Information regarding the protection of personal data

Information pursuant to Articles 12, 13, and 14 of EU Regulation 679/2016

 

EU Regulation 679/2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data requires the Data Controller (Maurizio Baldassari S.r.l.) to provide data subjects with the information indicated in the epigraph.

The articles of law indicated below refer to the aforementioned EU Regulation 679/2016.

This Company, which has always been attentive to the confidentiality, accuracy, availability, and security of personal data, provides the following information.

 

Purpose of data processing 

Your personal data will be processed during visits to the website for the following purposes:

  1. a) management of requests for information via email or other channels;

management of the online shop;

sending commercial communications.

The provision of data for the above purposes is optional, however, if data is not provided, it will not be possible to send requests for information, manage payments, and/or send commercial information (newsletters).

For the purposes indicated in points a) and b) above, the consent of the data subjects is not required.

For the purposes indicated in point c) above, the explicit consent of the data subjects is required, which can be given by ticking the appropriate box on the website.

Consent may be revoked at any time, with the consequence that the Company will no longer be able to send commercial communications.

The processing of your personal data is lawful pursuant to Article 6, letters a), b), and f) of EU Regulation 679/2016.

 

Methods of processing

The data is processed using computerized, telematic, and/or manual systems, through procedures designed to ensure the security and confidentiality of the data.

The data may be disclosed to consultants, service providers, and insurers of the Data Controller. The disclosure of personal data as described above does not require the consent of the data subjects.

The data may be known by the Data Controller, the data processors, the data protection officer, the persons authorized to process the data by the Data Controller pursuant to Article 29 of the Regulation, as well as the system administrator of this Company. The data may not be disclosed.

 

Duration of processing and storage of personal data

The processing referred to in this policy will last for the time strictly necessary to manage requests for information, execute sales contracts, and/or send commercial communications.

With regard to data collected in the context of online purchases, the storage period will be ten years, which is the ordinary limitation period.

 

Rights of data subjects (Articles 15 to 22 of the Regulation)

Finally, we inform you that Articles 15 to 22 of the Regulation grant data subjects specific rights. In particular, data subjects may obtain from the Data Controller, with regard to their personal data: access (Article 15); rectification (Article 16); erasure – right to be forgotten – (Article 17); restriction of processing (Article 18); notification in the event of rectification, erasure or restriction (Article 19); portability (Art. 20); the right to object (Art. 21) and not to be subject to automated decision-making and profiling (Art. 22). The data subject has the right to lodge a complaint with the Supervisory Authority.

 

Data Controller and Data Protection Officer

The Data Controller is Maurizio Baldassari S.r.l. with registered office in 20121 Milan, via Solferino 14. Email: showroom@mauriziobaldassari.it

The Data Protection Officer is Paolo Recla, lawyer, domiciled for this purpose at the Data Controller’s registered office. Certified email address: paolorecla.dpo@legalmail.it

 

 

Customers

Pursuant to Articles 12, 13, and 14 of EU Regulation No. 2016/679 (“GDPR”), data subjects must be properly informed about the processing of their personal data.

Therefore, we inform you that:

Maurizio Baldassari S.r.l., with registered office in 20121 Milan, Via Solferino 14, is the Data Controller.

 

Purpose

Personal data is processed for the following purposes:

compliance with legal obligations and measures imposed by the Authorities;

administrative and accounting management, including the management of electronic and non-electronic payments;

commercial communications and/or invitations to events.

The provision of your personal data for the purposes referred to in points a) and b) above is mandatory. If you do not provide your data, the Data Controller will not be able to carry out any processing activities.

The provision of your personal data for the purposes referred to in letter c) above is optional. Failure to provide your data will make it impossible to send commercial communications and/or invitations to events.

Your consent is not required for the purposes referred to in letters a) and b) above.

For the purposes referred to in point c) above, your explicit consent is required. Consent may be revoked at any time, with the consequence that the Data Controller will no longer be able to send you commercial communications and/or invitations.

The processing is lawful pursuant to Article 6, points a), b), c), and f) of EU Regulation 679/2016.

