With regard to the personal data provided of a customer /visitor of www.gemelli-personalizzati.it ("website"), Gemelli-Personalizzati.it, Via della Moscova 13, 20121, Milan /Lombardy (following: "GPit") is the responsible authority that collects and processes this data.
Below we describe how we take care of the privacy of all customers /visitors of this site. GPit takes importance to the implementation of lawful data processing that protects your personal data. We believe that everyone benefits when data is collected and used in a responsible manner.
We inform you about data collection, use and processing of personal data when using our website www.gemelli-personalizzati.it (hereinafter: "Website"). So far as information relates exclusively to our website, we expressly point this out to you.
I. Nature, scope and purpose of the collection, processing and use of personal data
The use of the services of gemelli-personalizzati.it is free. Without the provision of all these data in accordance with sections III.1 to III.4, various services can only be used to a limited extent. For this reason, GPit grants the users of this service the highest possible data protection standard. The collection, processing, storage and use of the generated data is exclusively for the purposes stated here.
As part of the use of GPit services, GPit processes and stores data of usage intended to provide information about how and when users use the service. These include above all log data, which shows when the user has logged into the service.
We use this data to provide you with the service you require. It may be necessary to share your personal information with companies we use for the provision of the service or for the execution of your order. These are e.g. 3rd party service provider. They receive only the necessary data from us and are obliged to protect your personal data. We need your E-mail address so that we can discuss and confirm all the information you need to make an order with us. (for example, to send you the order confirmation or invoice). It could also be services that are not directly related to the provision of user-requested services, e.g. marketing activities or external service providers who may have their registered office outside the European Union. In such cases, information will be passed on to these companies or individuals for further processing. An excerpt from the relevant companies can be found in section V. (External service providers including information on cookies).
The corresponding service providers are carefully selected by us, linked by legally compliant contracts and regularly reviewed. The service providers may only use the data for the purposes specified by GPit.
We pay attention to the principle of earmarked data and use /collect, process and store your personal data only for the purposes requested by you. A transfer of your personal data to third parties will not take place without your consent unless it is necessary for the provision of the service or the order. The transfer to state institutions and authorities entitled to receive information only takes place within the scope of the statutory information obligations or if we are obliged to provide information by a court decision.
As we use data for the purpose that requires your consent in accordance with the statutory provisions, we will ask for your consent in each case. You can revoke your given consent at any time, also for future use of your data.
GPit does not collect personally identifiable information that has been made available to us through our website for use by third parties for marketing purposes, to sell them or make use of host mailings. GPit guarantees the confidentiality and security of this information as far as it is used in the course of its business activities. Access to this information is limited and we use technical and organizational security measures to protect the data against loss, misuse and improper disclosure.
Please note that data transmission over the Internet (for example, when communicating via e-mail) may have security vulnerabilities. A complete protection of the data from access by third parties is not possible.
II. Responsible party
Responsible party for the collection, processing and use of personal data within the meaning of the Federal Data Protection Act is the:
If you have any questions regarding the processing of your personal data, please contact our data protection officer Mr. Christian Hemmrich.
III. Note for children and adolescents
Persons under the age of 18 are able to make an inquiry, however, the products cannot be effectively purchased by the limited businessperson. It requires the consent of the legal representatives.
V. Data collection for informational use of our website
You can visit our website and inform yourself without having to provide personal information. With each access to the pages of GPit, however, usage data are transmitted by the respective internet browser and stored in log files, the so-called server log files. No personal information will be collected, other than the data transmitted by your browser or your used device in order to facilitate your visit to our website. The following data is transmitted to the thaler:
- IP address
- Date and time of the request
- Time zone difference to Greenwich Mean Time (GMT)
- Content of the request (concrete page)
- Access Status / HTTP status code
- Transmitted amount of data
- Website (from which the request comes)
- Operating system
- Language and version of the browser software
- Advertising Identifier (IDFA)
The IP addresses of the users will be deleted or anonymized after the end of use. In the case of anonymization, the IP addresses are changed in such a way that the details of personal or factual circumstances can no longer be assigned to a specific or identifiable natural person, or only with a disproportionately large amount of time, cost and manpower. We evaluate these log file records anonymously in order to further improve our services and make it more user-friendly, to find and fix bugs faster and to control server capacities. For example, it is possible to understand at what time the use of the GPit website is particularly popular and provide adequate data volume to ensure the fastest possible access.
