PRIVACY POLICY
Dear Visitor, following consultation of the www.muranomania.com website, data relating to identified or identifiable natural persons may be processed. With reference to this data processing, the following information is provided, also in accordance with Art. 13 of the European General Data Protection Regulation (EU Regulation 2016/679), the validity of which is not extended to any other external websites consulted by the user via links on this website.
By continuing to browse, and by subscribing to the service proposals contained in the various parts of the site (subscription to our newsletter, filling in forms to request information, ...), this general information on processing, as well as any specific information related to processing for different and specific purposes, is taken for granted, and the user explicitly gives his or her consent to the relevant processing. It is emphasised that the consent is only valid if it comes from an adult or a minor who is at least 14 years old (Art. 2 - quinques Legislative Decree 196 of 2003).
Data controller
Barena S.R.L., VENEZIA (VE) CANNAREGIO, 6262/B CAP 30100
P. VAT: 04741590279
Tel.: +39 334 2742021
Holder's email address: info@muranomania.com
Summary of personal data processing carried out through the site www.muranomania.com
Categories of data processed
Contacting the User
Personal Data: telephone number
Mailing list or newsletter Personal Data: postcode; city; surname and first name; e-mail; address; country; telephone number; profession; company name.
Contact management and message sending
Sendinblue Personal Data: last name; email; address; first name; various types of Data
Payment management
PayPal Personal Data: various types of Data as specified by the service's privacy policy
Tag management
Google Tag Manager Personal Data: Usage Data
SPAM protection
Google reCAPTCHA Personal Data: Cookie; Usage Data
Advertising
Google Ad Manager Personal Data: Usage Data; Tracking Tool
Collection of privacy preferences
Cookie Plus Personal Data: Tracking tool
Remarketing and behavioral targeting
Facebook Remarketing and Google Ad Manager Audience Extension Personal Data: Cookie; Usage Data
Statistics
Google Analytics and Google Analytics with anonymised IP Personal Data: Cookie; Usage Data
Google Ads conversion tracking Personal data: Usage data; Tracking tool
User ID extension for Google Analytics Personal Data: Usage Data; Tracking Tool
Advertising reporting functionality in Google Analytics Personal Data: unique identifiers of advertising devices (Google Advertiser ID or IDFA identifier, for example); Tracking Tools; various types of Data as specified by the privacy policy of the service
Meta Events Manager and Facebook Ads conversion tracking (Facebook pixel) Personal Data: Usage Data; Tracking Tools
Display of content from external platforms Google Fonts Personal Data: Usage Data; various types of Data as specified by the privacy policy of the service
Information on how to deactivate interest-based advertisements
In addition to any opt-out function provided by any of the services listed in this document, Users can read more about how to disable interest-based advertisements in the relevant section of the Cookie Policy.
FULL POLICY
Types of Data collected
Among the Personal Data collected by this Website, either independently or through third parties, are: telephone number; email; first name; last name; country; postal code; city; address; Usage Data; unique identifiers of advertising devices (Google Advertiser ID or IDFA identifier, for example). Full details on each type of data collected are provided in the dedicated sections of this privacy policy or by means of specific information texts displayed before the data is collected. Personal Data may be freely provided by the User or, in the case of User Data, automatically collected during the use of this Web Site. Unless otherwise specified, all the Data requested by this Web Site are optional and therefore if the User refuses to communicate them, it may be impossible for this Web Site to provide the requested Data.
Method and place of processing of collected Data
Processing methods
The Data Controller adopts appropriate security measures to prevent unauthorised access, disclosure, modification or destruction of Personal Data. The processing is carried out by means of computer and/or telematic instruments as well as on paper, with organisational methods and logics strictly related to the purposes indicated. In addition to the Data Controller, in some cases, other subjects involved in the management and organisation of this Web Site (administrative, sales, marketing, legal, system administrators) or external subjects (such as third party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) also appointed, where necessary, as Data Processors by the Data Controller, may have access to the Data. The updated list of Data Processors can always be requested from the Data Controller.
Processing methods
The Data Controller adopts appropriate security measures to prevent unauthorised access, disclosure, modification or destruction of Personal Data. The processing is carried out by means of computer and/or telematic instruments as well as on paper, with organisational methods and logics strictly related to the purposes indicated. In addition to the Data Controller, in some cases, other subjects involved in the management and organisation of this Web Site (administrative, sales, marketing, legal, system administrators) or external subjects (such as third party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) also appointed, where necessary, Data Processors by the Data Controller, may have access to the Data. The updated list of Data Processors can always be requested from the Data Controller.
Legal basis for processing
The Controller processes Personal Data relating to the User if one of the following conditions exists: the User has given consent for one or more specific purposes; the processing is necessary for the performance of a contract with the User and/or the performance of pre-contractual measures; the processing is necessary to fulfil a legal obligation to which the Controller is subject; the processing is necessary to pursue the legitimate interest of the Controller or of third parties. However, it is always possible to ask the Controller to clarify the concrete legal basis of each processing and in particular to specify whether the processing is based on law, required by a contract or necessary to conclude a contract.
