Privacy Policy
Victoria D’Ariano (“we”, “our”, or “us”) is deeply committed to safeguarding the privacy and personal data of all users who visit or interact with our website, victoriadariano.com (“Website”). We understand that privacy is fundamental, and we are dedicated to upholding the highest standards of transparency, lawful data processing, and compliance with applicable data protection regulations, including the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the California Consumer Privacy Act of 2018 (“CCPA”), as amended.
1. Commitment to Privacy and Data Protection
We recognize that personal data belongs to the individual, and we are committed to collecting and processing such data in a manner consistent with the principles of lawfulness, fairness, transparency, purpose limitation, data minimization, accuracy, storage limitation, integrity, and accountability. Our goal is to ensure that your personal data remains private, secure, and handled according to your expectations.
2. Scope of This Policy and Data Controller Role
This Privacy Policy applies to victoriadariano.com and any interactions you may have with us through this Website. Victoria D’Ariano operates as the “data controller” for all personal data collected through the Website, determining the purposes and means of its processing.
Should you have any questions regarding this Policy, or the processing of your personal data, please contact us at: [email protected].
3. Categories of Personal Data We Process
We may collect and process the following categories of personal data, depending on your interaction with the Website:
a) Usage Data: Information about how you use our Website, including browser type and version, device identifiers, IP address, time zone, referral sources, pages visited, and session duration.
b) Account Data: Information you provide when you register for an account or purchase services, such as your full name, billing address, shipping address, email address, and phone number.
c) Profile Data: Preferences, product interests, prior purchases, and behavioral data, including information we infer from your interactions with the Website to improve your experience.
d) Communication Data: Records of any inquiries, messages, or correspondence that you submit through contact forms, email communication, or support interactions.
e) Technical Data: Device operating system, browser configuration, plug-ins, screen resolution, and other system-level or device-level settings collected to optimize user experience and security.
f) Transaction Data: Details relating to products or services purchased, payment method (processed via third-party payment gateways), order history, and delivery preferences.
g) Preference Data: Marketing preferences, newsletter subscription status, notification consents, or opt-out choices relating to promotional material and personalized offerings.
4. Legal Bases for Data Processing
We rely on the following legal bases under GDPR and comparable standards under CCPA to process your personal data:
– Consent: Where you have explicitly consented to the processing of your personal data for specific purposes (e.g., marketing communications).
– Contractual Necessity: Where processing is necessary to perform a contract to which you are a party or to take pre-contractual steps at your request.
– Legal Obligation: Where processing is required to comply with applicable laws or regulatory obligations.
– Legitimate Interests: Where necessary to pursue our legitimate interests, provided such interests are not overridden by your fundamental rights and freedoms (e.g., fraud prevention, website security, service improvements).
5. Your Rights
Subject to applicable law, you have the following rights in relation to your personal data:
– Right of Access: You may request confirmation as to whether we process your personal data and access a copy of such data.
– Right of Rectification: You may request correction of inaccurate or incomplete personal data.
– Right of Erasure (“Right to be Forgotten”): You can request the deletion of your personal data where there is no lawful reason for continued processing.
– Right to Restrict Processing: You have the right to request that we limit the processing of your personal information under certain circumstances.
– Right to Data Portability: You may request to receive a structured, commonly used, machine-readable copy of your personal data for transfer to another controller.
– Right to Object: Where processing is based on legitimate interest or performed for direct marketing purposes, you can object to such processing at any time.
To exercise any of the above rights, please contact us via email at: [email protected].
6. Security Measures
We implement robust technical and organizational measures to ensure the confidentiality, integrity, and availability of your personal data, including but not limited to:
– Secure encryption of sessions and data during transmission.
– Role-based access controls and user authentication protocols.
– Regular backups and continuity testing.
– Continuous staff privacy and data protection training.
These measures are designed with privacy by design and privacy by default principles in mind.
7. International Data Transfers
If and when personal data is transferred outside of the European Economic Area (EEA) or the United Kingdom, including to countries that may not offer an equivalent level of data protection, such transfers are governed by EU Standard Contractual Clauses or other legally recognized safeguards to ensure the privacy and security of your data in accordance with GDPR and other regional regulations.
8. Data Retention
Personal data is retained only for as long as necessary for the purposes for which it was collected or to comply with legal, regulatory, or operational requirements. Retention periods vary by data category, including:
– Usage Data: Retained for up to 12 months for analytics and performance improvement.
– Account and Profile Data: Retained for as long as your account remains active and up to 6 years thereafter.
– Communication Data: Retained for up to 3 years after closure of a customer service request.
– Transaction Data: Retained for the duration of tax and compliance obligations, generally 7 years.
– Preference Data: Retained until withdrawn or 2 years from the date of your last interaction.
9. Cookie Policy
We use cookies and similar tracking technologies to enhance your browsing experience, analyze website traffic, and personalize content. These include:
– Essential Cookies: Required for the operation of the Website, such as login or shopping cart functionality.
– Functional Cookies: Enable better personalization and enhanced features (e.g., language preference).
– Analytics Cookies: Collect aggregated data to understand how visitors interact with the Website (e.g., Google Analytics).
– Performance Cookies: Help us measure site performance — like load times and script behavior — to enhance user experience.
10. Cookie Management and Compliance
Upon your first visit to victoriadariano.com, you will be presented with a cookie consent tool in accordance with GDPR and CCPA requirements. You may adjust or withdraw your consent at any time using the posted cookie management options or your web browser settings. Disabling certain cookies may affect the functionality of the Website.
11. Children’s Privacy
This Website is not intended for use by individuals under the age of 13, and we do not knowingly collect data from children. If you believe that a child under 13 has provided us with personal data without appropriate parental consent, please contact us at [email protected], and we will take appropriate steps to delete such information.
12. Changes to This Privacy Policy
We reserve the right to update or modify this Privacy Policy at any time, particularly to reflect changes in legal requirements or our data processing practices. If material changes are made, we will notify users through the Website or other appropriate means. Your continued use of victoriadariano.com constitutes acceptance of the revised Policy.
13. Contact Us
If you have any questions, requests, or concerns related to this Privacy Policy or the handling of your personal data, please contact us in confidence at:
Email: [email protected]
We are committed to full legal and ethical compliance with applicable data protection laws. Your privacy is our priority, and we welcome your feedback in our ongoing commitment to transparency and user trust.