Pluss SRL
Via F. D’Ovidio, 3
20131 – Milano (MI)
Italy
Ph: +39 0382 47.21.06
Fax: +39 0382 56.59.17
P.IVA: 02225020185
Protecting your privacy is our main goal
This policy is provided, in compliance with art. 13 and 14 of the EU Regulation 679/2016 (as follows “regulation”), to the users (as follows: “users” or “user”) of the website in mobile and desktop version, (as follows: “website”) property of PLUSS s.r.l., VAT number 02225020185 in person of the legal representative pro tempore, in quality of personal data controller (as follows: “controller”) and it aims to describe the management method of the website related to the processing of personal data, as well as to allow the website users to be aware of the purposes and methods of processing personal data by the controller in case of their conferment.
This document allows you to know our privacy policy to understand how your personal data is managed while you are using our services. It also allows you to consent, stated and aware, the processing of your personal data in the website areas where it is requested.
We remind you that, in the different areas of the website www.spectrumstore.com where we collect your personal data, specific notices in accordance with article 13 of the EU Regulation 2016/679 will be published for your necessary acknowledgement before supplying the requested data. Information and data supplied by you or acquired during the use of services on spectrumstore.com will be processed in accordance with the regulation and confidentiality obligation. Under regulation, personal data will be processed by the controller according to lawfulness, fairness, transparency, purpose and storage limitation, data minimisation, accuracy, integrity and confidentiality.
Index
- Data controller
- Personal data processed
- Browsing data
- Data voluntarily provided by the involved party
- Registration data
- Data processed in the social media interaction area
- Cookie
- Usage data
- Purposes of the processing
- Legal basis and the compulsory or optional nature of the processing
- Recipients of personal data
- Existence of an automated decisional process
- Place of data storage
- Processing methods and security measures
- Data storage period
- Rights of data subjects
Data controller
The controller of the processing conducted on the website is PLUSS s.r.l. VAT number 02225020185, in person of the legal representative pro tempore, with legal head office in Via F. D’Ovidio 3, 20131, Milano (MI), Italy.
The updated list of the managers and people in charge of the processing is guarded in the legal head office of the data controller.
Personal data processed/collected
Processing of personal data means every operation or a totality of operations made with or without the help of automatized processes and applied to personal data or totalities of personal data, as the collection, registration, organization, conservation, adaptation or modification, extract, consultation, the use, communication via transmission, spread or any other form of making it available, comparison or interconnection, limitation, cancellation or destruction. We inform you that data that is the object of processing will be composed of identification such as name, surname, email address, position data, an online identification and other suitable data to make you identifiable or recognizable, according to the type of service requested (as follows only “personal data”).
In particular, personal data processed by our website are the following:
a) Browsing data
The computer system and software procedures in charge of the website functioning acquire, during their normal operation, some personal data whose transmission is implicit in the use of the Internet communication protocols. It concerns information that is not collected with the aim to be associated with identified interested parties. This information by its own nature allows users’ identification through processing and associations with data held by third parties. In this data category we can find IP addresses or domain names of the users’ computers who connect to our website, addresses in URI notation (Uniform Resource Identifier) of the requested resources, the time of the request, the method used to make it, the dimension of the file obtained in response, the numeric code which indicates the status of the server’s response (successful, error, etc.) and other parameters concerning the operative system and the user’s computer environment. This data is used only to acquire anonymous statistical information about the website’s use and our users’ websites and to check the correct functioning, to identify anomalies and/or abuses and they are immediately canceled after the processing. Data could be used for responsibility inspection in case of hypothetical computer crimes against the website or third parties.
b) Data voluntarily provided by the involved party
The optional, explicit and voluntary sending of emails to email addresses present on the website implicates the following acquisition of the provided personal data.
Entering personal data to benefit from the specific services provided from the website (such as a contact form, newsletter subscription, fast purchase or job application) implies the acquisition of the provided personal data.
In any case, specific information related to the provided data will be contained in reference to specific services provided on the website.
c) Registration data
The website offers users the possibility to register and create one’s own personal account to benefit from further services.
Regarding personal data processing made in the registration range, please note that the data controller will carry out only the necessary processing to provide the service, except for further processing in compliance to the art. 6 of the regulation (e.g. consent of the newsletter). Data collected by the controller throughout the registration request are only the necessary ones to supply the service, in the specific:
- Password (chosen by the user)
- Name
- Surname
- Shipping address of the goods
- Phone number
- Company data (in case the user is a company or self-employed and needs an invoice)
- SDI code (in case the user is a company or self-employed and needs an invoice)
- Invoice address (in case the user is a company or self-employed and needs an invoice)
Provision of the above data is optional. However, without this information the data subject won’t be able to proceed with the account creation.