 

Methods

Personal data will be processed by the Data Controller and its appointees/authorized persons using computerized and paper-based systems, in accordance with the principles of fairness, loyalty, and transparency provided for by the applicable legislation on the protection of personal data, and stored in our paper and computerized archives. Personal data may not be disclosed and all communication will be characterized by organizational and IT procedures that ensure a high level of confidentiality, availability, and accuracy.

The processing of your personal data will take place within the European Economic Area.

 

Communication and Disclosure

Your personal data may be disclosed to the following parties solely for purposes strictly related to the provision of the service:

Public entities and authorities for legal compliance;

Consultants and insurers;

Service providers;

Professionals on our staff and appointed/authorized by us pursuant to Article 29 of the GDPR;

The communication of your personal data to the above categories of subjects does not require the express consent of the data subject.

Your personal data will not be disclosed.

 

Duration of storage

Your personal data will be stored for the time necessary to pursue the purposes for which it was acquired. Personal data necessary for the fulfillment of legal obligations will be stored even after the indicated term, in compliance with said obligations and in accordance with the storage periods (e.g., 10 years, ordinary limitation period).

 

Collection from third parties

If the personal data of the data subject is not collected directly from the data subject, the Data Controller, pursuant to Article 14, letter g) of EU Regulation 679/2016, informs that no automated decision-making processes are implemented, including profiling as referred to in Article 22, paragraphs 1 and 4.

 

Rights of data subjects (Articles 15 to 22 of EU Regulation 679/2016)

Finally, we inform you that Articles 15 to 22 of the Regulation grant data subjects specific rights. In particular, data subjects may obtain from the Data Controller, with regard to their personal data: access (Article 15); rectification (Article 16); erasure – right to be forgotten – (Article 17); restriction of processing (Article 18); notification in the event of rectification, erasure or restriction (Article 19); portability (Article 20); the right to object (Article 21) and not to be subject to automated decision-making and profiling (Article 22). The data subject has the right to lodge a complaint with the Supervisory Authority.

 

Data Controller

The data controller is Maurizio Baldassari S.r.l., with registered office in 20121 Milan, Via Solferino 14. Email: showroom@mauriziobaldassari.it

The Data Protection Officer is Paolo Recla, lawyer, domiciled for this purpose at the Data Controller’s registered office. Certified email address: paolorecla.dpo@legalmail.it

 

Global-e CONSUMER AS Merchant Of Record  – Privacy Policy

This Privacy Policy (“Policy”) governs how Global-e (“Global-e,” “we,” “us,” or “our”) collects, receives, uses, stores, and discloses information (sometimes referred to as “Personal Information,” as defined below) about individuals in connection with the use of our websites, applications, and other services (collectively, the “Services”). “our,” or “us”) collects, receives, uses, stores, and discloses information (sometimes referred to as “Personal Information,” as defined below) about individuals in connection with the use of our services for the sale of products to you or, if applicable, other services explicitly stated in this Policy (“Services”). References to Global-e (or “we,” “our,” or “us”) refer to the Global-e group, including the entities, subsidiaries, and affiliates listed <<here>>, and also include the website operating as “Borderfree.com” and the services offered thereunder (which, if offered, shall form an integral part of the Service).

This Policy sets out our privacy practices for the processing of Personal Data, as defined below, in connection with our Services. We will only collect, use, or disclose your Data in accordance with the terms of this Policy.

If you do not want your information collected, please do not submit it. However, please note that without receiving your data, we will not be able to process your order or may be limited in performing all or part of our Services.

If you are a resident of one of the countries listed in the section “Additional Information for Users in Certain Jurisdictions” or are placing an order to be fulfilled in one of those countries, additional and specific terms may apply. Please review them.

Global-e may modify and update the terms of this Policy from time to time. If we decide to make material changes to our Policy, we will post the revised Policy on our website with an updated effective date and notify you of such changes by any appropriate means. If you continue to use the Service after such changes are posted, you confirm that you have read and accepted the revised Policy.

