Privacy Policy

La Ms Carlotta Ontani, 47032 Bertinoro (FC), Via Cellaimo 2299, VAT NO.: 04468560406 (hereinafter referred to as 'Data controller" o "Owner") constantly strives to protect the online privacy of individuals when browsing the website https://www.designstaging.it/ (hereinafter referred to as 'Website") and all pages traceable to that domain.

This document describes every aspect of the processing of Personal Data by the Users/visitors and users of the Website services (hereinafter referred to as also called 'Users" o "Interested") in accordance with the provisions of Article 13 of EU Regulation No. 2016/679 (hereinafter "Regulation").

1. Data controller

Ms Carlotta Ontani, 47032 Bertinoro (FC), Via Cellaimo 2299, VAT no.: 04468560406, which can be contacted in the manner indicated under 'Contact' (see Art. 10).

2. Categories of Dati Personnel treated

This website collects, independently or through the intervention of third parties, the following categoriese of personal data:

a) Browsing/usage data: Information collected during the user's visit to the Web Site (e.g. IP address, URI notation addresses, browsing history, information relating to interactions with the site, information relating to the user's computer environment, browser type and language, operating system, location, date and time of the request). This information is not collected in order to be associated with identified interested parties, but by its very nature could, through processing and association with data held by third parties, allow users to be identified;

b) Cookies: Cookies are small text files that the sites you visit send and store on your computer or mobile device, to be transmitted back to the same sites the next time you visit. For more information, the interested party may consult the "Cookie Policy".

c) Data voluntarily communicated by the user: personal information voluntarily provided by the user through specific forms on the Website (e.g. registration/log-in, personal area, billing/shipping, shopping cart/check-out, payment details, Contacti, work with us etc.). This information may include, by way of example: identification data (first name, surnameetc.), contact details (e-mail, telephone, mobile), billing data e shipping (address of shipping, address of residence/registered office, VAT no. etc.), employment data and particularlyi categories of personal data (any personal information, including special categories of personal data pursuant to Article 9 GDPR, voluntarily communicated by the Data Subject through the field dedicated to sending a free message). With reference to these hypotheses, the Data Controller invites the interested party to never enter, except in cases of absolute necessity, information that may fall within the category of special categories of personal data under Article 9 of the Regulation " [...] personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic data, biometric data intended to uniquely identify a natural person, data concerning the health or sex life or sexual orientation of the person". In case of communication by the data subject of particular categories of personal data pursuant to Art. 9 GDPR, the sending of the message containing such information shall be deemed as explicit consent to the processing of personal data pursuant to Art. 6 (1)(a) - 9 (2)(a).

The User assumes responsibility for the Personal Data of third parties releasespublished or widespread via the present Web Site and guarantees that it has the right to communicate them, publish them or disseminate them, releasing the Controller from any liability towards third parties.

3. Purpose of processing

The Controller uses the Personal Data collected through this Website for the following purposes:

a) Service Provision: respond to requests for information received through the website; evaluate applications and proposals for collaboration, delivering content and services object of the Web Site; send the user notifications and updates relating to the requested service/acquired.

b) Payment: Manage the contractual relationship with Users from an economic point of view;

c) Invoicing: Manage the contractual relationship with Users from a fiscal point of view;

d) Guarantee of safety, prevention of abusi and fraud, debug: monitor and prevent fraudulent activities and ensure that systems and processes function properly and securely.

e) Statistical analysis: assessing the performance and effectiveness of the ads displayed by the user or with which the user interacts; evaluate the performance and effectiveness of the content displayed by the user or with which the user interacts;carry out market research to find out more about the audience that visits the website and views the ads presented; refine existing systems and software and develop new services and products.

f) Basic Ads: presentation of "basic advertisements"shown on the basis of generic and impersonal characteristics (e.g. content viewed by the user, app used, approximate location, type of device used).

g) Marketing direct: Send to user newsletters and other commercial communications by e-mail and other traditional communication systems;

h) Profiling e advertisements/customised content: Automated creation of a profile based on user interests, preferences, habits and behaviour; presentation of "content customised" shown on the basis of the user's profile; presentation of "classified ads advertisers customised"shown on the basis of the user's profile.

i) Protection judicial: grant the Controller the power to protect or exercise a right in court.

j) Legal obligation: fulfil a legal obligation to which either subject to the Holder.

k) Communication of data to salesmen third partiesTransmission of personal data to other autonomous data controllers to whom communication is necessary for the provision of the service requested by the data subject (e.g. third-party vendors).

l) Soft spamto send the user commercial communications, by e-mail, concerning services/products of the Controller, corresponding and/or similar to those previously purchased.

4. Legal bases for processing

In pursuit of the above-mentioned purposes, the Data Controller processes personal data on the basis of the following legal bases:

- Contract/Pre-contractual measures: the processing of Data Personal for thee purposes ofi punti 3(a), 3(b), 3(k) is based on Article 6 (1) (b) of the Regulation ("[...]. processing is necessary for the performance of a contract of which the person concerned is party or the execution of pre-contractual measures adopted at its request');

- Consent of the person concerned: ihe processing of Personal Data for the purposes of 3(e), 3(g), 3(h), is based on Article 6 (1) (a) of the Regulation ("[...]. the person concerned has expressed the consent the processing of their personal data for one or more specific purposes'.).

