Cookie Policy
Privacy Policy
This Privacy Policy explains the policies of https://apoggi.com regarding the collection, use, disclosure, and protection of personal data we collect when you access https://apoggi.com (the “Service”). This Privacy Policy sets out and describes your privacy rights and how you are protected under applicable privacy laws.
By using our Service, you consent to the collection and use of your personal data in accordance with this Privacy Policy. Please do not access or use our Service if you do not consent to the collection and use of your information as described in this Privacy Policy. This Privacy Policy was created with the help of the CookieScript Privacy Policy Generator .
What information we collect, for what purposes, and on what legal basis
The definitions of the legal bases used below are to be understood as follows:
- Legitimate interest: The interest of the Company or a third party, provided that your interests or your fundamental rights and freedoms do not override it, and such use of your personal data is balanced against your rights and freedoms.
- Performance of a contract: Processing of your personal data necessary for the performance of a contract to which you are a party or for taking pre-contractual steps at your request.
- Legal obligations: Processing of your personal data necessary for compliance with a legal or regulatory obligation to which we are subject.
- Consent: Your consent means any freely given, specific, informed, and unambiguous indication of your wishes by which you, by a statement or by a clear affirmative action, signify agreement to the processing of your personal data. We may request your consent for processing when we do not have another legal basis.
Usage Data
What we collect: Information on how users interact with our website or application, including pages visited, time spent, click paths, and browser details.
Purpose: Analyze user behavior, optimize performance, and improve user experience.
Retention period: 730 days
Legal basis: Consent
Personally Identifiable Information
What we collect: First and last name, Email address, Mobile number
Purpose: Manage user accounts, ensure secure access, and provide personalized content.
Retention period: 365 days
Legal basis: Contractual Necessity
Contact Information
What we collect: Home address, Work address, Mailing address, Certified email address (PEC)
Purpose: Ensure proper service delivery and support account-related communications.
Retention period: 730 days
Legal basis: Consent
Payment and Financial Information
What we collect: Credit/debit card details (securely collected), Billing information, Transaction history, Bank Account Details (IBAN), VAT number, Tax ID, Payment Method, SDI code, PEC
Purpose: Securely process transactions and maintain compliant financial operations.
Retention period: 3650 days
Legal basis: Legal Obligation
Online Identifiers and Device Information
What we collect: IP address, Device identifiers (e.g., MAC, IMEI), Browser type and version, Operating system, User-Agent string, Screen Resolution, Referrer URL, Cookie identifiers, Client ID, Advertising and tracking identifiers
Purpose: Protect the platform, optimize performance, and understand technical usage.
Retention period: 425 days
Legal basis: Consent
Geolocation Data
What we collect: Geolocation (GPS coordinates, IP-based location), Approximate Location (City/Region level)
Purpose: Personalize experiences and services based on your location.
Retention period: 425 days
Legal basis: Consent
Demographic Data
What we collect: Gender, Age range
Purpose: Tailor services and marketing campaigns.
Retention period: 425 days
Legal basis: Consent
Communication Data
What we collect: Customer support messages or requests, Chat logs, Email correspondence, Contact Form Submissions, WhatsApp Messages, PEC Communications
Purpose: Provide customer support and maintain a record of communications.
Retention period: 730 days
Legal basis: Contractual Necessity
Preferences and Behavioral Data
What we collect: User interests and preferences, Interaction history with products or content, Cookie Consent Preferences, Search Queries on Site
Purpose: Personalize recommendations, ads, and content.
Retention period: 425 days
Legal basis: Consent
Professional Information
What we collect: Job title, Company name, Work email
Purpose: Support business relationships and personalize content for professional users.
Retention period: 365 days
Legal basis: Contractual Necessity
User-Generated Content
What we collect: Comments, reviews, and ratings
Purpose: Foster user engagement and display feedback.
Retention period: 1095 days
Legal basis: Consent
Consent and Legal Documents
What we collect: Consent forms, Signed agreements, Cookie Consent Logs, Privacy Policy Acceptance History, Terms and Conditions Acceptance History, Privacy Request Records
Purpose: Fulfill legal and regulatory obligations.
Retention period: 3650 days
Legal basis: Legal Obligation
How we obtain your personal data
We collect information you directly provide to us when you:
- Fill out any forms
- Use our Services
- Correspond with us
- Speak to a customer support team member
- Contact us for other reasons
- Terms and Conditions Acceptance History
Requirements for providing personal data
In some cases, the provision of personal data is a legal or contractual requirement, or a necessary requirement to enter into a contract.
Legal requirement: Data required by law: billing data and data necessary for tax and accounting compliance, including first and last name or company name, billing address, tax ID, VAT number, SDI recipient code, certified email (PEC), order details, amounts, payment method, transaction data, and tax/accounting documents.
