Galbino SRL is committed to providing full transparency regarding the information collected through our website and how it is processed, in compliance with European Regulation 2016/679 (hereinafter “GDPR”) and the applicable national legislation.

DATA CONTROLLER

Galbino SRL – (hereinafter “Controller” or “Company”).

You can contact the Controller at the company address or by sending an email to: info@castellodigalbino.com

CATEGORIES OF PERSONAL DATA PROCESSED

The personal data processed are those you enter on the Sites, communicated or lawfully obtained by the Controller. The types and data processing methods related to the Sites are described below.

Navigation/Operational Data

The computer and telematic systems and software procedures used to operate the websites acquire certain data during their normal operation, the transmission of which is implicit in the use of web communication protocols. This category of data includes, for example, IP addresses, date and time of access, pages visited (URI/URL), numerical code indicating the response status of the server, the method used to submit the request to the server, names of devices used to connect to the sites, and other parameters related to the user’s operating system and computing environment.

Directly Provided Data

In certain sections of the Sites, you are required to provide some personal data, for example, to subscribe to the newsletter or register on the Sites.

Data Collected through Tracking (Cookies)

Tracking occurs through code executed within the websites at both the server level (e.g., services, procedures) and the client level (e.g., tags, pixels), also with the support of code installed on your browser (e.g., cookies).

For information on the purposes and management of consents related to tracking, please refer to the specific “Cookie Policy” section of the individual website.

Location Data

The websites may collect, upon your specific authorization, location data (approximate) provided by your IP address to provide location-based services.

PURPOSE OF PROCESSING, LEGAL BASIS, AND RETENTION PERIOD

The Controller processes your personal data for the following purposes, legal bases, and retention periods:

• Operation of the Site and Provision of Services: To derive anonymous statistical information on the use of the Site and to ensure its proper functioning.

• Legal basis: Execution of a contract to which you are a party.

• Retention: For the duration of the browsing session on the Site. For further information, refer to the Cookie Policy.

• Management of Purchases and User Support: For example, managing payment requests, product shipments, user registration, or subscription to services offered by the Site.

• Legal basis: Execution of a contract to which you are a party.

• Retention: For the duration of the contract and, after termination, for the ordinary prescription period up to a maximum of 10 years.

• Compliance with Legal Obligations: Administrative and accounting obligations.

• Legal basis: Legal obligation to which the Controller is subject.

• Retention: Data are processed within the terms provided by law (10 years for administrative and accounting obligations).

• Marketing: Sending promotional and commercial communications related to services/products offered by the Company or announcing corporate events, as well as conducting market studies and statistical analyses.

• Legal basis: Your optional, free, and revocable consent at any time.

• Retention: Personal data and contact details are retained until consent is withdrawn, while data relating to purchase details are retained for up to 24 months from collection.

• Profiling: Analyzing preferences, habits, interests, behaviors, and products purchased to send you commercial communications, offers, and services tailored to your needs/preferences and to suggest other products in line with your preferences and previous purchases.

• Legal basis: Your optional, free, and revocable consent at any time.

• Retention: Personal data and contact details are retained until consent is withdrawn, while data relating to purchase details are retained for up to 24 months from collection.

• Fraud Prevention and Repression: Preventing and repressing fraud/abuse/fraudulent activities conducted through the website.

• Legal basis: Legitimate interest of the Controller.

• Retention: Personal data are retained in our systems for the strictly necessary technical time and subsequently deleted or anonymized.

• Legal Defense: Asserting or defending the rights of the Controller in judicial proceedings.

• Legal basis: Legitimate interest of the Controller.

• Retention: Personal data are retained for the duration of the claim and/or extrajudicial and/or judicial proceedings until the expiration of the terms for judicial protections and/or appeals.

DATA PROVISION

Except for navigation data, necessary to implement computer and telematic protocols, the provision of personal data by users is free and optional. However, failure to provide the requested and marked as mandatory data will necessarily result in the impossibility of providing the requested service.

RECIPIENTS AND AUTHORIZED DATA PROCESSORS

Your personal data are processed by employees, collaborators of the Controller, or external parties, as authorized and responsible for processing, who perform technical and organizational tasks on behalf of the Controller, acting based on specific instructions provided by the Controller.

TRANSFER OF PERSONAL DATA OUTSIDE THE EU

No data transfers outside the European Union are envisaged.

RIGHTS OF DATA SUBJECTS

By contacting the Controller via email at info@castellodigalbino.com, you can request access to your data, their deletion, the correction of inaccurate data, the integration of incomplete data, data portability, the restriction of processing in the cases provided by Article 18 GDPR, and object to processing in cases of legitimate interest of the Controller.

For managing consents, please refer to our “Cookie Policy” or the “Profile” section of your account.

You have the right to lodge a complaint with the competent supervisory authority in the Member State where you habitually reside or work or where the alleged violation occurred.

COOKIE POLICY

Galbino SRL uses cookies and similar technologies on its website to ensure the proper functioning of procedures and improve the user experience.

What Are Cookies?

Cookies are small text files that websites send to your device, where they are stored and then sent back to the same sites during your subsequent visits. Cookies are used for various purposes, including performing computer authentication, session monitoring, and storing information on specific configurations regarding users accessing the server.

Types of Cookies:

Technical Cookies: Necessary for the proper functioning of the website and to provide the service offered and requested by a user.

Analytical Cookies: Used to collect information on the use of the site. This information is used for anonymous statistical analysis to improve the use of the site.

Third-Party Cookies: Used to integrate functionalities developed by third parties within the site, such as icons and preferences expressed in social networks, to share site contents or for the use of third-party software services.

Managing Cookies

Most browsers allow you to manage cookie preferences through their settings. You can set your browser to refuse cookies or delete specific cookies. Please note that if you choose to block cookies, it may impair or prevent the proper functioning of the site.