This Privacy Policy is provided in accordance with art. 13 of Regulation (EU) 2016/679 and exclusively applies to all Data collected via the Sitap.it website. This Privacy Policy is subject to updates, which will be published promptly on the website. This Privacy Policy and any other documents referred to herein, and the Cookie Policy, set out the bases according to which the Personal Data of the Data Subject will be processed.
Controller
The Controller of the data collected by this website is SITAP S.R.L, VAT no. 01113920332, with registered office in Via Giulio Natta, 37 - 29010 Pontenure (PC, Italy), e-mail: privacy@sitap.it
Personal Data
Personal Data means any information relating to an identified or identifiable natural person (Data Subject). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical identity of that natural person.
Personal Data processed
The Personal Data processed by this website, directly or via third parties, include Common Data such as: Cookies, usage data, contact data including name, e-mail address, phone number and shipping address, billing address; personal data and information on payment methods or credit card details; personal preferences as well as marketing and cookie preferences.
Personal Data Processing Methods
The Personal Data provided or acquired will be processed according to the principles of fairness, lawfulness, transparency, and protection of confidentiality in accordance with the legislation in force. The Controller processes the Personal Data of Users adopting appropriate security measures to prevent unauthorised access, disclosure, modification or destruction of Personal Data. The Processing is carried out using IT and/or telematic tools, with organisational methods and with logics strictly related to the purposes indicated.
Purposes of the processing of personal data and legal basis
The Personal Data may be collected directly by the Controller or via third parties. In this case, the IT systems and software procedures used to run this website acquire Users' Personal Data of a technical and IT nature (e.g. IP address, type of browser used, operating system, domain name, and addresses of websites used to access or leave the website, etc.), the sending of which is intrinsic to the normal functioning of the internet. The Data may be processed for the sole purpose of providing anonymous statistical information on the use of the website and/or to check its correct operation and will be deleted immediately after processing.
Data that the Data Subject voluntarily chooses to provide will be processed in accordance with the conditions of lawfulness under art. 6 of the GDPR and to enable the website to provide its services, as well as for the purposes provided here below, and shall be retained for the period of time required to comply with the aforementioned purposes.
The purposes of the Processing are:
1) To respond to requests and provide information
The Data will be processed for the purposes of responding to contact or acting on specific requests made by the Data Subject to the Controller in the case of correspondence concerning the Services and/or Content provided by the Controller, by e-mail or other means of communication.
Legal basis: this processing is optional and based on consent by the Data Subject; provision of the Data is, however, required to pursue the specified purposes.
Data retention period: until consent is withdrawn by the Data Subject.
The Data will be processed for the purposes of registering with the Controller's website to purchase the Controller's Products.
Legal basis: this processing is optional and based on consent by the Data Subject; provision of the Data is, however, required to pursue the specified purposes.
Data retention period: until consent is withdrawn by the Data Subject.
3) Pre-contractual information and compliance
The Data will be processed for the purposes of responding to contact or acting on specific requests made by the Data Subject to the Controller in the case of correspondence of an informational nature and/or for information on purchasing the Controller's Products, by e-mail or via the contact form or other means of communication.
Legal basis: this processing is optional and based on consent by the Data Subject; provision of the Data is, however, required to pursue the specified purposes.
Data retention period: until consent is withdrawn by the Data Subject.
4) Processing required in the context of a contract
The Data will be processed for the purposes of complying with obligations arising from the contract entered into between the Data Subject and the Controller for the sale of the Products listed on the website, to contact the Data Subject in relation to the Contract, and to manage the same, to manage requests for legal guarantees and support, and requests regarding withdrawal from, and management and termination of, the Contract itself.
Legal basis: this processing is required to perform the contract to which the Data Subject is party, to implement the pre-contractual measures, or to comply with a legal obligation binding upon the Controller.
Data retention period: 10 (ten) years or as otherwise required by law.
5) Compliance with any obligations provided for by the laws in force
The Data will be processed for the purposes of complying with any type of obligation considered and provided for by the laws in force, regulations, associated legislation, commercial uses and tax/fiscal matters, including for the purposes provided for by anti-money laundering legislation (Italian Legislative Decree 231/2007 and subsequent amendments).
