Politica sulla Privacy

WEBSITE PRIVACY AND COOKIE POLICY WWW.NONNASILIVI.COM

Dear Data Subject,

below you will find all the information regarding the data processing carried out on the e-commerce website www.nonnasilvi.com (hereinafter the Sito) or that arise from orders, contact requests and other operations you carry out using its features.

This document (hereinafter the "Privacy Notice") has been drafted to allow you to understand how your personal data will be processed when using the Site and to provide you with all the information you need in order to give explicit and informed consent to the processing carried out, where necessary.

As a preliminary point, the collection and processing of your personal data that you provide or that will be collected through the Website will take place in accordance with the principles and rules laid down by EU Reg. 679/2016 and the relevant Italian legislation, and therefore in compliance with the principles of lawfulness, fairness, transparency, purpose and storage limitation, data minimisation, accuracy, integrity and confidentiality.

Indice dell’informativa

1. Processing activities and data collected, purposes and legal bases
2. The Data Controller
3. Il Responsabile della protezione dei dati
4. I Destinatari dei dati
5. The data retention period
6. Data Subject’s Rights
7. Website Cookie Policy
8. Changes to this privacy notice

1. Processing activities and data collected, purposes and legal bases

1.a Conclusione del contratto ed esecuzione dei contratti di vendita mediante le funzionalità del Sito

On the Site, in application of the general terms and conditions of contract (https://nonnasilvi.com/pages/termini-e-condizioni), the following personal data are collected: the Purchaser’s first and last name, data for invoicing and issuing the related tax documents, data for shipping, such as the recipient’s name, residential or domicile addresses, and contact details such as telephone number and email address. Please note that online payments are managed by external platforms (Paypal/Shopify) and not by the owner of the Site; these providers are therefore the sole and exclusive Controllers of the data processing carried out in relation to payment, and the Data Subject is invited to read the privacy policies of those platforms and of the banking services used.

The purpose of this collection is to allow the conclusion of the sales contract between the Controller and the Data Subject–Purchaser, as well as the performance of the contract thus formed, including the stages of preparation and execution of the shipment of the goods purchased, as well as after-sales support. The collection is also intended to maintain contact with the customer throughout all of these stages, according to any specific needs that may be indicated by the Data Subject.

Furthermore, the collection and processing of personal details and other data required for invoicing are aimed at proper bookkeeping. Failure to provide these data in full may prevent or significantly delay the performance of the sales contract for the ordered goods.

The legal bases for the collection and processing in question are: the establishment and full and proper performance of the contract with the Data Subject (see Art. 6(1)(b) of EU Regulation 2016/679); compliance with the legal obligations to which the Controller is subject, for example under its bylaws, Italian tax and fiscal regulations, and regulations on public procurement and anti-mafia measures (Art. 6(1)(c) of EU Regulation 2016/679).

1.b General newsletter on the products for sale on the Website 

On the Site, the Data Subject may choose to subscribe to the general Newsletter service relating to the products present or promoted on the Site. Only the following personal data are collected: name, email address, protected by CAPTCHA.

The purpose of this collection is to send a newsletter containing general promotional information, which is therefore in no way personalized in relation to the purchases and interests of the Data Subject. Subscribing to the newsletter does not also create a personal profile on the Site, which can be requested separately by the Data Subject.

The legal basis for the collection and processing in question is the Data Subject’s express consent only (Art. 6, § 1, letter a) of EU Reg. 2016/679). If consent is not given, the Data Subject will still be able to order products on the Website.

 

1.c Browsing data, statistical surveys and analysis using aggregated data on interaction with and use of the Website

Per informazioni dettagliate relative a questa raccolta e trattamento si rinvia alla Cookie Policy del Sito(https://nonnasilvi.com/pages/politica-sulla-privacy). I dati in questione possono includere cookie, dati di utilizzo del Sito, dati anonimizzati quali identificativi numerici (ISP) che non consentono in alcun modo di risalire all’identità dell’Interessato.

The purpose of the processing is to enable the Website operator to optimise its functioning and the public offering of products, including for planning marketing and remarketing campaigns for the Website and the products offered for sale on it.

