This information is provided to users (individuals who operate on behalf of clients or potential customers such as legal persons) who access and consult the CANTINA F.LLI ZENI S.R.L. website, see art. 13 of Legislative Decree 196/2003 – “Code regarding the protection of personal data” (as amended by Legislative Decree 101/2018) and art. 13 GDPR 2016/679 – “European regulation on the protection of personal data”. To access immediately the cookie policy, click here.

Ownership of the zenivinoshop.it website

www.zeni.it, www.museodelvino.it, www.zenivinoshop.it, owner of all the website who can also be reached via the associated third level aliases or domains (hereinafter “web”) is CANTINA F.LLI ZENI SRL, registered office in Via Costabella 9 – 37011 Bardolino (VR) – CF and VAT No. 04142840232. It’s possible to contact the Data Protection Officer (DPO), at the following e-mail address dpo@zeni.it.

Terms and conditions of use

The user of the website is subject to the acknowledgment, acceptance and compliance of the terms and conditions which have been decided and reported below. In case of non-acceptance, you are advised not to use the Company website or to download any material from it.

Limits of use of the web and copyright

All the material and contents of the websites are property of CANTINA F.LLI ZENI S.R.L. and therefore protected by intellectual property rights, in compliance with the actual legislation related to the copyright. The documentation, images, contents, software and any other element of the websites are the exclusive property of CANTINA F.LLI ZENI S.R.L. Access to the websites do not give the user the right to appropriate, reproduce, modify, distribute, republish, in any form, in whole or in part, the information contained therein. It is possible to store and print such contents for personal use only. The trademarks, logos and distinctive signs used on the websites are the property of CANTINA F.LLI ZENI S.R.L.; they cannot be used without the prior written consent of CANTINA F.LLI ZENI S.R.L. Additional trademarks and logos of third parties used on the web are exclusive property of their respective owners. Any use or reproduction in any form of the trademarks and logos is prohibited.

Limitation of liability

The contents of the websites are published for information purposes regarding the activities and products of CANTINA F.LLI ZENI S.R.L.; they do not represent, and they cannot be considered as a sale offer, subscription or solicitation of any kind. Despite the websites have been created with extreme care and attention, CANTINA F.LLI ZENI S.R.L. does not guarantee the completeness and correctness of the information or for any material errors or omissions on the data contained therein. CANTINA F.LLI ZENI S.R.L. disclaims any responsibility for any loss or damage due to or related to the use of the websites, and it does not assume responsibility for any temporary inaccessibility of the websites or for information not updated. CANTINA F.LLI ZENI S.R.L. has the right to intervene at any time and without prior notice, to make changes, corrections, updates and improvements to the structure of the websites and to the information / documents contained therein.

Links

CANTINA F.LLI ZENI S.R.L. does not assume any responsibility for information and/or documents published by third parties on websites where it presents an interactive link (hyperlink) or for technical-operational methods used by such websites with reference to the aspects of information security and protection of privacy. The user who decides to visit other websites linked to this one can do that at his own risk, assuming the responsibility of taking all the necessary precautions. In any case, the existence of the link does not imply any form of sponsorship/authorization by CANTINA F.LLI ZENI S.R.L. Therefore, in any case CANTINA F.LLI ZENI S.R.L. may be held responsible for direct and/or indirect damages caused by the use and/or navigation of the websites linked to this website.

Website Information (privacy policy)

This document describes how to manage the sites: www.zeni.it, www.museodelvino.it, www.zenivinoshop.it, with reference to the processing of personal data for those who interact with the services provided: the information is provided – see art. 13 of Legislative Decree 196/2003 (as amended by Legislative Decree 101/2018) and of art. 13 EU Regulation 2016/679 (GDPR) only for the websites mentioned above and not for other websites that may be consulted by the user via links, of which CANTINA F.LLI ZENI S.R.L. it is not in any way responsible. To offer personalized and non-personalized services, provided by its websites, CANTINA F.LLI ZENI SRL, as Data Controller, processes the personal data necessary for their provision and guarantees, within the framework of the regulatory provisions. Thank to it, the collection of personal data takes place in respect of fundamental rights and freedoms, as well as the dignity of the data subject with reference to confidentiality, personal identity, the right and protection of them. Additional and contextual specific information is provided on the pages of the websites, prepared for on-demand services that provide forms for data collection.

