This Application collects some Personal Data of its Users.
Data Controller
Edwin Vreeman – Via Luigi Capriolo – 10139 Turin (TO)
hello@thedesignlover.com

Types of data collected
Among the Personal Data collected by this application, either independently or through third parties, there are: email, name, surname, Cookies, Usage data, telephone number, profession, province, country, postcode, date of birth, city, address, company name, website, various types of Data, gender, VAT number, Tax Code, business sector, User ID, geographical position, image, About me, Data communicated while using the service, username, Room Permit and unique device identifiers for advertising (Google Advertiser ID or IDFA identifier, for example).
Other Personal Data collected may be indicated in other sections of this privacy policy or by means of information texts displayed together with the collection of the data.
Complete details on each type of data collected are provided in the dedicated sections of this privacy policy or through specific information texts displayed before the data is collected.
Personal Data may be entered voluntarily by the User, or collected automatically when using this application.
Unless otherwise specified, all data requested by this application are mandatory. If the User refuses to communicate them, it may be impossible for this application to provide the service. In cases where this application indicates some data as optional, Users are free to refrain from communicating such data, without this having any consequence on the availability of the service or on its operation.
Users who have doubts about which data are mandatory are encouraged to contact the owner.
Any use of Cookies – or of other tracking tools – by this application or by the owners of third party services used by this application, unless otherwise specified, has the purpose of identifying the User and recording their preferences for purposes. strictly related to the provision of the service requested by the User.
Failure by the User to provide certain Personal Data may prevent this application from providing its services.
The User assumes responsibility for the Personal Data of third parties published or shared through this application and guarantees to have the right to communicate or disseminate them, freeing the owner from any liability to third parties.

Method and place of processing of the collected data

Processing methods
The Data Controller processes the Personal Data of Users by adopting appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of Personal Data.
The processing is carried out using IT and / or telematic tools, with organizational methods and with logic strictly related to the purposes indicated. In addition to the Data Controller, in some cases, categories of employees involved in the organization of the site (administrative, commercial, marketing, legal, system administrators) or external subjects (such as suppliers of third party technical services, postal couriers) may have access to the Data. Hosting providers, IT companies, communication agencies also appointed, if necessary, as Data Processors by the Data Controller. The updated list of Managers can always be requested from the Data Controller.

Legal basis of the processing
The Data Controller processes Personal Data relating to the User if one of the following conditions exists:

• the User has given consent to the processing of their personal data for one or more specific purposes; Note: in some jurisdictions the Data Controller may be authorized to process Personal Data without the User’s consent or another of the legal bases specified below, as long as the User does not object (“opt-out”) to such treatment. However, this is not applicable if the processing of Personal Data is governed by European legislation on the protection of Personal Data;
• the processing is necessary for the execution of a contract with the User and / or for the execution of pre-contractual measures adopted at the request of the same; (C44)
• the processing is necessary to fulfill a legal obligation to which the Data Controller is subject treatment; (C45)
  the processing is necessary for the pursuit of the legitimate interest of the Data Controller or of third parties provided that the interests or fundamental rights and freedoms of the interested party that require the protection of personal data do not prevail, in particular if the interested party is a minor. (C47-C50)

However, it is always possible to ask the Data Controller to clarify the concrete legal basis of each treatment and in particular to specify whether the treatment is based on the law, provided for by a contract or necessary to conclude a contract.

Place

The Data is processed at the Data Controller’s operating offices and in any other places where the parties involved in the processing are located. For more information, contact the owner.
The User’s Personal Data may be transferred to a country other than that in which the User is located. To obtain further information on the place of processing, the User can refer to the section relating to the details on the processing of Personal Data.
The User has the right to obtain information regarding the legal basis for the transfer of Data outside the European Union or to an international organization governed by public international law or consisting of two or more countries, such as the UN, as well as regarding the security measures adopted by the Data Controller to protect the Data.

If one of the transfers described above takes place, the User can refer to the respective sections of this document or request information from the Owner by contacting him at the opening details.

Retention period

Data are processed and stored for the time required by the purposes for which they were collected.
Therefore:

• Personal Data collected for purposes related to the execution of a contract between the Owner and the User will be retained until the execution of this contract is completed.
• Personal data collected for purposes related to the legitimate interest of the owner will be retained until this interest is satisfied. The User can obtain further information regarding the legitimate interest pursued by the Owner in the relevant sections of this document or by contacting the Owner.