The consent given by the user is free and optional and does not affect the use of further contents and sWeb Site services. The consent given is always revocable through the cookies/consentsor by contacting the Controller at the contact details indicated in the [Controller's Contact Details] section;

- Legitimate Interest of the Holder: the processing of Personal Data for the purposes of 3(d), 3(f), 3(i), 3(l), is based on Article 6 (1) (f) of the Regulation ("[...]. processing is necessary for the pursuit of the legitimate interestof the data controller or of third parties'.);

- Legal ObligationProcessing of Personal Data for the purpose of 3(c), (j), is based on Article 6 (1) (c) of the Regulation: ("[...]. the processing is necessary for compliance with a legal obligation to which the data controller is subject").

5. Treatment modalities

Processing is carried out using manual and/or automatic methods, also with the aid of computer and telematic technologies (e.g. CRM, management software and mailing list services), subject to the application of appropriate technical and organisational security measures to guarantee security, integrity and confidentiality, so as to minimise the risks of destruction or loss, unauthorised access, modification and unauthorised disclosure in compliance with the methods set out in Article 32 of the GDPR.

6. Transfer of Personal Data outside the EU/EEA

The Controller does not intend to transfer Personal Data outside the European Economic Area. If, however, in order to meet organisational/production requirements, it should deem it necessary, safeguards will be adopted for the transfer of Personal Data to a third country, which, depending on the case, may be: verification of the existence of European Commission adequacy decisions, signing of standard contractual clauses and/or of Binding Corporate Rules, verification of the adoption of any additional measures in transposition of EDPB Recommendation 01/2020, adherence to the EU - U.S. Data Privacy Framework

7. Periodi of conservation

The Controller stores Personal Data only for periods of time necessary for the pursuit of the purposes set out in this document, i.e. for the timesstatic previste by specific regulations.

In particular:

- The Personal Data processed for the purpose of "Service provision"shall be retained for a period not exceeding 10years;

- The Personal Data processed for 'Payment' and 'Billing' purposes will be kept for a period not exceeding 10 years, as provided for in Article 2220 of the Civil Code.

- Personal Data retained for the purpose of fulfilling a 'Legal Obligation' will be retained for the period provided for by the specific regulations to which the Data Controller is subject.

- Personal Data processed for Direct Marketing purposes and/or Soft Spam will be stored for a period not exceeding 2 years, or until any withdrawal of consent to processing and/or opposition to processing by the person concerned.

- The persistence duration of individual cookies is given in the "Cookie Policy";

- This is without prejudice, in any case, to the possibility for the Controller to store Personal Data for the period of time provided for and permitted by Italian law for the purposes of the "Tutela judicial" of its interests (arts. 2946 and 2947 c1, c.3 Civil Code).

Decisions talretention periods Personal Data will be deleted or anonymised, if not held for further purposes under appropriate legal bases.

8. Recipients

The Personal Data collected by the Data Controller may be communicated or made accessible, for the performance of the above-mentioned purposes, to the following categories of persons:

- Employees and collaborators who assist the Controller in processing operations, subject to express authorisation to process and possible signing of confidentiality agreements;

- Parties providing out-sourcing services on behalf of the Controller, in their capacity as Data Processors: IT service providers and/or in the cloud, Payment gateways (e.g. PayPal, Satispay), freelancers, companies or professional firms providing assistance and consultancy services to the Data Controller, or persons delegated to perform hosting and technical maintenance activities, including maintenance of software, network equipment and electronic communication networks;

- Autonomous TData controllers to whom the communication of data is necessary for the provision of the service requested by the data subject (e.g. couriers and other shipping services, third-party sellers).

- Autonomous Titters of processing in pursuit of their own purposes, prior consent of the person concerned;

- Public authorities, where such communication is required by law.

9. Rights of the Data Subject

At any time, the data subject may access the information concerning him/her and request its rectification, cancellation, the limitation of processing, e portability. You may also object in whole or in part to the processing and have the right not to be subject to an automated decision-making process concerning natural persons, including profiling.

To exercise the rights set out in Articles 15-22 of the GDPR, the Data Subject may contact the Data Controller in the ways indicated in the 'Contact Us' section (see Art. 10). The Data Controller is obliged within 1 month to reply to the request, or to notify any delay in replying in the event of numerous and/or complex requests (the extension may not in any case exceed 2 months). In any case, the Data Subject always has the right to lodge a complaint with the competent Control Authority (Garante per la Protezione dei Dati Personali), pursuant to Art. 77 of the Regulation, if he/she considers that the processing of his/her Personal Data is contrary to the legislation in force.

10. Contact

For further information on the processing of Personal Data carried out in performance of the contract, or to make a request to exercise your rights, please contact the Controller to the e-mail address: info@designstaging.it

Privacy Policy

Design Staging is a platform that allows design enthusiasts and professionals to become part of a single community. How? By focusing on eclecticism, contaminations and a constant dialogue between past, present and future. Staging design with us!

Let's not lose sight of each other!

@design_staging

Design Staging is a platform that allows design enthusiasts and professionals to become part of a single community. How? By focusing on eclecticism, contaminations and a constant dialogue between past, present and future. Staging design with us!

Let's not lose sight of each other!

@design_staging