Thank you for your interest in our website (www.floriosditalia.com). The protection of your privacy is very important to us. In the following, we inform you about the processing of your personal data by us and the claims and rights to which you are entitled according to the data protection regulations in accordance with the UK’s Data Protection Act (DPA) and the EU’s General Data Protection Regulation (GDPR) given the similarities of the provisions hereinafter collectively referred to as the GDPR.
This Policy describes our privacy practices in plain language, keeping legal and technical jargon to a minimum to make sure you understand the information we collect, why we collect it, how it is used and your choices regarding your information. However, to achieve this objective we would like to explain you the following two concepts.
“Personal data” means any information relating to an identified or identifiable natural person (hereinafter “data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g. cookie) or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
“Processing” means any operation or set of operations which is performed upon personal data, whether or not by automatic means. The term is broad and covers virtually any handling of data.
Access Data And Hosting
You can visit our web sites without providing any personal information. Each time you visit a web site, the web server automatically saves a so-called server log file, which contains, for example, the name of the requested file, your IP address, the date and time of access, the amount of data transferred and the requesting provider (access data) and documents the access.
This access data is evaluated solely for the purpose of ensuring trouble-free operation of the site and improving our services. In accordance with Art. 6 para. 1 p. 1 lit. f GDPR, this serves to protect our legitimate interests in the correct presentation of our offer, which outweigh our interests in the context of a balancing of interests. All access data is deleted at the latest seven days after the end of your visit to the site.
Hosting services by a third-party provider
As part of processing on our behalf, a third-party provider provides hosting and web site display services for us. This serves to protect our legitimate interests in the correct presentation of our offer, which are outweighed by a balance of interests. All data collected in the course of using this web site or in forms provided for this purpose in the online shop as described below are processed on its servers. Processing on other servers only takes place within the framework explained here.
Data collection and use for contract processing and when opening a customer account
We collect personal data if you voluntarily provide it to us in the context of your order, when contacting us (e.g. via contact form or e-mail) or when opening a customer account. Mandatory fields are marked as such because in these cases we absolutely need the data to process the contract, or to process your contact or open a customer account, and you cannot complete the order and/or open an account or send the contact without providing it. Which data is collected can be seen from the respective input forms. We use the data you provide in accordance with Art. 6 Para. 1 S. 1 lit. b GDPR for the purpose of processing the contract and dealing with your enquiries. After complete processing of the contract or deletion of your customer account, your data will be restricted for further processing and deleted after expiry of the retention periods under tax and commercial law, unless you have expressly consented to further use of your data or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration. The deletion of your customer account is possible at any time and can be done either by sending a message to the contact option described below or via a function provided for this purpose in the customer account.
e-mail newsletter and advertising
E-mail advertising with newsletter registration
If you register for our newsletter, we use the data required for this purpose or separately provided by you in order to send you our e-mail newsletter on a regular basis based on your consent in accordance with Art. 6 Para. 1 Sentence 1 lit. a GDPR.
Unsubscribing from the newsletter is possible at any time and can be done either by sending a message to the contact option described below or via a link provided for this purpose in the newsletter. After unsubscribing, we will delete your email address unless you have expressly consented to further use of your data or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration.
The newsletter is sent as part of processing on our behalf by a service provider to whom we pass on your e-mail address for this purpose.
This service provider is located in a country for which there is no European Union adequacy decision. The cooperation is therefore based on standard data protection clauses of the European Commission.
As part of our newsletter subscription, we work with the provider MailChimp operated by The Rocket Science Group LLC. Further information on data protection by this third-party provider is available here.
In order to prove your subscription to the newsletter list and to be able to defend against false accusations of not having agreed to receive the emails, the date of your subscription as well as your IP address used for registration will be stored. In addition, the following data is stored by the programme:
- Date of the last profile update
- Localisation & time range: based on your email address, the campaign monitor programme performs a localisation, identifying you by means of information from a geolocation service provider via your ip address (geolocation data and any location information available). The localisation is also used to identify the time ranges. The result is used to send newsletters simultaneously at specific times.
- language information: if the campaign monitor programme can identify the language you have chosen from your browser when you sign up to the newsletter or open links, this data will also be stored in your profile.
