This page explains how we process your personal data, in accordance with the (UE) 2016/679 (GDPR) regulation and legislative decree D.lgs n.196/2003, through the site www.tuttoitaliano.com and its subdomains.
Who is responsible for processing the data?
Tutto Italiano Limited based in Unit 706, 7/F., South Seas Centre, Tower 2, 75 Mody Road, Tsim Sha Tsui, Kowloon, e-mail: firstname.lastname@example.org
Why do we process data, how long do we keep it for and what happens if you do not provide us with the data?
In the table below we indicate why we process your data, i.e. for what purpose.
For each purpose, we also indicate which judicial/legal reason justifies the treatment of your data, how long we keep your data for and what happens if you do not provide us with it.
|Why (for what purpose) do we process the data?||What is the legal reason we process your data?||How long do we keep your data for?||What happens if you do not provide us with the data?|
|1. To answer requests sent to us via email or other means.||To execute a contract or pre-contractual agreements at your request.||For the time needed to carry out the individual processing activities.
Once this period has expired, we will keep your data until the statutory deadlines have expired to comply with administrative, accounting and tax obligations established for us.
|You have to provide us with the information; if you do not we will not be able to respond to the request you have sent us.|
|2. To monitor the behaviour of those who navigate the site, collecting and recording data relevant to that (e.g.: pages visited) but only in an aggregated and anonymized form in order to improve the experience of using our site.||Your consent.
You have the right to revoke the consent you have given at any time.
|No longer than 12 months after we have received it.||You are not obligated to provide us with the data but, if you do not, you will not be able to access certain features of the site.|
To know more you can read and consult our cookies policy.
Who has access to your data
In addition to us, others can access your data, both companies and professionals:
- our collaborates who carry out administrative activities, accounting activities or tech support
- our employees
- individuals that manage the hardware and software thanks to which our platform works (including hosting and newsletter service providers)
If it is necessary, we will nominate these individuals ‘Data Processors’
You are able, at any time, to ask us for the list of these Data Processors.
We may also communicate your data to public authorities, at their request.
These are the rights you have in relation to our activity of processing your data.
You have the right to:
- revoke your consent at any time.
- oppose the processing of your data.
- access your data and receive a copy.
- verify the correctness of your data and ask for corrections and updates.
- limit the processing of your data.
- have your data deleted or removed.
- receive your data or have it transferred to another stakeholder if the data is processed by automated tools and the processing is based on your consent or on a sales agreement.
- lodge a complaint with the competent personal data protection authorities or take any legal action.
Exercising your rights
Send us a request to our contacts indicated at the beginning of the policy. We will reply as soon as possible, in any case within a month.
Where we process data and the transfer of data abroad
We process your data at our premises and in any other place where the stakeholders involved in data processing are located. For further information, please contact us.
Your data may be transferred to a country other than the one you are located in: we will inform you if and when this happens with respect to the various services we use.
Your personal data may be transferred to countries located in the European Union or located outside of the European Union.
Some of the services we use involve the transfer of your data to the United States.
The transfer takes place on the basis of the European Commissions’ decisions on the adequacy of the protection offered by the EU-US shield framework (the so-called “Privacy Shield”)
Your personal data is transferred to entities and individuals that have self-certified under the Privacy Shield and guarantee an adequate level of protection of the data transferred.
Your data may also be processed and transferred in Hong Kong, where they will be processed in accordance with the current legislation.