Privacy policy

Information Manual:

www.gorigioielli.com Website

Edition n. 1 of 13/12/2020 Gori Gioielli di Giuliano Gori s.a.s., in the person of the l.r.p.t., VAT number 09595501009 registered in the Register of Companies of Rome at the REA number 1174448, with registered office in via Tuscolana 976 00174 ROME, email address: [email protected] as Data Controller regarding the collection and use of your personal data, provides you with the following information provided in compliance with Articles. 13 and 14 of EU Regulation 679/2016 (hereinafter "Regulation"), to users (hereinafter: "Users" or "User") of the site www.gorigioielli.com (hereinafter: "Site") owned by Gori Gioielli di Giuliano Gori s.a.s., Data Controller of personal data (hereinafter: "Owner"), and has the purpose of describing the management methods of the Site with reference to the processing of personal data, as well as to allow Users of the Site to know the purposes and methods of processing personal data by the Data Controller in case of their provision.

Information

1. Processing

By "processing" of personal data, we mean any operation or set of operations performed on personal data (collection, registration, organization, structuring, storage, adaptation, modification, extraction, consultation, use, communication by transmission, dissemination, comparison, interconnection, limitation, cancellation and destruction).

2. Purpose of the Processing

The processing of personal data provided by Users through the use of the Site, subject to consent, will be aimed at:

  1. marketing activities and sending promotional campaigns by SMS and / or e-mail messages;
  2. subscription to the newsletter through inclusion in a mailing list.
  3. e-commerce activities

3. Legal basis

The processing of personal data for the purposes referred to in the previous points finds its legal basis in the consent expressed by you pursuant to Article 6 (a) of the Regulation ([...] the interested party has expressed consent to the processing of their personal data for one or more specific purposes). The provision of data for the purposes referred to in nos. 1, 2, 3, is optional but any refusal by the User will make it impossible for the Data Controller to follow up on requests or provide the services indicated above. Your consent may be expressed in a granular manner for each purpose indicated. For this reason, the data will be collected exclusively for the purposes for which you have given your consent.

4. Nature of the data processed

For the purposes indicated, only personal and common data will be processed, such as but not limited to: name, surname, e-mail address, etc. These data will be requested:

  • at the time of registration of the user;
  • when filling out the contact form for requests for quotes or information;
  • when registering the email address within the newsletter.

5. Processing methods

The processing will take place according to the principles of lawfulness and correctness and in order to protect confidentiality through the preparation of adequate technical organizational measures, in order to avoid unauthorized or unlawful processing or accidental loss / destruction / damage related to the same data. In particular, your personal data will be:

  1. used according to current regulations and in a transparent manner;
  2. collected only for valid reasons clearly explained;
  3. used within the limits of the purpose for which they are collected;
  4. kept accurately and up-to-date;
  5. stored securely;
  6. kept only for the period necessary for the purposes mentioned above.

The Data Controller ensures that personal data are processed in full compliance with the Regulation, using manual, computerized or telematic systems. The processing may also be carried out through automated tools designed to store, manage and transmit the data. The data collected and processed will be protected with physical and logical methods such as to minimize the risks of unauthorized access, dissemination, loss and destruction of data, pursuant to articles 25 and 32 of the Regulation.

6. Place of processing and Transfer Outside the EU

The processing of your data will take place in Italian territory. Through the use of cookies they may be processed outside the territory of the European Union subject to your consent.

7. Categories of recipients of the data or who may become aware of the same, also as Data Processors or Authorized to process

The data may be communicated to subjects who collaborate or use the services of the Data Controller, with the sole intent of providing the services requested by the User. The Data Controller, in providing data, aimed at providing the services requested by the User, has ensured that these subjects have appropriate requirements and adopt appropriate security measures for the protection of the same. In particular, the data provided by the User may be shared by the Data Controller with the following third parties exclusively to provide the services requested by the User or comply with other regulatory obligations: In addition, the same data may be known by the persons appointed as Data Processors and Authorized to process for the purposes set out above, such as suppliers, consultants, employees.