When the processing is based on the User’s consent, the Data Controller may keep the Personal Data longer until such consent is revoked. Furthermore, the Data Controller may be obliged to keep Personal Data for a longer period in compliance with a legal obligation or by order of an authority.

At the end of the retention period, the Personal Data will be deleted. Therefore, at the end of this term the right of access, cancellation, rectification and the right to data portability can no longer be exercised.

Purpose of processing the collected data
User data is collected to allow the Owner to provide its Services, as well as for the following purposes: Access to accounts on third party services, Contacting the User, Managing contacts and sending messages, Managing payments, Managing requests for support and contact, Hosting and backend infrastructure, Content commenting, Social features, Tag management, Statistics, Interaction with external social networks and platforms, Heat mapping and session recording, Interaction with live chat platforms, Interaction with support platforms and feedback, Location-based interactions, Permissions for accessing Personal Data on the User’s device, SPAM protection, Advertising, Registration and authentication, Remarketing and behavioral targeting, Content and functionality performance tests (A / B testing), Transfer of Data outside the EU and Display of content from external platforms.
To obtain further detailed information on the purposes of the processing and on the Personal Data concretely relevant to each purpose, the User can refer to the relevant sections of this document.

Facebook permissions requested by this application
This Application may require some Facebook permissions that allow it to perform actions with the User’s Facebook account and to collect information, including Personal Data, from it. This service allows this Application to connect with the User’s account on the Facebook social network, provided by Facebook Inc.
For more information on the following permissions, refer to the Facebook permissions documentation and the Facebook privacy policy.

Basic information
The basic information of the User registered on Facebook which normally includes the following Data: id, name, image, gender and language of localization and, in some cases, the “Friends” of Facebook. If the User has made further Data publicly available, they will be available.

Details on the processing of Personal Data
Personal Data is collected for the following purposes and using the following services:

• Access to accounts on third party services

This type of services allow this Application to collect data from your accounts on third party services and perform actions with them.
These services are not activated automatically, but require the express authorization of the User.

Access to Facebook account (this Application)
This service allows this Application to connect with the User’s account on the Facebook social network, provided by Facebook, Inc.
Permissions asked: Access to private data.

Place of processing: United States – Privacy Policy. Subject adhering to the Privacy Shield.

Access to the Twitter account (Twitter, Inc.)
This service allows this Application to connect with the User’s account on the Twitter social network, provided by Twitter, Inc.
Personal Data collected: various types of Data as specified in the privacy policy of the service.
Place of processing: United States – Privacy Policy. Subject adhering to the Privacy Shield.

• Contact the user

Mailing list or newsletter (this Application)
By registering with the mailing list or newsletter, the User’s email address is automatically added to a list of contacts to which email messages containing information, including commercial and promotional information, relating to this Application may be sent. The User’s email address may also be added to this list as a result of registering with this Application or after making a purchase.
Personal Data collected: ZIP code, city, surname, Cookie, date of birth, Usage data, email address, country, name, telephone number, profession, province, company name and website.

Contact form (this Application)
By filling out the contact form with their data, the User consents to their use to respond to requests for information, quotes, or any other nature indicated by the form header.
Personal Data collected: ZIP code, city, Fiscal Code, surname, date of birth, email, User ID, address, country, name, telephone number, VAT number, profession, province, company name, gender, sector of activity, website and various types of data.

• Manage contacts and send messages

This type of service allows you to manage a database of email contacts, telephone contacts or contacts of any other type, used to communicate with the User.
These services may also allow the collection of data relating to the date and time the messages are displayed by the User, as well as the User’s interaction with them, such as information on clicks on links inserted in messages.

Mailgun (Mailgun, Inc.)
Mailgun is an address management and email message sending service provided by Mailgun, Inc.
Personal Data collected: surname, Cookie, date of birth, Usage data, email, address, country, name, telephone number, profession, gender and various types of Data.
Place of processing: United States – Privacy Policy.

• Payment management

The payment management services allow this Application to process payments by credit card, bank transfer or other tools. The data used for the payment are acquired directly by the requested payment service manager without being processed in any way by this Application.
Some of these services may also allow the scheduled sending of messages to the User, such as emails containing invoices or notifications regarding payment.