Legal basis: the Processing is necessary to fulfil a legal obligation to which the Controller is subject;
Data retention period: 10 (ten) years or as otherwise required by law.
6) Newsletter
The Data will be processed for the purposes of sending promotional, commercial and advertising messages and material, or those relating to initiatives and events run by the Controller, by way of the newsletter.
Legal basis: this processing is based on consent freely given by the Data Subject in accordance with art. 6, par. 1, lett. A of the GDPR.
Data retention period:until consent is withdrawn by the Data Subject using the dedicated tool at the bottom of the newsletter or by submitting a request to the Controller.
7) Statistics
The Data will be processed to carry out statistical analyses on aggregated and anonymous data to analyse the behaviour of the Data Subject for the purposes of improving the products and services provided by the Controller and to meet the expectations of the Data Subject.
Legal basis: this processing is based on consent freely given by the Data Subject.
Data retention period:: until consent is withdrawn by the Data Subject.
Trasmission of the Data
As well as the Controller, the following persons may, in certain cases, have access to the Data:
a) categories of Appointed Persons, specifically trained for the purpose and involved in organising the website (administrative, sales, marketing and legal personnel, and system administrators);
b) external persons (including third-party suppliers of technical services, hosting providers, IT companies, communication agencies), also appointed as Processors by the Controller under art. 28 GDPR. The updated list of Processors, if appointed, can always be requested from the Controller;
c) public or private persons who can access the Data in compliance with legal obligations;
d) persons who perform tasks accessory and instrumental to the activity of the Controller;
As expressly provided for by art. 5, par. 1, lett. e) of the GDPR, the Data are retained for the time required to process them in relation to providing the service required by the Data Subject, or required for the purposes described above in this document.
At the end of the retention period, the Personal Data will be erased and, as such, the rights to access the Data, and to obtain erasure, rectification and portability thereof, can no longer be exercised.
This website uses cookies. Cookies are small text files that may be used by websites to make the experience more efficient for the Data Subject and to customise content and announcements, provide social network functionality and analyse traffic. Cookie Policy
Place of Processing and Data transfer abroad
The Data are processed at the Controller's operating office. For more information, contact the Controller. The Data may be processed by natural and/or legal persons acting on behalf of the Controller and in accordance with specific contractual requirements, based in EU members states or outside the EU. In the event that the Data are transferred outside the EEA, the Processor shall take all contractual measures capable of ensuring appropriate protection of the Data.
Exercising of the rights of the Data Subject
The Data Subject has the right to exercise the powers provided for by articles 7, 15-22 of Regulation (EU) 2016/679. In particular, s/he has the right to withdraw his/her consent at any time and, simply by submitting a request to the Controller, may request access to the Personal Data, receive the Personal Data provided to the Controller and, where possible, send them to another Controller without impediment (so-called portability), obtain the updating, restriction of processing, or rectification of the Data, and the erasure of any Data processed in a manner not compliant with current legislation. S/he has the right, on legitimate grounds, to object to the Processing of Personal Data that concerns him/her and to Processing for the purposes of sending advertising material, and performing direct sales and market research activities. S/he also has the right to submit a complaint to the Data Protection Authority in its capacity as competent oversight authority or to appeal to the appropriate legal authorities. The Data Subject may exercise his/her rights by contacting the Controller by e-mail at: privacy@sitap.it
Tools used to Processing the Personal Data
CONTACT FORM
By filling in the Contact form with the Data, the Data Subject consents to their use to respond to requests for information, or any other purposes indicated by the form header. Personal data, collected via the contact form: E-mail, Name and Surname, Telephone number and City.
E-MAIL ADDRESS MANAGEMENT
This services allow managing a database of e-mail contacts, telephone contacts or contacts of any other type, used to communicate with the Data Subject. These services may also allow the collection of Data relating to the date and time the messages are viewed by the Data Subject, as well as the Data Subject’s interaction with these, such as information concerning the clicks on links inserted in messages.
