Cookie Policy

Data Controller

Materassi Gube di Bertoldo Guido - Via Roma 41 - 10050 Chiusa di san Michele (TO)

@: materassigube@gmail.com 

VAT number 12881200013 Rea

Types of Data Collected

Among the Personal Data collected independently or through third parties are name, surname, tax code, billing and shipping address; telephone number, payment information, device information, email.

Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically during the use of the website.

Unless otherwise specified, all Data requested by this Website is mandatory. If the User refuses to communicate them, it may be impossible to provide the Service. In cases where this Website indicates some Data as optional, Users are free to refrain from communicating such data. 

Any use of Cookies - or other tracking tools - by this Website or by the owners of third-party services used by this Website aims to provide the Service requested by the User, in addition to the further purposes described in this document and in the Cookie Policy.

The User assumes responsibility for the information provided by completing their account.

Method and place of processing the collected Data

Method of processing

The Controller adopts appropriate security measures to prevent unauthorized access, disclosure, or modification of clients' personal data.

Processing is carried out using IT tools, with organizational methods and logic strictly related to the stated purposes. In addition to the Controller, other parties involved in the commercial activity (administrative, commercial, marketing, legal personnel, system administrators) or external parties (such as third-party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) may have access to the Data, also appointed, if necessary, as Data Processors by the Controller. The updated list of Processors can always be requested from the Data Controller.

Place

The Data is processed at the Controller's operating headquarters and in any other place where the parties involved in the processing are located. For further information, please contact the Controller.

Retention period

Unless otherwise indicated in this document, Personal Data is processed and stored for the time required by the purpose for which it was collected and may be stored for a longer period due to legal obligations or based on the User's consent.

Purposes of processing the collected Data

User Data is collected to allow the Controller to provide the Service, fulfill legal obligations, respond to requests or executive actions, protect their rights and interests (or those of Users or third parties), and identify any malicious or fraudulent activities.

User Rights based on the General Data Protection Regulation (GDPR)

Users can exercise certain rights regarding the Data processed by the Controller.

In particular, within the limits provided by law, the User has the right to:

• withdraw consent at any time. The User can withdraw consent to the processing of their Personal Data previously expressed.
• object to the processing of their Data. The User can object to the processing of their Data when it occurs by virtue of a legal basis other than consent.
• access their Data. The User has the right to obtain information on the Data processed by the Controller, on certain aspects of the processing, and to receive a copy of the processed Data.
• verify and request rectification. The User can verify the accuracy of their Data and request its update or correction.
• obtain restriction of processing. The User can request the restriction of processing of their Data. In this case, the Controller will not process the Data for any other purpose than its storage.
• obtain the erasure or removal of their Personal Data. The User can request the erasure of their Data by the Controller.
• receive their Data or have it transferred to another controller. The User has the right to receive their Data in a structured, commonly used and machine-readable format and, where technically feasible, to obtain its transfer without hindrance to another controller.
• lodge a complaint. The User can lodge a complaint with the competent data protection supervisory authority or take legal action.

Users have the right to obtain information regarding the legal basis for the transfer of Data abroad, including to any international organization governed by international law or constituted by two or more countries, such as the UN, as well as regarding the security measures adopted by the Controller to protect their Data.