It should be noted that the interested party’s personal data, due to purposes strictly connected to the service supply, can be transmitted to third parties (e.g. carriers, bank institutions, payment operating systems).
The user is held accountable for the publication or sharing of third parties’ personal data through the website and he/her guarantees of having the right to communicate or disseminate them, freeing the owner of the site from any liability to third parties. Regarding this, the user frees the controller from any counterclaim, pretense, damage claim for processing damages, etc. from third parties in case their personal data have been submitted through the benefit of the services in violation with the regulation of the personal data protection.
If personal data processing is based on the users’ consent, he/her can cancel it anytime. The data controller, as far as his area of responsibility is concerned, will never publish or disseminate the user’s personal data.
d) Plugin Social Network
The website incorporates a plugin and/or social media button in order to allow easy content sharing on your favorite social networks. To protect our users’ privacy, this plugin’s programmation doesn’t set cookies when one enters the web page. They may be set up, if planned by the social network, only when the user effectively and voluntarily uses the plugin. Please note that if the user surfs the website while logged in to the social network, then he/she has already consented to the use of cookies transmitted by this website at the moment of the social network registration.
The collection and use of information obtained by means of the plugin are governed by the respective privacy policies of the social networks, to which reference is made:
- Facebook: https://www.facebook.com/help/cookies
- Instagram: https://help.instagram.com/1896641480634370
- Twitter: https://help.twitter.com/en/rules-and-policies/twitter-cookies
- Google+: http://www.google.com/policies/technologies/cookies
- Pinterest: https://about.pinterest.com/privacy-policy
- Tumblr: https://www.tumblr.com/privacy/
e) Usage data
Data related to the use of the website by the user can also be collected, for example visited pages, actions carried out, functions and the services used.
Cookies
Type of cookies
Spectrumstore.com website uses cookies to make the user’s browsing experience easier and more intuitive: cookies are small strings of text used to store some information that may concern the user, his preferences or the device of access to the Internet (computer, tablet, smartphone). Cookies are mainly used to adapt the website operation to the user’s expectations, offering a more personalized browsing experience and memorizing the choices made previously.
A cookie consists of a reduced set of data transferred to the user’s browser from a web server and it can be read only by the server that made the transfer. This is not an executable code and does not transmit viruses.
Cookies do not record any personal information and the identifiable information will not be stored. If you want, the saving of some or all cookies can also be prevented. However, in this case, the use of the site and the services offered could be compromised. To proceed without changing the cookie related options, simply continue browsing.
The following are the types of cookies used by the site:
- Technical Cookies
There are many technologies used to store information on the user’s computer, which are then collected by the sites. Among these the best known and most used are HTML cookies. They are used for browsing and to facilitate access and use of the site by the user. They are necessary for the transmission of communications on the electronic network to the supplier to provide the service requested by the customer. The use of technical cookies allows the safe and efficient use of the site.
Cookies that are inserted in the browser and retransmitted via Google Analytics or through the statistical service of bloggers are technical only if used to improve the website directly by the website manager himself, who can collect data in aggregate form on the number of users and how they use the website. Under these conditions, the same rules apply for analytics cookies, in the matter of regulation and consent scheduled for technical cookies.
In terms of duration, we can distinguish temporary session cookies that are automatically deleted at the end of the browsing session (they are used to identify the user and thus avoid the log-in to each page visited) and the permanent ones that remain active in the PC until expiry or cancellation by the user.
Session cookies can be installed to allow access and to stay in the reserved area of the web portal as an authenticated user. They are not stored permanently but only for the duration of the navigation until the browser is closed and they disappear. Their use is strictly limited to the transmission of session identifiers consisting of random numbers generated by the server necessary to allow the safe and efficient exploration of the site.
- Third-party Cookies
In relation to the provenience, we can distinguish cookies sent to the browser directly from the website a person is visiting and the third-party ones sent to the computer from other websites and not the one being visited. Permanent cookies are often third-party cookies.
The majority of third-party cookies are made of tracking cookies used to identify the online behavior, to understand interests in order to personalize advertising proposals for users. Third-party analytics cookies may be installed. They are sent by domains of the above mentioned third parties external to the website.