PayPal (Paypal)
PayPal is a payment service provided by PayPal Inc., which allows the User to make online payments.
Personal Data collected: various types of Data as specified in the privacy policy of the service.
Place of processing: See the Paypal privacy policy – Privacy Policy.

• Hosting and backend infrastructure 

This type of service has the function of hosting Data and files that allow this Application to function, allow its distribution and make available a ready-to-use infrastructure to provide specific functions of this Application.
Some of these services work through servers geographically located in different places, making it difficult to determine the exact place where Personal Data is stored.

Google Cloud Storage (Google Inc.)
Google Cloud Storage is a hosting service provided by Google Inc.
Personal Data collected: various types of Data as specified in the privacy policy of the service.
Place of processing: United States – Privacy Policy. Subject adhering to the Privacy Shield.

Interaction with live chat platforms
This type of service allows you to interact with live chat platforms, managed by third parties, directly from the pages of this Application. This allows the User to contact the support service of this Application or this Application to contact the User while he is browsing its pages.
In the event that an interaction service with live chat platforms is installed, it is possible that, even if the Users do not use the service, it collects Usage Data relating to the pages in which it is installed. Additionally, live chat conversations may be recorded.

Facebook Messenger Customer Chat (Facebook, Inc.)
The Facebook Messenger Customer Chat is an interaction service with the Facebook Messenger live chat platform, provided by Facebook, Inc.
Personal Data collected: Cookies, Data communicated while using the service, Usage Data and About me.
Place of processing: United States – Privacy Policy. Subject adhering to the Privacy Shield.

• Interaction with social networks and external platforms

This type of service allows interaction with social networks or other external platforms directly from the pages of this Application.
The interactions and information acquired by this Application are in any case subject to the User’s privacy settings relating to each social network.
In the event that an interaction service with social networks is installed, it is possible that, even if the Users do not use the service, it collects traffic data relating to the pages in which it is installed.

Like button and Facebook social widgets (Facebook, Inc.)
The “Like” button and Facebook social widgets are interaction services with the Facebook social network, provided by Facebook, Inc.
Personal Data collected: Cookies and Usage Data.
Place of processing: United States – Privacy Policy. Subject adhering to the Privacy Shield.

Tweet button and Twitter social widgets (Twitter, Inc.)
The Tweet button and Twitter social widgets are interaction services with the Twitter social network, provided by Twitter, Inc.
Personal Data collected: Cookies and Usage Data.
Place of processing: United States – Privacy Policy. Subject adhering to the Privacy Shield.

PayPal button and widget (Paypal)
The PayPal button and widget are interaction services with the PayPal platform, provided by PayPal Inc.
Personal Data collected: Cookies and Usage Data.
Place of processing: See the Paypal privacy policy – Privacy Policy.

Tumblr button and social widgets (Tumblr Inc.)
The Tumblr button and social widgets are services for interacting with the Tumblr social network, provided by Tumblr Inc.
Personal Data collected: Cookies and Usage Data.
Place of processing: United States – Privacy Policy.

YouTube button and social widgets (Google Inc.)
The YouTube button and social widgets are interaction services with the YouTube social network, provided by Google Inc.
Personal data collected: Usage data.
Place of processing: United States – Privacy Policy. Subject adhering to the Privacy Shield.

• Location-based interactions

Non-continuous geolocation (this Application)
This Application may collect, use and share data relating to the user’s geographical location in order to provide services based on the location itself.
Most browsers and devices provide by default tools to deny geo-tracking. If the User has expressly authorized this possibility, this Application may receive information on its actual geographical position.
The geographical location of the User occurs in a non-continuous manner, upon specific request of the User or when the User does not indicate the place where he is located in the appropriate field and allows the application to automatically detect the position.
Personal data collected: geographical position.

SPAM protection

This type of service analyzes the traffic of this Application, potentially containing Users’ Personal Data, in order to filter it from parts of traffic, messages and contents recognized as SPAM.

Google reCAPTCHA (Google Inc.)
Google reCAPTCHA is a SPAM protection service provided by Google Inc.
Use of the reCAPTCHA system is subject to Google’s privacy policy and terms of use.
Personal Data collected: Cookies and Usage Data.
Place of processing: United States – Privacy Policy. Subject adhering to the Privacy Shield.

