natural persons
· Navigation and usage data of the Application: such as, for example, pages visited, number of clicks, actions performed, duration of sessions, etc.
Failure by the Data Subject to provide Personal Data for which there is a legal or contractual obligation or if they constitute a necessary requirement for the conclusion of the contract with the Data Controller, will make it impossible for the Data Controller to establish or continue the relationship with the Data Subject.
The interested party who communicates to the Data Controller Personal Data of third parties is directly and exclusively responsible for their origin, collection, processing, communication or dissemination.
2 Cookies and similar technologies
The Application uses cookies, web beacons, unique identifiers and other similar technologies to collect Personal Data of the Data Subject on the pages, links visited and other actions that are performed when the Data Subject uses the Application. They are stored before being transmitted to the next visit of the interested party. You can view the complete Cookie Policy at the following address: https://takeinshop.com/it/content/cookie-policy
3 Legal basis and purpose of the processing
The processing of Personal Data is necessary:
· for the execution of the contract with the interested party and precisely:
1 fulfillment of any obligation deriving from the pre-contractual or contractual relationship with the interested party
2 registration and authentication of the interested party: to allow the interested party to register on the Application, access and be identified also through external platforms
3 support and contact with the interested party: to respond to the requests of the interested party
4 payment management: to manage payments by credit card, bank transfer or other tools
· by legal obligation and precisely:
1 the fulfillment of any obligation under current laws, laws and regulations, in particular, in tax and tax matters
· on the basis of the legitimate interest of the Data Controller, for:
1 email marketing purposes of products and / or services of the Data Controller to directly sell the products or services of the Data Controller using the e-mail provided by the Data Subject in the context of the sale of a product or service similar to the one being sold
2 management, optimization and monitoring of the technical infrastructure: to identify and solve any technical problems, to improve the performance of the Application, to manage and organize information in a computer system (e.g. server, database, etc.)
3 security and anti-fraud: to guarantee the security of the Owner's assets, infrastructures and networks
4 statistics with anonymous data: to perform statistical analysis on aggregate and anonymous data to analyze the behavior of the interested party, to improve the products and / or services provided by the Data Controller and better meet the expectations of the interested party
· on the basis of the consent of the interested party, for:
1 profiling of the interested party for marketing purposes: to provide the interested party with information on the products and / or services of the Data Controller through automated processing aimed at collecting personal information with the aim of predicting or evaluating his preferences or behaviors
2 retargeting and remarketing: to reach with a personalized advertisement the interested party who has already visited or has shown interest in the products and / or services offered by the Application using his Personal Data. The interested party can opt-out by visiting the page of the Network Advertising Initiative
3 marketing purposes of products and / or services of the Data Controller: to send information or commercial and / or promotional materials, to carry out direct sales activities of products and / or services of the Data Controller or to carry out market research with automated and traditional methods
On the basis of the legitimate interest of the Data Controller, the Application allows interaction with external platforms or social networks whose processing of Personal Data is governed by the respective privacy policies to which reference should be made. The interactions and information acquired by this Application are in any case subject to the privacy settings that the interested party has chosen on these platforms or social networks. This information – in the absence of a specific consent to the processing for further purposes – is used for the sole purpose of allowing the use of the Application and providing the requested information and services.
The Personal Data of the Data Subject may also be used by the Data Controller to protect itself in court before the competent judicial offices.
4 Processing methods and recipients of Personal Data
The processing of Personal Data is carried out using paper and IT tools with organizational methods and with logic strictly related to the purposes indicated and through the adoption of adequate security measures.
Personal Data are processed exclusively by:
· persons authorized by the Data Controller of Personal Data who are committed to confidentiality or have an appropriate legal obligation of confidentiality;
· subjects who operate independently as separate data controllers or by subjects designated as data processors by the Data Controller in order to carry out all the processing activities necessary to pursue the purposes referred to in this statement (for example, business partners, consultants, IT companies, service providers, hosting providers);
· subjects or entities to whom it is mandatory to communicate Personal Data by law or by order of the authorities.
The subjects listed above are required to use the appropriate safeguards to protect Personal Data and may only access those necessary to perform the tasks assigned to them.
Personal Data will not be disclosed indiscriminately in any way.
5 Place
If necessary, Personal Data may be transferred to entities located outside the territory of the European Economic Area (EEA). Whenever Personal Data is transferred outside the EEA, the Data Controller will take all appropriate and necessary contractual measures to ensure an adequate level of protection of Personal Data, including - among others - agreements based on standard contractual clauses for the transfer of data outside the EEA, approved by the European Commission. To request information on the specific guarantees adopted, the interested party can contact the Data Controller at the following e-mail address takeinshop22@gmail.com.
6 Fully automated decision-making
The Data Controller uses fully automated decision-making processes that can produce legal effects for the interested party or significantly affect it and that operate according to these criteria: The purchase process on www.takeinshop.com is fully automated: The customer chooses the product and places it in the cart. From the shopping cart, the customer chooses to complete the order by clicking "Purchase process". The next page asks for personal information and consents useful for the management of the order. Continuing, the personal information completion page opens. On the next page are proposed in the list of available couriers with relative price from which the customer can choose the favorite. Then the customer chooses the preferred payment method, accepts the terms of service and "Send order". The order is concluded and for all subsequent phases until delivery, the customer will be notified by email and in his account any change in the status of the order. .
7 Personal Data retention period
Personal Data will be kept for the period of time necessary to fulfill the purposes for which they were collected, in particular:
· for purposes related to the execution of the contract between the Data Controller and the Data Subject, they will be kept for the entire duration of the contractual relationship and, after termination, for the ordinary limitation period of 10 years. In the case of judicial litigation, for the entire duration of the same, until the exhaustion of the terms of practicability of the appeal actions
· for purposes related to the legitimate interest of the Data Controller, they will be kept until the fulfillment of this interest
· For the fulfillment of a legal obligation, by order of an authority and for protection in court, they will be kept in compliance with the timing provided for by these obligations, regulations and in any case until the completion of the limitation period provided for by the rules in force
· for purposes based on the consent of the interested party, they will be kept until the revocation of consent
At the end of the retention period, all Personal Data will be deleted or stored in a form that does not allow the identification of the Data Subject.
8 Rights of the interested party
Data Subjects may exercise certain rights with reference to Personal Data processed by the Data Controller. In particular, the interested party has the right to:
· be informed about the processing of their Personal Data
· withdraw consent at any time
· limit the processing of your Personal Data
· oppose the processing of your Personal Data
· access your Personal Data
· verify and request the correction of your Personal Data
· obtain the limitation of the processing of their Personal Data
· obtain the cancellation of their Personal Data
· transfer your Personal Data to another holder
· lodge a complaint with the supervisory authority for the protection of their Personal Data and/or take legal action.
To exercise their rights, interested parties can address a request to the following e-mail address takeinshop22@gmail.com. Requests will be processed by the Data Controller immediately and processed as soon as possible, in any case within 30 days.
Last update: 29/08/2023