Third-party analytics cookies are used to process information about the users’ behavior on spectrumstore.com. The survey takes place anonymously in order to supervise the performance and improve the website usability. Third-party profiling cookies are used to create users’ profiles in the interest of proposing advertising messages aligned with the choices made by the users themselves.
The use of these cookies is regulated by the rules provided from third parties themselves, therefore we invite the user to read the privacy policy statement and hints to manage or disable the cookies on the related websites.
Cookie list
Necessary Cookies
Cookie name: __cfduid
- Provider: gsxtr.com
- Type: HTTP
- Expiration: 1 year
- First URL found: https://www.spectrumstore.com
- Cookie’s main purpose: used by the content web, Cloudflare, to identify reliable web traffic
- Initiator: script tag, page number of source line 50
- Origin: https://www.google-analytics.com/analytics.js
- Data sent to: United States
Cookie name: __cfduid
- Provider: Onesignal.com
- Type: HTTP
- Expiration: 1 year
- First URL found: https://www.spectrumstore.com
- Cookie’s main purpose: used by the content web, Cloudflare, to identify reliable web content
- Initiator: script tag
- Origin: https://www.spectrumstore.com
- Data sent to: United States
Cookie name: ASPSESSIONID#
- Provider: spectrumstore.com
- Type: HTTP
- Expiration: session
- First URL found: https://www.spectrumstore.com
- Cookie’s main purpose: preserves the users’ statuses in different pages of the site
- Initiator: web server
- Origin: www.spectrumstore.com
- Data sent to: Italy
Statistical Cookies
Cookie name: _ga
- Provider: spectrumstore.com
- Type: HTTP
- Expiration: 2 years
- First URL found: https://www.spectrumstore.com
- Cookie’s main purpose: creates a univocal ID used to generate statistical data on how the visitor uses the website
- Initiator: script tag
- Origin: https://www.google-analytics.com/analytics.js
- Data sent to: Netherlands
Cookie name: _gat
- Provider: spectrumstore.com
- Type: HTTP
- Expiration: session
- First URL found: https://www.spectrumstore.com
- Cookie’s main purpose: used by Google Analytics to limit the requests’ frequency
- Initiator: script tag
- Origin: https://www.google-analytics.com/analytics.js
- Data sent to: Netherlands
Cookie name: _gid
- Provider: spectrumstore.com
- Type: HTTP
- Expiration: session
- First URL found: https://www.spectrumstore.com
- Cookie’s main purpose: creates a univocal ID used to generate statistical data on how the visitor uses the website
- Initiator: script tag
- Origin: https://www.google-analytics.com/analytics.js
- Data sent to: Netherlands
Cookie name: collect
- Provider: Google-analytics.com
- Type: pixel
- Expiration: session
- First URL found: https://www.spectrumstore.com
- Cookie’s main purpose: statistics
- Initiator: script tag
- Origin: https://www.google-analytics.com
- Data sent to: Netherlands
Marketing Cookies
Cookie name: ads/ga-audiences
- Provider: google.com
- Type: pixel
- Expiration: session
- First URL found: https://www.spectrumstore.com
- Cookie’s main purpose: marketing
- Initiator: script tag
- Origin: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-629960-1&cid=132095197.1528453886&jid=839762679&_v=j68&z=1542629727
- Data sent to: Netherlands
Cookie name: fr
- Provider: facebook
- Type: HTTP
- Expiration: 3 months
- First URL found: https://www.spectrumstore.com
- Cookie’s main purpose: used by Facebook to provide a series of advertising products such as offers in real time by third-party advertisers
- Initiator: script tag
- Origin: https://www.spectrumstore.com
- Data sent to: Netherlands
Cookie name: IDE
- Provider: doubleclick.net
- Type: HTTP
- Expiration: session
- First URL found: https://www.spectrumstore.com
- Cookie’s main purpose: used by Google DoubleClick to register and produce reports on the users’ actions on the website after visiting or clicking one of the advertiser’s commercials in order to measure the efficacy of an advertisement and present an aimed commercial to the user
- Initiator: script tag
- Origin: https://cdn.siftscience.com/s.js
- Data sent to: Netherlands
Cookie name: test_cookie
- Provider: doubleclick.net
- Type: HTTP
- Expiration: session
- First URL found: https://www.spectrumstore.com
- Cookie’s main purpose: used to check if the user’s browser supports cookies
- Initiator: script tag
- Origin: spectrumstore.com
- Data sent to: Netherlands
Cookie name: __smListBuilderShown
- Provider: spectrumstore.com