• Registration and authentication

By registering or authenticating, the User allows the Application to identify him and give him access to dedicated services.
Depending on what is indicated below, the registration and authentication services could be provided with the help of third parties. If this happens, this application will be able to access some data stored by the third party service used for registration or identification.

Facebook Authentication (Facebook, Inc.)
Facebook Authentication is a registration and authentication service provided by Facebook, Inc. and connected to the Facebook social network.
Personal Data collected: various types of Data as specified in the privacy policy of the service.
Place of processing: United States – Privacy Policy. Subject adhering to the Privacy Shield.

Log In with PayPal (Paypal)
Log In with PayPal is a registration and authentication service provided by PayPal Inc. and connected to the PayPal network.
Personal Data collected: various types of Data as specified in the privacy policy of the service.
Place of processing: See the Paypal privacy policy – Privacy Policy.

• Statistics

The services contained in this section allow the Data Controller to monitor and analyze traffic data and are used to keep track of User behavior.

Google Analytics (Google Inc.)
Google Analytics is a web analysis service provided by Google Inc. (“Google”). Google uses the Personal Data collected for the purpose of tracking and examining the use of this Application, compiling reports and sharing them with other services developed by Google.
Google may use the Personal Data to contextualize and personalize the advertisements of its own advertising network.
Personal Data collected: Cookies and Usage Data.
Place of processing: United States – Privacy Policy – Opt Out. Subject adhering to the Privacy Shield.

• Transfer of data outside the EU

The Data Controller may transfer Personal Data collected within the EU to third countries (that is, all non-EU countries) only in accordance with a specific legal basis. Therefore, such Data transfers are performed according to one of the legal bases described below.
The User can request information from the Owner regarding the applicable legal basis concretely applicable to each individual service.

Transfer to third countries on the basis of standard contractual clauses (this Application)
When this is the legal basis, the transfer of Personal Data from the EU to third countries takes place on the basis of standard clauses for the protection of Personal Data adopted by the European Commission.
In such cases, the recipients of the Data have agreed to process the Personal Data in accordance with the levels of protection provided by the legislation. Users can request further information by contacting the Data Controller at the details indicated in this document.

Personal data collected: various types of data.

Transfer to third countries based on consent (this Application)
When this is the legal basis, the transfer of Personal Data from the EU to third countries takes place only when the User has expressly consented to this transfer after being informed about the risks due to the absence of an adequacy decision and the adequate guarantees adopted.
In such cases, the Owner informs Users and collects their consent through this Application.
Personal data collected: various types of data.

Data transfer to countries that guarantee European standards (this Application)
When this is the legal basis, the transfer of Personal Data from the EU to third countries takes place on the basis of an adequacy decision adopted by the European Commission. The European Commission adopts adequacy decisions with reference to individual third countries which it deems to guarantee a level of protection of Personal Data comparable to that provided for by European legislation on the protection of Personal Data. The User can view the updated list of adequacy decisions on the European Commission’s website.
Personal data collected: various types of data.

Data transfer from the EU and / or Switzerland to the United States based on the Privacy Shield (this Application)
When this is the legal basis, the transfer of Personal Data from the EU or Switzerland to the United States takes place under the EU – US or Switzerland – US Privacy Shield agreement.
In particular, Personal Data are transferred to subjects who have self-certified under the Privacy Shield and therefore guarantee an adequate level of protection of the transferred Data. The services involved in the transfer of data are listed in the respective sections of this document. Among them, those who adhere to the Privacy Shield can be identified by consulting the relative privacy policy or by checking the status of their registration in the official Privacy Shield list.

The rights of Users under the Privacy Shield are described in an updated form on the website of the United States Department of Commerce.

The transfer of Personal Data from the EU or Switzerland to the United States to subjects who are no longer registered in the Privacy Shield is admissible only according to another valid legal basis. Users can request information from the Data Controller regarding these legal bases.
Personal data collected: various types of data.

• Viewing content from external platforms

This type of service allows you to view content hosted on external platforms directly from the pages of this Application and interact with them.
In the event that a service of this type is installed, it is possible that, even if the Users do not use the service, it collects traffic data relating to the pages in which it is installed.