In addition, when using our website cookies are set on your device. For more information on the cookies used, see IX.
VI. Data processing in the context of ordering GPit products
1. Data collection and processing on request of GPit medal production
For the purpose of requesting an order from GPit ("Request"), you voluntarily provide personal information. The following data is collected, used and processed:
- First and Last Name
- Post Code and City
- E-mail address
Your data might be forwarded to a shipping company that is instructed with the delivery of your order.
VII. Payment service provider
To process payments in connection with the use of our products and services, GPit uses various payment service providers who collect, store and process the data:
- Payment by credit card: For payment by credit card, Stripe will process payment from Stripe Payments Europe Ltd, Block 4, Harcourt Center, Harcourt Road, Dublin 2, Ireland. For more information on Stripe privacy, visit https://stripe.com/en/privacy#translation. To use this service, Stripe collects, stores and processes your personal information such as your name, address, telephone number and e-mail address as well as your credit card or bank account details. Stripe alone is responsible for the protection and handling of data collected by Stripe.
GPit uses so-called "cookies" on the website which are stored as text files on your access device. Cookies are small files that contain text information that is stored on your hard drive while the inquiry is being retrieved. On certain pages of our website, cookies are used to understand your interests in using the Internet.
So we can understand what's important to you and better tailor our content to you.
Cookies also serve to store the preferences of the visitors. This allows us to tailor the contents of our website to the needs of our customers. We cannot connect to our customers with cookies. Cookies are not used to link and associate the identity of a persons that accesses our website. You can deactivate the option to save these cookies at any time in your system settings of your browser and delete existing cookies. Each user can also view the website content without cookies. If you do not accept cookies, however, this may result in a restricted functionality of the website.
IX. Social plugins
In this regard, we point out that GPit is not liable for any kind of misuse of this personal information by third parties. For links to third-party social media platforms or to individuals managed on separate servers, GPit has no control over the presentation and use of the content provided there. GPit accepts no liability for the accuracy and use of content provided on these servers. Linking to a third party website does not imply any endorsement or endorsement by the third party of the third party's products and services.
GPit assumes no liability for the storage and /or use of customer data on third-party servers. We recommend that you familiarize yourself with the privacy policies of the third-party vendors we link to.
1. Use of Facebook plugins on our website
Our services include plugins from the Facebook social network (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland). The Facebook plugins can be recognized by the Facebook logo or the "Like-Button" ("Like") on our site. An overview of the Facebook plugins can be found here: http://developers.facebook.com/docs/plugins/
When you visit our services and click on the Facebook plugin, a direct connection is established between your browser and the Facebook server. Facebook receives the information that you have visited our site with your IP address. If you click on the Facebook "Like" button while logged in to your Facebook account, you can link the contents of our pages to your Facebook profile. As a result, Facebook can assign the visit of our services to your user account. We point out that we as the provider of the services are not aware of the content of the data transmitted and their use by Facebook. If a user is not a member of Facebook, there is still the possibility that Facebook will find out and save their IP address. According to Facebook, only an anonymous IP address is stored in Germany.
If a user is a Facebook member and does not want Facebook to collect data about him via this offer and associate it with his member data stored on Facebook, he must log out of Facebook before visiting the website. Other settings and inconsistencies regarding the use of data for promotional purposes are possible within the Facebook profile settings: https://www.facebook.com/settings?tab=ads .
2. Use of Facebook pixels on our website
On our website we use the "visitor action pixel" of Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook"). With its help, we can track users' actions after they've seen or clicked a Facebook ad. This allows us to track the effectiveness of Facebook advertising for statistical and market research purposes. The data collected in this way is anonymous for us, ie we do not see the personal data of individual users. However, this data is stored and processed by Facebook, about which we inform you according to our knowledge.