- Type: HTTP
- Expiration: 30 years
- First URL found: https://www.spectrumstore.com
- Cookie’s main purpose: marketing
- Initiator: script tag
- Origin: spectrumstore.com
- Data sent to: Italy
Cookie name: __smSessionId
- Provider: sumo.com
- Type: HTTP
- Expiration: session
- First URL found: https://www.spectrumstore.com
- Cookie’s main purpose: marketing
- Initiator: script tag
- Origin: https://load.sumome.com/
- Data sent to: United States
Cookie name: __smToken
- Provider: spectrumstore.com
- Type: HTTP
- Expiration: 1 year
- First URL found: https://www.spectrumstore.com
- Cookie’s main purpose: marketing
- Initiator: script tag
- Origin: https://load.sumome.com/
- Data sent to: United States
Cookie name: __smVID
- Provider: spectrumstore.com
- Type: HTTP
- Expiration: 29 days
- First URL found: https://www.spectrumstore.com
- Cookie’s main purpose: marketing
- Initiator: script tag
- Origin: https://load.sumome.com/
- Data sent to: United States
Cookie name: __ssid
- Provider: spectrumstore.com
- Type: HTTP
- Expiration: 4255 days
- First URL found: https://www.spectrumstore.com
- Cookie’s main purpose: marketing
- Initiator: script tag
- Origin: https://cdn.siftscience.com/s.js
- Data sent to: Netherlands
Cookie name: apps/contentanalytics/scroll
- Provider: sumo.com
- Type: pixel
- Expiration: session
- First URL found: https://www.spectrumstore.com
- Cookie’s main purpose: marketing
- Initiator: script tag
- Origin: https://load.sumome.com/
- Data sent to: United States
Cookie name: channel%5Fid
- Provider: spectrumstore.com
- Type: HTTP
- Expiration: 29 days
- First URL found: https://www.spectrumstore.com
- Cookie’s main purpose: marketing
- Initiator: web server
- Origin: spectrumstore.com
- Data sent to: Italy
Cookie name: images/593188.gif
- Provider: hexagon-analytics.com
- Type: pixel
- Expiration: session
- First URL found: https://www.spectrumstore.com
- Cookie’s main purpose: marketing
- Initiator: script tag
- Origin: https://hexagon-analytics.com
- Data sent to: United States
Cookie name: images/650232.gif
- Provider: hexagon-analytics.com
- Type: pixel
- Expiration: session
- First URL found: https://www.spectrumstore.com
- Cookie’s main purpose: marketing
- Initiator: script tag
- Origin: https://hexagon-analytics.com
- Data sent to: United States
Purposes of the processing
The data controller informs the website users that data collected will be lawfully treated pursuant to art. 6 of the regulation, and under his specific consent when necessary, exclusively for the following purposes:
- Allow the provision of the services requested and the subsequent and autonomous management of the control panel, to which the user will access by registering and creating his/her profile including the collection, storage and processing of the data for the purpose of establishment and subsequent operational, technical and administrative management of the relationship connected to the provision of the services and the making of communications related to the performance of the established relationship.
- Needs related to the stipulation of the contract and tasks, to the related execution and subsequent modifications or variations and for any other expected obligation for the fulfillment of the above.
- Allow browsing and consultation of the website.
- Respond to requests for assistance or information, which we receive via email, phone or chat through the "Contact Us" section of our website.
- Respond and evaluate job applications sent through the “Careers” section.
- Operative, organizational, management, fiscal, financial, accounting and insurance needs related to the contractual and/or precontractual relation established.
- Necessity of monitoring the modalities of the provision of services, the relation progress with the suppliers, analisis and management of the risks connected to the contractual relation.
- Elaborate studies, researches, market statistics.
- For exclusive security purposes and prevention of fraudulent behavior, the data controller puts in place a system of automatic check that detects and analyzes the users’ behavior on the website associated with data processing, including IP address.
- Sending of newsletters concerning the items and discounts on the website.
Legal basis and the compulsory or optional nature of the processing
The data controller processes users’ personal data in case there is one of the following conditions:
- The data subject has given consent to the processing of his or her personal data for one or more specific purposes.
