Privacy Policy
The purpose of this Privacy Policy is to describe the methods of collecting the personal data of the users performed through the website www.sharonpc.com (the “Website”) pursuant to Article 13 of European Regulation 2016/679 concerning the protection of personal data (the “Regulation“) and of Legislative Decree No. 101/2018.
We therefore invite users to carefully read this Privacy Policy before providing any personal information and/or completing an electronic form on the Website.
1. Data Controller
The Data Controller of data collected on the Website pursuant to Article 4 of the Regulation, is Sharon Personal Care S.r.l. (the “Company “), with registered office in Via Vincenzo Monti, n. 11 - 20123, Milan, VAT Registration no. and Tax Code 12324840961, e-mail address info@sharonpc.com, PEC (Certified Email) sharonpc@legalmail.it.
2. Purpose and legal basis of the processing carried out on the Website
Personal data are collected and processed through the Website for the following purposes:
(a) Request for services: the personal data voluntarily provided by the user through the completion and sending of the form in the “Contacts” section (name, surname, email address, name company, job title and additional information indicated therein) are processed by the Company to provide feedback, by e-mail or telephone, about request.
(b) Marketing: the personal data provided directly by the user (a) through filling out and sending the form in the “Newsletter” section (name, surname, e-mail address, company name) are processed by the Company in order to (i) send information and updates on its products, events and other initiatives promoted and (ii) allow the user to download brochures, catalogues and information material from the website and (b) through filling out and sending the registration form in the “Partner” section (name telephone number, country, e-mail address, company name and sector in which it operates, language and job title) are processed by the Company for the purpose of sending its newsletters.
(c) Cookies: in addition to the data expressly provided, other data deriving from the user’s navigation may be recorded on the Website. In fact, when users access it, the Website may send a “cookie.” “Cookies” are small text files that are stored on the user’s computer when visiting the pages of the Website. “Cookies” are used to give users the best navigation experience and to allow the operation of certain services that require identification of the user’s path through different pages of the Website. For any access, regardless of the presence of a “cookie”, the Website records the type of browser (e.g., Internet Explorer, Safari, Chrome, Firefox), the operating system (e.g., Windows, Macintosh) and the host and last requested URL of the user, as well as data of the page requested. This data can be used in aggregate and anonymous form for statistical analysis on Website usage. In this regard, please read the specific Cookie Policy (www.sharonpc.com/cookie-policy).
Personal data collected and processed by the Company are provided directly by the user, except for navigation data referred to the “Cookies” section of point 2 (c) above which are regulated by the Cookie Policy (www.sharonpc.com/cookie-policy).
The legal basis of the processing of the user’s personal data is:
(i) for the purposes referred to in point 2 (a), above, in the legitimate interest of the Company to give feedback the user’s requests;
(ii) for the purposes referred to in point 2 (b), above, on the specific consent given by the user.
For the purposes referred to in point 2 (c), please refer to the appropriate Cookie Policy (www.sharonpc.com/cookie-policy).
3. Categories of recipients of personal data
The Company communicates the personal data of users of the Website only to the extent permitted by law and in accordance with what is described below. In particular, the user’s personal data may be processed or known by:
(i) employees of the Company, who operate as people authorised to process data pursuant to Articles 29 of the Regulation and 2-quaterdecies of the Legislative Decree No. 101/2018 and in this sense are instructed by the Company;
(ii) companies that provide the Company with specific technical and organisational services connected to the Website, as Data Processors pursuant to Article 28 of Regulation;
(iii) police or judicial authorities, in accordance with the law and upon formal request by them, or if there are well-founded reasons to believe that the communication of such data is reasonably necessary to: (a) investigate, prevent or take action against suspected illegal activities or to assist the state supervisory and control authorities; (b) defend itself against any claims or allegations by third parties, or protect the security of its Website and the Company; or (c) exercise or protect the rights, property or safety of the Company, its customers, employees or any other person.
Personal data will not be disclosed and will not be transferred to a non-EU Countries or International Organisations that do not guarantee an adequate level of protection, recognized, pursuant to Article 45 of the Regulation, based on an EU Commission Adequacy Decision. In the event that it becomes necessary for the provision of the Website's services to transfer the aforementioned data to non-EU Countries or International Organizations, for which the Commission has not adopted any Adequacy Decision, it will take place only in the presence of appropriate safeguards provided by the recipient Country or Organisation, pursuant to Article 46 GDPR, and provided that the subjects have enforceable rights and effective remedies. In the absence of an adequacy decision by the Commission or appropriate safeguards, including binding corporate rules, the transfer will take place only if one of the conditions indicated in Article 49 GDPR.
4. Methods of processing personal data and retention period
Personal data collected through the Website are processed using mainly computerised and telematic methods and tools, adopting the security measures in such a way as to minimize the risk of destruction or loss, even accidental, of the data themselves, of unauthorised or unlawful access or processing that does not comply with the collection purposes indicated in this Privacy Policy. However, due to the nature of the online transmission means, these measures cannot limit or absolutely exclude any risk of unauthorized access or dispersion of data. To this end, it is advisable to periodically check that computer is equipped with software devices suitable for the protection of data online transmission of data, both incoming and outgoing (such as updated antivirus systems), and that the Internet service provider has taken appropriate measures for the security of online data transmission (such as firewalls and anti-spamming filters).
Personal data provided by the user during navigation of the Website will be stored for a period not exceeding 1 year. Personal data processed to provide feedback to user requests will be kept for the time necessary to provide such feedback. Data collected for marketing purposes will be retained for an appropriate period of time in line with the reference sector as well as in consideration of the interest shown by the user in receiving updates/information and, in any case, for a period not exceeding 24 months from the date of collection. In any case, for further information you can write to the following address: info@sharonpc.com.
5. Mandatory or optional nature of data provision
Except for navigation data regulated by the Cookie Policy (www.sharonpc.com/cookie-policy), the provision of personal data collected through the Website is free and optional. The failure to provide this data does not limit the use of the Website but may make it impossible for the same to respond to request for information made or to send the information material, updates, newsletter, invitations to event organized by the Company.
It is understood that user have the right to withdraw consent at any time by sending an email to info@sharonpc.com or by clicking on the link in any mail. The withdraw of consent shall not affect (i) the lawfulness of the processing based on the consent before its withdrawal and (ii) further processing of the same data based on other legal basis (e.g., legitimate interest).
6. Rights of the user
The user has right to:
- access personal data concerning him and to obtain confirmation of the existence of such data, their communication in intelligible form and their integration;
- request the updating, rectification or, where relevant, integration of personal data;
- request the limitation of the processing which concerns him, the cancel, transformation into anonymous form or block personal data processed data in violence of the law, including data whose retention is unnecessary for the purposes for which they were collected or subsequently processed;
- oppose, in whole or in part, on legitimate grounds, to the processing of personal data concerning them, even if pertinent to the purpose of the collection;
- obtain the transmission of data to another data controller (so-called right to data portability).
The above rights may be exercised by contacting the Company at the following address: info@sharonpc.com.
Further, if the processing is based on consent, the user may withdraw the consent given pursuant to art. 7, paragraph 3, of the Regulation, without prejudice to the lawfulness of the processing carried out before the withdrawal (please refer paragraph 5).
7. Right to lodge a compliant
Pursuant to Article 77 of the Regulation, the user has the right to lodge a complaint with the National Supervisory Authority (for Italy, the Data Protection Authority: www.garanteprivacy.it).
8. Final clause
Considering the current state of the evolution of the data protection laws, this Privacy Policy may be updated at any time.
Last update 22/08/2024