Informativa sulla privacy

Personal Data Protection

Foreword

On April 6, 2016, the European Union approved a major reform of the regulatory framework for the protection of personal data by adopting the "General Data Protection Regulation" (GDPR or Regulation), which is directly applicable in all Member States. The Regulation replaces Directive 95/46/EC and strengthens the protection of personal data as a fundamental right in the EU. The Regulation addresses the challenges posed by technological developments that allow the collection and processing of large amounts of personal data in real-time. Laboratorio Capri considers the protection of the personal data of its Customers, Employees, and Suppliers to be an obligation that goes beyond simple regulatory compliance. For this reason, we have adopted a Data Protection Framework—a set of roles, responsibilities, and internal rules—designed to manage and mitigate risks to the rights and freedoms of individuals.

Rights of the Data Subject

EU Regulation 2016/679 (Articles 15 to 23) grants data subjects specific rights. In relation to the processing of your personal data, you have the right to request from Laboratorio Capri:

  • Right of Access: You may request confirmation as to whether or not personal data concerning you is being processed and, if so, obtain access to that data.

  • Right to Rectification: You may obtain the correction of inaccurate personal data concerning you.

  • Right to Erasure (Right to be Forgotten): Under certain circumstances, you may obtain the deletion of your personal data.

  • Right to Portability: You may receive your personal data in a structured, commonly used, and machine-readable format to transmit it to another data controller without hindrance.

  • Right to Restriction of Processing: Under certain circumstances, you may obtain a restriction on how your data is processed.

  • Right to Object: You may object at any time to the processing of your personal data for reasons related to your particular situation. Laboratorio Capri will cease processing the data unless there are compelling legitimate grounds that override your interests, or for the establishment, exercise, or defense of legal claims.

You also have the right to lodge a complaint with a Supervisory Authority (in Italy, the Garante per la Protezione dei Dati Personali). To exercise your rights, you may contact the Data Controller or the Data Protection Officer at: shop@laboratoriocapri.it.

Data Protection Officer (DPO)

The GDPR introduced the "Data Protection Officer," responsible for monitoring compliance with the Regulation. For further information regarding your privacy rights, please visit the official website of the Italian Data Protection Authority at www.garanteprivacy.it.

PERSONAL DATA PROTECTION INFORMATION

Processing of Personal Data for users consulting the website "www.laboratoriocapri.it"

This policy describes the personal data we collect from users and how we process it. It applies exclusively to the website laboratoriocapri.it and does not concern information collected through other methods, sources, or external websites reachable via links, unless expressly specified.

Data Controller: Laboratorio Capri Srl, represented by Augusto Esposito. Registered Office: Via ICertosa 3/B, 80073, Capri (NA), Italy. Contact: shop@laboratoriocapri.it

1. Types of Data Collected and Purpose

  • Voluntary Data: Personal data provided voluntarily (e.g., name, surname, email address, etc.) will be processed solely for the purposes described in specific "Privacy Notices" provided at the time of service (e.g., online purchases, newsletter registration).

  • Email Communications: Sending emails to the addresses indicated on this site involves the acquisition of the sender’s email address and any other personal data included in the communication, necessary to respond to requests.

  • Navigation Data: While browsing, technical information regarding the hardware and software used by visitors is collected. This data is used in an aggregate and anonymous manner solely to improve service quality and provide usage statistics. For more information, please consult the Cookie Policy.

2. Legal Basis and Retention

Data is processed based on your consent, the performance of a contract, or the legitimate interest of the Controller. Personal data will be processed for the time strictly necessary to achieve the purposes for which it was provided.

3. Processing Methods and Security

Personal data will be processed using automated tools. Adequate technical and organizational security measures are adopted, pursuant to Art. 32 of the GDPR, to prevent data loss, illicit use, or unauthorized access.

4. User Responsibility

The accuracy and truthfulness of the personal data communicated to Laboratorio Capri are the sole responsibility of the individual providing the information.