8. Navigation Data

The computer systems and technical and software procedures underlying the operation of the Site acquire, during their normal operation, some personal data whose transmission is implicit in the mechanisms of access and operation and protocols in use on the Internet. Each time the User connects to the Site and each time he calls up or requests content, access data are stored in our systems, in the form of tabular or linear data files. This category of data includes, for example, IP addresses, domain names of computers used by users who connect to the Site, the request by the User's browser, in the form of addresses in URI (Uniform Resource Identifier) notation, the date and time of the request to the server, the method used to submit the request to the server, the amount of data transmitted, the numerical code indicating the status of the response given by the server and other parameters relating to the operating system and the User's computer environment. These data may be used by the Data Controller for the sole purpose of obtaining anonymous statistical information on the use of the Site in order to identify the pages preferred by Users and therefore provide increasingly adequate content and to check its correct functioning. At the request of the Authority, the data could be used to ascertain responsibility in case of hypothetical computer crimes against the Site or its Users.

9. Details on the processing of personal data with respect to the additional services used within the website through the use of cookies or application forms

The modules and cookies used by this site, whether internal or third-party, are hereinafter referred to as services and distinguished between technical (essential and not deactivable) and marketing (accessory and deactivated).

9.1 Cookies and Technical and Essential Site Forms | Not Deactivable

Your personal data will be processed within the website, through the use of services, according to the following purposes, which are essential for the operation of the same, namely:

Viewing content from external platforms

These services allow you to view content hosted on external platforms directly from the pages of this Application and to interact with them. In the event that a service of this type is installed, it is possible that, even if the Users do not use the service, the same collects traffic data relating to the pages in which it is installed.

Google Font (Google)

Google Fonts is a service that allows you to load fonts to improve the appearance of the site through the use of style sheets. The service is managed by Google Inc. ("Google"). The use of Google Fonts does not require authentication

Place of processing: USA
Place of processing : USA
Privacy links : https://tagozago.com/privacy.html

Widget Google Maps (Google Inc.)

Google Maps is a map display service operated by Google Inc. ("Google"). which allows this Application to integrate such content within its pages.
Personal data collected: Cookies and Usage Data.
Place of processing : USA
Privacy link : http://www.google.it/intl/it/policies/privacy/

Typekit (Adobe)

Typekit is a font style display service operated by Adobe Systems, Inc. which allows this Application to integrate such content within its pages.
Personal data collected: Various types of data as specified in the privacy policy of the service.
Place of processing : USA
Privacy links : http://www.adobe.com/privacy/typekit.html

Youtube Video Widget (Google)

Youtube is a video content viewing service operated by Google Inc. ("Google"). which allows this Application to integrate such content within its pages.
Personal data collected: Cookies and Usage Data.
Place of processing : USA
Privacy link : http://www.google.it/intl/it/policies/privacy/

Purchase and sale of goods or services (e-commerce functionality)

These services allow this Application to carry out the activity of buying and selling goods and services from third parties. and are essential to the creation of orders, payment, shipping, tracking and receiving orders.

Checkout Form (This Application)

The User, by filling in the form with their Data, consents to their use to complete the purchase, and to receive all the communications necessary for the completion of the same.
Personal data collected: Name, Surname, E-mail, Shipping Address, Billing Address, Billing Information.

Traffic optimization and distribution

These services allow this Application to distribute its content through servers located in the territory and to optimize the performance of the same. The Personal Data processed depend on the characteristics and methods of implementation of these services, which by their nature filter communications between this Application and the User's browser. Given the distributed nature of this system, it is difficult to determine the places where content is transferred, which may contain your Personal Data.

CloudFlare (Cloudflare)

CloudFlare is a traffic optimization and distribution service provided by CloudFlare Inc. The integration methods of CloudFlare provide that this filters all the traffic of this Application, ie the communications between this Application and the User's browser, also allowing the collection of statistical data on it.
Personal data collected: Cookies and Various types of Data as specified in the privacy policy of the service.
Place of processing : USA
Privacy link : http://www.cloudflare.com/security-policy

Registration and authentication

By registering or authenticating, the User allows the Application to identify him and give him access to dedicated services. Depending on the following, registration and authentication services may be provided with the help of third parties. If this happens, this application will be able to access some Data stored by the third-party service used for registration or identification.

Direct Recording (This Application)

The User registers by filling out the registration form and providing their Personal Data directly to this Application.
Personal data collected: Email and Password.

