Privacy Policy

Information on the Processing of Personal Data, pursuant to EU Regulation 2016/679 (GDPR)

The purpose of this document is to inform Users regarding the Personal Data collected by the website https://thefirstluxury.com (hereinafter "Website").

The Data Controller, as subsequently identified, may modify or simply update, in whole or in part, this Information. Changes and updates will be binding as soon as they are published on the Website. The User is therefore invited to read the Privacy Policy each time they access the Website.

1. Personal Data collected by the Website

The Data Controller collects the following types of Personal Data:

• A. Content and Information Voluntarily Provided by You
• - Contact data, credentials, contents: for example personal data, email or postal address and other contact data, passwords and security information, used for authentication and account access, personal interests and preferences and others personal content.
• - Personal data collected by Social Media: Users can share Data communicated to social media with the Website. The User has the right to control the Personal Data that the Website can access when it allows access to its social media accounts and through the privacy settings available on the social media in question. By associating accounts managed by social media with the Website and authorizing the Owner to access such Data, the User gives consent to the acquisition, processing and storage of the Data provided by said social media in accordance with this Privacy Policy.
  
  

Failure by the User to provide certain Data may prevent this Website from providing its services. The User assumes responsibility for the Personal Data of third parties published or shared through this Website and guarantees that he or she has the right to communicate or disseminate them, freeing the Owner from any liability towards third parties.
If the processing of Personal Data is based on your consent, you may revoke it at any time. If the User is not of legal age to give consent to the processing of personal data, the consent of a parent or guardian is required.
The User can view the Privacy Policy at any time by returning to this same page.

• B. Data and content acquired automatically during use of the Website
• - Technical data: the computer systems and software procedures used to operate this Website may acquire, during their normal operation, some Personal Data, the transmission of which is implicit in the use of Internet communication protocols. This is information that is not collected to be associated with identified interested parties, but which by its very nature could, through processing and association with Data held by third parties, allow Users to be identified. This category includes IP addresses, or domain names used by Users who connect to the Website, the addresses in URI (Uniform Resource Identifier) ​​notation of the requested resources, the time of the request, the method used to submit the request to the server, the web page the visitor came from (Referral), parameters of the device used to connect to the site (User Agent) and the size of the file obtained.
• - Usage data: Data relating to the use of the Website by the User may also be collected, such as the pages visited, the actions performed, the functions and services used.
• - Geolocation Data: The Website may collect Location Data, which may be precise or imprecise. The location data may be GNSS (Global Navigation Satellite System) data, for example GPS data, in addition to data that identifies the nearest repeater, Wi-Fi hotspots, communicated by the User's device if it has enabled the features based on position.

2. Purpose

The collected data can be used for the following purposes:

• • Access to Users on Third Party Services
  
  
• • Login to your Facebook account

  This service allows this Website to connect with the User's account on the Facebook social network, provided by Facebook, Inc.
  
  

• • SPAM protection
  
  

• • Google reCAPTCHA
  Google reCAPTCHA is a SPAM protection service provided by Google Inc. Use of the reCAPTCHA system is subject to Google's privacy policy and terms of use.
  
  

• • Contact the user
  
  

• • MailChimp
  MailChimp is an email address management and message sending service provided by The Rocket Science Group, LLC.
  
  

• • Mailing list or newsletter
  By registering on the mailing list or newsletter, the User's email address is automatically added to a contact list to which email messages containing information, including commercial and promotional information, may be sent.
  
  

• Contact form
  By filling in the contact form with their data, the User consents to their use to respond to requests for information, quotes, or any other nature indicated by the header of the form.
  
  

• Interaction with social networks and external platforms
  This type of service allows you to interact with social networks, or other external platforms, directly from the pages of the Website.
  
  

• Facebook Like button and social widgets
  The "Like" button and Facebook social widgets are interaction services with the Facebook social network, provided by Facebook, Inc.
  
