Types of Data Collected
The types of Personal Data that LaBonin collects, either independently or through third parties, include: first name; last name; email address; user name; phone number; Usage Data; city; address; various types of Data; tax code; User ID; Cookie.

Detailed information on each type of Personal Data collected is provided in the relevant sections of this privacy policy or by means of explanatory texts displayed prior to the collection of the Data.
Personal Data may be freely provided by the User or, in the case of User Data, automatically collected during the use of LaBonin.
Unless otherwise specified, all Data requested by LaBonin are mandatory and, without them, it may be impossible for LaBonin to provide the Service. In cases where LaBonin expressly indicates that some Data are not mandatory, Users are free to refrain from providing such Data, without any consequences on the availability or functioning of the Service.
Users in doubt as to which Personal Data are mandatory are invited to contact the Controller.
Any use of Cookies - or other tracking tools - by LaBonin or the owners of third-party services used by LaBonin, unless otherwise specified, is for the purpose of providing the Service requested by the User, in addition to the other purposes described in this document and in the Cookie Policy, if available.

Users accept responsibility for third party Personal Data obtained, published or shared through LaBonin and confirm that they have the third party's consent to provide such Data to the Controller.

 

Method and place of data processing

Treatment modes

The Data Controller takes appropriate security measures to prevent unauthorised access, disclosure, modification or destruction of the Data.
Data is processed by means of computer and/or telematic tools, with organisational methods and logics strictly related to the purposes indicated. In addition to the Data Controller, in some cases, subjects involved in the organisation of LaBonin (administrative, sales, marketing, legal, system administrators) or external subjects (such as third party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) appointed, if necessary, as Data Processors by the Data Controller, may have access to the Data. The updated list of such subjects may be requested from the Controller at any time.

 

Legal basis for processing

The Controller may process Personal Data relating to Users if one of the following conditions is met:

• the User has given consent for one or more specific purposes. Note: in some jurisdictions the Data Controller may be permitted to process Personal Data without your consent or any of the other legal bases specified below, until you object ("opt-out") to such processing. This does not apply whenever the processing of Personal Data is governed by European legislation on the protection of Personal Data;
• the provision of Data is necessary for the performance of a contract with the User and/or for any pre-contractual obligations;
• processing is necessary to comply with a legal obligation to which the Controller is subject;
• the processing is connected with a task carried out in the public interest or in the exercise of official authority vested in the Controller;
• processing is necessary for the pursuit of the legitimate interest of the Controller or of third parties.

In any case, the Controller will be happy to help clarify the concrete legal basis that applies to the processing and, in particular, whether the provision of Personal Data is a legal or contractual obligation, or a necessary requirement to conclude a contract.

 

Place

The Data are processed at the Controller's premises and at any other place where the parties involved in the processing are located.

Depending on the location of the User, Data transfers may involve the transfer of User Data to a country other than the User's own. For further information on the processing location of such transferred Data, Users may consult the section containing details on the processing of Personal Data.

Users also have the right to know the legal basis for the transfer of Data to a country outside the European Union or to any international organisation governed by public international law or formed by two or more countries - such as the United Nations - as well as to know the security measures adopted by the Data Controller to protect their Data.

Should such a transfer occur, Users may obtain further information by consulting the relevant sections of this document or by making a request to the Controller, contacting him at the contact details indicated.

 

Conservation period

Personal Data are processed and stored for the time required by the purposes for which they were collected.

Therefore:

• Personal Data collected for purposes related to the performance of a contract between the Controller and the User will be retained until the completion of the performance of that contract.
• Personal Data collected for purposes attributable to the legitimate interest of the Data Controller will be retained until such interest is satisfied. Users may find further information regarding the legitimate interest pursued by the Controller in the relevant sections of this document or by contacting the Controller.

The Controller may be authorised to retain Personal Data for a longer period where the User has consented to such processing, until such consent is withdrawn. In addition, the Controller may be obliged to retain Personal Data for a longer period in compliance with a legal obligation or by order of an authority.

At the end of the retention period, the Personal Data will be deleted. Therefore, at the end of this period, the right of access, the right to erasure, the right to rectification and the right to Data portability can no longer be exercised.