Google Fonts (Google Inc.)
Google Fonts is a font style visualization service managed by Google Inc. that allows this application to integrate such content within its pages.
Personal Data collected: Usage data and various types of Data as specified in the privacy policy of the service.
Place of processing: United States – Privacy Policy. Subject adhering to the Privacy Shield.
Vimeo Video (Vimeo, LLC)
Vimeo is a video content viewing service managed by Vimeo, LLC that allows this Application to integrate such content within its pages.
Personal Data collected: Cookies and Usage Data.
Place of processing: United States – Privacy Policy.

Google Maps widget (Google Inc.)
Google Maps is a map viewing service managed by Google Inc. that allows this Application to integrate such content within its pages.
Personal Data collected: Cookies and Usage Data.
Place of processing: United States – Privacy Policy. Subject adhering to the Privacy Shield.

TripAdvisor widget (TripAdvisor LLC)
TripAdvisor Widget is a content viewing service managed by TripAdvisor LLC that allows this Application to integrate content from this external platform within its pages.
Personal Data collected: Cookies and Usage Data.
Place of processing: United States – Privacy Policy.

Trustpilot widget
(Trustpilot A/S)
Trustpilot Widget is a review platform managed by Trustpilot A/S that allows this Application to integrate content from this external platform within its pages.
Personal Data collected: Cookies and Usage Data.
Place of processing: Denmark – Privacy Policy.

• Analysis of User Data and forecasts (“profiling”)

The Owner may process the usage data collected through this Application to create or update user profiles. This type of processing allows the Owner to evaluate the User’s choices, preferences and behavior for the purposes specified in the respective sections of this document.
User profiles can also be created thanks to automated tools, such as algorithms, which can also be offered by third parties. To obtain further information on the profiling activity, the User can refer to the respective sections of this document.
The User has the right to object to this profiling activity at any time. To find out more about the User’s rights and how to exercise them, the User can refer to the section of this document relating to the rights of Users.

• Personal Data collected through sources other than the User

The Owner of this Application may have legitimately collected Personal Data relating to the User without his involvement, drawing on sources provided by third parties, in accordance with the legal bases described in the section on the legal bases of the processing.
If the Owner had collected Personal Data in this way, the User can find specific information about the sources in the respective sections of this document or by contacting the Owner.

• Sale of goods and services online

The Personal Data collected are used for the provision of services to the User or for the sale of products, including payment and possible delivery. The Personal Data collected to complete the payment may be those relating to the credit card, the current account used for the transfer or other payment instruments provided. The payment data collected by this application depend on the payment system used.

Rights of the User
-Users can exercise certain rights with reference to the Data processed by the Owner.
-In particular, the User has the right to:
withdraw consent at any time. The User can revoke the consent to the processing of their Personal Data previously expressed.
-Oppose the processing of their data. The user can oppose the processing of their data when it occurs on a legal basis other than consent. Further details on the right to object are indicated in the section below.
-Access their data. The user has the right to obtain information on the data processed by the owner, on certain aspects of the processing and to receive a copy of the data processed.
-Verify and request rectification. The User can verify the correctness of their Data and request its updating or correction.
-Obtain the limitation of the treatment. When certain conditions are met, the User may request the limitation of the processing of their Data. In this case, the Data Controller will not process the Data for any other purpose other than their conservation.
-Obtain the cancellation or removal of their Personal Data. When certain conditions are met, the User can request the cancellation of their Data by the Owner.
-Receive their data or have them transferred to another owner. The User has the right to receive his / her data in a structured format, commonly used and readable by an automatic device and, where technically feasible, to obtain its unhindered transfer to another owner. This provision is applicable when the Data is processed with automated tools and the processing is based on the User’s consent, on a contract to which the User is a party or on contractual measures connected to it.
-Propose a complaint. The User can lodge a complaint with the competent personal data protection supervisory authority or act in court.

Details on the right to object
When Personal Data are processed in the public interest, in the exercise of public authority vested in the Owner or to pursue a legitimate interest of the Owner, Users have the right to object to the processing for reasons related to their particular situation.
Users are reminded that, if their Data are processed for direct marketing purposes, they can oppose the processing without providing any reasons. To find out if the Data Controller processes data for direct marketing purposes, Users can refer to the respective sections of this document.
How to exercise your rights
To exercise the User’s rights, Users can send a request to the contact details of the Owner indicated in this document. Requests are filed free of charge and processed by the Data Controller as soon as possible, in any case within one month.

