Privacy policy
Privacy Policy
This Privacy Policy aims to inform users (“Users”) of this website (“Site”) about the activities of collection and processing of their personal data (“Personal Data”), with particular regard to the types of Personal Data involved in the processing, the data controller, the purposes for which the Personal Data are processed, and the main safeguards in place to protect Users’ rights.
The Privacy Policy has been drafted in compliance with the EU Regulation “GDPR” (No. 2016/679) and the Personal Data Protection Code (Legislative Decree 196/2003), where compatible, as well as any other applicable legal provisions.
Users must carefully read the information contained in the Privacy Policy; if they do not agree with its content, they are invited to promptly stop browsing the Site.
As better indicated below, the processing, communication, and dissemination of Personal Data are permitted based on legal provisions and in other cases allowed by applicable regulations.
Personal Data
Browsing the Site implies the collection and processing of certain types of Personal Data of Users and/or other data subjects.
In particular, the Site collects and processes information concerning interaction with the User’s device: for example, the IP address used for the connection, additional information relating to the browser, operating system, and type of device used, the indication of pages visited and searches performed on the Site, as well as further information.
In this context, these are Data strictly necessary to enable navigation or to make it more functional.
Additionally, the Site expressly requires the User to provide Personal Data when registering on the Site and/or placing a purchase order. In this case, these are Personal Data necessary or useful for providing services to the User.
In other cases, the Site asks Users for their Personal Data in order to send communications of various kinds: for example, for subscribing to newsletters, participating in prize contests, or receiving commercial offers, either directly or from third parties.
From time to time, it is indicated whether the provision of Personal Data is mandatory or optional.
It is also possible that the Site carries out, directly or indirectly, checks on the payment instruments used, mainly to prevent insolvency, fraudulent activities, or in compliance with applicable anti-money laundering regulations.
Refusal by the User to consent to the processing of Personal Data for purposes unrelated to the functioning of the Site and/or the completion of orders on the Site will not result in significant consequences.
Personal Data are stored and processed in a manner and for a duration proportionate and appropriate to the purposes for which the Data are collected and subsequently processed. Personal Data are used only when necessary for the purposes for which they were collected and subsequently processed.
Data Controller
The data controller of the Personal Data (“Controller”) is:
POLESIA S.R.L.
VIA DI NOVOLI 5 - 50127 FLORENCE
VAT No. 07414660485 and Tax Code: 07414660485
Email address for any communication relating to the Privacy Policy: info@florchis.com.
The processing of Personal Data takes place within the Controller’s business structure and/or within the corporate group to which the Controller belongs. Consequently, the Personal Data collected for the purposes indicated in the Privacy Policy are processed by personnel authorized to process data in the performance of their duties under the direct authority of the Controller or within the Controller’s corporate group.
Communication of Personal Data
The Controller communicates part of the Personal Data to parties, including third parties, involved in the execution of purchase orders, both during the sales phase and post-sales.
It is also possible that the information is communicated to companies affiliated with or controlled by the Controller or to third parties in the case of extraordinary operations, in compliance with applicable regulations.
The communication or dissemination of Personal Data is permitted where required, in accordance with the law, by law enforcement authorities, judicial authorities, information and security bodies, or other public entities for purposes of state defense or security, or for the prevention, detection, or prosecution of administrative or criminal offenses, and in any case when such communication or dissemination is prescribed by law.
In all other cases, the communication or dissemination of Personal Data is subject to the prior explicit and unequivocal consent of the data subject
Rights of Data Subjects
Each User (or other data subject) has the right to obtain confirmation as to whether or not Personal Data concerning them exist, even if not yet recorded.
The User (or other data subject) has the right to obtain:
The updating, rectification, or, when interested, the integration of Personal Data;
The deletion, anonymization, or blocking of Personal Data processed in violation of the law, including data whose retention is not necessary in relation to the purposes for which they were collected and subsequently processed;
Certification that the operations referred to in points a) and b) have been made known, including their content, to those to whom the data have been communicated or disclosed, unless this requirement proves impossible or involves a clearly disproportionate use of means compared to the protected right;
The restriction of processing of Personal Data, in cases provided by law;
Data portability, i.e., the right to receive Personal Data concerning them in a structured, commonly used, and machine-readable format, and to transmit those Data to another controller without hindrance from the Controller, within the limits provided by law.
The User (or other data subject) has the right to object, in whole or in part, to the processing of Personal Data for legitimate reasons, both when the processing is relevant to the purpose of collection and when the Data are used for advertising or marketing purposes.
The User also has the right to lodge complaints regarding the collection and processing of Personal Data with the Data Protection Authority or any other competent supervisory authority.
For any communication relating to the collection or processing of Personal Data and to exercise their rights, the User (or other data subject) may contact the data protection officer (“Data Protection Officer”) at the email address: info@florchis.com.
This Privacy Policy is subject to periodic updates. Users are advised to review it regularly to check for any changes.