Information on the processing of personal data of Procosmet s.r.l. (hereinafter also, more simply, "procosmet"), pursuant to article 13 of Regulation of the European Union 2016/679, also known as General Data Protection Regulation (GDPR).

Because we provide this information

Based on the provisions of the aforementioned Regulation of the European Union 2016/679 (GDPR), this page describes the most important methods of processing the personal data of the website "www.procosmet.com" for all those found in the European Union.

The information reported in this page does not concern other websites, pages or online services that can be reached through links published in this online site but referring to subjects and resources external to this online site.

Procosmet, as owner of the processing of personal data, recognizes the importance of the protection of your personal data and wishes to protect them better in carrying out their business. Precisely for these reasons, this Privacy Policy is invited to carefully read before communicating any personal data, since this document contains important information on the protection of personal data adopted to guarantee its confidentiality in full compliance with the applicable legislation.

General methods of processing personal data

Procosmet also informs that the processing of personal data will be marked by the principles of lawfulness, fairness, transparency, limitation of purposes and conservation, adequacy, relevance, minimization of data, accuracy, integrity, security and confidentiality of personal data.

The processing of personal data takes place in digital methods.

 

The data controller and responsible for data protection

The data controller of personal data is society "Procosmet s.r.l.", in the person of the pro-tempore legal representative, a company based in Crespellano (Bologna) at the way of solidarity n. 29/A, P. VAT: 02883540243. Contact data of the Owner Company: the e-mail address is support@procosmet.com.

The company owner has not appointed a data protection manager as it has not yet appointed its representative in the European Union.

Personal data processed

This site collects and processes the following personal data: name, surname, e-mail, tax code, landline or mobile phone number, the IP address, the type of browser used, the operating system, the domain name and the addresses of websites from which access or exit was carried out.  

 

Purposes and legal bases of the processing of your personal data

Our company deals with your personal data for the following purposes;

to) Contacts by the user by filling in the form. The optional, explicit and voluntary sending from its part, of communications through the compilation of the form on the Site entails the subsequent acquisition of the data communicated by the user, including his e-mail address or telephone number and the consent to receive any messages of response to his requests.

The personal data thus provided are used to the sole purpose of satisfying or refunding to the requests transmitted and are communicated to third parties only in the event that this is necessary for this purpose. In this case, the processing of your data by Procosmet S.r.l. It is necessary to fulfill the contract between you and the procosmet or to fulfill pre -contractual measures requested by you;

b) newsletter and commercial/promotional communications. Where explicitly requested by the user, it is possible to confer your contact data in order to receive commercial and/or information communications with regard to the procosmet activity owner of the processing in reference to the site consulted and the products offered. In this case, the processing of your data is legitimate on the basis of its explicit consent;

To send the newsletter we use the Klaviyo service, more information on www.klaviyo.com

c) to fulfill regulatory, accounting and tax obligations (e.g. billing). In this case, the processing of personal data is legitimate because it is necessary to fulfill a legal obligation to which the company owner of the treatment is subject;

d) for the management of a possible dispute against him (for example, defaults, warns, judicial disputes, etc.). In this case, the processing of personal data respects the law because it is carried out on the basis of the need to manage the contract regarding the personal data and, as regards any sensitive data, based on the possible need for the company to ascertain, exercise or defend a right in judicial office or whenever the jurisdictional authorities exercise their jurisdictional functions (art. 9, par. 2, LETT. F, GDPR);

e) use of his e -mail address as already provided for the sale of an analogous product or service. In this case, the aforementioned processing of your personal data is legitimate on the basis of the provisions of the current formulation of art. 130, paragraph 4, Legislative Decree no. 196/2003, "Italian Privacy Code" and subsequent amendments that occurred. However, you can oppose this treatment free of charge by simply sending an email to support@procosmet.com.

 

Recipients

The data may be communicated: to employees and collaborators of the company owner of the processing of personal data (administrative, commercial, lawyer, system administrators)  as well as the company in charge of the creation and management of this online site; Other external subjects such as third party service providers, postal couriers, hosting provider, computer companies, communication agencies, also appointed, if necessary, responsible for the treatment by the owner.