You have the right to revoke your consent to the storage of your data, your e-mail address and their use for sending the newsletter at any time, e.g. via the “Unsubscribe” link in the newsletter.
The transmission of certain data to the above-mentioned service provider is permissible pursuant to § 6 para. 1 sentence 1 lit. a and lit. f GDPR, as we have a reasonable interest in marketing our products.
Advertising and your right to object
Furthermore, we reserve the right to use your first and last name as well as your postal address for our own advertising purposes, e.g. to send you interesting offers and information about our products by post. This serves to protect our legitimate interests in addressing our customers in an advertising manner in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR.
The advertising mailings are provided as part of processing on our behalf by a service provider to whom we pass on your data for this purpose.
You can object to the storage and use of your data for these purposes at any time by sending a message to the contact option described below.
We use a self-configured ChatBot from Tidio to improve customer engagement and support. The personal data you provide as part of your ChatBot request and your IP address are processed for the purpose of responding to your request. When using the ChatBot your data will be transferred to the above mentioned provider and only for the purpose of providing the chatbot. The legal basis for processing the personal data collected is Article 6 lit. f) GDPR. Please note that the use of the ChatBot is on a voluntary basis. You are free to contact us by other means. To ensure the security of your data, please only share confidential and personal data with us at points in the chat where we explicitly ask you for it.
Use of data for payment processing
The transmission of your personal information during an order transaction is encrypted using industry standard Secure Socket Layer (“SSL”) technology, (SSL encryption version 3). Any credit card information you provide will not be stored by us, but will be encrypted and collected directly from our payment service provider Stripe and PayPal via hypertext transfer protocol secure (“https”).
We may share information with Stripe and PayPal , and you may need to provide credit or debit card information directly to the provider in order to process payment details and authorise payment following a secure link. The information which you supply to in such cases is not within our control and is subject to Stripe and PayPa’s own Privacy Notice and Terms and Conditions.
Appropriate measures to protect your rights, freedoms and legitimate interests will be taken into account. You have the possibility of expressing your point of view and contesting the decision by contacting the company as described below. After the contract has been fully processed, your data processed for this purpose will be deleted unless you have expressly consented to further use of your data or we reserve the right to use data in a manner that goes beyond this, which is permitted by law and about which we inform you in this statement.
Cookies and web analysis
In order to make the visit to our website attractive and to enable the use of certain functions, to display suitable products or for market research, we use so-called cookies on various pages. This serves to protect our legitimate interests in an optimised presentation of our offer in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR. Cookies are small text files that are automatically stored on your terminal device. Some of the cookies we use are deleted at the end of the browser session, i.e. after you close your browser (so-called session cookies).
Other cookies remain on your end device and enable us to recognise your browser on your next visit (persistent cookies). You can find out how long they are stored in the overview in the cookie settings of your web browser. You can set your browser in such a way that you are informed about the setting of cookies and decide individually about their acceptance or exclude the acceptance of cookies for certain cases or in general. Each browser differs in the way it manages cookie settings. This is described in the help menu of each browser, which explains how you can change your cookie settings. You can find this for each browser under the following links: Internet Explorer , Chrome, Firefox, Safari
The cookies we use
The list below shows the cookies we have installed.
|test_cookie||Advertisement||This cookie is set by doubleclick.net. The purpose of the cookie is to determine if the user’s browser supports cookies.||15 minutes|
|IDE||Advertisement||Used by Google DoubleClick and stores information about how the user uses the website and any other advertisement before visiting the website. This is used to present users with ads that are relevant to them according to the user profile.||1 year 24 days|
|_ga||Analytics||This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site’s analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.||2 years|
|_gid||Analytics||This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visted in an anonymous form.||1 day|
|_gat_gtag_UA_179948244_1||Analytics||This cookie is set by Google and is used to distinguish users.||1 minute|
|_gcl_au||Analytics||This cookie is used by Google Analytics to understand user interaction with the website.||3 months|
If cookies are not accepted, the functionality of our website may be limited.
Opt-out for marketing cookies
You can also manage cookies used for online advertising through tools developed in many countries as part of self-regulatory programmes, such as the US-based https://www.aboutads.info/choices or the EU-based http://www.youronlinechoices.com/uk/your-ad-choices
What about Google Chrome cookies?
