MAMMA JUMBO SHRIMP S.r.l.
P.IVA 04932000237PRIVACY AND COOKIE POLICY
Mamma Jumbo Shrimp S.r.l., headquartered at Verona (VR) Via Adriano Cristofoli, 16 - 37138, (hereinafter "Controller") is constantly committed to protecting the online privacy of its users. This document has been drafted pursuant to Art. 13 of EU Regulation 2016/679 (hereinafter: "Regulation") in order to allow you to know our privacy policy, understand how your personal information is handled when you use the website www.mammajumboshrimp.com (hereinafter "Website"), and, if necessary, provide explicit and informed consent to the processing of your personal data.
The Company acts as the Controller pursuant to Article 4(7) of the Regulation with regard to user data and navigation data.
According to the provisions of the Regulation, the processing carried out by the Controller will be based on the principles of lawfulness, fairness, transparency, purpose and storage limitation, data minimization, accuracy, integrity, and confidentiality.
- What types of personal data do we process?
We collect and process your personal data necessary to provide the requested services, such as:
• navigation data
• identification and demographic data (name, surname)
• contact data (phone number, email)
• we also collect your data through cookies
Cookies are small data files that are stored on your computer when you access a website or parts of it. Cookies allow the Controller to ensure the Website's operation and collect statistical and anonymous information about its use. You can refuse to receive cookies by selecting the appropriate setting on your browser, but this may prevent the full functionality of the Website. For more information about the use of cookies by the Controller, we invite you to consult our cookie policy. - Purposes, legal basis, and explanation
Below, we indicate the purposes for which we will use your personal data as the Controller, the legal basis pursuant to Article 6 of the Regulation, and a brief explanation of each purpose.
- What happens if you choose not to provide us with your data?
Providing your personal data for purposes a) and b) is optional. However, without it, we will not be able to provide our services. Providing your personal data for purpose c) is mandatory as it is necessary to comply with legal obligations. Providing your personal data for purpose d) is optional. Failure to provide consent does not prevent you from using our services.
- Who do we share your data with?
Your personal data may be shared, for the purposes outlined in section 2 above, with:
• individuals, companies, or professional firms providing assistance and consulting services in accounting, administrative, legal, tax, financial, and debt collection matters related to the provision of the Services;
• entities necessary to interact with for the provision of the Services (e.g., hosting providers and banking institutions) or entities delegated to perform technical maintenance activities (including maintenance of network equipment and electronic communication networks);
• entities, authorities, or individuals required by law or by orders of the authorities to disclose your personal data;
• individuals authorized by the Controller to process Personal Data necessary to perform activities strictly related to the provision of the Services, who have committed to confidentiality or are subject to an adequate legal confidentiality obligation (e.g., employees and collaborators of the Controller). - Transfer to third countries
Your personal data is not shared with entities outside the European Economic Area; should this occur, we ensure that it is done in compliance with Regulation 679/2016, adopting precautions that provide for transfer only to countries subject to an adequacy decision, standard contractual clauses approved by the European Commission, consent, or other suitable legal basis.
- Data retention
Personal data will be retained only for the needs related to each of the purposes outlined in paragraph 2 and in compliance with the principle of minimization. We may need your data to defend your or our rights (Articles 2946 and following of the Italian Civil Code), as well as to comply with record-keeping obligations. Therefore, we retain this data as long as necessary and in any case not beyond a maximum of 10 years. We also retain your data whenever required by law or an order from public authorities.
Personal data processed for profiling purposes will be retained for a maximum period of 12 months, unless different provisions are provided by applicable regulations or specific justified needs are duly documented. Data used for sending newsletters and promotional communications will be retained until the user withdraws consent, exercises the right to object, or requests deletion using the tools provided (e.g., the "unsubscribe" link in emails). For minors under the age of 14, in accordance with Italian law, consent to the processing of personal data can only be given by the parent or legal guardian. The services offered by the Controller are not intended for users under the age of 14 without such consent.
More information on data retention periods and the criteria used to determine such periods can be obtained by writing to: privacy@mammajumboshrimp.com.
- Your rights
You have the right to access your data at any time, pursuant to Articles 15-22 of the Regulation (GDPR). In particular, you may exercise the following rights:
- Data access (Art. 15 GDPR): you have the right to obtain confirmation as to whether or not your personal data is being processed, access such data, and receive information about its origin, processing purposes, recipients or categories of recipients to whom the data has been or will be disclosed, and the intended retention period.
- Rectification (Art. 16 GDPR): you have the right to obtain the correction of inaccurate personal data or the completion of incomplete personal data without undue delay.
- Deletion (Art. 17 GDPR): you have the right to have your personal data deleted in the cases provided for by the Regulation, such as when it is no longer necessary for the purposes for which it was collected or processed, or when you withdraw your previously given consent.
- Restriction of processing (Art. 18 GDPR): you have the right to restrict the processing of your personal data in certain circumstances, such as:
-
- When you dispute the accuracy of the personal data, for the time necessary to verify its accuracy.
- If the processing is unlawful and you object to deletion, requesting instead that its use be restricted.
- When the data is no longer needed for the purposes of processing, but is required to establish, exercise, or defend a legal claim.
- If you have objected to processing under Art. 21 GDPR, pending verification of whether the legitimate grounds of the Controller override your objections.
- Data portability (Art. 20 GDPR): you have the right to receive the personal data you provided in a structured, commonly used, and machine-readable format, and to transmit it to another controller without hindrance, where provided by the Regulation. Where technically feasible, you can request direct transmission between controllers.
- Right to object (Art. 21 GDPR): you have the right to object, at any time and free of charge, to the processing of your data based on legitimate interest.
- Revocation of consent (Art. 7 GDPR): you can revoke the consent given at any time, without affecting the lawfulness of the processing carried out before revocation.
- How to exercise your rights or request information about the privacy policy
For further information or enquiries as well as to exercise the aforementioned rights, we are available at the email address: privacy@mammajumboshrimp.com.
- Changes
This privacy policy has been in effect since 14/11/2018. The Data Controller reserves the right to modify or simply update its content, in part or in full, also due to changes in applicable regulations. The Data Controller will inform you of such changes, and they will become binding as soon as they are published on the Website. The Data Controller therefore invites you to regularly visit this section to be aware of the most recent and updated version of the privacy policy, so that you are always informed about the data collected and its use.
| a) Access to services organized by “Mamma Jumbo Shrimp” | Performance of the contract and/or pre-contractual measures | We will process your personal data to handle your registration request for courses organized by “Mamma Jumbo Shrimp” and manage your participation. |
| b) Contact c) Keeping accounting records | Performance of the contract and/or pre-contractual measures Legal obligation | We will process your personal data if you have requested information through the form in the “Contact” section. We will process your personal data to fulfill any legal, accounting, and tax obligations. |
| d) Newsletter, promotional communications e) Detecting or preventing fraudulent activities | Legal obligation and legitimate interest Legal obligation | We will process your personal data to send newsletters and promotional, informational, and/or advertising communications related to Mamma Jumbo Shrimp's products or services, both through automated and non-automated means (email, SMS, MMS, correspondence, phone). |
| c) Compliance with orders from judicial or other public authorities | Legal obligation |