- The processing is necessary for the performance of a contract with the user and/or the implementation of pre contractual measures.
- Processing is necessary for compliance with a legal obligation to which the controller is subject.
- Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
- Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party.
However, it is still possible to ask the controller to clarify the specific legal basis of each processing.
The provision of personal data by the users is always optional but essential in relation to those data indicated as compulsory and tagged with an asterisk (*) via request forms. A potential refusal, although legitimate, to provide all or part of the requested data might compromise the regular course of the report and, in particular, for data considered indispensable, might implicate the impossibility on our part to regularly provide our requested services.
Recipients of personal data
Personal data provided can be known and used by the controller’s employees and/or collaborators, in charge of managing the website and the users’ requests, for the sole aim of executing strictly functional activities to reach the purposes declared in the previous art. 3.
Moreover, users’ personal data can be communicated to third parties in charge of the legitimate processing on behalf of the controller, as External Data Manager of Processing or Autonomous Data Controller of the Processing.
To be more specific, users’ personal data can be communicated for the following purposes, strictly necessary to supply the requested services:
- External management of payments with credit cards, wire transfer or other instruments. Data used for the payment will be acquired directly by the manager of the payment service requested without being handled in any way by the application. Payments are provided by communicating data to Paypal (Europe) S.à r.l. et Cie https://www.braintreepayments.com/en- it/legal/payment-services-agreement-eu or other managers of the payment service chosen.
- Prevention of fraud or other illegal behavior, by communicating data to Sift Science, Inc.
- Archiving, hosting and managing of the back-end infrastructure, transmitting data to Seeweb s.r.l.
- Sending of newsletters for promotion purposes and informative (prior explicit consent), by communicating data to AWS by Amazon.
- Management of job applications through the platform Recruitee.com of Recruitee B.V.;
- Statistics only of anonymous data communicated to Google LLC https://policies.google.com/privacy.
- Shipment of items purchased by communicating data provided during the order entry to the shipping society chosen by the owner (SDA, DHL and GLS).
Users can receive the list of the potential External Data Manager in charge of processing by simply sending a request to the controller.
Existence of an automated decisional process
There is not an automated decisional process. Data will not be subject to profiling.
Place of data storage
Data are processed in the controller’s headquarters and in every other place where the involved parties of the processing are located. For further information, please contact the controller at the following email address: help@spectrumstore.com.
Personal data can be transferred in Extra EU countries: USA.
The controller assures that personal data processing by these recipients is held in compliance with the regulation. Actually, transfers are based on an adequacy decision or on the Standard Contractual Clauses approved by the European Commission. Further information is available by sending a request to the controller.
Processing methods and security measures
Personal data processing is managed through IT and/or telematic tools, with organizational methods and logics strictly linked to the specified purposes.
The processing is handled according to the methods and tools suitable to guarantee the security and privacy of the data in compliance with art. 32 of the European Regulation 2016/679.
In carrying out the processing operations, however, all technical, IT, organizational, logistical and procedural security measures will be adopted pursuant to the Attachment B of the D.lgs. 196/2003, in order to guarantee the minimum data protection level required by law.
Data storage period
The controller will process personal data for a period necessary to fulfill the purposes linked to the execution of a contract between the controller and the user and, however, for no more than 10 years from the termination of the relationship with the user.
When personal data processing is necessary to pursue a legitimate interest of the controller, personal data will be stored until the accomplishment of the mentioned interest. In case the personal data processing is based on the user’s consent, the controller can store the personal data until the revocation. Personal data can be stored for a longer period if necessary to fulfill a legal requirement or by order of an authority.
At the end of the storage time, personal data will be deleted. Over this term, the access, cancellation, rectification and portability rights of the data will be revocated.
Rights of data subjects
Users may exercise certain rights with reference to data processed by the data controller. In particular, the user has the right to:
- Withdraw consent anytime.
- Object to the data processing.
- Access to his/her data (Art. 15 GDPR).
- Verify and request the correction of data (Art. 16 GDPR).
- Obtain the limitation of processing (Art. 18 GDPR).
- Cancel or remove his/her personal data (Art. 17 GDPR).
- Receive his/her own data or have it transferred to another holder (Art. 20 GDPR).
- File a complaint with the Data Protection Authority and/or file in court.
To exercise their rights, users can send a request to the following email address help@spectrumstore.com. Requests can be made for free and processed by the controller in the shortest possible time, in any case within 30 days.
Last update 15.04.2022