 

Purpose of processing

The Data concerning the User are collected to enable the Controller to provide its Service, to comply with legal obligations, to respond to requests or enforcement actions, to protect its rights and interests (or those of its Users or third parties), to detect any malicious or fraudulent activities, as well as for the following purposes: commenting on content, contacting the User, contact management and sending messages, payment management, registration and authentication, remarketing and behavioral targeting, platform services and hosting, analytics, display of content from external platforms and interaction with data collection platforms and other third parties.

For specific information on the Personal Data used for each purpose, the User may refer to the section 'Detailed information on the processing of Personal Data'.

 

Detailed Information on the Processing of Personal Data

Personal Data are collected for the following purposes and using the following services:

• Analytics
• Content commentary
• Payment Management
• Managing contacts and sending messages
• Registration and authentication
• Contacting the User
• Displaying content from external platforms
• Interaction with data collection platforms and other third parties
• Platform and hosting services
• Remarketing and behavioural targeting

 

User Rights

Users may exercise certain rights in relation to their Data processed by the Controller.

In particular, the User has the right to:

1. Withdraw consent at any time. The User may revoke his or her previously expressed consent to the processing of his or her Personal Data.
2. Object to the processing of one's own Data. The User may object to the processing of his or her Data when it is done on a legal basis other than consent. Further details can be found in the relevant section below.
3. Access your Data. The User has the right to obtain information on the Data processed by the Controller, on certain aspects of the processing and to receive a copy of the Data processed.
4. Check and request rectification. The User may check the correctness of its Data and request that it be updated or corrected.
5. Obtaining restriction of processing. When certain conditions are met, the User may request the restriction of the processing of their Data. In this case, the Data Controller will not process the Data for any purpose other than their storage.
6. Obtain the deletion or removal of your Personal Data. When certain conditions are met, the User may request the deletion of his/her Data by the Controller.
7. Receive their Data or have them transferred to another data controller. The User has the right to receive his or her Data in a structured, commonly used and machine-readable format and, if technically feasible, to have it transferred without hindrance to another data controller. This provision is applicable when the Data are processed by automated means and the processing is based on the User's consent, on a contract to which the User is a party or on contractual measures related thereto.
8. Propose a complaint. The User has the right to lodge a complaint with the competent Data Protection authority or to take legal action.

 

Details on the right to object

When Personal Data are processed in the public interest, in the exercise of public authority vested in the Controller or in pursuit of a legitimate interest of the Controller, Users may object to such processing by providing a reason related to their particular situation to justify the objection.

Users are reminded that, should their Data be processed for direct marketing purposes, they may object to such processing at any time without providing any reasons. To find out whether the Data Controller processes Data for direct marketing purposes, Users may refer to the respective sections of this document.

 

How to exercise these rights

Any request to exercise the User's rights may be addressed to the Controller through the contact details provided in this document. Requests may be exercised free of charge and will be dealt with by the Controller as soon as possible, in any case within one month.

 

Cookie Policy

LaBonin uses Cookies and other Identifiers. To find out more, the User can consult the Cookie Policy.

 

Further information on Data Processing

Legal Actions

The User's Personal Data may be used by the Controller in legal proceedings or in the preparatory stages of such proceedings to defend against abuse in the use of LaBonin or related Services.
The User declares that he/she is aware that the Controller may be obliged to disclose Personal Data by order of public authorities.

 

Further information on the User's Personal Data

In addition to the information contained in this privacy policy, LaBonin may provide the User, upon request, with additional and contextual information regarding particular Services or the collection and processing of Personal Data.

 

System logs and maintenance

For operation and maintenance purposes, LaBonin and any third-party services it uses may collect system logs, i.e. files that record interactions and may also contain Personal Data, such as your IP address.

 

Information not contained in this policy

Further information in connection with the processing of Personal Data may be requested at any time from the Controller using the contact details.

 

How 'Do Not Track' requests are handled

LaBonin does not support 'Do Not Track' requests.
To find out whether any third-party services used support them, the User is invited to consult their respective privacy policies.

 

Changes to this privacy policy

The Data Controller reserves the right to make changes to this privacy policy at any time by notifying Users on this page and possibly within LaBonin, as well as, if technically and legally feasible, by sending a notification to Users through one of the contact details available to it. It is recommended to consult this page frequently, referring to the date of last modification indicated at the bottom.

If the changes affect the processing activities carried out on the basis of the User's consent, the Controller will re-collect the User's consent where necessary.

 

Definitions and legal references

Last updated: 6 April 2020

iubenda hosts this content and collects only the Personal Data strictly necessary for its provision.