The legal bases for the collection and processing provided for here are: the explicit consent of the Data Subject for all browsing data other than technical cookies necessary for the operation of the site (Art. 6, § 1, letter a) of EU Regulation 2016/679); the Controller’s legitimate interest for all other cookies, as they are necessary for the correct and optimal display and navigation of the Site, for its functioning, and to improve both the user experience and the offer of the goods offered for sale, also taking into account the device chosen by the Data Subject, and without overriding prevailing interests, rights or fundamental freedoms of the Data Subject who, as a user of the Site, by browsing also gives explicit consent to such automated and/or anonymous processing and may at any time delete or disable cookies, as indicated in the Cookie Policy (Art. 6, § 1, letters a) and f) of EU Regulation 2016/679). If consent is not given, or cookies or other browsing data are disabled or deleted, the Data Subject may be prevented from browsing the Site or from using it correctly.

Al di là delle raccolte e dei trattamenti sopra indicati e dei relativi limiti, sul Sito non sono in corso raccolte o trattamenti di dati personali diversi e l’Interessato sarà sempre aggiornato per tempo ed in anticipo di ogni variazione alle raccolte o ai trattamenti cui sono sottoposti i suoi dati personali sul Sito.

 

2. The Data Controller

The Data Controller is solely and exclusively the company Nonna Silvi S.r.l. Società Benefit, in the person of its pro tempore legal representative, with registered office in Via delle Cascine, 1/a – 50051 Castelfiorentino (FI), VAT and Tax Code 07347870482, registered with the Companies Register (R.E.A.) of the Florence Chamber of Commerce under no. FI-697257, PEC nonnasilvisrl@pec.it. Per le comunicazioni inerenti i dati personali degli Interessati è attivo l’indirizzo di posta elettronica: [nonnasilvicommerciale@gmail.com].

 The Data Protection Officer (DPO)

The processing carried out on the Website does not require the appointment of a DPO because the Controller and its Processors do not perform any regular or systematic monitoring, nor any large-scale processing of the data necessary to provide the services, even those simply connected or ancillary to the Controller’s main activities. For any information you can always contact the Controller at the following email address: [insert privacy email].

 

4. I Destinatari dei dati

Your Personal Data may be shared with the entities listed below (the "Recipients"): entities that typically act as (internal and external) processors, namely: i) persons, companies or professional firms that provide assistance and consultancy to the Controllers in accounting, administrative, legal, tax and financial matters; entities that own the websites linked to the Website through cookies and other features; entities with whom interaction is necessary for the provision of the Services (e.g. Newsletter); entities appointed to carry out technical maintenance activities (including maintenance of network equipment and electronic communication networks); persons authorised by the Controllers to process Personal Data as strictly necessary to carry out activities closely related to the provision of the Services, who have undertaken confidentiality obligations or have an appropriate legal obligation of confidentiality (e.g. employees of the Controllers); entities, bodies or authorities to whom it is mandatory to disclose your Personal Data for Compliance purposes, or to prevent Abuses or Frauds, or by order of the authorities.

Your data are generally processed and stored within the EU. Should a Data Processor need to transfer your data, even partially, outside the EU, such transfer will only take place to countries that have been expressly recognised as offering a level of protection equivalent to that of the EU, or it will take place on the basis of appropriate safeguards, in particular in accordance with the standard contractual clauses approved by the EU Commission.

For any information you can always contact the Controller at the following email address: [nonnasilvicommerciale@gmail.com].

 

5. Data retention period

All personal data collected are stored for the period of time necessary and sufficient for the proper provision of the service requested by the Data Subject and in any event no longer than thirty days from receipt of your legitimate request for erasure.

Without prejudice to the above, the data relating to the performance of the sales contract will be retained for the proper delivery of the goods to the data subject and, in particular, the data used for issuing invoices or other transport or tax documentation will be retained until the expiry of the applicable limitation and forfeiture periods, also in order to allow the Controller to provide after-sales and warranty services, or to defend its legitimate rights and interests in out-of-court and judicial proceedings (e.g. debt collection or other disputes relating to the products).

The data relating to the newsletter and browsing data (cookies) will be retained until consent is withdrawn by the data subject, it being understood that the latter may suspend processing at any time and resume it in the future by providing their personal data again. In the event of withdrawal of consent, a specific log will be kept in order to be able to demonstrate, if requested by the Data Subject or the competent Supervisory Authority, the granting and withdrawal of such consent.