You can read more about Global-E’s Privacy Policy here https://www.global-e.com/consumer-privacy-policy/

 

 

Suppliers

Pursuant to and for the purposes of the Regulation in question, governing the “protection of individuals with regard to the processing of personal data,” Maurizio Baldassari S.r.l., as Data Controller (hereinafter “Company”), with registered office in Milan, via Solferino 14, is required to provide certain information regarding personal data collected from the Supplier concerning natural persons, as “Data Subjects.”

The data held by the Data Controller is normally collected directly from the Supplier and/or from the Data Subjects and occasionally also from third parties.

In the event that the personal data of the data subject is not collected directly from the data subject, the Data Controller, pursuant to Article 14, letter g) of the Regulation, informs that no automated decision-making processes are carried out, including profiling as referred to in Article 22, paragraphs 1 and 4.

 

The data is processed as part of the normal activities of the Data Controller, for the following purposes:

1)    purposes strictly connected and instrumental to the supply contract and the fulfillment of the obligations arising from the contract itself;

2)             purposes related to obligations under national or supranational laws or regulations, as well as measures taken by national or supranational bodies or authorities. These purposes include activities required for the fulfillment of obligations under anti-money laundering legislation, where applicable;

In relation to the purposes indicated, personal data will be processed in such a way as to guarantee security and confidentiality, as well as respect for the dignity of the data subjects, and may be carried out using manual, computerized, and telematic tools designed to store, manage, and transmit the data. The logic of the processing will be strictly related to the purposes described.

The provision of data for the purposes referred to in point 1) is optional; however, refusal to provide such data would make it impossible to manage existing pre-contractual and/or contractual relationships. The provision of data for the purposes referred to in point 2) is mandatory as it is necessary for compliance with regulatory obligations.

The consent of the data subjects is not required for the above purposes.

The processing is lawful pursuant to Article 6, paragraph 1, letters b), c), and f) of EU Regulation 679/2016.

 

Please note that if the assignment entrusted to you necessarily involves the processing of personal data of individuals other than the Supplier (such as its employees, customers, suppliers, consultants, or counterparties in general), it is the responsibility of the Supplier to inform the Data Subjects and obtain, where necessary, the necessary consent for the processing of their personal data by the Data Controller, it being understood that the execution of the supply will give rise to a presumption, pursuant to Article 2729 of the Civil Code, that the Supplier has fulfilled the related information requirements and obtained the consent (where required) of the Data Subjects in favor of the Data Controller.

 

The data of the Data Subjects may be disclosed to the following categories of third parties:

public authorities in the context of fulfilling specific legal obligations or on the basis of legitimate measures;

administrative, judicial, and tax authorities, in the cases and with the limitations provided for by law;

consultants and/or insurers of the Data Controller;

service providers, solely for purposes related to the management of the supply, it being understood that the use of such parties will be subject to their commitment to comply with all data security requirements provided for by the Regulation.

The disclosure of data to the above categories of parties does not require the consent of the Data Subjects.

The Data Subjects’ data will be disclosed to personnel authorized by the Data Controller pursuant to Article 29 of the Regulation.

 

Duration of processing and storage of personal data

The processing referred to in this policy will last for the time strictly necessary to fulfill the obligations imposed on the Data Controller by national and/or supranational laws, as well as by the laws of the countries to which the data may be transferred. By way of example, personal data will be processed and stored for the entire duration of the contractual relationship and, subsequently, for 10 years, which is the ordinary limitation period.

 

Rights of data subjects (Articles 15 to 22 of the Regulation)

Finally, we inform you that Articles 15 to 22 of the Regulation grant data subjects specific rights. In particular, data subjects may obtain from the Data Controller, with regard to their personal data: access (Article 15); rectification (Article 16); erasure – right to be forgotten – (Article 17); restriction of processing (Article 18); notification in the event of rectification, erasure or restriction (Article 19); portability (Article 20); the right to object (Article 21) and not to be subject to automated decision-making and profiling (Article 22).

 

Data controller and Data Protection Officer

The data controller is Maurizio Baldassari S.r.l., with registered office in 20121 Milan, Via Solferino 14. Email: showroom@mauriziobaldassari.it

The Data Protection Officer is Paolo Recla, lawyer, domiciled for this purpose at the Data Controller’s registered office. Certified email address: paolorecla.dpo@legalmail.it