Privacy policy

Privacy policy for the processing of personal data of users of the website Art. 13 and 14 of Regulation 2016/679/EU (hereinafter also “GDPR”)

Why this notice

Frantoio Oleario Giardino Enzo (hereinafter also referred to as “Company” or “Controller”) is committed to respecting and protecting your privacy and wants you to feel safe both during simple website browsing and if you decide to register by providing us with your personal data to use the services available to our Users and/or Customers. On this page, the Company intends to provide some information on the processing of personal data concerning users who visit or consult the website accessible online from the address (the “Site”). The information is provided only for the Company’s website and not for other websites that may be consulted by the user through links (for which reference is made to their respective privacy information/policies). The reproduction or use of pages, materials, and information contained within the Site, by any means and on any media, is not allowed without the prior written consent of the Company. Copying and/or printing is permitted for exclusively personal and non-commercial use (for requests and clarifications, please contact the Company at the contact details indicated below). Other uses of the contents, services, and information present on this website are not allowed.

Regarding the contents offered and the information provided, the Company will make sure to reasonably keep the Site’s contents up to date and reviewed, without offering any guarantee regarding the adequacy, accuracy, or completeness of the information provided, explicitly declining any responsibility for any errors or omissions in the information provided on the Site.

Origin – Navigation data

The Company informs that the personal data provided by you and acquired in conjunction with the request for information and/or contact, registration on the website, and use of services through smartphones or any other means used to access the Internet, as well as the data necessary for the provision of such services, including the navigation data and the data used for the eventual purchase of products and services offered by the Company, but also only the so-called “navigation” data of the Site by Users, will be processed in compliance with applicable regulations. The computer systems and software procedures used for the operation of this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of the Internet network. These are pieces of information that are not collected to be associated with identified interested parties but that, by their very nature, could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the “IP addresses” or domain names of the computers used by users who connect to the site, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the web server, the size of the file obtained in response, the numerical code indicating the status of the response given by the web server (successful, error, etc.), and other parameters relating to the user’s operating system and computer environment. This data is used only to obtain anonymous statistical information on the use of the site and to check the correct functioning of the Company’s website. It should be noted that the aforementioned data could be used to ascertain responsibility in case of computer crimes against the Company’s website or other sites connected or linked to it: except for this possibility, at present, web contact data does not persist for more than a few days.

Origin – User-provided data

The Company collects, stores, and processes your personal data for the purpose of providing the products and services offered on the Website, or for legal obligations. With regard to certain specific Services, Products, Promotions, etc., the Company may also process your data for commercial purposes. In such cases, specific, separate, optional, and always revocable consent will be requested, with the methods and contacts indicated below.

The optional, explicit, and voluntary sending of e-mails to the addresses indicated in the appropriate section of the Website, as well as filling out questionnaires (e.g. forms), communicating through chat, push notifications via APP, social networks, call centers, etc., involves the subsequent acquisition of some of your personal data, including those collected through the use of the Apps and related services, necessary to respond to requests. We also inform you that when using mobile connection to access digital content and services offered directly by the Company or by our Partners, it may be necessary to transfer your personal data to these third parties. We would like to point out that you may access the Website or connect to areas where you may be authorized to publish information using blogs or bulletin boards, communicate with others, for example, by coming from the Company page on Facebook®, LinkedIn®, YouTube®, and other social networking sites, review products and offers and post comments or content. Before interacting with such areas, we invite you to carefully read the Terms of Use, taking into account that, in certain circumstances, the information published may be viewed by anyone with internet access and all the information you include in your publications may be read, collected, and used by third parties.

Purpose of processing and legal basis

Data is processed for the following purposes:

  • strictly connected and necessary for registration on the website, to the services and/or Apps developed or made available by the Company, for the use of related information services, for the management of contact requests or information, for the purchase of products and services offered through the Company’s website;
  • ancillary activities related to the management of User/Customer requests and the sending of feedback that may include the transmission of promotional material; for the completion of the purchase order of the products and services offered, including aspects related to payment by credit card, the management of shipments, the possible exercise of the right of withdrawal provided for in distance purchases, updates on the availability of products and services temporarily unavailable;
  • related to the fulfillment of obligations provided for by community and national regulations, for the protection of public order, for the ascertainment and repression of crimes;
  • direct marketing, i.e. sending of advertising material, direct sales, carrying out market research or commercial communication of products and/or services offered by the Company; such activity may also concern products and services of Companies within the Company Group and be carried out by sending advertising/informative/promotional material and/or invitations to participate in initiatives, events and offers aimed at rewarding users/customers, carried out by “traditional” methods (such as paper mail and/or operator calls), or by “automated” contact systems (such as SMS and/or MMS, telephone calls without the intervention of the operator, e-mail, interactive applications), pursuant to art. 130 c. 1 and 2 of Legislative Decree no. 196/03 and subsequent amendments.

The provision of data for the purposes referred to in points 1), 2) and 3), which is related to a pre-contractual and/or contractual phase or functional to a user request or provided for by a specific legal provision, is mandatory and, in case of failure, it will not be possible to receive the information and access the requested services; as for point 4) of this Information, the user/client’s consent to the processing of data is instead optional and always revocable without consequences on the usability of products and services, except for the impossibility for the Company to keep users/clients updated on new initiatives or on particular promotions or benefits that may be available.

The Company may send commercial communications related to products and/or services similar to those already provided, pursuant to Directive 2002/58/EC, using the email or postal addresses provided by you on such occasions, to which you may object using the methods and contacts indicated below.

Mode, logic of processing, retention periods, and security measures.

