Privacy policy

Courtesy translation. Only the Italian version of this page has legal validity.

Welcome to our website (“www.kontedesign.com”). Please carefully read our Privacy Policy, which applies whenever you access the website and decide to browse its content and use its services, regardless of purchasing goods.

The information provided below complies with the regulations set forth by Legislative Decree no. 196/2003 et seq. and EU Regulation no. 679/2016 “GDPR” concerning the protection of personal data.

Data Controller

The Data Controller of the data collected through this website is Fashion Commerce SRL, with registered office in Italy, Via Berte e Scacciavolpe 7 – 57014 Collesalvetti – Livorno (LI).

E-mail: info@kontedesign.com

Types of Data Collected

The Controller collects the following types of data:

  • Identification (username) and contact (email) data provided by the User upon registration on the website (“Register”). The form filling procedure can be bypassed through social login. This is an alternative completion procedure that allows automatic data entry via Amazon, Facebook, Google, or Instagram profiles. In this way, information can be transferred directly from the user’s social profile. Such data is used exclusively to proceed with Registration;
  • Identification and contact data (name, surname, email, phone, address, any company affiliation), as well as additional data voluntarily provided in the message area, sent through the completion of forms on the website;
  • Personal data provided by the User to complete the purchase of goods; the User must provide identification data such as name, surname, tax code/VAT number, contact data such as email, phone, residential and shipping address, as well as payment method data;
  • Data related to orders placed and items saved in the “wish list” and “cart”;
  • Personal and sensitive data of job candidates or collaborators that may be received through dedicated forms or by sending to the email addresses indicated on the website. Regarding the transmission of CVs, the Controller – in accordance with the measures and guidelines of the Supervisory Authority – will provide specific information on data processing at the time of first contact with the candidate;
  • Optionally provided personal data to the email addresses indicated on the website. In this case, the email address, as well as all other personal data entered in the message, are acquired. Such data is used exclusively to fulfill specific requests;
  • Browsing data. The computer systems and software procedures involved in the operation of this website acquire, during their normal operation, data whose transmission is implicit in the use of Internet communication protocols. These are information that are not collected to be associated with identified interested parties, but which by their nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes IP addresses or domain names of computers used by users connecting to the site, URI addresses (Uniform Resource Identifier) of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response from the server (successful, error, etc.), and other parameters related to the operating system and the user’s computer environment. This data is used only to obtain anonymous statistical information about the use of the website and to check its correct functioning.

Purposes and Legal Bases of Processing

The data is processed for the following purposes:

  • to fulfill orders, manage payments, and provide customer support. The legal basis is the execution of contractual and pre-contractual measures taken at the request of the customer (Art. 6, lett. b, GDPR) or compliance with legal obligations of a tax, accounting, administrative nature (Art. 6, lett. c, GDPR);
  • to enable the use of our services and respond to user requests effectively and efficiently based on the legitimate interest of the Controller (Art. 6, lett. f, GDPR);
  • to manage Newsletter subscription requests and provide the requested service as part of contractual measures implemented at the request of the User (Art. 6, lett. b, GDPR);
  • to evaluate any job applications or collaboration requests by implementing pre-contractual measures (Art. 6, lett. b, GDPR) at the request of the data subject. The processing of “sensitive” data eventually transmitted is lawful based on the Authority’s Decision of June 5, 2019, which integrates and modifies General Authorization no. 1/2016;
  • for marketing and commercial promotion purposes, to send, via email, SMS, phone, or other digital communication tools, news about goods, services, events, and promotions. The legal basis is the express consent given by the User (Art. 6, lett. a, GDPR);
  • to comply with legal obligations to which the Data Controller is subject (Art. 6, lett. c, GDPR).

Provision of Personal Data

The obligatory or optional nature of the provision is specified on a case-by-case basis – with reference to the individual data requested – at the time of each data collection – by affixing a specific symbol (*) to the mandatory information. The refusal to provide data marked as mandatory makes it impossible for the Controller to execute the contract or provide the requested services.

Processing Methods

The processing of personal data is mainly carried out using electronic and telematic means, with the help of specifically authorized personnel. Adequate security measures are adopted to minimize the risks of destruction or loss – including accidental loss – of data, unauthorized access, or processing not allowed or not compliant with the purposes of collection. The data is processed at the Controller’s headquarters and at any other place where the parties involved in the processing are located, as well as on hosting servers.

Retention Period

The data is processed for the time necessary to perform the service requested by the User or generally until the purposes for which they were collected are achieved. Some data will be kept for longer periods due to contractual and administrative-accounting obligations (e.g., 10 years pursuant to Art. 2220 of the Italian Civil Code). Concerning marketing purposes, personal data related to such purposes will be used for 24 months from the date of consent issuance, without prejudice to the User’s right to request revocation at any time.

Disclosure and Transfer of Personal Data

The personal data collected will not be disseminated in any way but may be communicated to professionals, collaborators, or legal entities providing outsourced services on behalf of the Controller (e.g., IT services, email marketing services, consultants, etc.). Such external subjects will process the data as Data Controllers or Data Processors duly appointed. The complete and updated list of data processors is available upon request. The data may also be communicated or made available to subjects authorized to access them by law, regulation, or European legislation, within the limits and for the purposes provided for by such regulations.

Transfer of Personal Data

Any transfer of personal data to non-EU countries, if necessary to ensure the services offered by this website, will be carried out in compliance with Articles 44 and following of the GDPR, by implementing specific tools to ensure adequate data protection guarantees.

Links to Other Websites, Platforms, and Social Networks

This information is provided only for the kontedesign.com website and not for other websites or social platforms reachable by the User through linking and social buttons, special buttons present on the website depicting icons of social networks. For more information on the data processing carried out by these external subjects, users are invited to refer to their respective privacy policies.

Data Subject Rights

At any time, pursuant to Articles 15 et seq. of EU Regulation 679/2016, the User may exercise the following rights:

a) access to data;
b) rectification, erasure of data, or restriction of processing;
c) obtaining information about the purposes of processing, the categories of personal data, the recipients or categories of recipients to whom the personal data have been or will be communicated, and the retention period;
d) objection to processing;
e) data portability, where technically feasible;
f) withdrawal of consent, without affecting the lawfulness of processing based on consent before its withdrawal;
g) lodge a complaint with the supervisory authority, the Garante for the protection of personal data.

The exercise of rights, excluding letter g), may be carried out by sending a request to the email address info@kontedesign.com.

Updates and Changes

In the future, the Controller may modify or simply update, in whole or in part, this Privacy Policy, also considering changes in legal regulations or provisions protecting the rights of data subjects. Changes and updates to the Privacy Policy will be binding as soon as they are published on the website. Therefore, Users are invited to regularly access this section to check for the publication of the latest and updated Privacy Policy.

Trusted Program by Trovaprezzi.it

7Pixel S.r.l., represented by its pro tempore legal representative, is appointed as the data controller of the User’s data (email address) for managing comments requests within the Trusted Program of the website www.trovaprezzi.it.