X. Use of tracking technologies
1. Use of Google Analytics and Google Tag Manager on our website
Our website uses Google Analytics and Google Tag Manager, web analytics services provided by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA ("Google"). Google Analytics and Google Tag Manager use so-called "cookies", text files that are stored on your computer / smartphone and that enable us to analyze the use of our website. The information generated by the cookie about your use of our website is usually transmitted to a Google server in the USA and stored there. However, on our website, your IP address will be truncated by Google beforehand within member states of the European Union or in other contracting states of the Agreement on the European Economic Area.
Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to the website usage and internet usage to the website operator. The IP address provided by Google Analytics and Google Tag Manager from your browser will not be merged with other Google data.
You can prevent the storage of cookies by a corresponding setting of your browser software; however, we point out that in this case you may not be able to fully use all functions of our website. In addition, you may prevent the collection by Google of the data generated by the cookie and related to your use of our website (including your IP address) and the processing of this data by Google by downloading the browser plug-in available under the following link and install:
For more information, please visit: www.google.com/intl/de/analytics/privacyoverview.html
2. Using Double Click by Google on our website
By using our web pages, you agree to the processing of the data collected about you by Google and the manner described above, the data processing and the stated purpose. You can prevent the storage of cookies by a corresponding setting of your browser software.
We point out, however, that in this case you may not be able to use all the functions of our website in full. You may also prevent the collection by Google of the data generated by the cookies and related to your use of the website as well as the processing of this data by Google by using the link: www.adssettings.google.com/anonymous under the point DoubleClick Deactivation Extension Download and install the available browser plug-in.
Alternatively, you can disable the Doubleclick cookies on the Digital Advertising Alliance website at www.aboutads.info/choices
3. Use of Facebook Custom Audience on our website
Our website uses the communication tool “Website Custom Audiences” from Facebook. For this purpose, so-called Facebook pixels are integrated into our websites, which mark you in anonymous form, ie without identifying you as a person, as a visitor to our website. If you are later logged in to Facebook, a non-reversible and thus non-personal checksum (hash value) will be transmitted from your usage data to Facebook for analysis and marketing purposes. As a result, Facebook can assign the visit to our pages to your user account. We can use this information for the display of Facebook Ads. For the product Website Custom Audiences the Facebook Cookie is addressed.
If you do not want information about your behavior to be used by Facebook Custom Audience, you can post it on your Facebook account via this link: www.facebook.com/ads/website_custom_audiences.
XI. Retargeting - Use of Google Adwords (Remarketing / Conversion Tracking) on our website
GPit uses Google Adwords service from Google. Our website uses the remarketing feature of Google Adwords. This feature is designed to show interest-based ads to visitors to the site through the Google Network. The website visitor's browser stores so-called "cookies", text files that are stored on your device and that allow the user to recognize them when they visit websites that belong to the Google advertising network. On these pages, advertisers can then be presented with ads that relate to content that the visitor previously visited on websites that use Google's remarketing feature.
XII. E-mail Newsletter
With our e-mail newsletter we inform you about our new products and special offers. If you would like to receive the e-mail newsletter, we need an e-mail address from you. A transmission of our newsletter takes place only if you agree. In doing so, we will check whether you are the owner of the specified e-mail address or whose owner agrees to receive the e-mail newsletter.
By subscribing to our newsletter, you agree to the receipt and the procedures described. We send newsletters and e-mails with advertising information (hereinafter "newsletter") only with the consent of the recipient or a legal permission.
Incidentally, our newsletters contain information on interesting medal projects of the past, new products and production techniques as well as on GPit itself. This includes references to blog posts, publications, trade fair appearances, events, our services or online appearances.
Double opt-in and logging
The registration for our newsletter takes place in a so-called double opt-in procedure. After sending an inquiry, you will receive an e-mail asking you to confirm your registration. This confirmation is necessary so that nobody can register with an external e-mail addresses.
The registration for the newsletter will be logged in order to prove the registration process according to the legal requirements. This includes the storage of the login and the confirmation time, as well as the IP address. Similarly, the changes to your data stored with CleverReach are logged.
Use of the shipping service provider "CleverReach"
The newsletter is sent via "CleverReach", a newsletter shipping platform of the German provider CleverReach GmbH & Co. KG, Mühlenstr. 43, 26180 Rastede, Germany.