Contacting the User

Contact form (This Application)

By filling in the contact form with their Data, the User consents to their use to respond to requests for information, quotes, or any other nature indicated by the form's header.
Personal data collected: Surname, Email, Name and Telephone Number.

Mailing List or Newsletter (This Application)

By registering to the mailing list or newsletter, the User's email address is automatically included in a list of contacts to which email messages containing information, including commercial and promotional information, relating to this Application may be transmitted. The User's email address may also be added to this list as a result of registering with this Application or after making a purchase.
Personal data collected: Email.

Payment management

Payment management services allow this Application to process payments by credit card, bank transfer or other means. The data used for payment are acquired directly by the operator of the requested payment service without being in any way processed by this Application. Some of these services may also allow the scheduled sending of messages to the User, such as emails containing invoices or notifications regarding payment.

PayPal (PayPal)

PayPal is a payment service provided by PayPal Inc., which allows you to make online payments using your PayPal credentials.
Personal data collected: Various types of data as specified in the privacy policy of the service.
Place of treatment : -
Privacy links : https://cms.paypal.com/it/cgi-bin/marketingweb?cmd=_render-content&content_ID=ua/Privacy_full&locale.x=it_IT

9.2 Cookies and Site Forms for marketing purposes | Deactivable

Your personal data may be processed within the website for marketing purposes, subject to your consent, through the following services listed below according to their purposes:

Personal search

Purposes of research and processing of personnel.

Resume Submission Form (This Application)

The User, who intends to apply for a job position, will provide their data on the resume submission form. The processing for research and selection activities will take place only following the consent of the interested party.
Personal data collected: Surname, Email, Name and Telephone Number and Curriculum Vitae

Address management and sending of email messages

These services allow you to manage a database of email contacts, telephone contacts or contacts of any other type, used to communicate with the User. These services may also allow us to collect data relating to the date and time of display of the messages by the User, as well as the User's interaction with them, such as information on clicks on the links inserted in the messages.

Holawaka (Medula Srl)

Holawaka is an address management and email sending service provided by Medula Srl.
Personal data collected: Usage Data and Email.
Place of treatment : Italy

Statistics

The services contained in this section allow the Data Controller to monitor and analyze traffic data and are used to keep track of the User's behavior.

Google Analytics with anonymized IP (Google Inc.)

Google Analytics is a web analytics service provided by Google Inc. ("Google"). ("Google"). Google uses the Personal Data collected for the purpose of tracking and examining the use of this Application, compiling reports and sharing them with other services developed by Google. Google may use Personal Data to contextualize and personalize the ads of its advertising network. This integration of Google Analytics anonymizes your IP address. Anonymization works by shortening the IP address of Users within the borders of the Member States of the European Union or in other countries party to the Agreement on the European Economic Area. Only in exceptional cases will the IP address be sent to Google's servers and shortened within the United States.
Personal data collected: Cookies and Usage Data.
Place of processing : USA
Privacy link : http://www.google.com/intl/en/policies/privacy/
Deactivation link : https://tools.google.com/dlpage/gaoptout?hl=it

Google AdWords Conversion Tracking (Google Inc.)

Google AdWords conversion tracking is a statistics service provided by Google Inc. ("Google"). that connects the data coming from the Google AdWords ad network with the actions performed within this Application.
Personal data collected: Cookies and Usage Data.
Place of processing : USA
Privacy links : http://www.google.com/intl/it/policies/privacy/

Facebook Ads Conversion Tracking (Facebook, Inc.)

Facebook Ads conversion tracking is a statistics service provided by Facebook, Inc. ("Facebook"). that connects the data coming from the Facebook ad network with the actions performed within this Application.
Personal data collected: Cookies and Usage Data.
Place of processing : USA
Privacy links : https://www.facebook.com/about/privacy/

Google Analytics (Google)

Google Analytics is a web analytics service provided by Google Inc. ("Google"). ("Google"). Google uses the Personal Data collected for the purpose of tracking and examining the use of this Application, compiling reports and sharing them with other services developed by Google. Google may use Personal Data to contextualize and personalize the ads of its advertising network.
Personal data collected: Cookies and Usage Data.
Place of processing : USA
Privacy links : http://www.google.com/intl/it/policies/privacy/
Deactivation link : http://tools.google.com/dlpage/gaoptout?hl=it

Interaction with external social networks and platforms

These services allow you to interact with social networks, or other external platforms, directly from the pages of the Application. The interactions and information acquired by this Application are in any case subject to the User's privacy settings relating to each social network. In the event that an interaction service with social networks is installed, it is possible that, even if users do not use the service, the same collects traffic data relating to the pages in which it is installed.