Types of data processed

Personal data may be automatically collected during the navigation of the websites and its services or they may be entered voluntarily by the end user. Among the personal data collected (independently or through third parties) by the Data Controller, there may be: IP address, date and time of visit, type of browser and device used, web page of origin and exit, etc.). Among the personal data transmitted by the user there may be: identification data (company name, VAT number or fiscal code, or name and surname, etc.) and contact details (name, city, address or other elements of personal identification, such as name, surname, telephone, e-mail address, etc.) or even registration data functional to the creation and activation of the own account and data relating to commercial and economic transactions functional to the purchase of a product on our website www.zenivinoshop.it (specific informative document available during the registration process).

a) Navigation data and other data

The computer systems and software procedures used to operate this website, acquire during their normal operation, some personal data whose transmission is implicit in the use of internet communication protocols. This information is not collected to be associated with identified people, but they can be processed and associated with data, held by third parties, which allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users connecting to the website, the URI (Uniform Resource Identifier) ​​addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numeric code indicating the status of the response given by the server (success, error, …) and other parameters relating to the operating system and the user’s IT environment. These data are used only to obtain anonymous statistical information able to improve the correct functioning of the website. The data could be used to ascertain responsibility in the event of hypothetical computer crimes against the site under request of competent authorities. Any use of cookies – or other tracking tools – by this website or by the owners of any third-party services used by it, unless specified, aims to identify the user and record the related preferences for purposes closely related to the supply of the service requested by the user.

b) Personal data provided voluntarily by the user

Personal data may be entered voluntarily by the user (by filling in forms or sending e-mail messages), to make requests or to be able to use the services provided by the website. The provision of these data is optional, explicit and voluntary, and it involves the subsequent acquisition of the sender’s e-mail address, necessary to respond to requests, as well as any other personal data entered for the purposes of the service and for those further granted by the user. Specific information can be found on the pages where the forms are provided with the fields containing the necessary information and any indication concerning the obligation to provide the essential data to use the requested service. The user assumes responsibility for the personal data of third parties that may be published or shared through this site and the user guarantees that has the right to communicate or share them, so the owner does not have any responsibility to third parties.

Purposes of processing and purposes of cookies

The cookies are used to perform computer authentication, session monitoring and storage of technical information concerning the activities of users who access a web page or website. Considering what stated above, some operations on the website could not be performed without the use of cookies, which in some cases are necessary. These cookies, so-called “technical”, are useful because they can simplify the navigation, make it faster with a more effective use of the website (for example, they facilitate certain procedures when making online purchases, when authenticating to an area with restricted access or when a website automatically recognizes the language you would like to use). The www.zenivinoshop.it website uses cookies to make the website services easier, faster and more efficient for users surfing on web pages.

Users who access the website will receive very small amounts of information on their devices, whether they are computers or mobile devices, in the form of small text files (so the “cookies”, stored in the directories used by their browser). The cookies used allow us to: • store browsing preferences; • avoid re-entering the same information several times; • analyze the use of the services and content provided by the website by optimizing the browsing experience. The zenivinoshop.it website allows to use the e-commerce service: all users wishing to access the online shop available on this website must register by filling a registration form with their personal data (some are mandatory) for the creation of the account and the activation of credentials (username/e-mail + password) confidential just to them. By logging in, the user will be able, at any time and from any device, to freely access the online shop available on the website and take advantage of the services reserved just to registered users (aimed at managing the user profile, making personal purchases, to carry out commercial and economic transactions, to check the status of the order, to receive communications regarding the order or the transactions carried out and also to send requests for information or to take advantage of promotional offers). The website www.zenivinoshop.it does not use “profiling cookies” (own or third-party) which are usually aimed at creating users’ profile, analyzing their consumption habits, the choices made and their interests, in order to guarantee personalized content and to advertise targeted products, in line with their preferences.

