Privacy Policy for Nina Dolcetti
1. Introduction
At Nina Dolcetti, accessible at ninadolcetti.com, we take your privacy and the protection of your personal data seriously. We are committed to maintaining the highest standards of data security and transparency while providing you with a seamless shopping and browsing experience. This Privacy Policy outlines how we collect, use, store, and protect your personal information, in compliance with applicable data protection legislation, including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”), as amended.
2. Scope of This Policy and Data Controller Role
This Privacy Policy applies to all users of our website, ninadolcetti.com, and governs the processing of personal data collected through the site or as part of our services. Nina Dolcetti acts as the “data controller” under GDPR and under applicable U.S. state laws. If you have any questions or requests relating to this policy or to your personal data, please contact us at: [email protected].
3. Categories of Data We Process
We may collect and process the following categories of personal data:
a. Usage Data
This includes data about how you use our website, including IP address, browser type, device identifiers, session identifiers, access times, pages viewed, and navigation paths.
b. Account Data
Data you provide when creating an account or placing an order, such as your full name, billing and shipping address, email address, and telephone number.
c. Profile Data
Information related to your preferences, purchase history, behavior on our website, and any other information provided in your account profile.
d. Communication Data
Records of communications with us, including customer support inquiries, messages via contact forms, or feedback provided.
e. Technical Data
Details about the devices and internet connections you use to access our website, including operating system, hardware model, browser version, screen resolution, and configuration settings.
f. Transaction Data
Information related to purchases and order fulfilment, including payment card information processed via secure third-party processors, delivery tracking, and confirmation data.
g. Preference Data
Marketing and communication preferences, including your consent status, newsletter subscriptions, and declared areas of interest.
4. Legal Bases for Processing
We rely on the following legal grounds to process personal data in accordance with the GDPR and comparable territorial laws:
– Consent: Where you have given your explicit consent, such as subscribing to our newsletter or accepting non-essential cookies.
– Contractual necessity: Where processing is necessary to enter into or perform a contract, e.g., to fulfil an order.
– Legal obligations: Where we are required to process data to comply with applicable legal or regulatory requirements.
– Legitimate interests: Where processing serves our legitimate business interests, such as fraud prevention, website improvement, and analytical reporting, and where such interests are not overridden by your fundamental rights and freedoms.
5. Your Rights Under Data Protection Law
Subject to applicable law, you have the following rights in relation to your personal data:
– Right of Access: To request confirmation and access to the personal data we hold about you.
– Right of Rectification: To request corrections to inaccurate or incomplete data.
– Right to Erasure: To request deletion of your personal data where there is no lawful reason for retention.
– Right to Restrict Processing: To request that we stop or limit processing of your data in certain circumstances.
– Right to Data Portability: To receive your personal data in a structured, commonly used, and machine-readable format and to transfer it to another controller.
– Right to Object: Where our legal basis is legitimate interest, you may object to processing at any time.
– Right to Withdraw Consent: You may withdraw consent at any time where processing is based on your consent.
– Non-Discrimination: Under CCPA, you have the right not to receive discriminatory treatment for exercising your privacy rights.
To exercise any of your rights, please email us at: [email protected].
6. Security Measures
To safeguard your personal data, we implement a variety of security measures including:
– Encryption of data both in transit and at rest.
– Access control mechanisms to limit access to personal data on a need-to-know basis.
– Regular system monitoring and automated alerts for suspicious activities.
– Secure servers and firewalls to prevent unauthorized intrusions.
– Staff training and confidentiality obligations for personnel handling personal data.
While no online service can guarantee absolute security, we maintain these measures to ensure your data remains protected.
7. International Data Transfers
Your data may be transferred to, and processed in, countries outside of your jurisdiction, including countries outside of the European Economic Area (EEA). Where such transfers occur, and where the data protection laws of those countries are not deemed adequate under GDPR, we rely on appropriate safeguards such as:
– Standard Contractual Clauses approved by the European Commission.
– Binding corporate rules with our service providers.
– Ensuring service providers operate under recognized frameworks such as the EU-U.S. Data Privacy Framework, where applicable.
8. Data Retention
We will only retain your personal data for as long as necessary for the purposes for which it was collected, including:
– Account Data: Retained during the life of your account and up to 6 years thereafter for compliance and fraud prevention.
– Transaction Data: Retained for 7 years for accounting and legal compliance.
– Communications Data: Retained for 3 years after resolution of query or support ticket.
– Preference Data: Retained for 2 years from last interaction unless you withdraw consent earlier.
– Browsing Data: Retained for 26 months for analytics and traffic analysis, unless cookies are removed manually.
We periodically review data retention practices in line with regulatory guidance.
9. Cookie Policy
Our website uses cookies and similar technologies to enhance your experience, analyze usage, and tailor our offerings. The types of cookies used include:
– Essential Cookies: Necessary for website functionality, such as cart operation and secure checkout.
– Functional Cookies: Remember user preferences to improve usability.
– Analytics Cookies: Help us understand how visitors interact with the site, collected in aggregate.
– Performance Cookies: Measure and improve site speed and responsiveness.
– Marketing Cookies: Used to track user behavior and deliver relevant advertising, if consent is provided.
10. Cookie Management and Compliance
In compliance with GDPR and CCPA, we:
– Provide a cookie consent mechanism upon your first visit to the site, allowing you to opt in or out.
– Honor “Do Not Track” (DNT) signals sent by browsers.
– Allow you to update your cookie preferences at any time through the cookie settings banner.
– Enable opt-out of interest-based advertising via third-party services.
You may also configure your browser settings to refuse or delete cookies at your discretion.
11. Protection of Minors
Our website and services are not intended for children under the age of 13. We do not knowingly collect personal data from children without parental consent. If we become aware that we have collected data from a child under 13, we will delete such information promptly. If you believe we have inadvertently collected information from a child, please contact us at: [email protected].
12. Updates to This Policy
We may update this Privacy Policy from time to time to reflect changes in legal requirements, technology, or our business practices. Your continued use of ninadolcetti.com after any changes are published will constitute your acceptance of those changes. We encourage you to review this page periodically.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact our data protection team at:
Email: [email protected]
Website: https://ninadolcetti.com
We are committed to ensuring your privacy and full compliance with data protection laws including GDPR and CCPA. Please do not hesitate to reach out to us with any privacy-related inquiries.