 

Data transfer to a third country or international organization

The company owner of the processing of personal data uses for the management of this Shopify services site, and this involves the transfer of its personal data to countries such as Canada, the USA and other countries. Shopify International Ltd ensures that you transfer your personal data in accordance with some legal protection tools: in Canada on the basis of a decision of adequacy of the European Commission; in the USA, based on the privacy framework USA/EU; in other countries on the basis of contractual commitments comparable to standard contractual clauses. More information on: https://www.shopify.com/legal/privacy.

 

Retention of personal data

- with reference to the data collected on the basis of point a) of the previous paragraph on the purposes and legal bases, the data voluntarily provided by the User are kept for the period necessary for the purpose of carrying out the request and on the basis of what is allowed by current legislation and by the contractual obligations that have been arisen;

- with reference to the data collected on the basis of point b) of the previous paragraph on the purposes and legal bases, the data provided will be kept for the period necessary for the performance of the activity for which they have been provided and in any case, specifically to the aforementioned purposes, no later than two years;

- With reference to the other points of the aforementioned paragraph, the data collected will be kept for the time necessary to achieve the respective purposes.

However, the period of time in which the owner is subject to conservation obligations for tax purposes or for other purposes provided for by current regulations or the period relating to the legal protection of his interests based on art. 2946 cod. civ. (ten years) and 2947 cod. civ. (five years).

 

Rights of the interested party

Among the rights recognized by the GDPR there are the following:

-  right to ask the data controller for access to your personal data; right of rectification of incorrect data or integration of incomplete ones; right of cancellation of the personal data concerning it (upon the occurrence of one of the conditions indicated in art. 17, paragraph 1 of the GDPR and in compliance with the exceptions provided for in paragraph 3 of the same article); the limitation of the processing of your personal data (to the use of one of the hypotheses indicated in art. 18, paragraph 1 of the GDPR);

- right to request and obtain from the data controller, in the hypotheses in which the legal basis of the processing is the contract or consent, and the same is carried out with automated means, its personal data in a structured and readable format from automatic device, also in order to communicate such data to another data controller (so -called right to the portability of personal data);

- right to revoke at any time the consent to the processing of its aforementioned personal data by contacting the company with the processing of the following e-mail address: support@procosmet.com;

- right to oppose any time to the processing of your personal data to the use of particular situations concerning it (art. 21 GDPR);

• Right to propose a complaint to a control authority (in Italy: Guarantor Authority for the protection of personal data).

Consequences of the failure to communicate personal data

- With reference to the data collected on the basis of point a) of the previous paragraph on the purposes and legal bases,  The provision of the e-mail address and other any data indicated is not a legal or contractual obligation, but it is essential to be able to take advantage of the service and receive a response to its request and, in the absence, we will not be able to proceed with the processing;

- With reference to the data collected on the basis of point b) of the previous paragraph on the purposes and legal bases, The provision of your data for these purposes is not a legal or contractual obligation But it is indispensable to be able to proceed with the provision of the promotional information service described above. Procosmet s.r.l. He will also carry out the service in his favor if you refuse to provide your data for these purposes.

- With reference to the data collected on the basis of point c) of the previous paragraph on the purposes and legal bases, The provision of your data for these purposes is a necessary requirement for the conclusion of the contract because your data is necessary to allow Procosmet S.r.l. to fulfill legal and accounting obligations.

 

Automated decision -making and profiling

The company owner of the processing of personal data does not submit the data collected to automated decision -making processes, including profiling.

 

Facebook Remarketing (Facebook, inc.)

 

Facebook Remarketing is a Remarketing and Behavoral Targeting service provided by Facebook, Inc. that connects the activity of this website with the Facebook Advertising network.

 

Personal data collected: cookies and use data.

 

Place of the treatment: USA - Privacy Policy

 

Remarketing Google Ads (Google inc.)

 

Remarketing Google Ads is a remarketing and Behavoral Targeting service provided by Google LLC or Google Ireland Limited, depending on the position in which Procosmet Italy is used, which connects the procosmet Italy activity with the Advertising Google Ads network and the DoubleClick cookie. Users can choose not to use Google cookies to customize ads by visiting the Google ads settings.

 

Personal data processed: Cookies; Use data.

 

Place of the treatment: USA - Privacy Policy - Opt Out.

