Privacy & Cookie Policy

In compliance with the obligations arising from EU legislation (European Regulation 2016/679, GDPR) and subsequent amendments, this website respects and protects the privacy of visitors and users, making every possible and proportionate effort not to infringe users’ rights.
This privacy policy applies exclusively to the online activities of this website and is valid for visitors/users of the site. It does not apply to information collected through channels other than this website. The purpose of this privacy notice is to provide maximum transparency regarding the information the site collects and how it is used.
Legal basis for processing
This website processes data on the basis of consent. By using or consulting this website, visitors and users explicitly approve this privacy policy and consent to the processing of their personal data in relation to the methods and purposes described below, including any disclosure to third parties necessary for the provision of a service.
Data collected and purposes
Like all websites, this website uses log files in which information collected automatically during user visits is stored. The information collected may include:
Internet Protocol (IP) address;
Browser type and device parameters used to connect to the site;
Name of the Internet Service Provider (ISP);
Date and time of visit;
Referring and exit web pages;
Number of clicks (if applicable).
The above information is processed automatically and collected exclusively in aggregated and pseudonymized form to verify the correct functioning of the site and for security reasons; such information is processed on the basis of the legitimate interests of the Data Controller.
For security purposes (anti-spam filters, firewalls, virus detection), automatically recorded data may also include personal data such as the IP address, which may be used, in accordance with applicable laws, to block attempts to damage the site or cause harm to other users, or in any case harmful or criminal activities. Such data is never used for user identification or profiling, but solely to protect the site and its users; this information is processed on the basis of the legitimate interests of the Data Controller.
In the event of specific services requested by the user, the site detects and records certain identifying user data, including the email address. Such data is considered voluntarily provided by the user when requesting the service (information request). By submitting a request for information, the user accepts this privacy policy and consents that the content entered may be disclosed to third parties for the stated purposes.
The data received will be used exclusively to provide the requested service and only for the time necessary to deliver the service.
Information that users choose to make public through the services and tools provided by the site is supplied knowingly and voluntarily by the user, exempting this site from any liability regarding possible violations of the law. It is the user’s responsibility to verify that they have permission to enter personal data of third parties or content protected by national and international regulations.
Data collected during the operation of the site is used exclusively for the purposes indicated above and retained only for the time strictly necessary to carry out the specified activities. In any case, data collected by the site will never be provided to third parties for any reason, unless required by judicial authorities in the cases provided by law.
Data used for security purposes (blocking attempts to damage the site) is retained for 7 days.
Place of processing
Data collected by the site is processed by the Data Controller located in Udine (UD), via Paparotti 25, and is handled only by authorized technical personnel or by persons appointed for occasional maintenance operations.
Transfer of data outside the EU
This website may share some collected data with services located outside the European Union. Such transfer is authorized on the basis of specific decisions of the European Union and the Italian Data Protection Authority, in particular Decision 1250/2016 (Privacy Shield), therefore no further consent is required.
Security measures
This website processes user data lawfully and correctly, adopting appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of data. Processing is carried out using IT and/or telematic tools, with organizational methods and logic strictly related to the stated purposes. In addition to the Data Controller, in some cases categories of persons involved in the organization of the site (administrative, commercial, marketing, legal staff, system administrators) or external parties (such as third-party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) may have access to the data.
User rights
Pursuant to European Regulation 2016/679 (GDPR) and national legislation, the User may exercise the following rights within the limits provided by law:
Request confirmation of the existence of personal data concerning them (right of access);
Know its origin;
Receive intelligible communication;
Obtain information about the logic, methods and purposes of processing;
Request updating, rectification, integration, deletion, anonymization or blocking of data processed unlawfully, including data no longer necessary for the purposes for which it was collected;
In cases of processing based on consent, receive their data in a structured, commonly used and machine-readable format;
Lodge a complaint with the Supervisory Authority;
Exercise all rights recognized by applicable law.
Requests must be addressed to the Data Controller.
Data Controller
The Data Controller is Cibischino Bruno at Niù srl, who can be contacted at +39 0432 526990 or by email at bruno@niu-fashion.it