Privacy policies pursuant to article 13 of the regulation EU 679/2016 (the “GDPR”)
FUZZI puts privacy and personal protection at first, specially with regards to Personal Data.
- applies to the website https://www.fuzzi.com (hereinafter the “Website”);
- is an integral part of the Website and of the services that we offer;
- is provided pursuant to Article 13 of the Code and Article 13 of the GDPR to those who interacts with the Website’s online services (including but not limited to the purchase of the products, the creation of an account, the submission of forms for the request of information or for the registration to our newsletter).
1. Who is the Data Controller?
2. Which are the personal data subject to the processing?
3. Which are the purposes of the processing?
4. Which are the legal basis and the nature of the processing?
5. Who are the Recipients of Personal Data?
6. How long will the persona data stored for?
7. Which are my rights?
9. How can I get in contact with the Data Controller?
Your Personal Data will be processed in accordance with the principles of fairness, lawfulness, transparency, purpose and storage limitation, minimisation, accuracy, integrity, and confidentiality, as well as with the principle of accountability referred in Article 5 of the Regulation. Therefore, your Personal Data will be processed in accordance with the legislative provisions of the Regulation and with the obligations of confidentiality set forth therein.
Specific security measures are implemented to prevent data loss, unlawful or incorrect use of, and unauthorised access to, your Personal Data.
Processing of Personal Data shall mean any operation or set of operations performed on Personal Data, whether or not by automatic means (such as collection, recording, organisation, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, blocking, erasure or destruction).
In accordance with Article 4, paragraph 1, letter (I) of the Regulation, data subjects concerned shall mean any individual who communicates his/her Personal Data.
1. Who is the Data Controller?
FUZZI SpA with a sole shareholder, with its registered office in Via Degli Ippocastani no. 388 - 47842 San Giovanni in Marignano (RN) – Italy, Tel. no. 0541-14.17.239, fiscal code and number of registration with the Register of Enterprises of Rimini 01563680303, is the controller (the “Controller”) and can be contacted via eamail at any time at email@example.com.
2. Which Personal Data are subject to the processing?
We inform you that the Personal Data subject to the processing may include: an identifier such as a name, an identification number, an online identifier (username), or one or more of your physical and physiological data, location data or any other data provided by you and that is useful for your identification, depending on the type of services requested.
The Personal Data processed through the Website are the following (“Personal Data”):
You can find more information about cookies here
During normal usage, the computer systems and software procedures used to operate the Website collect some Personal Data, the transmission of which is implicit in the use of Internet communication protocols. This information is not collected in order to be associated to identified data subjects, but due to its same nature it can, by means of processing and integration with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by the users to connect to the website, URI (Uniform Resource Identifier) form addresses of the requested resources , the time of the request, the method used to submit the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the reply given by the server (done, error, etc.) and other parameters concerning the user's operating system and computer environment. These data are used solely to obtain anonymous statistical information concerning the use of the Website,, to check that the Website functions correctly and to identify malfunctions and/or abuses. In any case they are deleted immediately after being processed. These data may also be used to ascertain liability in case of hypothetical computer crimes to the detriment of the Website or of third parties.
Data provided by the user
Data of third parties
Please note that any Personal Data of third parties you provide while browsing the Website may be processed (e.g. while shopping products to be shipped to third parties). In this case, you shall be considered as an independent data controller and you shall assume all responsibility thereto. With regard to such data, you fully indemnify us against any complaint or claim that the Controller might receive from the third parties whose Personal Data were processed through your use of the Website services. In any case, if you provide or process Personal Data of third parties while using the Website, you hereby guarantee that such third party has given his consent to the processing of his/her Personal Data.
3. What are the purposes of the processing?
With your prior consent, your Personal Data will be processed for the following purposes, if applicable:
to allow you to browse the Website and to enable us to provide our services, including the protection of Website security, as well as our contractual, administrative and accounting relationships;
to meet your specific requests;
to fulfil our legal obligations as requested by the applicable law, by regulations or by the Community legislation, or to meet any request from authorities;
to transmit direct marketing communications via email for products similar to those purchased, pursuant to Article 130, paragraph 4 of the Decree Law no. 196/2003 (the “Code”), unless you have indicated that you do not want to receive such communications. You can express your refusal at any time;
to send you promotional and marketing communications, including newsletters and market research, by automated (text messages, mms, emails, push notifications, fax) and non-automated means (paper-based mail, phone call with an operator); please note that the Controller acquires just one consent for the aforesaid marketing purposes, pursuant to the General Measure of Personal Data Protection Authority “Guidelines on Marketing and against Spam” dated 4 July 2013. In any case, if you want to object to the processing of your Personal Data for the marketing purposes carried out by said means, you can do so at any time by contacting the Controller, without prejudice to the lawfulness of the processing based on your consent prior to the withdrawal;
to communicate your Personal Data to Fuzzi S.p.A. with a sole shareholder and with its registered office in Via Degli Ippocastani 388 in order for it to send its promotional and marketing communications, including newsletters and market research via automated (text messages, mms, email, push notifications, fax) and non-automated means (paper-based mail, phone call with an operator);
for statistical purposes, with the understanding that your Personal Data cannot be traced back to you.