  

• • Statistics
  The services contained in this section allow the Data Controller to monitor and analyze traffic data. The Website uses this service in order to carry out aggregate analyzes on its Users in anonymous form and, thus, improve the performance of the site itself. All statistical services are used by the Website through an integration that makes the User's IP address anonymous.
  
  

• • Google Analytics
  Google Analytics is a web analytics service provided by Google LLC (“Google”). Google uses the Personal Data collected for the purpose of tracking and examining the use of this Website.
  
  

• • Viewing content from external platforms
  This type of service allows you to view content hosted on external platforms directly from the pages of the Website and interact with them.
  
  

• • Google Maps widget
  Google Maps is a map viewing service managed by Google LLC that allows this Application to integrate such content within its pages.
  
  

• • YouTube Video widget

  YouTube is a video content viewing service managed by Google LLC that allows this Website to integrate such content within its pages.
  
  

• • YouTube Video Widget without cookies
  YouTube is a video content viewing service managed by Google LLC that allows this Website to integrate such content within its pages. This widget is set so that YouTube does not save information and cookies about Users on this Website.

3. Treatment methods

The processing of Personal Data is carried out using IT and telematic tools, with organizational methods and with logic strictly related to the purposes indicated.

In addition to the Owner, in some cases, other authorized parties (Appointees) involved in the management of this Website and the activity or who ensure the provision of services to the User may have access to the Data. The Representatives, if present, will be able to access the Personal Data of the Users whenever this is strictly necessary and will be contractually obliged to keep them confidential.

The Data Controller may appoint a Personal Data Protection Officer (mandatory for example in the case of Public Administration), whose main responsibility is to observe, evaluate and organize the management of the processing and protection of Personal Data.

4. Legal basis of the processing

The Owner processes the Personal Data relating to the User in compliance with one or more of the following conditions:

• • the User has given consent for specific purposes;
• • the processing is necessary for the execution of a contract with the User and/or the execution of pre-contractual measures;
• • the processing is necessary to fulfill a legal obligation to which the Data Controller is subject;
• • the processing is necessary for the execution of a task of public interest or for the exercise of public powers vested in the Data Controller;
• • the processing is necessary for the pursuit of the legitimate interest of the Data Controller or third parties;

However, it is always possible to request the Data Controller to clarify the concrete legal basis of each individual processing.

5. Location

The Data is processed at the Owner's operational offices and at the web Hosting data center (Server Type: Dedicated, managed by Web Doctor Farm), possibly in other places where the parties involved in the processing are located. For further information, you can contact the Owner.

6. Security measures

The Processing is carried out according to methods and with tools suitable to guarantee the security and confidentiality of the Data itself, the Data Controller having adopted technical measures (for example SSL/TLS) and organizational measures (for example confidentiality agreements with the Persons in Charge) which guarantee that the Processing is carried out in compliance with the GDPR legislation.

7. Data retention period

The Owner will process Personal Data for the time necessary to fulfill the purposes connected with the execution of a contract between the Owner and the User.
When the processing of Personal Data is necessary for the pursuit of a legitimate interest of the Owner, the Personal Data will be retained until such interest is satisfied.
If the processing of Personal Data is based on the User's consent, the Owner will retain the Personal Data until the request for revocation.
Personal Data may be retained for a longer period if necessary to comply with a legal obligation or by order of an authority.
All Personal Data will be deleted or anonymized upon expiry of the retention period.

8. Automated decision-making processes

All Data collected will not be subject to any automated decision-making process, including profiling, which may produce legal effects for the person or which may significantly affect him or her.

9. User Rights

The User, with reference to the Data processed by the Owner, has the right to:

• • revoke consent at any time;
• • object to the processing of your Data;
• • access your Data;
• • verify and request rectification;
• • obtain the limitation of processing;
• • obtain the cancellation or anonymization of your Personal Data (right to be forgotten);
• • receive your Data or have it transferred to another owner;

To exercise their rights, Users can direct a request to the contact details of the Owner indicated in this document. Requests are made free of charge and processed by the Data Controller as quickly as possible.

10. Data Controller

The Data Controller is The First S.R.L.