Privacy Policy
Pet360 S.r.l.
This Website collects some personal data from its Users.
Data controller
PET360 S.r.l.
Via Camisana, 34 – 36040 Torri di Quartesolo (VI)
PI/CF 06396310960
Owner's email: info@pet360.it
Types of data collected
The Website collects personal data voluntarily provided by the User via the contact form (such as, for example, first name and surname, email address, telephone number, subject of the request, and message content), in addition to Usage Data and Tracking Tools.
Complete details on each type of personal data collected are provided in the dedicated sections of this Privacy Policy or through specific informative texts displayed before the data is collected.
Personal data may be freely provided by the User or, in the case of Usage Data, collected automatically during the navigation of this Website.
Unless otherwise specified, all data requested by this Website are mandatory. Should the User refuse to provide them, it may be impossible to provide the requested Service. In cases where some data are expressly indicated as optional, the User is free not to provide them, without this affecting the availability or correct functioning of the Service.
Users who wish to receive clarification regarding mandatory data can contact the Data Controller at any time.
The potential use of Cookies or other Tracking Tools by this Website or by third-party services used is for the purpose of providing the Service requested by the User, in addition to the further purposes described in this Privacy Policy and Cookie Policy.
The User assumes responsibility for any third-party personal data obtained, published or shared through this Website.
The Data Controller shall adopt appropriate security measures to prevent unauthorised access, disclosure, alteration or destruction of personal data.
The treatment is carried out using computer and/or telematic tools, with organisational and logical procedures strictly related to the stated purposes.
In addition to the Data Controller, in some cases, other parties involved in the organisation of this Website may have access to the data (administrative, commercial, marketing, legal personnel and system administrators) or external parties (such as technical service providers, hosting providers, IT companies, communication agencies and other service providers), appointed, where necessary, as Data Processors pursuant to Article 28 of Regulation (EU) 2016/679 (GDPR).
The updated list of Data Processors can be requested from the Data Controller at any time.
The data are processed at the operational headquarters of the Data Controller and at any other place where the parties involved in the processing are located. For further information on the place of processing, the User may contact the Data Controller.
Where personal data is transferred to a country other than the User's location, processing will comply with the provisions of Regulation (EU) 2016/679 (GDPR). For more information on the location of processing, the User may refer to the dedicated sections of this Privacy Policy or contact the Data Controller.
Carrying out statistical analyses using Google Analytics 4Retention period
Except as otherwise provided by law or specified in this notice, personal data are processed and stored for the time strictly necessary to achieve the purposes for which they were collected and, where required, for the period provided for by legal obligations or until the revocation of any consent given by the User.
Purpose of processing the data collected
The User's data are collected to allow the Data Controller to:
provide the required services;
respond to requests sent via the contact form;
to comply with legal obligations;
to protect its own rights and interests, as well as those of Users and third parties;
prevent fraudulent activities or misuse of the Website;
carry out statistical analysis using Google Analytics 4;
manage content display services from external platforms;
managing anti-spam protection systems via Google reCAPTCHA and tag management services.
For more information on the individual purposes of processing and the personal data processed for each service, the User can refer to the “Details on the processing of personal data” section.
Details on the processing of personal data
Personal data is collected for the following purposes and through the following services:
- Contact the User (contact form)
- Tag management
- Google Analytics 4 Statistics
- Displaying content from external platforms – Instagram
- Google reCAPTCHA spam protection
Legal basis for processing
The Controller processes the User's personal data if one of the following conditions is met:
- The User has given their consent for one or more specific purposes. Note: in some jurisdictions, the Data Controller may be authorised to process personal data without the User's consent or another legal basis from those indicated below, until the User objects to such processing (“opt-out”). This condition does not apply when the processing of personal data is governed by European data protection legislation.;
- the processing is necessary for the performance of a contract with the User and/or for the performance of pre-contractual measures;
the processing is necessary to comply with a legal obligation to which the Controller is subject; - the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Controller;
- the processing is necessary for the purposes of the legitimate interests pursued by the Controller or by a third party.
It is always possible to ask the Controller for clarification regarding the specific legal basis for each processing activity and, in particular, to check if the processing is based on law, provided for by a contract, or necessary for the conclusion of a contract.
Further information on the retention period
Except as otherwise provided by law or specified in this notice, personal data shall be processed and stored for the time strictly necessary to achieve the purposes for which they were collected and may be stored for a longer period if this is required by legal obligations or based on the consent given by the User.
