1 Avanblanc S.r.l., Monsummano Terme (PT), Via dell’Unità n. 281 – Italy (Data Controller) will process the Client’s (“User”) personal data collected for the purpose of finalising the purchase operation mostly with electronic means.
2 By the Client’s request, the Data Controller may use the abovementioned data also to send e-mails advertising its products, services and/or promotions having a connection with the Client’s past orders.
3 For the purposes of this information notice, ‘personal data’ means any information that are collected either directly by the Data Controller or by third parties and concerning Cookies, Navigation Data, E-Mail, Name and Surname which were either provided by the Client on a voluntary basis, or collected automatically during the site’s navigation.
4 The Data Controller collects the User’s data to enable Avanblanc.com provide the User with its services, and to pursue the following purposes: elaborating statistics, managing addresses, contacting the User by e-mail.
5 Pursuant to art. 7 of Legislative Decree 196/2003, the Client is entitled to ask the Data Controller, by sending an e-mail to firstname.lastname@example.org, the following information:
- confirmation that the Data Controller is retaining any Client’s personal data;
- the personal data’s communication and source;
- the reasons and the purposes for their collection and processing.
6 The Client can seek for the information above every 90 days, unless his/her request is justified by the following reasons: requests for data’s cancellation or rectification following a breach of law; or cancellation of those data which could not be used in connection with the purposes for which they were collected.
7 Personal data that the User provides on a voluntary basis will not be disseminated or communicated to third parties.
8 If the User pays by credit card, the data that are necessary to execute the transaction (credit card number, expiry date, security code) will be forwarded to the data processor, or to the anti-fraud entities, by means of encrypted protocol, without any possibility for third parties to access such data. The Seller will never access or retain said data.
10 The data will be processed at the Data Controller’s offices, and in any other places where the subjects involved in the data processing are located, for a period of time that is necessary to provide the service sought by the User.
11 The Data Controller, however, is not in a position to warrant to the Users that the security measures implemented for the safety of the website and of the data transmission through the website will effectively limit or erase any risks that the user’s devices will allow any unauthorised access to the data, or cause a loss thereof.