BAIF INTERNATIONAL PRODUCTS NEW YORK SNC
VIA XX SETTEMBRE 20/68
16121 GENOA

Owner’s email address: info@baifinternational.it

Types of Data collected

Among the Personal Data collected by this Application, either independently or through third parties, there are: Cookies; Usage Data; name; email.

Full details on each type of data collected are provided in the dedicated sections of this privacy policy or through specific information texts displayed before the data are collected.
Personal Data may be freely provided by the User, or, in the case of Usage Data, collected automatically when using this Application.
Unless otherwise specified, all Data requested by this Application is mandatory. If the User refuses to communicate this Data, it may be impossible for this Application to provide its Service. In cases where this Application specifically states that some Data is optional, Users are free not to communicate this Data without any consequences on the availability or operation of the Service.
Users who are uncertain about which Data is mandatory are encouraged to contact the Owner.
Any use of Cookies – or other tracking tools – by this Application or by the owners of third-party services used by this Application, unless otherwise specified, is intended to provide the Service requested by the User, in addition to any other purposes described in this document and in the Cookie Policy, if available.

The User assumes responsibility for the Personal Data of third parties obtained, published or shared through this Application and guarantees that he/she has the right to communicate or disseminate them, freeing the Owner from any liability towards third parties.

Method and place of processing of the collected data

Treatment methods

The Data Controller takes appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of Personal Data.
Processing is carried out using computer and/or telematic tools, with organizational methods and logic strictly related to the purposes indicated. In addition to the Data Controller, in some cases, other parties involved in the organization of this Application (administrative, commercial, marketing, legal, system administration personnel) or external parties (such as third party technical service providers, postal couriers, hosting providers, IT companies, communications agencies) may have access to the Data, also appointed, if necessary, as Data Processors by the Data Controller. The updated list of Data Processors may always be requested from the Data Controller.

Legal basis for processing

The Data Controller processes Personal Data relating to the User if one of the following conditions exists:

• the User has given consent for one or more specific purposes; Note: in some jurisdictions the Owner may be allowed to process Personal Data without the User’s consent or any other of the legal bases specified below, until the User objects (“opts-out”) to such processing. However, this does not apply when the processing of Personal Data is regulated by European legislation on the protection of Personal Data;
• processing is necessary for the performance of a contract with the User and/or for the execution of pre-contractual measures;
• processing is necessary to fulfill a legal obligation to which the Data Controller is subject;
• processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Data Controller;
• processing is necessary for the pursuit of the legitimate interest of the Owner or third parties.

It is always possible to ask the Owner to clarify the specific legal basis of each treatment and in particular to specify whether the treatment is based on the law, provided for by a contract or necessary to conclude a contract.

Place

The Data is processed at the Data Controller’s operating offices and in any other place where the parties involved in the processing are located. For further information, contact the Data Controller.
The User’s Personal Data may be transferred to a country other than the one in which the User is located. To obtain further information on the place of processing, the User can refer to the section containing details on the processing of Personal Data.

The User has the right to obtain information regarding the legal basis of the transfer of Data outside the European Union or to an international organization governed by public international law or consisting of two or more countries, such as the UN, as well as regarding the security measures adopted by the Owner to protect the Data.

The User can verify whether one of the transfers described above is taking place by examining the section of this document relating to the details on the processing of Personal Data or by asking the Owner by contacting him at the contact details provided at the beginning.

Retention period

The Data is processed and stored for the time required by the purposes for which it was collected.

Therefore:

• Personal Data collected for purposes related to the performance of a contract between the Owner and the User will be retained until the performance of such contract is completed.
• Personal Data collected for purposes related to the legitimate interest of the Owner will be retained until such interest is fulfilled. The User may obtain further information regarding the legitimate interest pursued by the Owner in the relevant sections of this document or by contacting the Owner.

When the processing is based on the User’s consent, the Owner may retain the Personal Data for a longer period until such consent is revoked. Furthermore, the Owner may be obliged to retain Personal Data for a longer period in compliance with a legal obligation or by order of an authority.

At the end of the retention period, the Personal Data will be deleted. Therefore, at the end of such period, the right of access, deletion, rectification and the right to portability of the Data can no longer be exercised.

Purpose of the Processing of Collected Data

User Data is collected to allow the Owner to provide its Service, comply with legal obligations, respond to requests or enforcement actions, protect its rights and interests (or those of Users or third parties), identify any malicious or fraudulent activity, as well as for the following purposes: Statistics and Contacting the User.

To obtain detailed information on the purposes of the processing and on the Personal Data processed for each purpose, the User may refer to the section “Details on the processing of Personal Data”.