Further information on Personal Data

Sale of goods and services online
The Personal Data collected are used for the provision of services to the User or for the sale of products, including payment and possible delivery.
The Personal Data collected to complete the payment may be those relating to the credit card, the current account used for the transfer or other payment instruments provided. The payment data collected by this application depend on the payment system used.

Further information on the treatment
Defense in court
The User’s Personal Data may be used for defense by the Owner in court or in the stages leading to its eventual establishment, from abuses in the use of the same or related services by the User.
The User declares to be aware that the Data Controller may be required to disclose the Data at the request of the public authorities.

Specific information
At the request of the User, in addition to the information contained in this privacy policy, this Application may provide the User with additional and contextual information regarding specific services, or the collection and processing of Personal Data.

System log and maintenance
For needs related to operation and maintenance, this Application and any third party services used by it may collect system logs, which are files that record the interactions and which may also contain Personal Data, such as the User IP address.

Information not contained in this policy
More information in relation to the processing of Personal Data may be requested at any time from the Data Controller using the contact information.

Exercise of rights by Users
The subjects to whom the Personal Data refer have the right at any time to obtain confirmation of the existence or otherwise of the same from the Data Controller, to know its content and origin, to request a copy of all the data processed, to verify its accuracy or request its integration, cancellation of the account and of the processed data, updating, rectification, transformation into anonymous form or blocking of Personal Data processed in violation of the law, as well as to oppose in any case, for legitimate reasons, to their treatment. Requests should be addressed to the Data Controller.
For any request on the processing of your data on dsigninitalia.it write to us at ciao@dsigninitalia.it.
This Application does not support “Do Not Track” requests. To find out if any third-party services used support them, consult their privacy policies.

Changes to this privacy policy
The Data Controller reserves the right to make changes to this privacy policy at any time by giving notice to Users on this page. Please therefore consult this page often, referring to the date of the last modification indicated at the bottom. In the event of non-acceptance of the changes made to this privacy policy, the User is required to cease using this Application and may request the Data Controller to remove their Personal Data. Unless otherwise specified, the previous privacy policy will continue to apply to the Personal Data collected up to that time.

Information on this privacy policy
The Data Controller is responsible for this privacy policy, drawn up starting from forms prepared by Iubenda and stored on its servers.

Definitions and legal references

Personal Data (or Data)
Any information relating to an individual, identified or identifiable, even indirectly, by reference to any other information, including a personal identification number, constitutes personal data.

Usage Data
This is the information collected automatically by this Application (or by third-party applications that this Application uses), including: the IP addresses or domain names of the computers used by the User who connects with this Application, the addresses in URI (Uniform Resource Identifier) ​​notation, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response from the server (successful, error, etc. ) the country of origin, the characteristics of the browser and operating system used by the visitor, the various temporal connotations of the visit (for example the time spent on each page) and the details relating to the itinerary followed within the Application, with particular reference to the sequence of pages consulted, to the parameters relating to the operating system and the IT environment of the User.

User
The individual who uses this Application, who must coincide with the interested party or be authorized by him and whose Personal Data are being processed.

Interested
The natural or legal person to whom the Personal Data refers.

Data Processor (or Manager)
The natural person, legal person, public administration and any other body, association or organization appointed by the Data Controller to process Personal Data, as established by this privacy policy.

Data Controller (or Owner)
The natural person, legal person, public administration and any other body, association or organization which is responsible, even jointly with another owner, for decisions regarding the purposes, methods of processing personal data and the tools used, including the profile of the security, in relation to the operation and use of this Application. The Data Controller, unless otherwise specified, is the owner of this Application.

This Application
The hardware or software tool through which the Personal Data of Users are collected.

Cookies
Small portion of data stored in the User’s device.

Legal references
Notice to European Users: this privacy statement has been prepared in fulfillment of the obligations established by the European Regulation no.
2016/679 (GDPR).
This privacy statement relates exclusively to this Application.

Contacts
For any questions regarding this Privacy Policy, please contact us at hello@thedesignlover.com

Date of last revision: October 5, 2023