Contractual requirement: Data required for the conclusion or performance of the contract: first and last name, email address, phone number, shipping address, billing address, order details, purchased products, payment method, transaction data, and any information necessary to manage pre-contractual requests, customer support, shipping, delivery, returns, exchanges, refunds, warranties, and communications related to the purchase. Purpose: This data is necessary to allow the user to make a purchase on the site, process and confirm the order, manage payment, arrange shipping and delivery of products, provide assistance, manage any post-sales requests, and fulfill obligations arising from the online sales contract. Legal basis: performance of a contract to which the user is a party or performance of pre-contractual measures taken at the user's request, pursuant to Art. 6, para. 1, letter b) GDPR.
If you do not provide the requested data: Failure to provide the personal data necessary for the conclusion or performance of the contract may result in the inability to complete the purchase, process the order, manage payment, arrange shipping and delivery of products, provide customer support, manage returns, exchanges, refunds, warranties, or comply with administrative, tax, and accounting obligations required by applicable law. Failure to provide data not necessary for the performance of the contract, such as those used for marketing, profiling, non-technical analytics, or promotional communications, does not prevent the purchase of products or the use of essential site services, but may limit the ability to receive personalized communications, promotional offers, or a more personalized browsing experience.
How we share your information
Armando Poggi s.r.l. may disclose your personal data to recipients in the following categories:
- With your consent. Armando Poggi s.r.l. will share your information for any purpose with your explicit consent.
- For business transfers. Your information will be shared in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.
We transfer personal data to the following third countries: United States. The country, a territory, or one or more specified sectors within these third countries is approved by the European Commission as having an adequate level of protection.
Data Subject Rights
You have the following rights in relation to your personal data:
- Right of access: You can request a copy of the personal data we hold about you.
- Right to rectification: You can ask us to correct any inaccurate or incomplete information.
- Right to erasure (right to be forgotten): Under certain conditions, you can request the erasure of your personal data.
- Right to restriction of processing: You can request the restriction of the processing of your personal data in specific circumstances.
- Right to data portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another data controller.
- Right to object: In some cases, you can object to the processing of your personal data.
- Right to be informed: You have the right to receive clear, transparent, and easily understandable information about how we process your personal data.
Withdrawal of consent:
In accordance with Article 13(2)(c) of the GDPR, you have the right to withdraw your consent to the processing of your personal data at any time. As a visitor to this website, you can easily adjust or withdraw your consent directly via the consent banner on the site. Alternatively, if you prefer, you can contact the website operator using the contact details provided in this privacy policy. Please note that the withdrawal of consent does not affect the lawfulness of any processing carried out before the withdrawal.
To exercise these rights, please contact us at web@apoggi.com.
We will fulfill your rights only after receiving your written request for the exercise of a specific right indicated above and only after verifying the validity of your identity.
Your requests will be fulfilled, or the fulfillment will be refused with reasons for such refusal specified, within one month from the date of submission of the request in accordance with our internal rules and the GDPR. This period may be extended by another two months if the request involves a large volume of personal data or other requests examined simultaneously. We will inform you of such extension within one month of receiving the request, stating the reasons for the delay. We will provide you with a response in the manner you choose.
We may refuse to fulfill your request if the exceptions and/or limitations to the exercise of data subjects' rights provided for by the GDPR apply and/or if your request is manifestly unfounded or excessive. If we refuse to fulfill your request, we will provide you with the reasons for such refusal in writing.
Right to lodge a complaint with a competent supervisory authority
You have the right to lodge a complaint with a competent supervisory authority if you believe that your personal data is being processed in a way that violates your legitimate rights and interests as established by applicable legislation. You can submit a complaint in accordance with the procedures established by the Garante per la protezione dei dati personali of the Italian Republic, available at the following link: http://www.garanteprivacy.it/.
Please note that, although no technological system is completely secure, we adopt appropriate security measures to minimize the risk of unauthorized access or misuse of your personal information.
Security
Please note that, although no technological system is completely secure, we implement appropriate security measures to minimize the risks of unauthorized access or misuse of your personal information.
- We and our third-party service providers who may be involved in processing personal data on our behalf (for the purposes stated above) are contractually obliged to respect the confidentiality of personal data.
- We apply reasonable security practices and procedures to help protect the confidentiality and security of your information, including any non-public personal information. We protect your information by using reasonable physical, technical, and administrative safeguards, including limiting access to your information to employees who have an actual need for it.
Changes to this policy
We regularly review this Privacy Policy and reserve the right to modify it at any time in accordance with applicable laws and regulations. Any changes will become effective immediately upon posting on our Website.
We encourage you to periodically review this Privacy Policy to stay informed of any changes.
Contact us
For any questions, please contact us using the following methods:
- Name: Armando Poggi s.r.l.
- Address: Via Calzaiuoli 103r - 50122 Florence
- Email: web@apoggi.com
- Website: https://apoggi.com
- Phone: +39 055 211719