Newsletter
By registering with the newsletter, the Data Subject’s e-mail address is automatically added to a list of contacts to which e-mail messages containing information, including commercial and promotional information, relating to this website can be sent. The Data Subject’s e-mail address could also be added to this list as a result of registering with this website or after making a purchase. The Data Subject can choose, at any time, to be removed from the newsletter list by clicking a specific button provided in the e-mails. Having clicked the button to be removed from the list, the Data Subject's data will immediately be deleted from the "e-mail marketing" software. Personal Data collected: e-mail and name. This website uses the newsletter service provided by:
is a service that organises and analyses newsletter distribution. If a Data Subject does not want their Data to be handled by Growens S.p.A., they must unsubscribe from the newsletter. Each newsletter contains a link to unsubscribe. Personal Data collected: e-mail and name. Place of processing: Italy Privacy Policy
STATISTICS
The statistics services allow the Controller exclusively to monitor and analyse traffic data and are used to monitor the Data Subject’s behaviour. This website uses the following services:
Google Analytics (Google Ireland Limited)
Google Analytics is an analytics service provided by Google Ireland Limited. Google uses the Personal Data collected to track and examine the use of this website, compile reports and share them with the other services developed by Google. Google could use the Personal Data to contextualise and customise advertisements from its own advertising network. Google can also transfer this information to third parties if required by law, or if such third parties process such information on behalf of Google. IP address anonymization is active on this website. The IP address sent by the browser for Google Analytics purposes will not be incorporated into other data already held by Google.
Google has made the Google Analytics opt-out browser add-on available at this link: Personal Data collected: Cookies and Usage data. Place of processing: Ireland - Privacy Policy
Facebook pixel conversion tracking (Meta Platforms, Inc.)
Facebook conversion tracking (Facebook Pixel) is a statistics service provided by Facebook. Facebook Pixel tracks conversions that can be attributed to Facebook ads. Personal Data collected: Cookies; Usage Data. Place of processing: Irland - Privacy Policy
Google Search Console (Google Ireland Limited)
is an analytics service provided by Google Ireland Limited. Google uses the Personal Data collected to track and examine the use of this website, compile reports and share them with the other services developed by Google. Google could use the Personal Data to contextualise and customise advertisements from its own advertising network. Google can also transfer this information to third parties if required by law, or if such third parties process such information on behalf of Google. Personal Data collected: Cookies and Usage data. Place of processing: Ireland - Privacy Policy
TAG MANAGEMENT
Google Tag manager (Google Ireland Limited)
Google Tag Manager is a service that lets you manage and track all third-party tags on the website to get information on the interest shown by Users in the website and, therefore, on the quality of the content. Personal Data collected: Cookies and Usage data. Place of processing: Ireland - Privacy Policy
INTERACTION WITH SOCIAL NETWORKS
These services enable interactions with social networks directly from the pages of this website. The interactions and information acquired by this website are in any case subject to the Data Subject’s privacy settings for each social network. Should a service for interacting with social networks be installed, it is possible that it will collect traffic data concerning the pages in which it is installed, even if the Users do not use the service.
REMARKETING AND RETARGETING
These services allow this website to communicate, optimise, and serve advertisements based on the Data Subject's past use of this website. This is done by tracking Usage Data and using cookies. This website uses the following services:
Facebook Remarketing (Meta Platforms, Inc.)
