1. Introduction
At taja di Sertic Tajana, we are dedicated to safeguarding your privacy and handling your personal data with the utmost care and respect. Our Privacy Policy outlines how we collect, use, and protect your personal information in accordance with the General Data Protection Regulation (GDPR). We aim to be transparent about our data processing practices and ensure that you understand your rights concerning your personal information. By using our website and services, you agree to the terms outlined in this Privacy Policy.
2. Data Controller
The data controller responsible for the processing of your personal data is taja di Sertic Tajana, a fashion design company located at Via della Condotta 11.r., 50122 Firenze, Italy. Our registered Partita Iva number is 07044390487. If you have any questions or concerns regarding this Privacy Policy or the handling of your personal information, please contact us at:
- Email: taja.taja.at@gmail.com
- Phone: (+385) 91-252-7331
- Address: Via della Condotta 11.r., 50122 Firenze, Italy
3. Personal Data Collected
We collect various types of personal data from you, depending on your interactions with our website and services. This data includes:
- Data Collected Automatically: When you visit our website, we may collect certain information automatically, such as your IP address, browser type, and browsing behavior. This data helps us understand how you use our site and improve the user experience.
- Data Provided by You: When you place an order or contact us through our website, we collect the personal information you provide, such as your name, email address, shipping and billing addresses, phone number, and order details. We use this data to process your orders and respond to your inquiries.
We do not collect sensitive personal data unless you provide it voluntarily. All personal data is processed in accordance with applicable data protection laws.
4. Purpose of Data Processing
The personal data we collect is used with the utmost respect for your privacy and is processed solely for the purposes explicitly stated herein. We process your information to fulfill and manage your orders, ensuring that the items you purchase reach you promptly and in good condition. This includes using your data to confirm payment, arrange for delivery, and provide updates regarding the status of your order.
In addition, we utilize your personal information to respond to inquiries submitted through our contact form. Whether you have questions about our products, services, or your previous orders, we use your data to facilitate a swift and accurate response.
Furthermore, we may analyze website usage patterns to enhance your shopping experience and to ensure our website functions seamlessly across different devices and platforms. Your data may also be processed to meet legal requirements, such as tax and accounting obligations, which necessitate the retention of order details for specific durations.
5. Legal Basis for Processing Personal Data
Our processing of personal data is carried out based on several legal grounds, as set forth by the General Data Protection Regulation (GDPR). Primarily, we process your data to perform a contract, namely, to manage and deliver the products you have ordered. This contractual obligation serves as a primary legal basis for the use of your personal information.
Additionally, certain processing activities are founded upon your explicit consent, which is sought, for example, when you sign up for our newsletter or agree to receive promotional content. You retain the right to withdraw this consent at any time, without affecting the lawfulness of processing based on consent prior to its withdrawal.
Moreover, the processing of personal data may be necessary for compliance with legal obligations, such as the keeping of financial records as mandated by applicable tax and accounting laws. In instances where we process your data to improve the website’s functionality or to ensure its security, we rely on our legitimate interests to maintain and enhance our online services.
6. Data Retention Period
We are committed to retaining your personal data for no longer than is necessary for the purposes for which it was collected. Your order-related information will be maintained for as long as required by relevant tax and accounting laws, ensuring compliance with our legal obligations. Typically, such records are kept for a period of up to ten years from the date of purchase.
In the case of inquiries made through the contact form, we retain the correspondence data for as long as needed to resolve your request and any subsequent follow-up communication. If further storage is not legally mandated, your data may be securely deleted after a reasonable retention period.
When data processing is based on your consent, such as for receiving marketing communications, we will continue to process your data until you withdraw your consent or request the deletion of your personal information. Upon the expiration of retention periods, data is deleted or anonymized to ensure that your privacy is upheld.
7. Sharing Personal Data
We respect your privacy and only share your personal data with third parties when necessary to fulfill our contractual obligations and provide you with a seamless shopping experience. This includes sharing information with payment processors to complete your purchase transactions, and shipping companies to deliver your orders. We may also share data with service providers who assist us in operating our website, such as hosting services and technical support, ensuring that all service providers comply with strict data protection standards.
In all instances, we limit the sharing of your personal data to what is essential for the specific purpose. Your personal information will not be sold, traded, or rented to third parties for marketing purposes without your explicit consent. We are committed to ensuring that any third party processing your data on our behalf adheres to the same level of data protection as set out in this privacy policy.
8. International Transfers
In some cases, the personal data we collect from you may be transferred to and processed in countries outside of the European Economic Area (EEA). These countries may not provide the same level of data protection as the EEA. However, we take steps to ensure that your personal data is treated securely and in accordance with this privacy policy, regardless of where it is processed.
