PRIVACY POLICY

The online store of NINE FIFTEEN, which can be accessed via the website NINE-FIFTEEN.NET is dedicated to electronic sales and is managed by NINE FIFTEEN, (hereafter referred to also just as “Nine Fifteen”). With this privacy policy (hereafter referred to as the “Privacy Policy”), which refers to the website NINE-FIFTEEN.NET (hereafter referred to as the “Website”), NINE FIFTEEN proposes to provide users with information about the data controllers, the personal information collected through the Website, the purposes and procedures for which such information is processed, the third parties involved in the processing, its possible transfer abroad, the security measures adopted to protect and safeguard the data gathered, and the procedures through which users can verify the processing of data concerning them and exercise the rights granted to them by Legislative Decree No. 196 of 30 June 2003 (hereafter referred to as “Legislative Decree 196/2003”).

The Privacy Policy was drawn up in accordance with Article 13 of the European Regulation 2016/679 concerning the protection of individuals with regard to the processing of personal data (GENERAL DATA PROTECTION REGULATION – GDPR). The Privacy Policy is applicable exclusively to the Website, and not to other websites that may be viewed by users via links present on the Website.

TYPE OF PERSONAL DATA COLLECTED AND PROCESSED

Browsing Data

When users visit and view the Website, NINE FIFTEEN does not generally collect personal data from them, with the exception of "browsing data". The technological platform through which the Website is made available to users automatically records some browsing data (the transmission of which is implicit in the use of internet communication protocols), such as the name of the internet access provider, the site of origin, pages visited, date and duration of the visit, etc. Such information allows users to access the Website and use certain services, and may be aggregated and used anonymously for statistical purposes and to verify that the Website is functioning properly.

NINE FIFTEEN does not collect this browsing data in order to associate them with other information about the users and subsequently identify the users. However, browsing data, by their very nature, may allow identification of the users after they have been processed and associated with other information. Browsing data may, therefore, be used by NINE FIFTEEN in order to ascertain any liability concerning computer crimes committed to the detriment of the Website or through the Website. With the exception of this possibility, the browsing data described above are stored only temporarily, in compliance with applicable regulations.

Data Provided Voluntarily By Users

NINE FIFTEEN collects and processes personal data that users provide voluntarily when interacting with the functionalities and services of the Website.

PURPOSE OF THE PROCESSING

NINE FIFTEEN process users' data for the following purposes:

• MANAGEMENT OF BROWSING ON THE SITE;

• MANAGEMENT OF SITE SECURITY;

• COMPLIANCE WITH LEGAL AND REGULATORY OBLIGATIONS;

• EXERCISE OF RIGHTS IN JUDICIAL PROCEEDINGS;

• MANAGEMENT OF SALES AND TRANSACTIONS PERFORMED IN THE CONTEXT OF THE ONLINE STORE;

• MANAGEMENT OF ORDERS;

• SALE AND DELIVERY OF PRODUCTS;

• MANAGEMENT OF RETURNS, GUARANTEES, AND OTHER ACTIVITIES NECESSARY FOR THE SALE OF PRODUCTS VIA THE ONLINE STORE.

NATURE OF THE PROVISION OF DATA

With the exception of browsing data (which are automatically collected by the system), the transmission of data by users for the aforementioned purposes is optional. Failure to transmit data for commercial purposes will not affect your ability to access the functionalities offered by the Website, except that it will be impossible to buy products.

PROCESSING METHODS

Users' personal data are processed using IT and electronic tools, mainly via electronic and automated means and, in certain specific transactions, using paper documentation. In accordance with LD 196/2003 and European Regulation 2016/679, specific security measures are observed to prevent data loss, unlawful or improper use, and unauthorized access.

PARTIES INVOLVED IN THE PROCESSING

Users' personal data are processed by parties designated as processors or tasked with processing, in accordance with the provisions of Articles 29 and 30 of LD 196/2003 and consequent European Regulation 2016/679. In addition to the above, the data may be brought to the attention of third parties such as freelancers, consultants and, more generally, third parties that cooperate with NINE FIFTEEN to pursue the aforementioned purposes or third parties that have been tasked with activities on an outsourcing basis.

