Informativa sulla Privacy – Achille Lauro Boutique

Dear Customer, in compliance with current legislation on the protection of personal data pursuant to Article 13 of European Regulation No. 679 of 2016 (hereinafter, the “GDPR) and Legislative Decree No. 196 of June 30, 2003, as amended by Legislative Decree No. 108 of August 10, 2018, No. 101 (hereinafter, the “Privacy Code”), INTSYDE S.r.l. (hereinafter, “INTSYDE” or the “Data Controller”), as Data Controller, will use your data to carry out the activities listed below.

Online Purchase: to execute your purchase orders for products marketed by the Data Controller, to fulfill the related administrative and accounting obligations (e.g., order fulfillment, correspondence, invoicing, etc.) and to arrange for the delivery of the same through the e-commerce platform (e.g., for delivery, any requests for information, complaints, etc.).

If the fields marked as mandatory are not filled in, it will not be possible to execute your purchase orders and arrange for their delivery through the e-commerce platform on the website https://www.achillelauroboutique.com/en/.

Optional data, if not provided, will not affect the online purchase of products. The assessment of mandatory data has been made taking into account the principles of necessity and proportionality in processing in accordance with the GDPR, the Privacy Code, and all specific sector regulations.

For the purposes referred to in point a) above, the provision of your personal data is necessary to execute your purchase orders, arrange for their delivery through the e-commerce platform, and manage any after-sales services you may request, as well as to fulfill INTSYDE's legal obligations. therefore, failure to provide your data will make it impossible for you to make online purchases of products from INTSYDE. The legal basis for the processing is, respectively, the performance of the services provided through the e-commerce platform and the fulfillment of legal obligations incumbent upon the Data Controller (pursuant to Article 6, paragraph 1, letters b) and c) of the GDPR).

The data you provide will be processed mainly using IT tools under the authority of the Data Controller, by personnel specifically authorized and trained in processing pursuant to Article 29 of the GDPR and Article 2-quaterdecies of the Privacy Code. We inform you that appropriate security measures are observed, also pursuant to Articles 5 and 32 of the GDPR, to prevent the loss of your data, illicit or incorrect use and unauthorized access.quaterdecies del Codice privacy. La informiamo che sono osservate idonee misure di sicurezza, anche ai sensi degli artt. 5 e 32 del GDPR, per prevenire la perdita dei Suoi dati, usi illeciti o non corretti ed accessi non autorizzati.

Your personal data connected to the sale of products by INTSYDE will be stored for the entire duration of the contractual relationship and at the end of the same - limited to the data necessary at that point - for the fulfillment of any legal obligations and for the protection requirements, including contractual ones, connected to or deriving from it; Therefore, data will not normally be stored for more than 10 (ten) years after the termination of the contractual relationship. Notwithstanding the foregoing, INTSYDE may retain certain personal data even after the termination of processing, exclusively to defend or assert its rights or in cases provided for by law or as a result of an order from a judicial or administrative authority.

Your data may be disclosed, within the European Economic Area, in full compliance with the provisions of the GDPR, to the following parties:

to public bodies and/or authorities, where required by law or at their request;
to external structures, entities, and companies that the Data Controller uses to carry out activities connected, instrumental, and/or ancillary to online purchases and the management of payment, shipping, and after-sales services;
to external consultants (e.g., for the management of tax obligations), if not designated in writing as Data Processors.

The above-mentioned entities, to whom your personal data will or may be disclosed (as they are not designated in writing as Data Processors), will process your personal data as Data Controllers pursuant to the GDPR, in full autonomy, as they are unrelated to the original processing carried out by INTSYDE.

As mentioned, the Data Controller is INTSYDE S.r.l., with registered office in Rome, Via della Stazione Aurelia no. 171/173, tax code 17204281004, in the person of the Chief Executive Officer, Dr. Alessandro Carpignano, telephone 06-88654400, email privacy@intsyde.com.

The contact email address of the Data Protection Officer (pursuant to Article 37 of the GDPR) appointed by INTSYDE is as follows: privacy@intsyde.com.

The updated list of designated Data Processors can be provided upon your request, to be sent in free form to the above contact details.

At any time, you may exercise your rights under Articles 15 et seq. of the GDPR, for access, rectification, transformation, blocking, erasure, and restriction of processing, in the manner provided for in Article 12 of the GDPR and within the limits established by Article 2-undecies of the Privacy Code.

In the event of a failure to respond in a timely manner or an unsatisfactory response from INTSYDE, or if you believe there has been a violation of the GDPR and/or the Privacy Code, you may lodge a complaint with the Italian Data Protection Authority at the following coordinates: website www.gpdp.it or www.garanteprivacy.itemail garante@gpdp.it, fax (+39) 06.69677.3785, telephone switchboard (+39) 06.69677.1.

This policy is subject to change by the Data Controller; INTSYDE will communicate any changes with adequate notice prior to the date on which the new policy will apply.