Separately to our use of Google Analytics cookies, when you access the Site via Google applications such as Google Chrome, Google may collect user information for the purpose of Google serving personalised advertising across your devices. Google is able place these advertising cookies on the devices used by visitors to the Site because we use Google services to run the Site. However these cookies are dropped for Google’s own purposes and as such we do not have any control over how or when they are dropped. You will need to opt out of receiving these cookies via your Google settings. For further information about these cookies please see: https://policies.google.com/technologies/types?hl=en-US. Please note that other browsers may use similar tools.
Use of Google (Universal) Analytics for web analysis
For website analysis, this website uses Google (Universal) Analytics, a web analytics service provided by Google LLC . This serves to protect our legitimate interests in an optimised presentation of our offer, which outweigh our interests in the context of a balancing of interests in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR. Google (Universal) Analytics uses methods that enable an analysis of your use of the website, such as cookies. The automatically collected information about your use of this website is usually transferred to a Google server in the USA and stored there. By activating IP anonymisation on this web site, the IP address is shortened before transmission within the Member States of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. The anonymised IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. After the end of the purpose and the end of the use of Google Analytics by us, the data collected in this context will be deleted.
You can prevent the collection of the data generated by the cookie and related to your use of the website (incl. your IP address) to Google as well as the processing of this data by Google by downloading and installing the browser plug-in available under the following link.
Use of Google AdSense
This website uses the online advertising service Google AdSense, through which you can be presented with advertising tailored to your interests. We do this in the interest of showing you advertising that may be of interest to you, in order to make our website more interesting for you. For this purpose, statistical information about you is collected and processed by our advertising partners. These advertisements are recognisable by the reference “Google ads” in the respective advertisement.
When you visit our website, Google receives the information that you have accessed our website. For this purpose, Google uses a web beacon to set a cookie on your computer. The data mentioned under § 3 of this declaration is transmitted. We have no influence on the data collected, nor are we aware of the full extent of the data collection and the storage period. Your data will be transferred to the USA and evaluated there. If you are logged in with your Google account, your data can be directly assigned to it. If you do not wish your data to be associated with your Google profile, you must log out. It is possible that this data will be passed on to third parties and authorities to contractual partners of Google. The legal basis for the processing of your data is Art. 6 para. 1 p. 1 lit. f GDPR. This website does not display third-party ads via Google AdSense.
You can prevent the installation of cookies from Google AdSense in various ways: a) by adjusting your browser software accordingly, in particular the suppression of third-party cookies will result in you not receiving ads from third-party providers; b) by deactivating interest-based ads on Google via this link which setting will be deleted when you delete your cookies; c) by disabling the interest-based ads of the providers that are part of the self-regulatory campaign “About Ads” via the link, which setting will be deleted when you delete your cookies; d) by permanently disabling them in your Firefox, Internet explorer or Google Chrome browsers at this link . We would like to point out that in this case you may not be able to use all functions of this offer to their full extent.
Use of DoubleClick by Google
Due to the marketing tools used, your browser automatically establishes a direct connection with Google’s server. We have no influence on the scope and further use of the data collected by Google through the use of this tool and therefore inform you according to our state of knowledge: Through the integration of DoubleClick, Google receives the information that you have called up the corresponding part of our website or clicked on an advertisement from us. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, it is possible that the provider may obtain and store your IP address.
You can prevent participation in this tracking process in various ways: a) by adjusting your browser software accordingly, in particular the suppression of third-party cookies will result in you not receiving any third-party ads; b) by deactivating cookies for conversion tracking by setting your browser to block cookies from the domain “www.googleadservices.com”, with this setting being deleted when you delete your cookies; c) by disabling the interest-based ads of the providers that are part of the self-regulatory campaign “About Ads” via the link, which setting will be deleted when you delete your cookies; d) by permanently disabling them in your Firefox, Internet explorer or Google Chrome browsers at this link . We would like to point out that in this case you may not be able to use all functions of this offer to their full extent. The legal basis for the processing of your data is Art. 6 para. 1 p. 1 lit. f GDPR.