In any case, NINE FIFTEEN undertakes to provide such third parties only with the data necessary to perform the duties and activities assigned to them; it also undertakes to do everything in its power to ensure that third parties use the data received exclusively for the purposes indicated by NINE FIFTEEN and in compliance with the applicable regulations on personal data processing.

Users' personal data may also be brought to the attention of third-party companies in the event of mergers or demergers, acquisitions, disposals of companies or business units, or other extraordinary corporate transactions. Users' personal data may also be brought to the attention of legitimate recipients pursuant to law or regulations, for example in the event of a request by the competent public authorities or judicial authorities or, more generally, in the context of judicial proceedings, as well as to protect and defend the Website and the rights of NINE FIFTEEN.

Such parties shall process the data as autonomous data controllers or processors, depending on the case in question.

An updated list of all Data Processors may be requested, via the Contact Us form on the Website. 

Furthermore, these data may be transferred outside of the national territory in countries not belonging to the European Union. In this case, an adequate level of data protection will be guaranteed. The Data shall not be disseminated.

CONNECTION TO THIRD-PARTY WEBSITES AND SERVICES

The Website may contain banners, advertising messages and advertisements of third parties or Data Controller’s business partners. By accepting the offers from the aforesaid third parties, the user may access web pages pertaining exclusively to such third parties who, being outside of the control of the Data Controller, are in no way bound to comply with the provisions of this Privacy Policy.

NINE FIFTEEN thus invites users to take care when accepting offers of services from third parties, and to read the information provided by the third party regarding its processing of personal data, which the Data Controllers have no control over, nor can be held liable for.

MODIFICATIONS TO THIS DOCUMENT

This Privacy Policy may be modified in order to comply with new legal provisions or altered procedures for data processing by NINE FIFTEEN, or because of changes relating to the Website's functioning or the performance of services rendered through the Website.

NINE FIFTEEN invites users to periodically consult the Privacy Policy in order to ensure that they have read the most recently published version.

THE DATA CONTROLLER

The Data Controller is, for the activities under their respective scopes of competence, as indicated in this Privacy Policy: NINE FIFTEEN

USERS’ RIGHTS

Users of the Site may exercise the rights pursuant to Article 7 of Legislative Decree 196/2003, which are reproduced in full below. These rights may be exercised informally simply by sending a request to the Data Controller as identified above.

ARTICLE 7 OF LEGISLATIVE DECREE 196/2003. THE DATA SUBJECT'S RIGHTS

1. The data subject has the right to obtain confirmation of the existence or non-existence of personal data concerning them, even if they are not yet recorded, and the communication of said data in an intelligible form; 

2. The data subject has the right to be informed of;

a. The origin of the personal data;

b. The purposes and methods of the data processing;

c. The logic applied in the event of processing performed with the aid of electronic instruments;

d. The identification details of the data controller, the data processors and the designated representative pursuant to Article 5, paragraph 2;

e. The parties or categories of parties to which the personal data may be communicated or which may access the data in the capacity of designated representative in the territory of the state, data processor or party tasked with processing the data;

3. The data subject has the right to obtain;

a. An update, adjustment or, where they have an interest therein, supplement to the data;

b. The deletion, anonymization or blocking of data processed unlawfully, including data that do not need to be stored for the purposes for which the data were collected or subsequently processed;

c. A certification that the operations mentioned under a) and b) have been brought to the attention, including with regard to their content, of those to whom the data were communicated or disseminated, except in cases where this is impossible or requires a use of resources that is manifestly disproportionate to the right being protected;

4. The data subject has the right to object, in full or in part;

a. For lawful reasons, to the processing of personal data concerning them, even if it is pertinent to the purpose of the data collection;

b. To the processing of personal data concerning them for the purposes of sending out advertising or direct sales material or for the performance of market research or marketing communications; 

Last update: march 2024