Facebook Remarketing is a Remarketing and Behavioural Targeting service provided by Facebook, which links this website's activity with the Facebook advertising network. This website uses the Facebook Pixel tool to measure conversions. Facebook Pixel makes it possible to understand the actions people take on the website. The Data collected can be used to:
- ensure the ads are shown to the right people;
- create audience groups at whom to target ads;
- make the most of additional advertising tools offered by the platform on which the ads are shown
The information collected is anonymous to the operators of this website and cannot be used to determine the identity of an individual Data Subject. The information is, however, saved and analysed by Facebook, which could link the action to an individual profile and use this information for Facebook's own advertising purposes, as outlined in Facebook's privacy policy. This will enable Facebook to show ads both on Facebook and on third-party sites. The website's Controller has no control over how these data are used. For more information on how users can protect their privacy, see the Facebook Privacy Policy
Google ADS
Google ADS is a service provided by Google Ireland Limited that links this website with the Google advertising network. This website uses the Google Analytics Remarketing functionality combined with the possibility to adapt to various devices offered by Google ADs. This functionality makes it possible to link the target groups for promotional campaigns created using the Google Analytics Marketing feature with the adaptability to various devices offered by Google ADS. This makes it possible to show advertising based on the personal interests of the Data Subject, identified by analysing the behaviour of the Data Subject on the web, whether from a mobile device or other devices. It is possible to permanently disable the targeting and remarketing functions by disabling "personalised ads" in the Google account. To do so, go to: https://www.google.com/settings/ads/onweb/
Personal Data collected: Cookies and Usage data. Place of processing: Privacy Policy
Insight Tag LinkedIn (LinkedIn Ireland Unlimited Company)
This website uses a "LinkedIn Insight Tag" script. The LinkedIn Insight Tag adds a cookie to the User's browser each time they visit this website. This tool lets the Controller record whenever a LinkedIn member performs a certain action on the website (such as booking a service or providing their e-mail address). This tool is used to collect statistical data that makes it possible to measure the effectiveness of paid advertising. LinkedIn Insight Tag makes it possible to understand the actions people take on the website. The Data collected are used to: ensure the ads are shown to the right people; create audience groups at whom to target ads; make the most of additional advertising tools offered by the platform on which the ads are shown. This website uses the LinkedIn Insight Tag to perform "remarketing" activities and "Retargeting" activities; these activities involve using the cookies left by the Data Subject on the website, without identifying him/her. Personal Data collected: Cookies and Usage data. Place of processing: Ireland - Privacy Policy
Instagram Remarketing (Meta Platforms, Inc.)
Instagram Remarketing is a Remarketing and Behavioural Targeting service provided by Meta Platforms, Inc., which links this website's activity with the Instagram advertising network. This website uses the Pixel tool to measure conversions and understand the actions people take on the website. The information collected is anonymous to the operators of this website and cannot be used to determine the identity of an individual Data Subject. The information is, however, saved and analysed by Facebook, which could link the action to an individual profile and use this information for Facebook's own advertising purposes, as outlined in Facebook's privacy policy. For more information on how users can protect their privacy, see the Instagram Privacy Policy.
TikTok Ads (TikTok Technology Limited)
TikTok Ads is a Remarketing and Behavioural Targeting service provided by (TikTok Technology Limited), which links this website's activity with the TikTok advertising network. This website uses the Pixel Tracking tool to measure conversions and understand the actions people take on the website. For more information on how users can protect their privacy, see the TikTok Privacy Policy.
Pinterest Ads (Pinterest Europe Ltd.)
Pinterest Ads is a Remarketing and Behavioural Targeting service provided by Pinterest Europe Ltd, which links this website's activity with the Pinterest advertising network. This website uses the Pixel Tracking tool to measure conversions and understand the actions people take on the website. For more information on how users can protect their privacy, see the Pinterest Privacy Policy.
MANAGEMENT OF PAYMENTS
The payment management services allow this website to process payments by credit card, bank transfer, and using other tools. The Data used to make the payment are obtained directly by the provider of the requested payment service, without being processed in any way by this website. Some of these services may also provide the option to schedule messages to be sent to the Data Subject, such as e-mails containing invoices or notifications concerning the payment.
Changes to Privacy Policy
The Controller reserves the right to make changes to this Privacy Policy at any time, informing Users of such on this page. Please therefore consult this page frequently, referring to the date of the last change indicated at the bottom. In the event that s/he does not accept the changes made to this Privacy Policy, the Data Subject must stop using this website and may ask the Controller to remove his/her Personal Data. Unless otherwise specified, the previous Privacy Policy will continue to apply to the Personal Data collected up until that time. The Controller is not responsible for updating all links provided in this Privacy Policy. As such, if a link is not working and/or updated, Users acknowledge and accept that reference must be made to the document and/or section of the websites to which the link refers.
Privacy Policy updated in June 2023