Contact Options And Your Rights
As a data subject, you have the following rights:
- pursuant to Art. 15 GDPR, the right to request information about your personal data processed by us to the extent specified therein;
- in accordance with Art. 16 GDPR, the right to request the correction of inaccurate or incomplete personal data stored by us without delay;
- in accordance with Article 17 of the GDPR, the right to request the erasure of your personal data stored by us, unless further processing is necessary for the exercise of the right to freedom of expression.
- for the exercise of the right to freedom of expression and information;
- to comply with a legal obligation;
- for reasons of public interest; or
- the assertion, exercise or defence of legal claims;
- in accordance with Art. 18 GDPR, the right to request the restriction of the processing of your personal data, insofar as
- the accuracy of the data is disputed by you;
- the processing is unlawful, but you object to its erasure;
- we no longer need the data, but you need them to assert, exercise or defend legal claims, or
- you have objected to the processing in accordance with Article 21 of the GDPR;
- pursuant to Art. 20 GDPR, the right to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request that it be transferred to another controller;
- pursuant to Art. 77 GDPR, the right to complain to a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters for this purpose.
If you have any questions regarding the collection, processing or use of your personal data, for information, correction, blocking or deletion of data as well as revocation of any consent given or objection to a particular use of data, please contact:
Unit 5 Claybank Rd, Copnor,
Portsmouth PO3 5NH
Phone: 023 9266 1412
Revocation of your consent to data processing
If we process your data with your express consent, you can revoke your consent at any time. All you need to do is send us an informal message by e-mail, fax or post. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
Right of objection
Insofar as we process personal data as explained above in order to protect our legitimate interests, which prevail in the context of a balancing of interests, you can object to this processing with effect for the future. If the processing is carried out for direct marketing purposes, you can exercise this right at any time as described above. If the processing is carried out for other purposes, you only have the right to object on grounds relating to your particular situation.
After you have exercised your right to object, we will no longer process your personal data for these purposes unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or if the processing serves to assert, exercise or defend legal claims.
This does not apply if the processing is for direct marketing purposes. Then we will not further process your personal data for this purpose.
How do we protect your Personal Data?
We take appropriate technical and organisational measures to protect the personal data you provide to us against accidental or unlawful destruction, loss, alteration, unauthorised disclosure or access.
SSL or TLS encryption
For security reasons and to protect the transmission of confidential content, such as orders or enquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognise an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Online presences in social media
We maintain online presences in Facebook, Twitter, Instagram on the basis of our legitimate interests within the meaning of Article 6 lit. f) GDPR and in order to communicate with customers, interested parties and users who are active there. Unless otherwise stated in this policy, we process the data of users if they communicate with us within the social networks and platforms, e.g. write articles on our online presences or send us messages.
Social Media Functions and Widgets
Within our online offer, functions and widgets of Facebook, Twitter, Instagram are integrated. When you click on or use any of those functions and widgets, your browser establishes a direct connection to [Facebook, Twitter, Instagram. The function or widget then transmits log data to Facebook, Twitter, Instagram. This log data may contain your IP address, the address of the visited websites, type and settings of the browser, date and time of the request, your usage of [Facebook, Twitter, Instagram, as well as cookies. Those may also include the display of our post, the link to our profile, the possibility to interact with the posts and functions, as well as to measure users reach (so-called conversion measurement).
Automated decision making and profiling
We do not use automated decision making or profiling.
Do Not Track
Do Not Track is a privacy setting that you can set in most browsers. We support Do Not Track because we believe you should have real control over how your information is used, and our website responds to Do Not Track requests.
Don’t sell my personal information
We do not sell information that directly identifies you, such as your name, address or phone numbers.
It is important that the information we hold about you is accurate and up to date. Therefore, please inform us of any changes to your personal information.
Content Delivery Network
For the purpose of a shorter loading time, we use a so-called Content Delivery Network (“CDN”) for some offers. With this service, content, e.g. large media files, are delivered via regionally distributed servers from external CDN service providers. Therefore, access data is processed on the servers of the service providers. Our service providers work for us in the context of order processing. If you have any questions about our service providers and the basis of our cooperation with them, please contact us.