Privacy policy

Informativa estesa sul trattamento dei dati personali

Informativa sul trattamento dei dati personali (gdpr 679/2016)

Simplified Privacy Policy
The purpose of the privacy policy is to provide maximum transparency regarding the information the site collects and how it uses it.
In compliance with the obligations arising from national (Legislative Decree No. 196 of June 30, 2003, Code for the Protection of Personal Data, as amended) and European (European Regulation for the Protection of Personal Data No. 679/2016, GDPR) legislation, this site respects and protects the privacy of visitors and users, making every possible and proportionate effort not to infringe the rights of users.
In particular, this site does not publish advertisements, does not use data for the purpose of sending advertisements, however, it does make use of third-party services in order to improve the use of the site, third parties who may collect user data and then use it to send personalized advertisements on other sites. For example, the site uses social plugins to make it easier to share articles on social networks. Such plugins are configured to send cookies (and thus possibly collect data) only after the user clicks through.
For more information you can read the full policy below.

Full disclosure

Legal basis for processing
This site processes data primarily on the basis of users’ consent.
The provision of consent is done through the banner placed at the bottom of the page, or through the use or consultation of the site, as a conclusive behavior. By using or consulting the site, visitors and users approve this privacy policy and consent to the processing of their personal data in the manner and for the purposes described below, including possible disclosure to third parties if necessary for the provision of a service. Additional consents related to the specific purpose of the service are collected through the communication or service request forms.
The provision of data and therefore consent to the collection and processing of data is optional, the User can deny consent, and can revoke at any time a consent already provided (via the banner located at the bottom of the page or the browser settings for cookies). However, denying consent may result in the inability to provide certain services and the site browsing experience would be impaired.

Purposes of the processing
The processing of data collected from the site, in addition to the purposes related, instrumental and necessary to the provision of the service, is aimed at the following purposes:

Statistics
Collection of data and information in an aggregate and anonymous form only in order to verify the proper functioning of the site and to improve its performance. None of this information is related to the physical person-User of the site, and does not allow in any way its identification.

Security
Collection of data and information in order to protect the security of the site (spam filters, firewalls, virus detection) and Users and to prevent or expose fraud or abuse against the website. The data are automatically recorded and may possibly include personal data (Ip address) that could be used, in accordance with relevant laws, in order to block attempts to damage the website itself or to harm other users, or otherwise harmful or criminal activities. Such data are never used for User identification or profiling and are deleted periodically. No consent is required.

Ancillary activities
Disclose data to third parties who perform functions necessary or instrumental to the operation of the service (e.g., Instant Messaging), and to enable third parties to perform technical, logistical, and other activities on our behalf. Providers have access only to personal data that are necessary to perform their tasks, and agree not to use the data for other purposes, and are required to process personal data in accordance with applicable regulations.

Data collected
This site collects user data in two ways.

Data collected in an automated manner (Cookies)
During users’ browsing, information may be collected and stored temporarily through the use of cookies. The information collected is:

  • Browser type;
  • Parameters of the device used to connect to the site;
  • Date and time of visit;
  • Visitor’s origin (referral) and exit web page;
  • Number of clicks, if any.

For more information on the use of cookies visit the appropriate section at this address: Cookie Policy

This data is used for statistical and analytical purposes, in aggregate form only. The IP address is anonymized as required by the European regulation.

Data provided voluntarily
The site may collect other data in case of voluntary use of services by users, such as reservations and/or communications (contact form), which will be used exclusively for the provision of the requested service. This is information regarding name, place and date of birth, tax code, address, VAT number, telephone number, mobile number, email address kept in the mail client and/or back-office of the site itself.

Period of data retention
The data collected by the site during its operation are kept for the time strictly necessary to carry out the specified activities (which usually does not exceed 30 days with some exceptions). Upon expiration, the data will be deleted or anonymized, unless there is no further purpose for its retention.

Transfer of collected data to third parties
The data collected by the site is generally not provided to third parties, except in specific cases: legitimate request by the judicial authority and only in cases provided by law; if it is necessary for the provision of a specific service requested by the User; for the performance of security checks or optimization of the site.

Transfer of data to countries outside the EU
This site may share some of the data collected with services located outside the European Union area. In particular with Google, Facebook and Microsoft (LinkedIn) via social plugins and the Google Analytics service. The transfer is authorized under specific decisions of the European Union and the Italian Data Protection Authority, in particular Decision 1250/2016 (Privacy Shield – here the information page of the Italian Data Protection Authority), so no further consent is needed. The companies mentioned above guarantee their adherence to the Privacy Shield.

Security measures
We process visitor/user data lawfully and fairly, taking appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of data. We are committed to protecting the security of your personal information during its submission, using Secure Sockets Layer (SSL) software, which encrypts information in transit. The processing is carried out by means of computer and/or telematic tools, with organizational methods and logics strictly related to the stated purposes. In addition to the Data Controller, in some cases, categories of appointees involved in the organization of the site or external parties (such as third-party technical service providers, hosting providers) may have access to the data.

User Rights
Pursuant to European Regulation 679/2016 (GDPR) and Article 7 of Decree No. 196 of June 30, 2003, the User may, in the manner and within the limits provided by the current legislation, exercise the following rights:

  • To object in whole or in part, for legitimate reasons, to the processing of personal data concerning him/her for the purpose of sending advertising or direct sales material or for carrying out market research or commercial communication;
  • Request confirmation of the existence of personal data concerning him/her (right of access);
  • Know its origin;
  • Receive intelligible communication;
  • To have information about the logic, methods and purposes of processing;
  • Request the updating, rectification, integration, cancellation, transformation into anonymous form, and blocking of data processed in violation of the law, including data no longer necessary to achieve the purposes for which they were collected;
  • In cases of consent-based processing, receive at the sole cost of any support, your data provided to the owner, in structured, machine-readable form and in a format commonly used by an electronic device;
  • The right to file a complaint with the Supervisory Authority (Privacy Guarantor – link to the Guarantor’s page); 
  • As well as, more generally, to exercise all the rights accorded to him or her under current legal provisions.

Requests should be addressed to the Data Controller. In the case of e-commerce sites, it is possible to initiate requests or proceed to the deletion of personal data by accessing the private area and clicking on the appropriate link.

The data controller under current laws is:
Di Serio RE Srls, Piazzale Ferdinando II di Borbone, 9 Cap 70032 Bitonto (Ba)
Contacted at the email address: info@bboutiquebari.it

Updates
This privacy policy is updated as of February 16, 2024.

Scroll to Top