I – INFORMATION REGARDING THE PRIVACY POLICY OF THE WEBSITE

1. This section contains information regarding the management of seacult.it concerning the processing of user data on https://www.seacult.it/eu/.

SEASTRAPS by MONTEFUSCO LORENZO, VIA SAN DONATO 5/D CAP 06024 GUBBIO (PG) – ITALIA – VAT Number: IT03903230542

2. This disclosure also serves the purpose of Article 13 of Regulation (EU) No. 2016/679, regarding the protection of individuals concerning the processing of personal data and the free movement of such data, for individuals who interact with seacult.it, and it is accessible at the corresponding address on the homepage: https://www.seacult.it/eu/

3. This disclosure applies solely to seacult.it and not to any other websites that may be consulted by the user via links contained therein.
4. The purpose of this document is to provide information about the methods, timing, and nature of the information that data controllers must provide to users when connecting to the web pages of seacult.it, regardless of the purpose of the connection itself, in accordance with Italian and European legislation.
5. This disclosure may undergo changes due to the introduction of new regulations; therefore, users are encouraged to periodically check this page.
6. If the user is under 14 years old, in accordance with Article 8, paragraph 1 of Regulation (EU) 2016/679 and Article 2-Quinquies of Legislative Decree 196/2003, as amended by Legislative Decree 181/18, they must obtain consent from their parents or legal guardians.

II – DATA PROCESSING

1 – Data Controller

1. The data controller is the natural person or legal entity, public authority, service, or other body that, alone or jointly with others, determines the purposes and means of the processing of personal data. They are also responsible for security profiles.
2. Regarding this website, the data controller is: ALESSI PIETRO, and for any clarification or exercise of user rights, they can be contacted at the following email address: europe@seacult.it.

2 – Data Processor

1. The data processor is the natural person or legal entity, public authority, service, or other body that processes personal data on behalf of the data controller.
2. Pursuant to Article 28 of Regulation (EU) No. 2016/679, upon appointment by the data controller, the data processor for the seacult.it website is: MONTEFUSCO LORENZO.

3 – Location of Data Processing

1. Data processing generated by the use of seacult.it takes place at VIA SAN DONATO 5/D CAP 06024 GUBBIO (PG) – ITALIA
2. If necessary, data related to the newsletter service may be processed by the data processor or individuals appointed for this purpose at the relevant location.

III – COOKIES

1 – Types of Cookies

1. The seacult.it website uses cookies to make the user’s browsing experience easier and more intuitive. Cookies are small text strings used to store some information that may concern the user, their preferences, or the Internet access device (computer, tablet, or mobile phone). They are primarily used to adapt the site’s operation to the user’s expectations, providing a more personalized browsing experience and remembering previous choices.
2. A cookie is a small amount of data transferred to the user’s browser from a web server and can only be read by the server that made the transfer. It is not executable code and does not transmit viruses.
3. Cookies do not record any personal information, and any identifiable data will not be stored. Users can prevent the storage of some or all cookies if desired. However, this may compromise the use of the site and the services offered. To proceed without changing the cookie-related options, simply continue browsing.

The following are the types of cookies used on the site:

2 – Technical Cookies

1. Various technologies are used to store information in the user’s computer, which is then collected by websites. The most well-known and widely used is HTML cookies. They are necessary for browsing and to facilitate access and use of the site by the user. They are used for the transmission of communications on an electronic network or are strictly necessary for the provider to provide the service requested by the customer.
2. Settings to manage or disable cookies may vary depending on the Internet browser used. In any case, users can manage or request the general deactivation or deletion of cookies by changing their browser settings. Such deactivation may slow down or prevent access to certain parts of the site.
3. The use of technical cookies allows for safe and efficient use of the site.
4. Cookies that are inserted in the browser and transmitted via Google Analytics or through the statistics service of blogger or similar are technical only if used for the purpose of optimizing the site directly by the site owner, who may collect information in an aggregated form about the number of users and how they visit the site. Under these conditions, the same rules apply to analytics cookies, in terms of information and consent, as for technical cookies.
5. In terms of duration, session cookies can be distinguished from permanent cookies. Session cookies are deleted automatically when the user’s browsing session ends and are used to identify the user and avoid logging in for each page visited. Permanent cookies remain active on the user’s PC until they expire or are deleted by the user.
6. Session cookies may be installed to enable access and stay in the reserved area of the portal as an authenticated user.
7. They are not stored persistently but are only kept for the duration of the browsing session until the browser is closed and disappear with its closure. Their use is strictly limited to the transmission of session identifiers consisting of random numbers generated by the server necessary for the safe and efficient exploration of the site.

