PRINCETEES.COM WEBSITE PERSONAL DATA PROCESSING PRIVACY POLICY

1. INTRODUCTION

This section provides information on the methods adopted in managing the personal data of visitors to the princetees.com website.
This informative letter is provided also in compliance with Art. 13 of EU Regulation 2016/679 (GDPR) regulating the protection of natural persons, the processing of their personal data, and the free circulation of such data
This informative letter is provided only for visitors to the princetees.com website and not for any other websites.
This informative letter may be modified whenever new regulations regarding it come into force. For such reason, users are invited to check this page regularly

2. 2 DATA PROCESSING CONTROLLER

The Data Processing Controller is the natural or legal person who determines the purposes and means of personal data processing individually or by working with others.
The Data Processing Controllers for this website are:

  • New Works Webtech Srl, with registered office in Via San Gregorio, 44, 20124, Milano, taxpayer number and VAT number 02658930132, contactable at: webtech@newworks.it.
  • FGF Industry S.p.A. (hereinafter also referred to as “FGF”), with registered office in Vicolo Vincenzo Bellini, n. 12, 35131, Padova, taxpayer number, VAT number and registration in the Register of Companies of Padova number 03315890289, contactable at: info@fgf-industry.com (for all requests regarding the processing of personal data, contact the DPO, see Par. 3)

As per Art. 26 GDPR, we inform you that:

  • New Works Webtech is the Data Processing Controller of your personal data required for managing and filling your orders, shipping the products that you have purchased, providing you with the necessary post-sales assistance, managing purchased product return procedures, and enforcing this regulation;
  • FGF is the Data Processing Controller of your personal data required for managing the accounts of the Sales Outlet for purposes of transition to new operators or the internalization of services currently assigned to New Works Webtech and assisting New Works Webtech in developing your position in compliance with conventional guarantees or those prescribed by law, including the management of purchased product return procedures, managing and servicing Sales Outlets, and upon receiving your consent, for marketing purposes;
  • FGF is the sole Data Processing Controller of your personal data required for marketing purposes and the transmission of commercial communication.

3. DATA PROTECTION OFFICER – DPO

As per Art. 37 of Reg. 679/16, FGF has appointed a Data Protection Officer (DPO) who can be contacted for any question regarding the processing of personal data by FGF of all Data Subjects at the following e-mail address: dpo@fgf-industry.com.

4. CATEGORIES OF DATA PROCESSED AND COLLECTION METHODS

Your navigation on our website and/or your entry of certain data in the same may lead to our collection and subsequent further processing of your Personal Data. The computer systems and software procedures in operation automatically and indirectly administer and/or acquire certain information (merely for purposes of example, so-called cookies – as specified below – or the data expressly specified in the respective collection formats such as first name, last name, e-mail address, nationality, residence address, telephone number, information on the market sector in which you operate, and information on the products that you use or those in which you are interested).
The Personal Data collected may include the following:

  • your internet protocol address (IP);
  • your type of browser and the parameters of the device used for connection to the website;
  • the name of your internet service provider (ISP);
  • the date and time of visit;
  • the web page from which the visitor has come (referral) and the page to which he is going;
  • the number of clicks made in the site;
  • comments left on website fields;
  • e-mail address;
  • the Identifier for Advertising of your mobile device (IDFA - Identifier for Advertising - for iOS and AAID devices - Google Advertising ID – for Android devices).

5. 5 PURPOSES OF DATA PROCESSING, LEGAL BASIS FOR PROCESSING, AND THE PERIOD OF TIME FOR WHICH YOUR DATA IS CONSERVED

We process your personal data for different purposes, and we respect the data conservation period and the conditions of lawfulness of each one. The Data Processing Controller will not conserve your Personal Data for longer than necessary to serve the purpose for which it was collected. Personal Data will be conserved for the period allowed or prescribed by law. In order to ensure respect of the principles of necessity and proportionality of processing, the Data Processing Controller has identified the following Personal Data conservation periods for the single purposes envisioned

Purpose of processing Legal basis of processing Data conservation period
Management of and reply to your specific requests made by contacting us directly Consent by Data Subject 24 months
Marketing, commercial communications, market research, newsletter receiving activities Consent by Data Subject Until revocation of consent, which can be accomplished in any moment by using the link provided at the bottom of every promotional e-mail (as regards marketing and newsletter activities) or by sending us an e-mail to the contact addresses above
Supply of products and services you have purchased; transmission of communications regarding your order or payments Fulfilment of contract or pre-contractual measures required 10 years or until request is made for the cancellation of the account
Interaction with customer assistance operators Fulfilment of contract or pre-contractual measures required 10 years or until request is made for the cancellation of the account
Management and fulfilment of legal obligations (purposes of accounting, administrative or fiscal, etc. nature). Fulfilment of legal obligation 10 years or until request is made for the cancellation of the account
Management of present and future disputes, prevention or control of illicit conduct, safeguarding and defense of rights Legitimate interest Until the limits specified or statute of limitations specified by law
Cookies collected Consent by Data Subject, as signaled on website access banner The data conservation period for these cookies starts from the date they are enabled and continues until the date they are disabled.