Place
The Data are processed at the Data Controller's operational headquarters and in any other place where the parties involved in the processing are located. For further information, please contact the Data Controller. The User's Personal Data may be transferred to a country other than the country in which the User is located. To obtain further information on the location of the processing, the User may refer to the section on details of the processing of Personal Data contained in the Cookies policy.
Retention period
Data are processed and kept for the time required by the purposes for which they were collected. Therefore:
- Personal Data collected for purposes related to the performance of a contract between the Data Controller and the User will be retained until the performance of such contract is completed and thereafter due to the prescriptive terms provided for the acts and documents of the contractor.
- Personal Data collected for purposes attributable to the legitimate interest of the Controller will be retained until such interest is satisfied. The User may obtain further information regarding the legitimate interest pursued by the Controller in the relevant sections of this document or by contacting the Controller.
- When the processing is based on the User's consent, the Controller may keep the Personal Data for a specific period of time indicated in the Cookie policy or until such consent is revoked. In addition, the Controller may be obliged to retain Personal Data for a longer period in compliance with a legal obligation or by order of an authority.
At the end of the retention period the Personal Data will be deleted. Therefore, at the end of this period, the right of access, deletion, rectification and the right to Data portability can no longer be exercised.
Purposes of the Data collected
The User's Data is collected to enable the Controller to provide the Service, fulfil contractual and legal obligations, respond to requests or enforcement actions, protect its rights and interests (or those of Users or third parties), detect any malicious or fraudulent activities, as well as for the following purposes: contacting the User and sending messages, statistics, displaying content from external platforms, tag management, remarketing and behavioral targeting, spam protection, payment management, advertising, hosting and backend infrastructure and collecting privacy preferences.
Details of Personal Data processing
Personal Data is collected for the following purposes and using the following services:
Contacting the User
Contact by telephone (this Web Site) Users who have provided their telephone number may be contacted for commercial or promotional purposes related to this Web Site, as well as to fulfil support requests. Personal Data processed: telephone number.
Mailing list or newsletter (this Web Site) By registering to the mailing list or newsletter, the User's e-mail address is automatically added to a contact list to which e-mail messages containing information, including commercial and promotional information, related to this Web Site may be sent. The User's email address may be added to this list as a result of registering on this Web Site or after making a purchase. Personal data processed: Postcode; city; surname; e-mail; address; country; name; number of; profession.
Managing contacts and sending messages
This type of service allows the management of a database of e-mail contacts, telephone contacts or contacts of any other type used to communicate with the User. These services may also collect data about the date and time that the User views messages, as well as the User's interaction with them, such as information about clicks on links in messages.
Sendinblue
Sendinblue is an address management and e-mail messaging service. Personal Data processed: surname; e-mail; address; first name; various types of Data. Place of processing: France.
Payment management
Unless otherwise specified, this Website processes all payments by credit card, bank transfer or other means through external payment service providers. In general, and unless otherwise specified, Users are requested to provide payment details and personal information directly to such payment service providers. This Website is not involved in the collection and processing of such information: instead, you will only receive notification from the payment service provider in question that payment has been made.
PayPal (Paypal)
PayPal is a payment service provided by PayPal Inc., which allows the User to make online payments. Personal Data processed: various types of Data as specified in the privacy policy of the service. Place of processing: See PayPal's privacy policy - Privacy Policy.
Tag management
This type of services is functional for the centralised management of tags or scripts used on this Website. The use of these services entails the flow of the User's Data through them and, where appropriate, their retention.
Google Tag Manager (Google Ireland Limited)
Google Tag Manager is a tag management service provided by Google Ireland Limited. Personal Data processed: Usage Data. Place of processing: Ireland - Privacy Policy.
SPAM protection
This type of service analyses traffic on this Web Site, potentially containing Users' Personal Data, in order to filter it from traffic, messages and content recognised as SPAM.
Google reCAPTCHA (Google Ireland Limited)
Google reCAPTCHA is a SPAM protection service provided by Google Ireland Limited. Use of reCAPTCHA is subject to Google's privacy policy and terms of use. Personal data processed: Cookies; Usage Data. Place of processing: Ireland - Privacy Policy.
Advertising
This type of service allows User Data to be used for marketing communications purposes. These communications are displayed on this Website in the form of banners and other forms of advertising, including in relation to the User's interests. This does not mean that all Personal Data is used for this purpose. Data and conditions of use are set out below. Some of the services mentioned below may use Tracking Tools to identify the User or use the technique of behavioral retargeting, i.e. displaying advertisements tailored to the User's interests and behaviour, also detected outside this Website. For more information on this, we suggest that you check the privacy policies of the respective services. Generally, services of this type offer the possibility to disable such tracking. In addition to any opt-out function provided by any of the services listed in this document, the User can read more about how to disable interest-based advertisements in the section "How to disable interest-based advertising" in this document. All information can be found in the cookie policy.
