These principles of personal data processing are valid from October 1, 2020 and replace the previous statement on Personal Data Protection.
If you are our customer, news subscriber or website visitor, you entrust us with your personal data. We are responsible for their protection and security. Please familiarize yourself with the protection of personal data, principles and rights you have in relation to the GDPR (General EU Regulation on Personal Data Protection).
WHO IS THE ADMINISTRATOR?
We are the company SICILY LIFE S.r.l, VAT number 02720290812, based on Via Emanuele Sansone 27, 91026 Mazara del Vallo (Italy), led in Camera di commercio Industria Artigianato e Agricoltura di Trapani under the file number TP-192109, which operates an e-shop and wholesale, with typical Sicilian products. We process your personal data as an administrator, ie we determine how personal data will be processed and for what purpose, for how long they will be stored, and we select any other processors who help us with the processing.
If you would like to contact us, you can contact us at +39 340 729 1136 or e-mail: firstname.lastname@example.org.
LEGAL REASON FOR PROCESSING PERSONAL DATA
We declare that, as the controller of your personal data, we comply with all legal obligations required by applicable legislation, in particular the Personal Data Protection Act and the GDPR, and therefore that:
we process your personal data only on the basis of a valid legal reason, in particular a legitimate interest, performance of the contract, legal obligation or consent granted,
we fulfill the information obligation according to Article 13 of the GDPR even before the processing of personal data begins,
we will enable and support you in exercising and exercising your rights under the Personal Data Protection Act and the GDPR.
SCOPE OF PERSONAL DATA AND PURPOSES OF PROCESSING
We process personal data that you entrust to us yourself, for the following reasons (to fulfill these purposes):
Provision of services and performance of the contract
We personally need your personal data in the range: invoicing data, e-mail, telephone or correspondence address to fulfill the contract (eg delivery of goods by post or courier to your address).
If you are a customer, we urgently need your personal data (invoicing data) in order to comply with the legal obligations for the issuance and registration of tax documents.
Marketing - sending information messages (newsletters)
We use your personal data (name and e-mail) to send business messages. If you are our customer, we do so out of a legitimate interest, as we reasonably assume that you are interested in our news, for a period of 10 years from the last order.
If you are not our customer, we send you newsletters only on the basis of your wishes or consent, for a period of 10 years from the grant. In both cases, you can opt out of receiving our emails by using the opt-out link in each email you send.
Photos and videos from seminars
At some of our live events - organic harvesting, promotional and sales events, etc. - we take photographic documentation or video recording. We use photos in promotional materials, especially on the web. You will never find the names of the participants in these materials. If a name is given, this is done exclusively with consent. If you do not want to be on the records, let us know in our contact details before the live event.
PERIOD OF STORAGE OF PERSONAL DATA
We retain your personal data for the duration of the limitation periods, unless the law provides for a longer period for their retention or we have not stated otherwise in specific cases.
SECURITY AND PROTECTION OF PERSONAL DATA
We protect personal data as much as possible using modern technologies that correspond to the level of technical development. We protect them as if they were our own. We have taken and maintain all possible (currently known) technical and organizational measures to prevent the misuse, damage or destruction of your personal data.
Transfer of personal data to third parties
Our personal data is accessible to our employees and co-workers, who are bound by confidentiality and trained in the security of personal data processing.
We handle most processing operations ourselves and do not need third parties.
To ensure some specific processing operations, which we cannot provide on our own, we use the services and applications of processors who specialize in the given processing and are in accordance with the GDPR.
They are providers of the following platforms and services:
Poste Italiane, s.p.A., Roma 1773/2, 00144 Roma - Viale Europa 190, VAT number 97103880585, registered in the Commercial Register kept by the registration number in the Commercial Register in Rome No. 97103880585/1996, as a delivery service.
DHL Express (Italy) S.r.l., Peschiera Borromeo (MI), Via Lombardia 2 / A 20068, VAT number 04209680158, registered in the Commercial Register kept in the Commercial Register in Milan No. MI-996661, as a delivery service.
TNT Express Corso Giulio Cesare 268, 10154 Torino (Italia) VAT number 09399880153, as a delivery service.
It is possible that in the future we will decide to use other applications or processors to facilitate and improve processing. However, we promise you that in such a case, when choosing them, we will place at least the same demands on the processor for security and quality of processing as for ourselves.
Data transfer outside the European Union
We process data exclusively in the European Union or in countries that provide an adequate level of protection based on the decision of the European Commission.
YOUR RIGHTS IN CONNECTION WITH THE PROTECTION OF PERSONAL DATA
You have many rights in relation to the protection of personal data. If you wish to exercise any of these rights, please contact us via e-mail: email@example.com.
You have the right to information that is already filled in this information page with the principles of personal data processing.
Thanks to the right of access, you can call us at any time and we will prove to you within 30 days what your personal data is being processed and why.
If something changes for you or you find your personal data out of date or incomplete, you have the right to supplement and change your personal data.
You can exercise the right to restrict processing if you believe that we are processing your inaccurate data, that you believe that we are processing illegally, but that you do not want to delete all data, or that you have objected to the processing.
You can limit the scope of personal data or the purposes of processing (eg by unsubscribing from the newsletter, you limit the purpose of processing for sending business messages).
Right to delete (be forgotten)
Your next right is the right to delete (be forgotten). We do not want to forget you, but if you wish, you have the right to do so. In this case, we will delete all your personal data from our system as well as from the system of all sub-processors and backups. We need 30 days to secure the right to delete.
In some cases, we are bound by a legal obligation, for example, we must register the issued tax documents for the period specified by law. In this case, we will delete all such personal data that is not bound by another law. We will notify you by email when the deletion is complete.
Complaint to the Office for Personal Data Protection
If you feel that we are not handling your data in accordance with the law, you have the right to contact the Office for Personal Data Protection with your complaint. We would be very happy if you first inform us of this suspicion so that we can do something about it and correct any mistakes.
Unsubscribe from sending newsletters and business messages
We send you emails with inspiration, articles or offers of products and services, if you are our customer, based on our legitimate interest.
If you are not yet a customer, we will send them to you only on the basis of your wishes and consent. In either case, you can unsubscribe from our emails by pressing the unsubscribe link in each email you send.
We would like to assure you that our employees and co-workers who process your personal data are obliged to maintain the confidentiality of personal data and security measures, the disclosure of which would jeopardize the security of your personal data. This confidentiality lasts even after the termination of the contractual relationship with us. Your personal data will not be disclosed to any other third party without your consent.