This section contains information on how to manage Baby Cross Srl in relation to the processing of users' data of itaboutique.it. This information is also valid for the purposes of the Code regarding the protection of personal data (Article 13 of Legislative Decree No. 196 / 2003) for subjects who interact with itaboutique.it and can be reached at the address corresponding to the page initial: itaboutique.it
The information is provided only for itaboutique.it and not for other websites that may be consulted by the user through links contained therein. The purpose of this document is to provide information on the methods, timing and nature of the information that the data controllers must provide to users when connecting to the web pages of itaboutique.it, regardless of the purpose of the connection, according to the Recommendation n . 2 / 2001 that the European authorities for the protection of personal data, gathered by art. 29 of the directive n. 95 / 46 / CE, adopted the 17 May 2001 for the collection of personal data online.
- Data processing
Holder During the use of itaboutique.it, the identifiable or identifiable data can be processed to provide services or to improve these services for basic services such as the identification of the user language and for more complex services.
The data controller is Baby Cross Srl with headquarters in: via Campagna, 3 36073 - Cornedo (VI) Italy email: info @ babycross.com
Location The processing of data generated by the use of itaboutique.it takes place at the headquarters of the data controller with the intervention of the persons in charge. In case of necessity, the data connected to the newsletter service can be processed by the person in charge of the treatment or subjects appointed by it for this purpose at the relevant office.
Cookies are data that are sent by itaboutique.it to the user's Internet browser and are stored by it and then sent back to the site at the next visit. They can be used to monitor sessions, to authenticate a user so that he can access a site without typing the name and password each time and to memorize his preferences. There are many types of cookies classifiable for technical aspects, duration, origin and function. Technical cookies There are many technologies used to store information on the user's computer, which are then collected by the sites.
Among these the best known and used is that of HTML cookies. They are used for navigation and to facilitate access and use of the site by the user. They are necessary for the transmission of communications on the electronic network or the supplier to provide the service requested by the customer. The settings to manage or deactivate cookies may vary depending on the internet browser used. In any case, the user can manage or request the general deactivation or cancellation of cookies, modifying the settings of his internet browser.
This deactivation can slow down or prevent access to some parts of the site. The use of technical cookies allows the safe and efficient use of the site. The cookies that are inserted in the browser and retransmitted by Google Analytics or the Blogger Stats service or similar are technical only if used for the purpose of optimizing the site directly from the owner of the site, which can collect information in aggregate form on the number of users and how they visit the site.
Under these conditions, for analytics cookies the same rules apply, in terms of information and consent, provided for technical cookies. Duration cookies From the point of view of duration we can distinguish temporary session cookies that are deleted automatically at the end of the browsing session and are used to identify the user and thus avoid logging on every page visited and the permanent ones that remain active in the PC until expiry or cancellation by the user.
Session cookies may be installed in order to allow access to and access to the reserved area of the portal as an authenticated user. They are not stored permanently but only for the duration of the navigation until the browser is closed and disappear when the browser is closed. Their use is strictly limited to the transmission of session identifiers consisting of random numbers generated by the server necessary to allow the safe and efficient exploration of the site. Third-party cookies In relation to the provenance we distinguish the cookies sent to the browser directly from the site you are visiting and those of third parties sent to the computer from other sites and not from the one you are visiting.
Persistent cookies are often third-party cookies. The majority of third-party cookies consists of tracking cookies used to identify online behavior, understand the interests and then customize the advertising proposals for users. Third-party and analytical cookies can be installed. They are sent from the domains of the aforementioned third parties external to the site. The analytical cookies of third parties are used to detect information on user behavior on itaboutique.it. The survey takes place anonymously, in order to monitor the performance and improve the usability of the site.
The third-party profiling cookies are used to create profiles relating to users, in order to propose advertising messages in line with the choices expressed by the users themselves. The use of these cookies is governed by the rules set by the third parties themselves, therefore, users are invited to read the privacy policies and indications to manage or disable the cookies published on the related web pages.