 

Payment management

Payment management services allow the site to process payments by credit card, bank transfer or other tools. The data used for payment are acquired directly by the payment service manager requested without being treated in any way by this site.

 

Some of these services may also allow the planned sending of messages to the user, such as emails containing invoices or notifications regarding payment.

 

Paypal (PayPal)

 

Paypal is a payment service provided by Paypal Inc., which allows the user to make online payments using his PayPal credentials.

 

Personal data collected: various types of data according to what is specified by the privacy policy of the service

 

 Place of the treatment: USA- Privacy Policy

 

Stripe (Stripe inc)

 

Stripe is a payment service provided by Stripe Inc.

 

Personal data processed: various types of data according to what is specified by the privacy policy of the service.

 

Place of the treatment: USA - Privacy Policy

 

Gpay (Google inc)

 

Gpay is a payment service provided by Google Inc.

 

Personal data processed: various types of data according to what is specified by the privacy policy of the service.

 

Place of the treatment: USA - Privacy Policy.

 

 

 Shop Pay (Shopify)

 

Shop Pay is a payment service provided by Shopify.

 

Personal data processed: various types of data according to what is specified by the privacy policy of the service.

 

Place of the treatment: Canada - Privacy Policy

 

 

 View content from external platforms

These services allow you to view content hosted on external platforms directly from the pages of this website and to interact with them.

 

In the event that a service of this type is installed, it is possible that, even if users do not use the service, the same collects traffic data relating to the pages in which it is installed.

 

 

YouTube video widgets (Google)

 

YouTube is a video content display service managed by Google Inc. which allows this website  to integrate these content within their pages.

 

Personal data collected: cookies and use data.

 

Place of the treatment: USA - Privacy Policy

 

 

 

Google Fonts (Google inc.)

 

Google Fonts is a viewing service of character styles managed by Google Inc. which allows this website  to integrate these content within their pages.

 

Personal data collected: cookies and use data.

 

Place of the treatment: USA - Privacy Policy

 

 

Google Maps widget (Google inc.)

 

Google Maps is a map display service managed by Google Inc. which allows this website to integrate these content within its pages.

 

Personal data collected: cookies and use data.

 

Place of the treatment: USA - Privacy Policy

 

 

Instagram widget (Instagram, inc.)

 

Instagram is a image viewing service managed by Instagram, Inc. that allows Procosmet Italy to integrate these content within its pages.

 

Personal data processed: Cookies; Use data.

 

Place of the treatment: USA - Privacy Policy.

 

 

Platform and hosting services

These services are intended to host and operate key components of Procosmet Italy, making the provision of Procosmet Italy possible from a single platform. These platforms provide the owner with a wide range of tools such as, for example, analytical tools, for the management of user registration, for the management of comments and databases, for electronic commerce, for the processing of payments etc. The use of these tools involves the collection and processing of personal data. Some of these services work through servers geographically located in different places, making it difficult for the determination of the exact place where personal data are kept.

 

 

 Shopify (Shopphy inc.)

 

Shopify is a platform provided by Shopify Inc. which allows the owner to develop, make work and host a website dedicated to electronic commerce.

 

Personal data processed: various types of data according to what is specified by the privacy policy of the service.

 

Place of the treatment: Canada - Privacy Policy.

 

More information on personal data

 

 

Google Search Console

 

Google Search Console is a diagnostic and data analysis service for websites offered by Google Inc.

 

[Pp] https://www.google.com/intl/it/policies/privacy/

 

[Place] USA

 

 

 

Profit

If the user lends his consent to this processing, the Data Controller could save and use the personal data acquired on the basis of this document, and in particular the data relating to purchasing behaviors, to create profiles relating to users, in order to send commercial and/or promotional messages in line with the preferences expressed by the latter, also during their browsing activities on Procosmet Italy. The user will always have the opportunity to revoke his consent to the profiling activity simply by sending an email to the contact details contained in this document.

 

Facebook Insights

 

Provides access to Insight data for pages, applications and domains that the user owns.

 

In the event that an interaction service with social networks is installed, it is possible that, even if users do not use the service, the same collects traffic data relating to the pages in which it is installed.

 

 

 Mcheckout (webloudspeaker pvt ltd)

 

Mcheckout is a checkout service that allows you to make the payment in idioms other than the Italian language (for example in English) and in the currencies supported by stripes other than the euro.