 

6. Data Subject’s Rights

L’Interessato può esercitare tutti i seguenti diritti:

1. Access your personal data pursuant to Art. 15 of EU Regulation 2016/679. This right also includes the option to obtain a copy of the personal data collected and processed by the Controller. After verifying the legitimacy of the request, the Controller will provide the requested information and a copy of the data. In the case of requests that are manifestly unfounded or excessive, in particular due to their repetitive character, the Data Subject will be required to pay the Controller a reasonable fee, to be related to the administrative costs incurred by the Controller in handling the request.
2. Request the rectification of their personal data pursuant to Art. 16 of EU Regulation 2016/679. The Controller shall notify such rectification to any recipients of the personal data pursuant to Art. 19 of EU Regulation 2016/679, unless this proves impossible or involves disproportionate effort, without prejudice to the Data Subject’s right to obtain information about the identity of such recipients.
3. Request the erasure of your personal data (so-called right to be forgotten) pursuant to and within the limits set out in Art. 17 of EU Reg. 2016/679. The Controller will communicate this request for erasure to any recipients of the personal data pursuant to Art. 19 of EU Reg. 2016/679, unless this proves impossible or involves disproportionate effort, without prejudice to the Data Subject’s right to know the identity of such recipients.
4. Request restriction of the processing of your personal data pursuant to and within the limits set out in Art. 18 of EU Reg. 2016/679. The Controller will communicate this request for restriction to any recipients of the personal data pursuant to Art. 19 of EU Reg. 2016/679, unless this proves impossible or involves disproportionate effort, without prejudice to the Data Subject’s right to know the identity of such recipients.
5. Object to the processing of their personal data under the terms and within the limits set out in Art. 21 of EU Regulation 2016/679.
6. Chiedere la portabilità dei propri dati personali, ai sensi e nei limiti stabiliti dall’art. 20 Reg. UE 2016/679. Il Titolare si riserva di verificare la fattibilità tecnica della trasmissione ad altro titolare del trattamento indicato dall’Interessato caso per caso.
7. Without prejudice to processing already carried out, withdraw at any time any consent previously given, for processing based on that legal ground.
8. Lodge a complaint with a supervisory authority pursuant to Art. 77 of EU Regulation 2016/679.

 

The Data Subject may address their requests to the Controller using the contact details provided above.

 

7. Website Cookie Policy

A cookie is a small file that a website asks the user’s browser to store on the device, so that it can remember certain information, such as the preferred language or login details. These cookies are called first-party cookies. The Controller also uses third-party cookies – that is, cookies created and made available by an entity other than the Controller – for example, to enable effective promotional and online marketing initiatives for our products.

Below is information on the various cookies used by the Website that may be installed on your devices while you browse the Website.

 Strictly necessary cookies

These cookies are necessary for the functioning of the Website and cannot be disabled. They are usually set in response to actions you take on the Website that amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but if you block them some parts of the Website may not work properly.

These cookies do not store your personal information and therefore do not require your explicit consent. 

Performance cookies

These cookies allow us to count visits to the Website and their sources: this data enables us to measure and improve the performance of the Website, to know which pages are the most and least popular, and to see how visitors move around the Website. All information collected by these cookies is automatically aggregated and analyzed in anonymous form.

You can choose to withhold consent to the use of these cookies. 

Cookie dei social media

Questi cookie sono creati da una serie di servizi di social media che abbiamo aggiunto al sito per consentire di condividere i nostri contenuti con i tuoi amici e connessioni. Con questi cookie è possibile monitorare l’attività del tuo browser Internet in altri siti e così creare un profilo dei tuoi interessi. Questi cookie sono quelli che impattano sul contenuto e sui messaggi pubblicitari che visualizzi in altri siti Web che visiti.

You can choose to withhold consent to the use of these cookies. 

Functionality cookies

These cookies enable the Site to provide advanced functionality and personalization. They allow us to offer you additional services, either by ourselves or with the help of third parties who make their services available on our Site.

If you do not consent to these cookies, some or all of these services may not function properly. 

Cookie per pubblicità mirata

These cookies are set by our advertising partners.

They may be used by these companies to build a profile of your interests and show you relevant adverts on other sites. They do not directly store personal information and are based solely on identifying your browser and device.

If you refuse these cookies, you will receive less targeted advertising on sites other than this Website.