Cookies and information
This site does NOT directly use any profiling cookies (First-party profiling cookies are not installed). However, this site uses embedded objects that download third-party cookies, often able to make a profiling of interests, searches or browsing the user, for which you will find below the detailed links for information and to manage their consent:
Google Analytics The pages of the site may install Google Analytics cookies, which can analyze aggregate data on visitors; however, this type of cookie is considered technical, as we have included the function that anonymizes the IP number and the disabling of the cross between data between Google products, making it impossible to identify or profiling a user.
ONLINE SERVICES: You can also visit the site, in English, www.aboutcookies.org or www.allaboutcookies.org for information on how to manage / delete cookies based on the type of browser used. MOBILE To delete cookies from the Internet browser of your smartphone / tablet, it is necessary to refer to the user manual of the device.
- Navigation data
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This is information that is not collected to be associated with identified interested parties, but which by their very nature could, through processing and association with data held by third parties, allow users to be identified.
This category of data includes IP addresses or domain names of the computers used by users who connect to the site, the addresses in URI notation of the requested resources, the time of the request, the method used in submitting the request to the server, the file size obtained in response, the numerical code indicating the status of the response given by the server and other parameters related to the operating system and the user's computer environment.
These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and are deleted immediately after processing. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site: except for this eventuality, at present the data on web contacts do not persist for more than seven days.
- Data provided by the user
- Optional provision of data
The user is always free to provide the personal data required for sending informative material, except as necessary for navigation. Failure to provide, on the other hand, may make it impossible to obtain what has been requested.
- Method of treatment
Personal data are processed by automated tools for the time strictly necessary to achieve the purposes for which they were collected. Specific security measures are observed to prevent the loss of data, illicit or incorrect use and unauthorized access.
- Aims of treatment
The treatment we intend to carry out, with its specific consent where necessary, has the following purposes:
to. Allow the provision of the Services requested by you and the subsequent and independent management of its control panel, which will be accessed by registering and creating your user profile at the time of supply of the Services, including collection, storage and processing data for the purposes of the establishment and subsequent operational, technical and administrative management of the relationship related to the provision of the Services and the making of communications relating to the implementation of the relationship established;
b. allow browsing and consultation of the website itaboutique.it;
c. respond to requests for assistance or information, which we will receive via e-mail, telephone or through the appropriate form "Contacts" on the Site. With particular reference to the replies to requests for assistance that arrive at Baby Cross Srl via the phone, we inform you that calls can be recorded so that
Baby Cross Srl can prove to have successfully processed the requests. d. fulfill legal, accounting and tax obligations;
is. carry out marketing activities via e-mail or telephone number for the services offered by Baby Cross Srl, the data have been collected through the specific newsletter or contact forms present on itaboutique.it unless you have objected to this treatment initially or on subsequent communications;
f. to elaborate studies, researches, market statistics; send advertising material, information, commercial information or surveys to improve the service ("customer satisfaction") via e-mail or text message, and / or through the use of the telephone with operator and / or through the official pages of itaboutique.it on social networks; g. any important communications or information security;
- Legal basis and mandatory or optional nature of the processing
The legal basis of the processing of Personal Data for the purposes referred to in section 7 (abc) is art. 6 (1) (b) of the Regulation as the treatments are necessary for the provision of the contracted services.
The provision of Personal Data for these purposes is optional but failure to provide it would make it impossible to activate the required Services. The purpose of section 7 (d) represents a legitimate processing of Personal Data pursuant to art. 6 (1) (c) of the Rules. U
Once the Personal Data has been transferred, the processing is indeed necessary to comply with a legal obligation to which itaboutique.it is subject. The processing performed for marketing purposes is based on the release of your consent pursuant to art. 6 (1) (a) and art. 22 (2) (c) of the Rules.
Further down you can find the details to partially or totally revoke the consent of the processing of data for marketing purposes.