 

The data used for payment are acquired directly by the payment service manager requested without being treated by Mcheckout in any way.

 

Personal data collected: various types of data according to what is specified by the privacy policy of the service.

 

Place of treatment: India - Privacy Policy.

 

Changes to this Privacy Policy

The company owner of the processing of personal data may modify or update the content of this Privacy Policy, in part or completely, also due to changes in the applicable legislation. The titular company will promptly update this Privacy Policy and the related changes will be binding as soon as they are published on this online site. For this reason, it is advisable to regularly visit this section of the online site to take knowledge of the most recent and updated version of the Privacy Policy in order to be always updated on the data collected and the use that the company holds the processing of personal data.

 

Cookie policy

 

This information is rendered by Procosmet S.r.l. (hereinafter also, more simply, "procosmet"), owner of the website www.procosmet.com, and is drawn up pursuant to the 2016/679 European Union regulation also known as General Data Protection Regulation (hereinafter also GDPR) and the measures of the Guarantor Authority for the protection of personal data (hereinafter, also, the "guarantor") on 8 May 2014, entitled "Identification of the simplified methods for the information and the acquisition of the consent for the use of cookies" and On 10 June 2021, entitled "Cookie guidelines and other tracking tools".

This information is aimed at providing clear and transparent information for all those found in the European Union about the use of cookies by this online site www.procosmet.com (hereinafter, also, also the "site").

 

For more information, please refer to the Privacy Policy (Insert the link here).

 

The data controller and responsible for the protection of personal data

Owner of the processing of personal data is society  "Procosmet s.r.l.", in the person of the pro-tempore legal representative, a company based in Crespellano (Bologna) at the way of solidarity n. 29/A, P. IVA: 02883540243. Contact data of the owner company: the e-mail address is support@procosmet.com.

 

Cookie: General description

In general, cookies are small text strings that the sites visited by the user send to his terminal (usually to the browser), where they are stored to then be retransmitted to the same sites at the next visit of the same user. During navigation on a site, the user can also receive cookies on his terminal that are sent from different sites or web servers (so -called "third parties"), on which some elements can reside (such as, for example, images, maps, sounds, specific links to pages of other domains) on the site that is visiting.

Cookies, usually present in very high users' browsers and sometimes even with characteristics of wide temporal persistence, are used for different purposes: execution of IT authentications, sessions monitoring, storage of information on specific configurations regarding users who access the server, etc.

In order to reach a correct regulation of cookies, it is necessary to distinguish them.

 

Types of cookies

to. Technical cookies: They are those who guarantee normal navigation and use of the website and optimize the user's navigation experience or that allow you to provide a service requested by the user. They are not used for further purposes and are normally installed directly by the owner or manager of the website.

 

Can be divided into:

- navigation cookies (or session), which guarantee normal navigation and use of the website;

- Cookies of functionality, which allow the user to navigate according to a series of selected criteria (for example: the language, the products selected for the purchase) in order to improve the service rendered to the same.

 

Depending on the time of persistence, they can be divided into:

- session cookies, which are automatically deleted when the browser is closed;

- persistent cookies, which remain stored in the user's terminal equipment until the pre -established deadline (which can correspond to minutes, days or more years in the future).

 

b. Cookie Analytics: sI am a particular type of cookies used by the websites of websites to collect information in an aggregate way of a statistical nature (e.g. number of website visitors, more read articles, time staying on the page, etc.).

 

According to the provision of the Guarantor 10 June 2021, so that the Cookies Analytics are equated to the technicians it is essential to preclude the possibility that, through their use, to the direct identification of the interested party, which is equivalent to preventing the use of Cookie Analytics which, due to their characteristics, can be direct and unique identifiers.

 

c. Profiling cookies: They are aimed at checking the navigation of the user, tracing it in order to monitor and create profiles relating to the user himself, in order to send advertising messages in line with the preferences expressed by the same in the field of navigation on the net.

 

As a reason for the particular invasiveness of these profiling and analytics non -anonymized cookies, the user must be adequately informed about the use of them and expressly express his consent.

 

We can update and add some details to the definitions just reported.

