​
Privacy Notice
​
The purpose of this document (hereinafter "Privacy Notice") is to inform Users about personal data, understood as any information that allows the identification of a natural person (hereinafter "Personal Data"), collected by the website https://www.elisirdamore.com (hereinafter "Website").
​
The Data Controller, as identified later, may modify or simply update this Privacy Notice, in whole or in part, informing Users accordingly. Changes and updates will be binding as soon as published on the website. Users are therefore invited to read the Privacy Notice each time they access the website. If Users do not accept the changes made to the Privacy Notice, they are required to cease using this website and may request the Data Controller to remove their Personal Data.
**1. Personal Data collected by the website**
​
The Data Controller collects the following types of Personal Data:
1. **Content and information voluntarily provided by the User**
- **Contact data and content:** These are Personal Data that the User voluntarily provides to the website during its use, such as demographic data, contact details, access credentials for the provided services and/or products, personal interests and preferences, and other personal content, etc.
- **Personal data collected from social media:** Users may share data provided to social media with the website. The User has the right to control the Personal Data that the website can access through the privacy settings available on the respective social media. By linking social media accounts to the website and authorizing the Data Controller to access such Personal Data, the User consents to the acquisition, processing, and storage of this data in accordance with this Privacy Notice. Failure to provide the Personal Data required by law, contract, or as necessary for using the service or completing the contract will result in the Data Controller being unable to provide its services in whole or in part. The User who communicates Personal Data of third parties is directly and exclusively responsible for their origin, collection, processing, communication, or dissemination.
​
2. **Data and content automatically acquired during the use of the website:**
- **Technical data:** The computer systems and software procedures used to operate this website may acquire, during their normal operation, some Personal Data whose transmission is implicit in the use of internet communication protocols. This information is not collected to be associated with identified Users, but by its very nature could, through processing and association with data held by third parties, allow the identification of Users. This category includes IP addresses, or domain names used by Users connecting to the website, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the obtained file, etc.
- **Usage data:** Personal Data regarding the User’s use of the website may also be collected, such as the pages visited, actions taken, and functionalities and services used.
- **Geolocation data:** The website may collect Personal Data regarding the User's location, which can be GNSS (Global Navigation Satellite System, e.g., GPS) data, as well as data identifying the nearest repeater, Wi-Fi hotspots, and Bluetooth, communicated when enabling location-based products or functionalities.
​
3. **Personal data collected via cookies or similar technologies:**
The website uses cookies, web beacons, unique identifiers, and other similar technologies to collect Personal Data regarding the pages visited, links clicked, and other actions performed while using our services. These are stored to be retransmitted during the next visit by the same User. The User can view the complete Cookie Policy at the following address: https://www.elisirdamore.com/cookie-policy.
​
**2. Purposes**
The Personal Data collected may be used for the fulfillment of contractual and pre-contractual obligations and for legal obligations as well as for the following purposes:
1. Support and contact with the User: to respond to User requests and assist them in case of problems.
2. Displaying content from external platforms: to allow the User to view and share content from social networks or other external platforms (e.g., YouTube, Facebook).
3. Technical monitoring of the infrastructure for maintenance, troubleshooting, and performance improvement: to identify and resolve technical issues and improve performance.
4. Optimization and traffic distribution: to manage more efficiently and improve the performance of the technical infrastructure.
5. Management of User databases: to organize, access, and modify User data.
6. Monitoring, analysis, and tracking of User behavior: to monitor and analyze how the User behaves on the website.
7. Sending emails or newsletters and managing mailing lists: to contact the User with emails containing commercial and promotional information related to the website.
8. Market research and third-party surveys: to conduct market research and surveys for third parties.
9. Implementation of third-party advertising campaigns: to carry out third-party advertising campaigns within the website.
​
**3. Processing methods**
The processing of Personal Data is carried out using IT and/or telematic tools, with organizational methods and logics strictly related to the indicated purposes. In some cases, persons involved in the organization of the Data Controller (such as, for example, personnel management staff, commercial area staff, system administrators, etc.) or external subjects (like IT companies, service providers, postal couriers, hosting providers, etc.) may also have access to Personal Data. These subjects may be appointed as Data Processors by the Data Controller and will be contractually obligated to maintain the confidentiality of Personal Data. An updated list of Data Processors can be requested via email at privacy@ideeinfierasrl.it.
​
**4. Legal basis for processing**
The processing of the User’s Personal Data is based on the following legal bases:
- the consent provided by the User for one or more specific purposes;
- the processing is necessary for the execution of a contract with the User and/or for the execution of pre-contractual measures;
- the processing is necessary to fulfill a legal obligation to which the Data Controller is subject;
- the processing is necessary for the execution of a task carried out in the public interest or in the exercise of public powers vested in the Data Controller;
- the processing is necessary for the pursuit of the legitimate interests of the Data Controller or third parties;
- the processing is necessary for the pursuit of vital interests of the Data Controller or third parties.
It is always possible to request the Data Controller to clarify the legal basis for each processing at privacy@ideeinfierasrl.it.
​
**5. Location**
Personal Data are processed at the operational offices of the Data Controller and in any other place where the parties involved in the processing are located. For more information, contact the Data Controller at the following email address: privacy@ideeinfierasrl.it or at the following postal address: Via Lazzaro Spallanzani, 22/A, 00161 Rome, Italy.
​
**6. Security measures**
Processing is carried out using suitable methods and tools to ensure the security and confidentiality of Personal Data, with the Data Controller having adopted adequate technical and organizational measures that ensure and allow demonstrating that the processing is carried out in accordance with the relevant regulations.
​
**7. Data retention period**
Personal Data will be retained for the time necessary to fulfill the purposes for which they were collected. In particular, Personal Data will be retained for the duration of the contractual relationship, for the fulfillment of related and subsequent obligations, for compliance with applicable legal and regulatory obligations, as well as for defensive purposes for itself or third parties. If the processing of Personal Data is based on the User's consent, the Data Controller may retain the Personal Data until consent is revoked. Personal Data may be retained for a longer period if necessary to fulfill a legal obligation or by order of an authority. All Personal Data will be deleted or retained in a form that does not allow the identification of the User within 30 days from the end of the retention period. Upon expiration of this period, the right of access, deletion, rectification, and the right to data portability can no longer be exercised.
​
**8. Automated decision-making processes**
The website uses automated decision-making processes that may produce legal effects for the person or significantly affect them and that operate according to these criteria: Email Marketing, Social Media Marketing.
​
**9. User rights**
Users can exercise certain rights regarding the Personal Data processed by the Data Controller. In particular, the User has the right to:
- withdraw consent at any time;
- object to the processing of their Personal Data;
- access their Personal Data; verify and request rectification;
- obtain the limitation of processing;
- obtain the deletion of their Personal Data;
- receive their Personal Data or have them transferred to another data controller;
- lodge a complaint with the Data Protection Authority and/or take legal action.
To exercise their rights, Users may send a request to the contact details of the Data Controller provided in this document. Requests are made free of charge and are fulfilled by the Data Controller as soon as possible, in any case within 30 days.
​
**10. Data Controller**
The Data Controller is Idee in Fiera S.r.l., with registered office at Via Lazzaro Spallanzani, 22/A, 00161 Rome, Italy, C.F. and P.IVA 01292930458, email address privacy@ideeinfierasrl.it, PEC address ideeinfierasrl@pec.it.
Last updated: 30/01/2024
​