Privacy Policy

This Privacy Policy explains how Casa Editrice Fiori, a publishing house located at 45 Via Ghibellina, Piano 2, 50122 Florence, Tuscany, Italy, collects, uses, and protects your personal data when you use our online platform, which includes our site and associated services. We are committed to protecting your privacy and handling your data in an open and transparent manner, in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

1. Who We Are

Casa Editrice Fiori acts as the data controller for the personal data processed through our site and services. This means we determine the purposes and means of the processing of your personal data. Our physical address is 45 Via Ghibellina, Piano 2, 50122 Florence, Tuscany, Italy.

2. Information We Collect

We may collect and process various types of personal data about you, depending on how you interact with our site and services. This may include:

• Identity Data: Such as name, title.
• Contact Data: Such as postal address, if provided, or contact information submitted via forms (we will process this contact information internally for the stated purpose, even if the policy itself does not list electronic contact details for communication regarding the policy).
• Technical Data: Such as internet protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access our site.
• Usage Data: Information about how you use our site and services, including pages you visit, actions you take, and the time, frequency, and pattern of your service use.
• Marketing and Communications Data: Your preferences in receiving marketing from us and your communication preferences.
• Inquiry Data: Information you provide when you contact us with queries or requests.

We collect this data through direct interactions (when you provide it to us), automated technologies (like server logs and potentially cookies), and sometimes from third parties (like analytics providers).

3. How We Use Your Information and Lawful Basis

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

• To operate, maintain, and improve our site: Based on our legitimate interests to ensure our online platform functions effectively and provides a good user experience.
• To provide and manage our services: Including processing inquiries, managing user accounts (if applicable), facilitating interactions related to publishing services, based on contractual necessity or our legitimate interests in providing relevant services.
• To communicate with you: Responding to your questions and requests, providing updates about our services. This is based on contractual necessity, our legitimate interests in managing customer relations, or your consent where required.
• To manage our business: Including internal administration, data analysis, testing, research, statistical and survey purposes, based on our legitimate interests in running our business, providing administration and IT services, network security, and preventing fraud.
• To comply with legal obligations: Where processing is necessary for compliance with a legal obligation we are subject to.
• For marketing purposes: To send you information about our publications, services, and events if you have opted-in to receive such communications. This is based on your consent. You have the right to withdraw consent at any time.

Our legitimate interests include running and developing our business, providing our services, maintaining the security of our site, understanding how users interact with our site, and informing users about our services where appropriate.

4. Disclosure of Your Information

We may share your personal data with:

• Service providers: Third parties who provide services to us, such as website hosting, IT services, and analytics providers. They process data on our behalf and are required to comply with data protection laws.
• Business partners: In the context of specific publishing projects or collaborations, where necessary.
• Professional advisors: Such as lawyers, accountants, and insurers who provide consultancy, banking, legal, insurance, and accounting services.
• Regulatory or law enforcement authorities: When required by law or necessary to protect our rights.

We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

Some of our service providers may be located outside of the European Economic Area (EEA). Whenever we transfer your personal data out of the EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented: the country has been deemed to provide an adequate level of protection; the transfer uses specific contracts approved by the European Commission which give personal data the same protection it has in Europe; or the transfer is to US entities certified under the EU-US Privacy Shield (though this framework has changed, we adhere to current approved transfer mechanisms).

5. Data Security

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way, altered, or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

We have procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

6. Data Retention

We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

7. Your Legal Rights

Under data protection laws, you have rights regarding your personal data. These rights include:

• Request access to your personal data (commonly known as a "data subject access request").
• Request correction of the personal data that we hold about you.
• Request erasure of your personal data.
• Object to processing of your personal data where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground.
• Request restriction of processing of your personal data.
• Request the transfer of your personal data to you or to a third party.
• Withdraw consent at any time where we are relying on consent to process your personal data. This will not affect the lawfulness of any processing carried out before you withdraw your consent.
• Lodge a complaint with a supervisory authority. In Italy, the relevant authority is the Garante per la protezione dei dati personali.

If you wish to exercise any of the rights set out above, please contact us in writing using the physical address provided below.

8. Cookies and Similar Technologies

Our site may use cookies and similar technologies to collect information about your browsing actions and patterns. These help us improve our site and deliver a better and more personalised service. Cookies may collect data such as technical data and usage data. They are used for purposes like enabling website functionality, analysing site usage, and remembering your preferences.

9. Third-Party Links

Our site may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our site, we encourage you to read the privacy policy of every website you visit.

10. Children's Privacy

Our online platform is not intended for children under the age of 16, and we do not knowingly collect data relating to children.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page. We encourage you to review this policy periodically to stay informed about how we are protecting your data.

12. Contacting Us

If you have any questions about this privacy policy or our data protection practices, or if you wish to exercise any of your legal rights, please contact us in writing at:

Casa Editrice Fiori

45 Via Ghibellina

Piano 2

50122 Florence, Tuscany

Italy

By using our site, you agree to the terms of this Privacy Policy.