4. What are the legal basis and nature of the processing?
Your Personal Data are processed:
for the purposes referred to in 3.1 and 3.2, pursuant to Article 6, paragraph 1, letter b) of the Regulation ([…] processing is necessary for the performance of a contract to which the data subject is a party or to adopt pre-contractual measures at the data subject’s request, since the processing is necessary for the provision of the services. The submission of Personal Data for these purposes is discretionary, but any failure to provide such data will prevent us from providing the services requested;
for the purposes referred to in 3.3, pursuant to Article 6, paragraph 1, letter c) of the Regulation ([…] processing is necessary for compliance with a legal obligation to which the controller is subject). Once you have provided your Personal Data, the processing is necessary to fulfil the legal obligations binding on the Controller;
for the marketing and communication purposes referred to in 3.5 and 3.6, after giving your consent pursuant to Article 6, paragraph 1, letter a) of the Regulation ([…] the data subject has given consent to the processing of his or her Personal Data for one or more specific purposes). Providing your Personal Data for these purposes is not mandatory and does not affect the use of services. If you want to object to the processing of your Personal Data for marketing or communication purposes (see 3.5 and 3.6), you can do it at any time by sending an email to firstname.lastname@example.org.
for the purposes referred to in 3.4, pursuant to Article 130, paragraph 4 of the Code, according to which the Controller may use the electronic mail information you provided upon purchasing a product without being obliged to request your prior consent, provided that the communications are related to products that are similar to those you purchased and you have not indicated that you do not want to receive such communications.
Finally, we specify that the processing referred to in 3.7 is not linked to Personal Data and therefore can be freely carried out by the Controller.
5. Who are the Recipients of Personal Data?
subjects that typically act as processors, pursuant to Article 28 of the Regulation, i.e.: (I) individuals, companies or professional firms that provide assistance and advice to the Controller for accounting, administrative, legal, tax and financial matters; (II) individuals in charge of technical maintenance; (III) credit institutions, companies and insurance brokers;
subjects, bodies or authorities to whom the communication of your Personal Data is mandatory by virtue of legal provisions or orders of the competent authorities;
individuals that are authorized by the Controller, pursuant to Article 29 of the Regulation, to process the Personal Data necessary for purposes that are strictly connected to the supply of services. These individuals shall have committed themselves to confidentiality or are under an appropriate legal obligation of confidentiality;
companies of the Group, for internal administrative purposes;
companies of the Group, for the purposes referred to in 3.7, with your prior explicit consent (as set out in more detail in point 4).
Such subjects shall be hereinafter collectively referred to as “Recipients”.
6. How long will the Personal Data be stored for?
The Personal Data processed for the purposes referred to in 3.1 and 3.2 will be stored for the period of time strictly necessary to fulfil such purposes. In any case, being that the processing is necessary to supply the services, the Controller will retain the Personal Data for the period of time provided for and allowed by Italian law in order to protect his own interests (Article 2946 of the Italian Civil Code et seq.).
The Personal Data processed for the purposes referred to in 3.3 will be stored for the period of time provided for by the specific applicable legal obligation or regulation.
For the purposes referred to in 3.4 your Personal Data will be stored as long as you do not object to the processing.
As for the purposes referred to in 3.5 and 3.6, your Personal Data will be processed for such purposes respectively for a maximum time period of 24 months. In any case, the Controller may store your Personal Data for the period of time provided for and allowed by Italian laws in order to protect his own interests (Article 2947, paragraphs 1 and 3 of the Italian Civil Code).
7. What are my rights?
Pursuant to Chapter III of the Regulation, at any time you have the right to obtain confirmation as to whether or not personal data concerning you are being processed, to obtain information on their content and origin, to verify their accuracy or ask for your personal data to be integrated, updated or rectified. You have the right to ask for the erasure, transformation into anonymous form or blocking of data processed in violation of the law. You also have the right to request access to your Personal Data, to object to the processing, to ask for restriction of processing in the cases provided for by Article 18 of the Regulation, where technically possible, to ask for the erasure of your Personal Data in the cases provided for by Article 17 of the Regulation, as well as to receive Personal Data concerning you in a structured, commonly used format, in the cases provided for by Article 20 of the Regulation.
In any case, you always have the right to lodge a complaint with the Data Protection Supervisor, pursuant to Article 77 of the Regulation, if you consider that the processing of your Personal Data infringes this Regulation.
9. How can I contact the Controller?
You can contact the Data Controller to exercise your rights or for any other request by writing to the physical address referred to in Article 1 or to the dedicated email address email@example.com.
Latest update September, 21 2020