- Recipients of personal data
Your Personal Data may be shared, for the purposes referred to in the 3 section above, with: a. subjects that typically act as data controllers, that is:
i) persons, companies or professional firms that provide assistance and advice to Baby Cross Srl in accounting, administrative, legal, tax, financial and debt collection with respect to the provision of the Services;
ii) subjects with whom it is necessary to interact for the provision of the Services (for example the subjects providing the payment service by credit card, the subjects and the companies that provide hosting / cloud service / ssl certificates / services of e-mail)
iii) subjects delegated to perform technical maintenance activities (including maintenance of network equipment and electronic communications networks);
iv) companies providing marketing and business management services.
b. subjects, bodies or authorities that are obliged to communicate their personal data in accordance with the provisions of law or orders of the authorities;
c. Persons authorized by Baby Cross Srl to process Personal Data necessary to carry out activities strictly related to the provision of the Services, whether they are committed to confidentiality or have an appropriate legal obligation of confidentiality.
- Transfers of personal data
Some of his Personal Data are shared with Recipients that could be found outside the European Economic Area. Baby Cross Srl ensures that the processing of personal data by these Recipients takes place in compliance with the Regulations. Indeed, transfers can be based on an adequacy decision or on the Standard Contractual Clauses approved by the European Commission. Further information is available from the owner.
To receive in detail the recipients of the transfers concerned your personal data can make a request at the address info @ babycross.com or by post to the address indicated in the section "Rights of interested parties".
- Data retention
Personal Data processed for the purposes referred to in section 7 (abc) will be kept for the time strictly necessary to achieve those same purposes. In any case, since these are treatments carried out for the provision of Services, Baby Cross Srl will process Personal Data up to the time allowed by Italian law to protect its interests (Art. 2946 cc and ss.).
Personal Data processed for the purposes referred to in section 7 (d) will be kept until the time required by the specific obligation or applicable law. By way of example, traffic data will be stored for justice purposes for one year from their generation, or until the time provided for by applicable anti-terrorism rules; otherwise, they will be kept for six months.
For the purposes referred to in section 7 (e) (f), your Personal Data will be processed until the revocation of your consent. In any case, the possibility is reserved for Baby Cross Srl to keep its Personal Data up to the time allowed by Italian law to protect its own interests (Art. 2947 (1) (3) cc).
Further information about the data retention period and the criteria used to determine this period can be requested by writing to the Data Controller.
- Rights of interested parties
You have the right to ask Baby Cross Srl, at any time: - access to your Personal Data;
- the correction or the right to request the limitation of processing in the cases provided for by art. 18 of the Rules;
- obtain, in a structured format, in common use and readable by automatic device, the data concerning it, in the cases provided for by art. 20 of the Rules;
- Partial deletion of some data;
- The right to be forgotten: that is, the right to request the total cancellation of your data from our systems, without prejudice to data relating to contractual or legal obligations. (ex: Invoicing, security obligations); Requests should be addressed:
By post to the following address:
Baby Cross Srl
via Campagna, 3 36073 - Cornedo
- Data security provided
Data security is guaranteed during the use of the platform by the compliance of the procedures adopted by itaboutique.it following the directives identified in the 32 and 33 articles of the regulation (EU) 2016 / 679 (GDPR).
In the event of a breach of personal data, the controller shall notify the competent supervisory authority in accordance with Article 55 without undue delay and, where possible, within 72 hours from the time it became known, unless that it is unlikely that the violation of personal data presents a risk to the rights and freedoms of individuals.
An eventual notification of violation also provides for:
a) describe the nature of the personal data breach including, where possible, the categories and the approximate number of data subjects in question as well as the categories and the approximate number of personal data records in question;
b) communicate the name and contact details of the data protection officer or other contact point where he can obtain more information;
c) describe the probable consequences of the violation of personal data;
d) describe the measures adopted or proposed by the data controller to remedy the violation of personal data and also, if necessary, to mitigate the possible negative effects.
- Changes to this document