According to the provision of the Italian Authority for the protection of personal data 10 June 2021 called "Cookie guidelines and other tracking tools", the classification that best responds to the spirit of the law and therefore also to the needs of protection of the person, is the one that is ultimately based on Two macro-challenges:

 

- Technical cookies, used only to make the transmission of a communication on an electronic communication network, or to the extent strictly necessary for the provider of a service to provide this service explicitly requested by the contractor or the user (see art. 122, paragraph 1 of the Italian Privacy Code, Legislative Decree no. 196/2003);

 

- profiling cookies, used to trace to certain, identified or identifiable subjects, specific actions or compliance with the recurring behavioral patterns in the use of the functionality offered (patterns) for the purpose of the grouping of the different profiles within clusters, i.e. groups, homogeneous of different amplitude, so that it is possible to the owner, among other things, also modulate the supply of the service in an increasingly personalized way beyond the provision of the provision of the service, as well as send targeted advertising messages, that is, in line with the preferences expressed by the user in the field of navigation on the net.

 

Type of cookies used by this online site

We reproduce below the cookies screen on this online site.

 

Purpose

The cookies on this site are technical and profiling and third parties.

More specifically, we report below a list of cookies on the screen reproduced above and their main characteristics:

 

1.    _Cmp_A

 

This cookie stores the user's consent preferences, so it is a technical cookie, probably preferably.

Type: technician, first part.

 

2.    _ga

 

Typical Google Analytics cookies used to trace visitors on different pages and sessions.

 

Type: Analytics, of third parties.

 

3.    _ga_56wq1yhbl5

 

Google Analytics cookies used to identify sessions and users specifically. It is persistent and is used for analysis.

Type: Analytics, of third parties.

 

4.    _Tracking_Consent

 

Contains the User tracking consent settings, similar to _Cmp_A. It serves to remember the user's preferences on tracking.

 

Type: technician, first part.

 

5.    Cart_Currency

 

Used to save the user's favorite currency in the cart, typical of e-commerce technical cookies.

Type: technician, first part.

 

6.    keep_alive

 

Technical cookie to keep the user's session active, typical of e-commerce sites to improve the user experience.

 

Type: technician, first part.

 

7.    localization

 

This cookie stores the user's localization preference, probably set to show the content in the correct language.

 

Type: technical, first part.

 

8.    Secure_customer_sig

 

Safe authentication cookies, used to safely identify recorded customers.

 

TYPE: of profiling, of Procosmet s.r.l.

 

9.    Shopify_Pay_RireCT

 

Cookies linked to Shopify to manage payment and redirect processes. It does not contain security settings, so it could only be information.

 

Type: of profiling, of third parties (Shopphy).

 

 

Procosmet s..rl. Legitimately uses profiling cookies based on its consent, provided according to the methods of this online site.

 

Cooking criteria of cookies

In acceptance of what is requested by the Guarantor Authority for the protection of personal data in the aforementioned provision on 10 June 2021, it is believed that the list above all reported with the related characters of the cookies can constitute a valid indication of the coding criteria used by the owner company for the classification of cookies themselves. 

 

Modification and disabling of cookies

In general information line, we can say that the total or partial disabilities of cookies can involve difficulties of navigation and compromise, in whole or in part, some features of the site.

 

The modification and disabilities of cookies can be performed:

 

Using the link on the online site indicated how "you review your choices on cookies".

 

In general:

 

Using the settings of your browser

Google Chrome (incorporate links https://support.google.com/chrome/answer/95647?hl=it)

Open Chrome on your computer.

At the top right, click other and then settings.

Click advanced at the bottom.

In the "Privacy and Security" section, click on Content Settings.

Click Cookies.

In the "Cookie" section, you can change the cookies settings.

 

Safari (incorporate links Safari for Mac: https://support.apple.com/it-it/guide/safari/sfri11471/mac)

In the Safari menu click on preferences

Select Privacy.

In the Block Cookies and websites, you can choose between "Always", "Allow only from the websites I visit", "Allow only from the current website" or "always block". In iOS 7 or less recent versions choose "Mai", "of third parties and advertisers" or "always".

 

Mozilla Firefox (incorporate links Firefox: https://support.mozilla.org/it/kb/gestion%20dei%20cookie)

Click the menu button and select preferences.

Select the Privacy Panel.

Upon the item Settings Chronology: Select Use Custom Settings.