Like button and Facebook social widgets (Facebook, Inc.)

The "Like" button and social widgets of Facebook are services of interaction with the social network Facebook, provided by Facebook, Inc.
Personal data collected: Cookies and Usage Data.
Place of processing : USA
Privacy links : http://www.facebook.com/privacy/explanation.php

Remarketing and Behavioral Targeting

Facebook Remarketing (Facebook, Inc.)

Facebook Remarketing is a Remarketing and Behavioral Targeting service provided by Facebook, Inc. ("Facebook"). that connects the activity of this Application with the Facebook advertising network.
Personal data collected: Cookies and Usage Data.
Place of processing : USA
Privacy links : https://www.facebook.com/about/privacy/
Deactivation link : http://www.aboutads.info/choices/

Facebook Custom Audience (Facebook, Inc.)

Facebook Custom Audience is a Remarketing and Behavioral Targeting service provided by Facebook, Inc. ("Facebook"). that connects the activity of this Application with the Facebook advertising network.
Personal data collected: Cookies and Email.
Place of processing : USA
Privacy links : https://www.facebook.com/about/privacy/
Deactivation link : http://www.aboutads.info/choices/

AdWords Remarketing (Google)

AdWords Remarketing is a Remarketing and Behavioral Targeting service provided by Google Inc. ("Google"). that connects the activity of this Application with the Adwords advertising network and the Doubleclick Cookie.
Personal data collected: Cookies and Usage Data.
Place of processing : USA
Privacy links : http://www.google.com/intl/it/policies/privacy/
Deactivation link : http://www.google.com/settings/ads/onweb/optout

Social Applications

These services allow the website to draw on your profile data on social networks, and to make interactions to your post. These services are not activated automatically, but require explicit permission from the user.

Access to the Facebook account (This Application)

This service allows this Application to connect with the User's account on the social network Facebook, provided by Facebook, Inc.
Personal data collected: Email, Page Management and Insight.
Place of processing : USA
Privacy links : https://www.facebook.com/policy.php

Social Applications

These services allow the website to draw on your profile data on social networks, and to make interactions to your post. These services are not activated automatically, but require explicit permission from the user.
Duration :Temporary



For detailed information on cookies and their purpose, see the Extended Cookie Policy: /it/cookie-policy

10. Retention times and Right to Withdraw Consent

The processing of data will last no longer than is necessary to meet the purposes for which they were collected. Pursuant to Article 7 paragraph 3 of the Regulation, the interested party has the right to obtain at any time the revocation of consent to the processing and request the cancellation of their personal data, by sending communication to the Data Controller at the box indicated at the beginning of the information. Following the request for cancellation by the User, all personal data of the same will be deleted, without prejudice to the further conservation provided for by regulatory obligations. The aforementioned retention periods may be extended for any legal protection needs in court.

11. Rights of the interested party

Pursuant to EU Reg. 16/679 you are given the opportunity to exercise specific rights, in particular: right of access to personal data (art. 15), right to rectification of personal data (art. 16), right to erasure of personal data (art. 17), right to limitation of processing (art. 18), right to portability of personal data (art. 20), right to object to processing (art. 21). The exercise of the aforementioned rights is free of charge and can be exercised through the relative forms that can be requested by e-mail or by racc. a / r to be sent to the addresses indicated below.

12. Complaint to the Supervisory Authority

You are also granted the right to lodge a complaint with the Privacy Authority to complain about a violation of the regulations on the protection of personal data and request a verification of the Authority itself through the forms on the website www.garanteprivacy.it.


To receive information or exercise the rights provided, you can contact the Data Controller, Gori Gioielli di Giuliano Gori s.a.s., at the email address: [email protected] or by registered letter with return receipt to be sent to the address via Tuscolana 976 00174 ROME.