Enoteca Belvedere di San Leonino

Log in Sign up
Cart (0)

Privacy policy

INFORMATION PURSUANT TO ART. 13 GDPR 679/2016
(European regulation on the protection of personal data)
FOR THE REPORTS OF OUR CUSTOMERS

 

This information is provided to individuals who operate in the name and on behalf of our customers, pursuant to art.13 GDPR 679/2016 (European regulation on the protection of personal data).

1) IDENTITY AND CONTACTS OF THE HOLDER 

The Data Controller is the Belvedere di San Leonino Srl  (hereinafter referred to as OperaVino for brevity) - VAT and CF 00674280524, with registered office and operating office in San Leonino 23 - 53011 Castellina in Chianti (Siena);

Tel. +39 0577 741472
Mobile. +39 333 2945348
Email info@operavino.com

2) PURPOSE OF THE PROCESSING AND LEGAL BASIS

Your personal data (name, surname and contact details) will be processed for the following listed purposes:

a). execution of obligations deriving from a contract to which you are a party or to fulfill, before and after the execution of the contract, your specific requests;
b). fulfillment of legal obligations of an administrative, accounting, civil, fiscal, regulations, community and extra-community regulations;
c). litigation management (contractual breaches; warnings, transactions, debt collection, arbitration, legal disputes).
d). to enter the reserved area of ​​the site for online sales and data management (name, surname, residence, contact details).
e). With the User's consent, the requested data will allow OperaVino to send you newsletters (with commercial and promotional information). In case of refusal to communicate the personal data indicated (name, surname and e-mail address), the User cannot access the services offered by the Site.
 

The legal basis of the processing derives from the execution of the contract and the related legal obligations (of an administrative, accounting and tax nature), pursuant to art.6.1, letter b) of the GDPR.

Nature of the provision of data and consequence of the refusal to process

The provision of data is mandatory on the basis of legal obligations, regulations, regulations and influencing the possibility of correctly and effectively fulfilling the contractual obligations assumed; therefore, failure to communicate will make it impossible to fulfill these contractual obligations.

3) RECIPIENTS OF PERSONAL DATA                                                                 

The personal data processed will not be disclosed but communicated to well-defined subjects, indicated below by categories:

1. to consultants in the administrative, accounting, tax, legal, IT system maintenance, etc. of the owner,
2. to credit institutions;
3. to state bodies to which mandatory tax communications are addressed,
4. to subjects who can access your data by virtue of regulatory provisions (eg Public Security Authority, Judicial Authority, etc.)
5. To our External Managers for the online sales service

4) TRANSFER OF DATA TO THIRD COUNTRIES

- your personal data are transferred to non-EU countries, specifically:

- CANADA, Ottawa, Ontario - Shopify Inc., Shopify
- USA, Atlanta, Georgia - The Rocket Science Group LLC, Mailchimp

This method of data transfer is regulated according to the requisites required in accordance with the Privacy Shield (Art. 29 WP); you can see the complete list here https://www.privacyshield.gov/welcome

Execution of a contract between the interested party and the owner

The transfer is necessary for the execution of a contract concluded between the interested party and the data controller or for the execution of pre-contractual measures adopted at the request of the interested party

Indicate how to obtain a copy of these data and / or the place where they are made available (information to be given to the interested parties)

The data are available at the company by making a request through the contacts indicated above.

 

5) DATA RETENTION

The data will be stored on paper and / or computerized media for the time necessary for the purposes for which they were collected, respecting the principles of limitation of conservation and minimization referred to in Article 5, paragraph 1, letters c) and e) of the Regulation. At the end of the retention period, Personal Data will be deleted.

The data will be kept to fulfill regulatory obligations and pursue the aforementioned purposes, in compliance with the principles of indispensability, non-surplus and relevance. The Data Controller may retain data after the termination of the contractual relationship to fulfill regulatory and / or post-contractual obligations (for 10 years); subsequently, once the aforementioned reasons for the processing have ceased, the data will be deleted, destroyed or simply stored anonymously. Upon request, it is possible to have more information from the Company at the contacts indicated above.

 6) RIGHTS OF THE INTERESTED PARTY Art. 7- Artt. From 15 to 21 and Art. 77 of the Regulation (EU) 2016/679

The interested party has the right to request access, rectification, limitation and portability of the data (the latter applicable only to electronic data) at any time, as well as to oppose the processing, withdraw consent or propose a complaint to the Guarantor authority for the processing of personal data (for further information, please refer to the institutional website of the Privacy Guarantor).

It may also request the deletion of data, in the cases and limitations provided for in Article 17 of the European Regulation.

To exercise the rights towards the Data Controller, the interested party can write to the following addresses:

- Regular mail: Belvedere di San Leonino Srl - Località San Leonino 23 - 53011 Castellina in Chianti (Siena)

- E-mail: info@operavino.com

7) AUTOMATED DECISION-MAKING PROCESSES 

the Data Controller does not carry out treatments consisting of automated decision-making processes on the data processed.

The Data Controller

Belvedere di San Leonino Srl