To activate cookies, mark the item accept cookies from the sites; To deactivate them, remove the mark from the voice.

 

Microsoft Internet Explorer (incorporate links https://support.microsoft.com/it-it/help/17442/windows-internet-explorer-delete-manage-cookies)

Click the Tools button and then on Internet options.

Click the Privacy tab and set the sliding device upwards to block all cookies or down to allow them all and then click OK.

 

The methods of deactivation indicated are generally suitable for deactivating cookies also for mobile users.

 

Recipients

The data may be communicated to the company that has created and that handles this online site.

 

Transfer of data to countries outside the European Union Or at international organizations

The company owner of the processing of personal data makes use of Shopify services, and this involves the transfer of its personal data to countries such as Canada, the USA and other countries. Shopify International Ltd ensures that you transfer your personal data in accordance with some legal protection tools: in Canada on the basis of a decision of adequacy of the European Commission; in the USA, based on the privacy framework USA/EU; in other countries on the basis of contractual commitments comparable to standard contractual clauses. More information on: https://www.shopify.com/legal/privacy.

The company owner also makes use of Google Inc. services, and this involves the transfer of its personal data to different countries of the world. Google LLC also ensures to transfer your personal data in accordance with some legal protection tools: in the USA, based on the privacy framework USA/EU; in other countries on the basis of contractual commitments comparable to standard contractual clauses. More information on: https://policies.google.com/privacy/frameworks?hl=it, under "data transfer regulations".

 

 

Data storage

Personal data will be kept according to the deadlines reported in the previous list. In any case, the period of time in which the owner is subject to conservation obligations for tax purposes or for other purposes provided for by current regulations or the period relating to the legal protection of his interests based on art. 2946 cod. civ. (ten years) and 2947 cod. civ. (five years).

 

Rights of the interested party

The rights regarding the protection of the personal data you can be exercised against Procosmet S.r.l. The following are generally.

-  right of access to your personal data; right of rectification of incorrect data; right of cancellation of the personal data concerning it (upon the occurrence of one of the conditions indicated in art. 17, paragraph 1 of the GDPR and in compliance with the exceptions provided for in paragraph 3 of the same article); the limitation of the processing of your personal data (to the use of one of the hypotheses indicated in art. 18, paragraph 1 of the GDPR);

- Right to request and obtain from the data controller, in the hypotheses in which the legal basis of the treatment is the contract or consent, and the same is carried out with automated means - its personal data in a structured and legible format by automatic device (so -called right to the portability of personal data);

- You can decide to revoke at any time the consent to the processing of your aforementioned personal data by contacting the company owner of the processing at the following e-mail address: support@procosmet.com;

- right to oppose any time to the processing of your personal data to the use of particular situations concerning it (art. 21 GDPR);

 

Exercise of rights

For all rights exercisable regarding the protection of personal data, including the right to make a request for access, it is possible to contact the company with the treatment to the e-mail:  support@procosmet.com.

The deadline for the answer is one month, extendable to two months in cases of particular complexity; In these cases, the company owner of the processing of personal data will provide at least one interlocutory communication within a month.

The exercise of the rights is, in principle, free. The owner of the treatment has the right to request a contribution and/or to refuse to satisfy the request in the event of manifestly unfounded, excessive or even repetitive requests.

In case of refusal to satisfy the request, it will affect the company with the burden of demonstrating the manifestly unfounded or excessive character of the request.

The company owner of the treatment may also refuse to satisfy the request for the interested party if he is able to demonstrate that he cannot identify the interested party himself.

If the owner's company has reasonable doubts regarding the identity of the natural person who has made the request, he may request further information necessary to confirm the identity of the applicant himself.

It should also be remembered that it is also possible to propose a complaint to the Guarantor Authority for the protection of personal data. Below are the contact details of the Italian Guarantor Authority, based in Rome - 00187, Piazza Venezia n. 11.

- Telephone switchboard: 06. 696771;

- mail: protocol@gpdp.it;

- PEC: protocol@pec.gpdp.it.

 

Changes and updates of the Cookie Policy

Procosmet s.r.l. It can modify or simply update, in whole or in part, this information, also in consideration of the modification of the law or regulation rules governing the matter. It is therefore advisable to regularly access this section to verify the publication of the most recent and updated Cookie Policy.