The e-mail addresses of our newsletter recipients, as well as their other information described in these notes, are stored on the servers of Cleverreach. CleverReach uses this information to send and evaluate the newsletters on our behalf. Furthermore, CleverReach may, according to its own information, use this data to optimize or improve its own services, e.g. for the technical optimization of the shipping and the presentation of the newsletter or for economic purposes, to determine from which countries the recipients come. However, CleverReach does not use the data of our newsletter recipients to address them themselves or to pass them on to third parties.
We rely on the reliability, IT and data security of CleverReach. All CleverReach data centers have undergone independent certifications and reviews. They have received DIN ISO / IEC 27001 certification and have been certified as the Data Service Standard of the Credit Card Industry (DSS / PCI) as a Level 1 Service Provider. In addition, you undergo SOC 1 reviews annually and have been successfully certified at the Moderate level for US government systems and at the DIACAP Level 2 for DoD systems. CleverReach uses a TÜV-certified information security management system, which ensures excellent data security and flawless data protection.
To subscribe to the newsletter, it is sufficient to enter your e-mail address. Optionally, we ask you to provide your first and last name. This information is only for the personalization of the newsletter
Statistical survey and analyzes
The newsletters contain a so-called "web-beacon", a pixel-sized file that is retrieved from the CleverReach server when the newsletter is opened. This call will initially collect technical information, such as information about the browser and your system, as well as your IP address and time of retrieval. This information is used to improve the technical performance of services based on their specifications or audience and their reading habits, based on their locations (which can be determined using the IP address) or access times.
Statistical surveys also include determining if the newsletters will be opened, when they will be opened and which links will be clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. However, it is neither our goal nor that of CleverReach to observe individual users. The evaluations serve us much more to recognize the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.
Termination / Revocation
You can terminate the receipt of our newsletter at any time, ie. Revoke your consent. At the same time, your consent to sending it via CleverReach and the statistical analyzes will lapse. A separate revocation of the dispatch via CleverReach or the statistical evaluation is unfortunately not possible. A link to cancel the newsletter can be found at the end of each newsletter. In accordance with the provisions of the Data Protection Regulation (DSGVO), which will apply from 25 May 2018, we inform you that the consents to the sending of e-mail addresses on the basis of Art. 6 para. 1 lit. a, 7 DSGVO and § 7 (2) no. 3 and (3) UWG. The use of the shipping service provider CleverReach, carrying out the statistical surveys and analyzes as well as logging the registration process, are based on our legitimate interests in accordance with. Art. 6 para. 1 lit. f DSGVO. We are interested in using a user-friendly and secure newsletter system that serves both our business interests and the expectations of our users.
XIII. Transfer of personal data abroad
To the extent that GPit transmits personal data to States outside the scope of Directive 95/46 / EC of the European Parliament and of the Council of 24 October 1995 on the protection of individuals with regard to the processing of personal data and the free movement of such data, GPit shall ensure that the recipient the data ensures an adequate level of data protection. When transmitted to the US, GPit will oblige the Recipient to comply with and abide by the principles of the Privacy Shield (ie to recognize minimum standards in the handling of personal data). In addition, in order to ensure an adequate level of protection for the recipient of the data, we use the standard European Union model contracts for the transfer of data to other EU countries, as amended.
XIV. Information, correction, cancellation and revocation
At any time you have the right of free information about your stored personal data, their origin and recipients and the purpose of the data processing. In addition, in the legally regulated cases of § 35 BDSG, you are entitled to a correction, blocking or deletion of your personal data. GPit points out that in order to authenticate a person prior to providing information, corresponding documents may be requested since personal data may not be disclosed to unauthorized persons.
If you have given consent to the use of data, you can revoke them at any time with future effect. The revocation of consent may mean that our services are no longer available to you without restriction or that the usage relationship is terminated. It should be noted that certain data collection and storage can be based on a legal basis, regardless of whether consent is given. In this case, we will stop further processing and use of your personal data and delete or block them, unless we are obliged by law to further processing, in particular further storage.
XV. Changes to this policy