Therefore:
- Personal data collected for purposes connected with the performance of a contract between the Data Controller and the User will be retained until the performance of the contract is completed.
- Personal data collected for purposes related to the legitimate interests of the Data Controller will be retained until such interests are satisfied. The User may obtain further information on the legitimate interest pursued by the Data Controller by consulting the relevant sections of this policy or by contacting the Data Controller directly.
- Where the processing is based on the User's consent, the Data Controller may retain personal data until consent is withdrawn. Furthermore, the Data Controller may be required to retain personal data for a longer period to comply with a legal obligation or by order of a competent Authority.
- The data submitted via the contact form will be kept for the time necessary to process your request and subsequently for the period required by legal obligations.
At the end of the retention period, personal data will be deleted or anonymised where possible. Once this period has expired, it will no longer be possible to exercise the right of access, rectification, erasure, restriction of processing, and data portability in relation to data no longer retained.
User Rights
Users can exercise the rights recognised by Regulation (EU) 2016/679 (GDPR) in relation to personal data processed by the Controller.
In particular, within the limits provided for by current legislation, the User has the right to:
- Withdraw consent at any time, should the processing be based on previously given consent.
- Object to treatment of their personal data when it occurs on the basis of a legitimate interest or another legal basis other than consent, in the cases provided for by law.
- Access your data, obtaining information about the ongoing processing and receiving a copy of the personal data being processed.
- Request correction inaccurate data or incomplete data updates.
- Obtain treatment limitation, in the cases provided for by Article 18 of the GDPR. In such an event, the Controller shall process the data exclusively for their storage, unless otherwise provided for by the regulations.
- Request cancellation of their personal data (“right to erasure”), in the cases provided for by Article 17 of the GDPR.
- Receiving your data in a structured, commonly used and machine-readable format, and, where technically feasible, to transmit it directly to another controller (right to portability).
- Make a complaint to the competent supervisory authority for the protection of personal data or to take action in the competent judicial seats if it believes that the processing violates current legislation.
Users are also entitled to obtain information regarding the legal basis for any transfer of personal data to third countries or international organisations, as well as the security measures adopted by the Data Controller to ensure an adequate level of data protection.
Where personal data is processed for the performance of a task carried out in the public interest, in the exercise of official authority vested in the Controller, or for the purposes of the legitimate interests pursued by the Controller, the User has the right to object to processing on grounds relating to their particular situation, in the cases provided for by current regulations.
Where personal data is processed for direct marketing purposes, the User may object at any time to the processing of their data, free of charge and without needing to provide any justification. In such a case, the personal data will no longer be processed for these purposes.
To check if the Data Controller carries out processing for direct marketing purposes, the User may consult the relevant sections of this Privacy Policy.
How to exercise your rights
To exercise their rights, the User may send a request to the Data Controller's contact details indicated in this Privacy Policy.
The exercise of rights is free of charge. The Data Controller will provide a response as soon as possible and, in any case, within one month of receiving the request, except in cases provided for by current legislation.
Any rectifications, cancellations or limitations of processing will be communicated by the Controller to each of the recipients to whom the personal data have been transmitted, unless this proves impossible or involves a disproportionate effort. At the User's request, the Controller will provide information about such recipients.
The User's personal data may be used by the Data Controller in court or in the preparatory stages for its eventual initiation for defence against abuse in the use of the Website or its linked services.
The User declares to be aware that the Data Controller may be obliged to communicate personal data to the competent Authorities in the cases provided for by law.
Informative specifications
Upon the User's request, in addition to the information contained in this Privacy Policy, the Website may provide additional information relating to specific services or the processing of particular categories of personal data.
System log and maintenance
For operational, security, and maintenance reasons related to the Website, the latter and any third-party services used may collect system logs, which are files that record User interactions and may contain personal data, such as, for example, the IP address.
For any further information regarding the processing of personal data, the User may contact the Data Controller at any time using the contact details provided in this Privacy Policy.
Changes to this Privacy Policy
The Data Controller reserves the right to modify this Privacy Policy at any time, providing notice to Users on this page and, where possible, via the Website or using one of the contact details provided by the User, if technically and legally feasible.
Users are therefore invited to consult this page periodically, referring to the last updated date indicated below.
Where the modifications concern treatments based on User consent, the Controller shall, where necessary, re-request consent, in compliance with current legislation.
