Privacy policy
PRIVACY POLICY
To.Do S.r.l. Unipersonale pays the utmost attention to the confidentiality, protection, and security of personal data concerning individuals with whom it comes into contact.
The Navigator of this site is therefore invited to carefully read all sections of this document, which describes the methods of managing the site regarding the processing of personal data of users who visit it. This notice is also provided in accordance with Article 13 of Legislative Decree No. 196 of June 30, 2003, "Code regarding the protection of personal data," and Article 13 of Regulation 2016/679/EU “GDPR,” to all those who interact with the web services of To.Do S.r.l. Unipersonale, accessible electronically at the following address: www.outfititaly.com
This information is provided and is valid only for this site and not for other websites that the user may visit through links present on the site.
To.Do S.r.l. Unipersonale has no control over these external websites nor their procedures regarding the protection of data privacy. We suggest consulting the privacy policies of all companies with which personal information is shared before providing any personal details.
THE "DATA CONTROLLER"
Following the consultation of this site, personal data related to identified or identifiable individuals may be processed. The "Data Controller" of such processing is To.Do S.r.l. Unipersonale – located at Via Purgatorio 135 – 80047 San Giuseppe Vesuviano (Na), VAT number 08202671213. Email: customerservice@outfititalia.it Tel: +39 081 821 0134
DATA PROCESSING MANAGER
To.Do S.r.l. Unipersonale is responsible for data processing in accordance with Article 29 of the Code regarding the protection of personal data.
LOCATION OF DATA PROCESSING
Processing occurs within the European Union. The Data Controller does not transfer personal data to third countries (outside the European Union).
The processing related to the web services of this site takes place at the headquarters of To.Do S.r.l. Unipersonale and is handled only by technical staff authorized for processing. The Data Controller processes the personal data of users by adopting appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of personal data. The processing is carried out using IT and/or telematic tools, with organizational methods and logic strictly related to the purposes indicated. In addition to the Data Controller, in some cases, categories of employees involved in the organization of the site (administrative, commercial, marketing, legal staff, system administrators) or external subjects (such as third-party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) may have access to personal data, and may also be appointed, if necessary, as data processors by the Data Controller. An updated list of data processors can always be requested from the Data Controller.
TYPES OF DATA PROCESSED
-
Navigation Data
The IT systems and software procedures used to operate this site acquire, during their normal operation, some personal data whose transmission is implicit in the use of internet communication protocols.
These are information that is not collected to be associated with identified individuals, but by their nature could, through processing and associations with data held by third parties, allow the identification of users.
This category of data includes IP addresses or domain names of the computers used by users who connect to the site, URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file received in response, the numerical code indicating the server's response status (successful, error, etc.), and other parameters related to the user's operating system and IT environment.
This data is used solely for the purpose of obtaining anonymous statistical information on the use of the site and to check its proper functioning, and is deleted immediately after processing. The data may be used for the investigation of potential computer crimes against the site, with the exception of this possibility, the data on web contacts do not persist for more than seven days.
-
Data Provided Voluntarily by the User
The optional, explicit, and voluntary sending of emails to the addresses provided on this site entails the subsequent acquisition of the sender's address, necessary to respond to the requests, as well as any other personal data included in the message.
OPTIONAL NATURE OF DATA PROVISION
Except for navigation data, users are free to provide personal data as indicated in the request forms to To.Do S.r.l. Unipersonale.
Failure to provide such data may result in the inability to obtain the requested service.
The methods of processing personal data are provided in the specific summaries of information: – Information Request Service (SPECIFIC NOTICE) – Newsletter Service (SPECIFIC NOTICE)
For each type of processing, users can request the modification/deletion of their personal data by sending a request to the email address customerservice@outfititalia.it
PROCESSING METHODS
Personal data is processed using IT tools.
Specific security measures are observed to prevent data loss, illegal or incorrect use, and unauthorized access.
DURATION OF PROCESSING AND STORAGE PERIOD
Personal data voluntarily provided by the data subject will be processed by the Data Controller and stored for a period of 5 years.
At the end of the fifth year, the system will send an email to the data subject, who may, freely and at their discretion, renew their consent for continued processing based on the services for which they previously gave consent.
Failure to renew consent for data processing will result in the inability to continue using the services.
RIGHTS OF DATA SUBJECTS
Data subjects have the right, at any time, to obtain confirmation of the existence or absence of their personal data and to know its content, origin, verify its accuracy, or request its integration, updating, or rectification (Article 7 of the Code regarding the protection of personal data).
The data subject has, under Regulation (EU) 2016/679, the right to: – Art. 15 – obtain confirmation from the Data Controller whether or not personal data concerning them is being processed and, if so, access to personal data and other specific information; – Art. 16 – obtain the rectification of inaccurate personal data concerning them without undue delay; – Art. 17 – obtain the erasure of personal data concerning them without undue delay; – Art. 18 – obtain restriction of processing in specific cases; – Art. 20 – receive personal data concerning them in a structured, commonly used, and machine-readable format; – Art. 21 – object at any time to the processing of personal data concerning them for marketing purposes (communications sent by the Data Controller).
For exercising these rights, the data subject can send an email to customerservice@outfititalia.it. The Data Controller will acknowledge receipt and respond to the request within 30 business days. As per Article 19, requests related to the rights under Articles 16, 17, and 18 will be forwarded by the Data Controller to the recipients of the data.
Under the same article, the data subject has the right to request the deletion, transformation into an anonymous form, or blocking of data processed in violation of the law, and to object to the processing in any case, for legitimate reasons.
Requests should be addressed to: – By email to: customerservice@outfititalia.it – Or by mail to: To.Do S.r.l. Unipersonale – Via Purgatorio 135 – 80047 San Giuseppe Vesuviano (Na), VAT: 08202671213 Email: customerservice@outfititalia.it Tel: +39 081 821 0134
Right to lodge a complaint with a supervisory authority
The data subject also has the right to lodge a complaint with the competent supervisory authority – the Italian Data Protection Authority – at the following PEC address: protocollo@pec.gpdp.it