3 – Third-Party Cookies

1. In terms of origin, a distinction is made between cookies sent to the browser directly from the site being visited and those sent to the user’s computer by other sites and not from the site being visited.
2. Permanent cookies are often third-party cookies.
3. Most third-party cookies are tracking cookies used to identify online behavior, understand interests, and personalize advertising proposals for users.
4. Third-party analytical cookies may be installed. They are sent from domains of the aforementioned third parties external to the site.
5. Third-party analytical cookies are used to detect information about user behavior on seacult.it. Detection is anonymous, aimed at monitoring performance, and improving site usability. Third-party profiling cookies are used to create user profiles in order to offer advertising messages in line with the choices made by users themselves.
6. The use of these cookies is governed by the rules established by these third parties, so users are invited to view the privacy policies and instructions for managing or disabling cookies published on their respective web pages.

4 – Profiling Cookies

1. Profiling cookies are used to create user profiles and are used to send advertising messages in line with the preferences expressed by the user during online browsing.
2. When these types of cookies are used, the user must provide explicit consent.
3. Article 22 of Regulation (EU) 2016/679 and Article 122 of the Data Protection Code will apply.

IV – PROCESSED DATA

1 – Data Processing Methods

1. Like all websites, this site also uses log files in which information collected in an automated manner during user visits is stored. The information collected may include:

• Internet Protocol (IP) address;
• Type of browser and parameters of the device used to connect to the site;
• Internet Service Provider (ISP) name;
• Date and time of visit;
• Referral webpage (the page from which the visitor came) and exit page;
• Number of clicks, if applicable.

2. The above information is processed automatically and collected in an exclusively aggregated form to verify the correct functioning of the site and for security reasons. This information will be processed based on the legitimate interests of the data controller.
3. For security purposes (spam filters, firewall, virus detection), the data recorded automatically may also include personal data such as the IP address, which could be used, in accordance with applicable laws, to block attempts to damage the site itself or to cause harm to other users or to engage in harmful or illegal activities. Such data is never used for user identification or profiling, but only for the purpose of protecting the site and its users, and this information will be processed based on the legitimate interests of the data controller.
4. If the site allows for the insertion of comments, or in the case of specific services requested by the user, including the possibility of sending a CV for a potential employment relationship, the site automatically detects and records certain user identification data, including email addresses. This data is voluntarily provided by the user at the time of the service request. By submitting a comment or other information, the user expressly accepts the privacy policy, including consenting to the content being freely shared with third parties. The received data will be used exclusively for the provision of the requested service and for the time strictly necessary for the provision of the service.
5. Information that users of the site consider public through the services and tools made available to them is provided by the user knowingly and voluntarily, exempting this site from any responsibility regarding possible violations of laws. It is up to the user to verify that they have the necessary permissions to enter personal data of third parties or content protected by national and international regulations.

2 – Purposes of Data Processing

1. The data collected by the site during its operation is used for the purposes described above and for the following purposes:

• Fulfillment of contractual obligations
• Invoicing for online product purchases
• Product shipment

2. Data will be stored for the time strictly necessary to achieve the purposes outlined above and, in any case, for no more than 2 years.
3. Data used for security purposes (preventing damage to the site) is stored for the time strictly necessary to achieve the aforementioned purpose.

