Privacy Policy

NOTICE ON THE PROCESSING OF PERSONAL DATA
Below are the information required by art. 13 of the Regulation (EU) 2016/679 (“GDPR”) on the processing of personal data of the users browsing the website www.vezzdesign.it (hereinafter “Site”).
For information on the processing of personal data relating to customers or prospects (potential customers), please refer to the relevant privacy notice here:

customers: link
prospects: link

1. Identity and contact details of the data controller
The data controller VezzDesign S.r.l., VAT 01330530195, with registered office in Via Cremona n. 94, 26013 – Crema (CR) (hereinafter “VezzDesign” or “Data Controller”).
The Data Controller can be contacted at the e-mail address info@vezzdesign.it.

2. Processed data

Data processed for purposes of Site operation.
The computer systems and software procedures used to operate the Site acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This is information that is not collected in order to be associated with identified interested parties, but which, by its very nature, could, through processing and association with data held by VezzDesign or third parties, allow users of the Site to be identified. This category of data includes IP addresses or domain names of the computers used by users connecting to the Site, the URI (Uniform Resource Identifier) notation addresses of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and computer environment.
Data provided directly by the user.
Where the user intends to submit requests to VezzDesign using the dedicated forms (i.e., « request catalog, » « request point of sale, » and « contacts »), he/she must provide the data requested therein (« common » data, such as first and last name and contact information).
Cookies.
The Site uses cookies and technologies. More information can be found in the cookie policy available in the Site’s banner and footer.

3. Purpose and Legal Basis of Processing – Data Retention Periods

Purpose

Operation of the Site:
The data collected during navigation is used for the purpose of obtaining anonymous statistical information about the use of the Site and to monitor its proper functioning.

Service Delivery:
The data provided directly by the user are used in order to fulfill the user’s requests (i.e., to provide feedback to the filling out of the forms available on the Site: « request catalog », « request store » and « contacts »).

Legal Basis

The performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract (art. 6.1, lett. b) GDPR).

Data Retention Periods

Browsing data are kept for the duration of the browsing session on the Site, those provided through forms only for the time necessary to process the user’s request.

Promotional purposes

Sending commercial communications about VezzDesign products and services by e-mail, regular mail and telephone.

The consent of the data subject (art. 6.1, lett. a) GDPR), given by « ticking » the appropriate « tick-box » in the form.

Until consent is withdrawn.

4. Provision of Data

With the exception of navigation data, which is necessary to run the computer and telematic protocols of the Site, the provision of personal data by users is free and optional. However, failure to provide such data will result in the impossibility of being able to proceed. Data that must be provided in order to submit the request are marked with an asterisk.

5. Data Recipients

The data may also be processed by other parties, suppliers of the Data Controller (e.g. in IT or marketing and communication), who process the data as data processors, with whom special agreements have been made pursuant to Article 28 of the GDPR.
VezzDesign’s employees, who have been expressly authorized for this purpose and have received appropriate operational instructions, are also involved in data processing.
The Data Controller transfers data outside the EU or the EEA and in particular to the United States, where IT service providers are established, a third country deemed appropriate by virtue of the European Commission Decision of July 10, 2023 – EU-US Data Privacy Framework.

6. Data subjects’ rights
Data subjects may exercise their rights under the GDPR by sending an e-mail to the Data Controller to the address indicated in par. 1 above. In particular, they have the right:

to obtain the confirmation as to whether or not personal data concerning them are being processed, and, where that is the case, access the data concerning them in accordance with Article 15 GDPR,
to obtain the rectification of inaccurate data,
to have incomplete data completed,
to obtain the erasure of data in the cases provided for by Article 17 GDPR (“right to be forgotten”),
to obtain restriction of processing in the cases provided for by Article 18 GDPR,
to object, at any time, on grounds relating to their own particular situation, to the processing carried out in the legitimate interest of the Controller,
where the processing is based on consent or contract and is carried out by automated means, to receive the data in a structured, commonly used and machine-readable format and to transmit those data to another controller without hindrance from the controller to which the personal data have been provided (“right to data portability”);
withdraw the consent previously given;
to lodge a complaint with the competent supervisory authority in the Member State of their habitual residence, place of work or place of the alleged infringement.