6. HOW WE PROCESS YOUR DATA

The processing of your Personal Data may include any of the following types of operation: collection, recording, organization, structuring, conservation, adaptation or modification, extraction, consultation, use, disclosure by means of transmission, dissemination or any other form made available, comparison or interconnection, restriction, cancellation, or destruction.
Such operations can be conducted with or without the use of electronic or automated instruments.
Processing is conducted by the Data Controller and/or the parties appointed to processing operating under the Data Controller’s direct authority in respect of the instructions provided by such latter or the third parties assigned responsibility for external processing.

7. WHERE WE PROCESS YOUR DATA

Your Personal Data is processed primarily at the offices of the Data Controllers, and for such reason the geographical location may vary on the basis of the purposes of processing indicated in Paragraph 1. Your personal data may also be processed at the offices of the third parties assigned to external processing
This website may share some of the data collected with localized services outside the European Union area, such as with Google, Facebook, and Microsoft (LinkedIn) by means of social plug-ins and Google Analytics service.
If you consent to the processing of your Personal Data for marketing and promotional purposes, some of your Personal Data (first name, last name, e-mail address) will be subjected to transfer to our partners for the software use for the newsletter that are also based outside the European Union and all around the world.
We inform you that we will transfer your Personal Data only to parties based in nations expressly approved by the EU Commission on the basis of the guarantees they provide for compliance with the provisions of Reg. 679/2016 (GDPR).

8. WHO THE RECEIVERS OF YOUR PERSONAL DATA ARE

Your Personal Data may be disclosed to and processed by:

  • the legal or natural persons designated in outsourcing as responsible for external processing by the Data Controller or the third parties assigned to such activity by the former (which may include those entrusted with activities regarding assistance, communication, marketing, advertising, promotion and sale of products and/or services, and advertisers, concessionaires, advertising operatives, IT service providers, website/APP managers, electronic platform managers, partners, credit institutes, studios of professionals);
  • employees and/or associates of the Data Controller (including system administrators) operating under the direct authority of the latter and as such authorized to process your Personal Data; and
  • employees and/or associates of the legal or natural persons designated as responsible for external processing (including system administrators) operating under the direct authority of these latter processers designed by the Data Controller and as such authorized to process your Personal Data.

Your Personal Data will not be disclosed to third parties, except whenever your Personal Data must be communicated by the Data Controller to consultants in defense of rights

9. OBBLIGATORY CONFERMENT OF DATA

The conferment of data must be deemed obligatory for the processing that the organization must perform in fulfilment of its obligations to the Data Subject on the basis of the relationship (or contract) in force or in fulfilment of its legal, normative, and regulatory obligations.
Consent to conferment is not obligatory for any other purposes, and even after it has been granted it may be revoked in any moment by the Data Subject.

10. REFUSAL TO CONFER DATA

Refusal to confer the data that the Data Subject is obliged to confer may lead to the impossibility of satisfying your requests and initiating a business relationship and the contracts intended to be fulfilled with the Data Controller.
In the event of refusal to confer data that the Data Subject is not obliged to confer, the consequences will be evaluated specifically case by case and presumably, the service linked to such data will be impossible to provide.

11. RIGHTS OF THE DATA SUBJECT

Privacy Policy grants you, the Data Subject, numerous rights, among which, in particular, the following:

Right Description
Right of revocation of the consent provided (GDPR Art. 13, paragraph II, letter A and Art. 9, paragraph II, letter A) In any moment whatsoever you have the right to revoke your consent to any of the types of processing whose legitimacy is based on your consent, as indicated in the table of purposes above.
Your revocation of consent does not compromise the legitimacy of previous processing.
Right of access to data (art. 15) You have the right to request a) the purposes of processing; b) the categories of Personal Data in question; c) the receivers or categories of receiver to which your Personal Data has been or will be disclosed, and in particular whether such receivers are located abroad or whether international organizations are involved; d) whenever possible, the period of conservation envisioned for the Personal Data, or whenever this is impossible, the criteria used to determine such period; e) to ask the Data Processing Controller to rectify or erase your Personal Data or the restriction of the processing of your Personal Data or your opposition to their processing; f) to lodge a protest with a control authority; g) whenever the data has not been collected from you, all the information possible on its origin; h) the existence of an automated decision-making process including the profiling specified in Article 22, paragraphs 1 and 4, and at least in some cases, significant information on the type of processing logic adopted, and the importance and consequences envisioned for such processing for you. You also have the right to request a copy of your Personal Data that has been processed.
Right of rectification (Art. 16) You have the right to request the rectification of inexact Personal Data that regards you and to obtain the integration of incomplete Personal Data.
Right of erasure (Art. 17) You have the right to obtain from the Data Processing Controller the erasure of Personal Data that regards you whenever such Personal Data is no longer necessary to the purpose for which it was originally collected or otherwise processed, whenever you revoke your consent, whenever any legitimate and prevailing reason to proceed to profiling processing no longer exists, whenever the data has been processed unlawfully, whenever there is a legal obligation for its erasure; and whenever the data regards web services provided to minors without consent. Erasure may be performed except when the right to freedom of expression and information prevails or whenever it is conserved for the fulfilment of a legal obligation or for the execution of an operation performed in public interest or in the exercise of the powers of public authorities for public health reasons, for the purposes of the filing of scientific or historical research or statistical purposes or for purposes of ascertainment or the exercise or defense of a right during legal proceedings.
Right of restriction of processing (Art. 18) You have the right to obtain from the Data Processing Controller the restriction of the processing of your Personal Data whenever you have protested the exactitude of such Personal Data (for the period required by the Data Processing Controller to verify the correctness of your Personal Data) or whenever the processing is unlawful and you oppose the erasure of Personal Data and ask instead that its use be restricted or if it is necessary to you for the ascertainment, exercise or defense of a right during legal proceedings and for the Data Controller it is no longer necessary.
Right of portability (Art. 20) You have the right to receive in commonly used structured format legible by an automatic device the Personal Data that regards you and that you conferred to us, with the right to transmit it to others if the processing is based on consent, on contact, and if the processing has been performed with the use of automated systems except whenever the processing is necessary for the execution of an operation of public interest or regards the exercise of the power of public authorities and whenever such transmission does not infringe on the rights of others.
Right to lodge a protest with the Data Protection Authority (Personal Data Protection Authority) (Art. 77) With all rights reserved to further of administrative or judicial claims, whenever you have reason to believe that the processing of your Personal Data violates Personal Data Protection regulations, you have the right to lodge a protest with a Protection Authority in the member state in which you regularly reside, work, or in which the presumed violation took place.

12. METHODS TO BE ADOPTED FOR THE EXERCISE OF RIGHTS

You may in any moment exercise these rights by contacting the Data Controller at the addresses above (see paragraphs 2 and 3).
You may lodge a protest with the Data Protection Authority by following the instructions provided at the latter’s website in the section entitled “Forms” under the heading “Protest” (or by clicking on the following link).

13. INFORMATIVE NOTE ON COOKIES

13.1 What cookies are?

Cookies are small text files that the websites visited by users send to their terminals, where they are memorized prior to being retransmitted to the websites the next time that the user visits the website. So-called “third-party” cookies are instead set up by a different website from the one that the user is visiting. This is because every website may contain elements (images, maps, sounds, specific links to web pages of other domains, etc.) residing in different servers than the one of the website the visitor is visiting.

13.2 The purpose that cookies serve?

Cookies are used for different purposes: executing information technology authentication, monitoring sessions, memorizing information on specific configurations regarding users accessing the server, memorizing preferences, etc. For such reason, for a facilitated and complete use of a website, the user should configure his or her browser in such way as to accept these cookies

13.3 Characteristics and purposes of cookies for our web pages

Our website uses:

  • Technical cookies, which are necessary for the correct operation of the site and enabling browsing, without which the website visitor might not be able to see the webpage correctly or utilize certain services;
  • Functional cookies, which allow certain Store features to be activated and preferences (such as language) to be saved in order to improve your browsing experience;
  • Analytical cookies, which allow us to acquire aggregated, anonymous statistical information concerning browsing habits;
  • Profiling cookies, which allow us to personalize advertising messages based on your interests and preferences so that we can send you only the adverts that you will find relevant or interesting;
  • Third party cookies may be present in our website but are managed by a website other than ours; they are usually profiling cookies.

The cookies we use may be session cookies (those that are automatically deleted when the browser closes) or persistent cookies (those that remain inside the device and continue working even after the browser has closed for a determined period of time).

13.4 Third party cookies

Our website hosts the following third party cookies:

name of cookie Type of cookie (profiling, technical, analytical, etc.) link to informative letter of third party cookie data processing controller Duration of persistence of cookie in website visitor’s browser domain
IDE Profiling https://policies.google.com/privacy 1 year doubleclick.net
YSC Browsing https://policies.google.com/privacy Duration of the session youtube.com
GPS Analytical https://policies.google.com/privacy 30 minutes youtube.com
VISITOR_INFO1_LIVE Browsing https://policies.google.com/privacy 5 months youtube.com

13.5 How to enable or disable cookies on your browser

You can block your navigation browser’s acceptance of all cookies or only third-party cookies. This operation might completely obstruct or compromise your access to certain website pages or services.
We provide the ways to block the acceptance of cookies offered by the leading browsers:

  • Internet Explorer: http://windows.microsoft.com/it-it/internet-explorer/delete-manage-cookies#ie=ie-11
  • Firefox: https://support.mozilla.org/it/kb/Gestione%20dei%20cookie
  • Chrome: https://support.google.com/chrome/answer/95647?hl=it
  • Safari: http://support.apple.com/kb/HT1677?viewlocale=it_IT

14. MODIFICATIONS TO THIS DOCUMENT

This document may be subjected to modifications or updates. All relevant modifications or updates will be expressly communicated to website users.

Latest revision: 16 October 2020