We use legally approved mechanisms to ensure adequate safeguards are in place for any international transfers of your personal data. This may include implementing Standard Contractual Clauses approved by the European Commission, relying on binding corporate rules, or verifying that the third party is certified under an approved data protection framework, such as the EU-U.S. Data Privacy Framework. By using our services, you consent to the transfer, storage, and processing of your personal data outside the EEA under these safeguards.
9. Data Subject Rights
In accordance with the General Data Protection Regulation (GDPR), you, as a data subject, are entitled to exercise a number of rights concerning your personal data. We are committed to upholding these rights and facilitating their exercise, as described below:
- Right to Access: You have the right to obtain confirmation as to whether or not your personal data is being processed, and, if so, to request access to that data, along with details of the processing activities.
- Right to Rectification: If the information we hold about you is inaccurate or incomplete, you have the right to request that we amend or update it without undue delay.
- Right to Erasure: Under certain circumstances, you may request the deletion of your personal data. This is sometimes referred to as the “right to be forgotten.” Please note, however, that legal obligations may prevent us from erasing some data immediately.
- Right to Restrict Processing: You have the right to request that we limit the processing of your personal data under certain conditions, such as if you contest the accuracy of the data or if the processing is unlawful.
- Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format. You may also request that we transmit this data directly to another controller where technically feasible.
- Right to Object: You have the right to object to the processing of your personal data for certain purposes, including direct marketing. If you object, we shall cease processing your data unless compelling legitimate grounds for the processing prevail.
- Right to Withdraw Consent: Where processing is based on your consent, you have the right to withdraw it at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
To exercise any of these rights, or if you have any questions about how your personal data is handled, please contact us at taja.taja.at@gmail.com or call us at (+385) 91-252-7331. We will respond to your requests within the time frames stipulated by the GDPR.
10. Security Measures
We prioritize the security of your personal data and employ a variety of measures to ensure that your information is safeguarded against unauthorized access, alteration, or destruction. Our security practices include, but are not limited to:
- Encryption: We utilize encryption technologies to protect personal data during transmission over the Internet, ensuring that your information remains confidential and secure.
- Access Controls: Access to personal data is restricted to authorized personnel only, who are bound by confidentiality obligations. We regularly review and update our access control policies to maintain the integrity of your data.
- Secure Servers: We store your data on secure servers equipped with firewalls and other sophisticated security technologies to prevent unauthorized access and cyber threats.
- Regular Security Audits: We conduct periodic audits and assessments of our security practices to identify and mitigate potential vulnerabilities, ensuring continuous improvement in data protection.
Despite our best efforts, no method of data transmission over the Internet or method of electronic storage is entirely secure. Therefore, while we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security.
If you suspect any breach of your personal data, please notify us immediately at taja.taja.at@gmail.com or call (+385) 91-252-7331 so that we may take appropriate action to address the issue.
11. Cookies and Tracking Technologies
Our website employs cookies and similar tracking technologies to enhance the user experience, analyze traffic patterns, and facilitate the seamless functioning of our online store. Cookies are small text files stored on your device when you visit our site, enabling us to remember your preferences and personalize your shopping journey. These technologies help us understand how visitors interact with our content and identify areas for improvement.
We use both session cookies, which expire when you close your browser, and persistent cookies, which remain on your device for a specified period or until manually deleted. Some cookies are essential for the proper operation of the website, while others are employed for analytical purposes or to provide personalized content.
You have the option to manage your cookie preferences directly through your browser settings. Most browsers allow you to refuse cookies or receive notifications when cookies are being placed on your device. Please note, however, that disabling cookies may affect the functionality of our website, limiting your access to certain features.
12. Changes to the Privacy Policy
We reserve the right to amend this Privacy Policy at any time to reflect changes in our practices, legal requirements, or for any other reason. When updates occur, the revised version will be posted on this page with the date of the latest revision indicated at the top. We encourage you to review this policy periodically to stay informed about how we are safeguarding your personal information.
Should the modifications substantially alter the way we process your personal data, we will notify you by appropriate means, such as via email or a prominent notice on our website, prior to the changes taking effect.
13. Contact Information
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please do not hesitate to reach out to us. You can contact us at:
Email: taja.taja.at@gmail.com
Phone: (+385) 91-252-7331
Postal Address: Via della Condotta 11.r., 50122 Firenze, Italy
We are committed to addressing your inquiries promptly and assisting you in exercising your data protection rights.