Privacy Policy

In accordance with Regulation (EU) 2016/679 (GDPR) and Italian Legislative Decree 196/2003 (Privacy Code), as amended by Legislative Decree 101/2018, this policy describes how Soloessenze (the “Data Controller”) collects, uses and protects the personal data of users who visit the website soloessenze.com.

1. Data Controller

The data controller is:
SCIMONELLI MICHAEL OMAR
Bivio Ramata s.n.c. (no street number), 94015 Piazza Armerina (EN) – Italy
VAT no.: 01889350854
Email: info@soloessenze.com
Phone: +39 344 436 3507

2. Types of Data Collected

  • Data provided voluntarily by the user: first name, last name, email address, phone number, shipping/billing address, payment data (handled by PCI-DSS certified third-party processors).
  • Navigation data: IP address, browser type, operating system, pages visited, date and time of access, collected automatically by the site servers.
  • Cookies and similar technologies: as described in our Cookie Policy.

3. Purposes and Legal Bases of Processing

  • Performance of the contract (art. 6(1)(b) GDPR): order processing, shipping, returns and refunds management.
  • Compliance with legal obligations (art. 6(1)(c) GDPR): accounting, invoicing, tax obligations.
  • Legitimate interest (art. 6(1)(f) GDPR): fraud prevention, site security, anonymous aggregate analysis.
  • Consent of the data subject (art. 6(1)(a) GDPR): sending newsletters and promotional communications (only where explicit consent has been given).

4. Processing Methods and Retention

Data is processed using electronic and manual tools, adopting security measures adequate to prevent unauthorised access, loss, destruction or unlawful disclosure. Data is retained only for the time strictly necessary for the purposes for which it was collected:

  • Contractual and tax data: 10 years from the end of the contractual relationship (legal obligation).
  • Marketing data: until consent is withdrawn.
  • Navigation data: maximum 12 months.

5. Sharing Data with Third Parties

Personal data may be shared with third parties strictly necessary for providing the services:

  • Couriers and shippers (for order delivery).
  • Payment processors (e.g. Stripe, PayPal) – they process data according to their own policies.
  • Hosting and cloud service providers (servers located in the EU or with equivalent safeguards).
  • Tax and judicial authorities, in the cases provided for by law.

Data is not sold to third parties nor transmitted to unauthorised parties.

6. Data Transfer Outside the EU

Any transfers of data to third countries take place only with adequate safeguards pursuant to art. 44-49 GDPR (e.g. adequacy decisions, standard contractual clauses).

7. Rights of the Data Subject

  • Access (art. 15 GDPR): obtain confirmation of processing and a copy of the data.
  • Rectification (art. 16 GDPR): correct inaccurate or incomplete data.
  • Erasure (“right to be forgotten”, art. 17 GDPR): request deletion of data.
  • Restriction (art. 18 GDPR): restrict processing in certain cases.
  • Portability (art. 20 GDPR): receive data in a structured format.
  • Objection (art. 21 GDPR): object to processing based on legitimate interest or for direct marketing.
  • Withdrawal of consent: at any time, without affecting the lawfulness of prior processing.

To exercise these rights, the user may contact the Data Controller at: info@soloessenze.com. The Controller responds within 30 days of receiving the request. Users may also lodge a complaint with the Italian Data Protection Authority (Garante per la Protezione dei Dati Personali, www.garanteprivacy.it).

8. Cookies

The site uses technical cookies necessary for operation and analytics/profiling cookies subject to the user’s consent. For more information, see our Cookie Policy.

9. Changes to this Policy

The Data Controller reserves the right to update this policy. Substantial changes will be communicated to users via notice on the site. The date of the last update is shown at the bottom of this document.

Last updated: May 2026