Information on how to disable interest-based advertisements
In addition to any opt-out functionality provided by any of the services listed in this document, Users can read more about how to disable interest-based advertisements in the appropriate section of the Cookie Policy.
User Rights
The User may exercise all the rights set out below. In any other case, the User may contact the Controller to find out which rights apply in his/her case and how to exercise them. In particular, the User has the right to
- revoke consent at any time. The User may revoke the consent to the processing of his or her Personal Data previously expressed.
- object to the processing of their Data. The User may object to the processing of its Data when it is done on a legal basis other than consent. Further details on the right to object are set out in the section below.
- access to their Data. The User has the right to obtain information on the Data processed by the Controller, on certain aspects of the processing and to receive a copy of the Data processed.
- verify and request rectification. The User may verify the correctness of its Data and request that it be updated or corrected.
- obtain the restriction of processing. When certain conditions are met, the User may request the restriction of the processing of its Data. In this case, the Data Controller will not process the Data for any purpose other than its preservation.
- obtain the deletion or removal of their Personal Data. When certain conditions are met, the User may request the deletion of its Data by the Data Controller.
- receive their Data or have them transferred to another Data Controller. The User has the right to receive its Data in a structured, commonly used and machine-readable format and, where technically feasible, to have it transferred without hindrance to another data controller. This provision is applicable when the Data are processed by automated means and the processing is based on the User's consent, on a contract to which the User is party or on contractual measures related thereto.
- Proposing a complaint. The User may lodge a complaint with the competent data protection supervisory authority or take legal action.
Details of the right to object
Users are informed that, should their Data be processed for direct marketing purposes, they may object to the processing without giving any reason. To find out whether the Controller processes Data for direct marketing purposes, Users may refer to the respective sections of this document or write to the following address: info@muranomania.com
Details of the right to object
To exercise the User's rights, Users may address a request to the contact details of the Controller indicated in this document
Applicability of the higher level of protection
While most of the provisions of this document apply to all Users, some are expressly subject to the applicability of a higher level of protection to the processing of Personal Data. This higher level of protection is always afforded when the processing: is carried out by a Data Controller established in the EU; or involves Personal Data of Users located in the EU and is for the purpose of offering goods or services against payment or free of charge to such Users; or involves Personal Data of Users located in the EU and enables the Data Controller to monitor the behaviour of such Users to the extent that such behaviour takes place within the EU.
Definitions and legal references
Personal Data (or Data)
Personal data is any information which, directly or indirectly, even in connection with any other information, including a personal identification number, makes a natural person identified or identifiable.
Usage Data
This is the information collected automatically through this Website (including by third party applications integrated into this Website), including: IP addresses or domain names of the computers used by the User who connects with this Website, URI (Uniform Resource Identifier) notation addresses, the time of the request, the method used to forward the request to the server, the size of the file obtained in response, the numerical code indicating the status of the server response (successful, error, etc.), the country of origin, the characteristics of the browser and operating system used by the visitor, the various time connotations of the visit (e.g. time spent on each page) and details of the itinerary of the visit (e.g. time spent on each page) and the time spent on the website. ), the country of origin, the characteristics of the browser and operating system used by the visitor, the various temporal connotations of the visit (e.g. the length of time spent on each page) and the details of the itinerary followed within the Application, with particular reference to the sequence of pages consulted, the parameters relating to the operating system and the User's IT environment.
User
The individual who uses this Website which, unless otherwise specified, coincides with the Data Subject.
Data Subject
The natural person to whom the Personal Data refers.
Data Controller (or Processor)
The natural person, legal entity, public administration and any other entity that processes personal data on behalf of the Controller, as set out in this privacy policy.
Data Controller (or Controller)
The natural or legal person, public authority, service or other body that, individually or jointly with others, determines the purposes and means of the processing of personal data and the instruments adopted, including the security measures relating to the operation and use of this Website. The Data Controller, unless otherwise specified, is the owner of this Web Site.
This Web Site (or this Application)
The hardware or software tool through which Users' Personal Data are collected and processed.
Service
The Service provided by this Web Site as defined in the relevant terms (if any) on this site/application.
European Union (or EU)
Unless otherwise specified, any reference to the European Union in this document shall be deemed to include all current member states of the European Union and the European Economic Area.
Cookies
Cookies are tracking tools that consist of small pieces of data stored within the User's browser.
Tracking Tool
A Tracking Tool is any technology - e.g. cookies, unique identifiers, web beacons, embedded scripts, e-tags and fingerprinting - that allows Users to be tracked, for example by collecting or storing information on the User's device.