The processing is also carried out using electronic or automated means and is performed by the Company and/or third parties that the Company may use to store, manage and transmit such data. The processing of data will be carried out with organizational and processing logics of your personal data, also related to the logs originating from access and use of the services available via the web, products and services related to the aforementioned purposes, and in any case, in order to ensure the security and confidentiality of data. The processed personal data will be kept for the times provided for by the applicable regulations.

Also with regard to data security, in the sections of the website prepared for particular services, where personal data is requested from the browsing user, the data is encrypted using a security technology called Secure Sockets Layer, abbreviated as SSL. SSL technology encrypts information before it is exchanged over the Internet between the user’s computer and the central systems of the Company, making it incomprehensible to unauthorized persons and thus ensuring the confidentiality of the information transmitted. In addition, transactions made using electronic payment tools are carried out directly using the platform of the Payment Service Provider (PSP), and the Company only retains the minimum set of information necessary to manage any disputes. With regard to the protection of personal data, pursuant to Article 33 of the GDPR, the user/customer is invited to report to the Company any circumstances or events from which a potential “violation of personal data (data breach)” may arise, in order to allow an immediate evaluation and adoption of any actions aimed at countering such an event, by sending a communication to or contacting Customer Service. The measures adopted by the Company do not exempt the Customer from paying the necessary attention to the use, where required, of passwords/PINs of adequate complexity, which must be updated periodically, especially if the Customer fears that they have been violated/known by third parties, as well as keeping them carefully and making them inaccessible to third parties, in order to prevent improper and unauthorized use.


A cookie is a short text string that is sent to your browser and, optionally, saved on your computer (alternatively on your smartphone/tablet or any other tool used to access the Internet); this sending generally occurs every time you visit a website. The Company uses cookies for various purposes, in order to offer you a fast and secure digital experience, for example, allowing you to keep the connection active to the protected area during navigation through the website pages.

The cookies stored on your device cannot be used to retrieve any data from your hard disk, transmit computer viruses or identify and use your email address. Each cookie is unique in relation to the browser and device you use to access the Company’s Website or use the Company’s App. Generally, the purpose of cookies is to improve the functioning of the website and the user’s experience in using it, although cookies can be used to send advertising messages (as specified below). For more information on what cookies are and how they work, you can visit the website “All about cookies”

For detailed information on Cookies, please read the dedicated page

Areas of communication and transfer of data.

For the pursuit of the above-mentioned purposes, the Company may communicate and process the personal data of users/customers to third parties in Italy and abroad, with whom we have relationships, where these third parties provide services at our request. We will provide these third parties only with the information necessary to perform the requested services, taking all measures to protect your personal data. The data may be transferred outside the European Economic Area if necessary for the management of your contractual relationship. In this case, the data recipients will be required to provide protection and security measures equivalent to those guaranteed by the Data Controller. In the case of the use of services offered directly by Partners, we will only provide the data strictly necessary for their execution. In any case, only the data necessary for the pursuit of the intended purposes will be communicated, and, where required, the guarantees applicable to transfers of data to third countries will be applied. We may also disclose personal data to our commercial service providers for marketing purposes, who are appointed as external data processors for this purpose. Furthermore, personal data may be communicated to competent public authorities and authorities to comply with legal obligations or to ascertain responsibilities in the event of computer crimes against the site, as well as communicated to or allocated to third parties (as data controllers or, where they are providers of electronic communication services, as independent data controllers) who provide IT and telematic services (e.g. hosting services, website management and development) and which the Company uses to perform technical and organizational tasks and activities instrumental to the functioning of the website. The entities belonging to the categories above operate as separate Data Controllers or as Data Processors appointed for this purpose by the Company.

Personal data may also be known to employees/consultants of the Company who are specifically instructed and appointed as Data Processors.

The categories of recipients to whom the data may be communicated are available by contacting the Company at the contact details indicated below.

Rights of the data subjects

You may exercise the rights recognized by law at any time, including the right:

  • to access your personal data, obtaining evidence of the purposes pursued by the Data Controller, the categories of data involved, the recipients to whom they may be communicated, the applicable retention period, the existence of automated decision-making processes;
  • to obtain without undue delay the rectification of inaccurate personal data concerning you;
  • to obtain, in the cases provided for, the erasure of your data;
  • to obtain the limitation of processing or to object to it, where possible;
  • to request the portability of the data you have provided to the Company, i.e., to receive them in a structured, commonly used, and machine-readable format, also to transmit such data to another data controller, within the limits and with the constraints provided for by Art. 20 of the GDPR;

Furthermore, you may lodge a complaint with the Guarantor for the Protection of Personal Data in accordance with Art. 77 of the GDPR.

For the processing referred to in point 4) of the purposes, the Customer may always revoke consent and exercise the right to object to direct marketing (in “traditional” and “automated” form). Opposition, in this case, will be sufficient to receive an email response from the Data Controller confirming that your request has been processed.

Data Controller

The Data Controller, as defined in Article 4 of the GDPR, is Frantoio Oleario Giardino Enzo, Via Mazzini, 103 – 66020 Rocca San Giovanni (Ch) VAT number: 02022150698 – CF: GRDNZE56D10H439R.

The aforementioned rights can be exercised upon request by the data subject using the methods made known by the Customer Service or on the Company’s website, or by using the following references: Enzo Giardino (Enzo Giardino).

The use of the Website, including those intended for tablets and/or smartphones, by the Customer and/or the User implies full knowledge and acceptance of the content and any indications included in this version of the notice published by the Company at the time the site is accessed. The Company informs that this notice may be modified without any prior notice and therefore recommends its periodic reading.

Data Controller

Frantoio Oleario Giardino Enzo

This privacy notice was last updated on 24/01/2019.