3 – Data Provided by the User

1. As mentioned above, the optional, explicit, and voluntary sending of email to the addresses indicated on this site results in the subsequent acquisition of the sender’s address, which is necessary to respond to requests, as well as any other personal data entered in the message.
2. Specific summary information will be progressively reported or displayed on the pages of the site set up for particular services upon request.

4 – Support in Configuring Your Browser

1. Users can manage cookies through their browser settings. However, deleting cookies from the browser may remove preferences set for the site.
2. For further information and support, users can also visit the specific help page of the web browser they are using:

• Internet Explorer: http://windows.microsoft.com/en-us/windows-vista/block-or-allow-cookies
• Firefox: https://support.mozilla.org/en-us/kb/enable-and-disable-cookies-website-preferences
• Safari: http://www.apple.com/legal/privacy/it/
• Chrome: https://support.google.com/accounts/answer/61416?hl=it
• Opera: http://www.opera.com/help/tutorials/security/cookies/

V. USER RIGHTS

1. Article 13, paragraph 2 of Regulation (EU) 2016/679 lists the user’s rights.
2. The seacult.it website therefore intends to inform the user about their rights, based on the following articles of Regulation (EU) 2016/679:

a) In accordance with Article 15, the right of the data subject to request access to personal data from the data controller; in accordance with Article 16, the right to rectify the data provided; in accordance with Article 18, the right to integrate or limit the processing that concerns them, or to oppose, for legitimate reasons, the processing in accordance with Article 21, as well as the right to data portability in accordance with Article 20 of the Regulation (EU);

b) The right to request erasure under Article 17, the transformation into anonymous form, or blocking of data processed unlawfully, including data that does not need to be retained for the purposes for which it was collected or subsequently processed.

c) The right to obtain confirmation from the data controller that the operations of updating, rectification, integration of data, erasure, blocking of data, and transformation have been brought to the attention, also as regards their content, of those to whom the data was communicated or disseminated, except in cases where such compliance proves impossible or involves a manifestly disproportionate use of resources compared to the right protected.

3. Requests can be addressed to the data controller, without any formalities or, alternatively, using the model provided by the Guarantor for the Protection of Personal Data, or by sending an email to: europe@seacult.it
4. If the processing is based on Article 6, paragraph 1, letter a) – explicit consent for use – or Article 9, paragraph 2, letter a) – explicit consent for the use of genetic, biometric, health-related data, which reveals religious beliefs, or philosophical or union membership, or reveals racial or ethnic origin, political opinions – the user has the right to withdraw consent at any time without affecting the lawfulness of the processing based on consent before its withdrawal.
5. Similarly, in the event of a breach of the rules, the user has the right to lodge a complaint with the Guarantor for the Protection of Personal Data, as the authority responsible for monitoring data processing in the Italian State.
6. For a more in-depth examination of the rights to which you are entitled, please refer to Articles 15-22 of Regulation (EU) 2016/679.

VI – TRANSFER OF DATA TO NON-EU COUNTRIES

1. This website may share some of the data collected with services located outside the European Union. In particular, with Google, Facebook, and Microsoft (LinkedIn) through social plugins and the Google Analytics service. The transfer is authorized and strictly regulated by Article 45, paragraph 1 of Regulation (EU) 2016/679, so no further consent is required. The companies mentioned above guarantee their adherence to the Privacy Shield.
2. Data will never be transferred to third countries that do not comply with the conditions set out in Article 45 and following of the Regulation (EU).

VII. SECURITY OF PROVIDED DATA

1. This site processes user data in a lawful and correct manner, adopting appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of data. Processing is carried out using computers and/or telematic means, with organizational and logical methods strictly related to the purposes indicated.
2. In addition to the data controller, in some cases, other parties involved in the organization of the site (administrative, commercial, marketing, legal, system administrators) or external subjects (such as third-party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) may have access to the data.

VIII. CHANGES TO THIS DOCUMENT

1. This document, which constitutes the privacy policy of this site, is published at the address: https://www.seacult.it/eu/policy-privacy/
2. It may be subject to changes or updates. Users are encouraged to periodically check this page for the latest legislative developments.
3. Previous versions of the document will still be accessible on this page.