  

To disable cookies, except for those that are strictly necessary, you can refuse them when you first access the Website by using the reject function on the dedicated banner or by clicking on "x” on the banner itself. Alternatively, after a previous acceptance, you can disable the Website’s cookies through the features of the internet browser you use for browsing. For more information, please refer to the support information of the most widely used internet browsers, noting that we do not verify such information as it relates to third-party services:

The list of cookies:

Cookie Domain Description Duration Type keep_alive nonnasilvi.com The keep_alive cookie is used to keep a user’s session active on a website, preventing automatic logout during periods of inactivity. 1 hour Necessary secure_customer_sig nonnasilvi.com Shopify sets this cookie to be used in connection with customer login. 1 year Necessary localization nonnasilvi.com The localization cookie stores user preferences for language and region to provide a personalized browsing experience. 1 year Necessary cart_currency nonnasilvi.com Shopify sets this cookie to remember the user’s country of origin and to display the correct transaction currency. 14 days Necessary _tracking_consent .nonnasilvi.com Shopify sets this cookie to store a user's preferences if a merchant has set up privacy rules in the visitor's region. 1 year Necessary _cmp_a .nonnasilvi.com The _cmp_a cookie is typically used for consent management, helping websites comply with legal requirements by storing user consent preferences. 1 day Necessary _shopify_y .nonnasilvi.com This cookie is associated with Shopify's analytics suite. 1 year Analytics _shopify_s .nonnasilvi.com This cookie is associated with Shopify's analytics suite. 1 hour Analytics _orig_referrer .nonnasilvi.com Shopify sets this cookie to be used in connection with the shopping cart. 14 days Analytics _landing_page .nonnasilvi.com Shopify installs this cookie to track landing pages. 14 days Analytics CLID www.clarity.ms Microsoft Clarity set this cookie to store information about how visitors interact with the website. The cookie helps to provide an analysis report. The data collection includes the number of visitors, where they visit the website, and the pages visited. 1 year Analytics _shopify_sa_t .nonnasilvi.com Shopify sets this cookie for marketing and referrals. 1 hour Analytics _shopify_sa_p .nonnasilvi.com Shopify sets this cookie for marketing and referrals. 1 hour Analytics shopify_pay_redirect nonnasilvi.com Shopify sets this cookie to enable secure online payment and checkout. 1 hour Necessary __kla_id nonnasilvi.com Klaviyo sets this cookie to collect information on the visitor’s behavior. This information is used for internal analytics and to optimise the website. It also registers if the visitor has subscribed to a newsletter. 1 year 1 month 4 days Analytics _clck .nonnasilvi.com Microsoft Clarity sets this cookie to retain the browser’s Clarity User ID and settings specific to that website. This ensures that actions taken during subsequent visits to the same website will be linked to the same user ID. 1 year Analytics _clsk .nonnasilvi.com Microsoft Clarity sets this cookie to store and consolidate a user’s pageviews into a single session recording. 1 day Analytics _fbp .nonnasilvi.com Facebook sets this cookie to store and track interactions. 3 months Analytics MUID .bing.com Microsoft Bing sets this cookie to identify unique web browsers visiting Microsoft sites. These cookies are used for advertising, site analytics, and other operational purposes. 1 year 24 days Advertisement MR .c.bing.com This cookie, set by Bing, is used to collect user information for analytics purposes. 7 days Analytics SRM_B .c.bing.com Used by Microsoft Advertising as a unique ID for visitors. 1 year 24 days Performance SM .c.clarity.ms Microsoft Clarity uses this cookie to synchronize the MUID across Microsoft domains. session Analytics MUID .clarity.ms Microsoft Bing sets this cookie to identify unique web browsers visiting Microsoft sites. These cookies are used for advertising, site analytics, and other operational purposes. 1 year 24 days Advertisement MR .c.clarity.ms This cookie, set by Bing, is used to collect user information for analytics purposes. 7 days Analytics ANONCHK .c.clarity.ms The ANONCHK cookie, set by Bing, is used to store a user's session ID and also verify the clicks from ads on the Bing search engine. The cookie helps in reporting and personalization as well. 10 minutes Advertisement lastExternalReferrerTime nonnasilvi.com never Other klaviyoOnsite nonnasilvi.com never Other lastExternalReferrer nonnasilvi.com never Other getItem nonnasilvi.com never Other setItem nonnasilvi.com never Other removeItem nonnasilvi.com never Other clear nonnasilvi.com never Other length nonnasilvi.com never Other key nonnasilvi.com never Other user-location-data nonnasilvi.com session Other _cltk nonnasilvi.com session Other klaviyoPagesVisitCount nonnasilvi.com session Other _pay_session shop.app Shopify sets this cookie to enable secure checkout and payment functionality on the website. session Necessary

 

8. Changes to this privacy notice

La presente informativa sarà rivista dal Titolare con regolarità e corretta in caso di variazioni da comunicare agli Interessati. Ogni variazione sarà opportunamente segnalata sul Sito e con altre modalità, laddove appropriato. In ogni caso nessun nuovo o diverso trattamento sarà intrapreso dal Titolare senza aver prima proceduto all’informazione degli Interessati.