For additional information about the use of cookies, you can refer to the documents which can be found here:

https://www.zeni.it/cookie-policy/
https://www.zenivinoshop.it/cookie-policy/
https://www.museodelvino.it/cookie-policy/

Legal basis

The personal data of users who visit the web pages of www.zeni.it, www.museodelvino.it, www.zenivinoshop.it, can be acquired using cookies, for the purposes described above. Using the technical cookies represent a legitimate interest of the owner; the lawfulness of the treatments referable to the use of analytical cookies or third-party cookies and/or the eventual use of profiling cookies, is instead based on the provision of an explicit and clear consent by the user (on the first access to the website). The personal data of users who access our website to use the services provided, are conferred by the interested parties on a spontaneous and voluntary basis. In this context, the legal basis of the processing consists of the following conditions: • execution of a contract (order) of which the interested party is who execute the pre-contractual measures adopted under his request (information and commercial offers); • pursuit of the legitimate interest of the data controller (promotion of commercial activity to customers or potential customers, who explicitly request it);

  • Contract execution (order) of which the interested party is included, or executor of pre-contractual measures adopted at the request of it (information and commercial offers);
  • Pursuit of the legitimate interest of the data controller (to verify the correct use of the websites);
  • Acquisition of consent (for profiling and marketing purposes)

 

Mandatory or optional nature of providing data

The personal data collected by these websites, either independently or through third parties, are web and personal data spontaneously provided by the user. The user can refuse to provide to the owner the navigation data. To do this, the user must disable cookies by following the instructions provided by your browser. This procedure can make browsing worse and may limit and/or prevent the use, in whole or in part, of the site’s features. Regarding the optional provision of data, more information is provided about the cookies present on the website in the “cookie policy” document accessible both from this complete information and from the summary information contained in the banner published on the website. The data on the collection forms on this website is optional, except for those indicated as mandatory in order to allow the user to access the services offered. The failure to provide certain personal data by the user may prevent you from using all the features and services provided by this website or to receive feedback on your requests. The processing of data provided spontaneously for the purposes described above is carried out in the absence of consent because it is strictly necessary for the processing operations and the activation of the services requested by the user. In accordance with current legislation, the interested party may also be required to consent to the processing of data (in cases where the stated purpose provides for it) by ticking the appropriate box in the specific form for which it is responsible. It is understood that the interested party can revoke any consent given at any time, without this compromising the lawfulness of the treatment based on consent before the revocation.

Treatment modalities

Personal data will be electronically processed, in compliance with the principles of lawfulness, necessity and relevancy, by adopting guarantee measures aimed at identifying security measures at any stage of the treatment process, having regard to the specific purposes of the processing. The Data Controller may do automated decision-making processes (such as profiling) on ​​users’ data or data of those who interact with these websites only with the free, specific consent of the interested party.

Data retention

The Data Controller maintains the data for the time necessary to obtain anonymous statistical information about the use of the website and to check its correct functioning. Personal data will be kept for the period necessary to achieve the purposes; the personal data collected for purposes related to the legitimate interest of the Data Controller will be processed and stored until such interest is satisfied, subject to a further retention period imposed by law or explicit request by the Authority. When the treatment is based on the consent of the data subject, the Data Controller may keep personal data longer, until such consent is revoked (when requested by the data subject). The data, after the storage period indicated above and once the purposes have ended, will be deleted or made anonymous and processed solely for statistical analysis.

Data recipients

The data holder does not communicate any personal identification data or information to third parties except, if necessary and for a reason strictly necessary, to those who act as suppliers for the provision of services relating to the management of the website and for the consequent management of the contractual relationship and related administrative requirements, as well as to those who provide IT services or commercial electronic communications services. The data holder uses appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of personal data. In addition to the Owner, in some cases, other parties involved in the organization of this website (sales / marketing personnel, system administrators, etc.) or external parties (suppliers of technical services, hosting providers, company of IT services, companies specializing in the management, development and maintenance of websites, companies specializing in the management of electronic communications services, etc.) also appointed, where necessary, for the processing of data by the data holder. The updated list of data processors may always be requested from the Data Controller.

Data transfer

Under no circumstances it is possible the transfer of personal data to a third country or an international organization (Article 13, paragraph 1, letter f) of the GDPR). However, the Owner reserves the right to use cloud services, in which case, the providers of the services appointed as responsible for the treatment under and for the effects referred to art. 28 of GDPR 2016/679, limited to the performance of specific processing activities, will be chosen among those companies certified in compliance with ISO 27001 (information security), ISO 27017 (cloud security), ISO 27018 (cloud privacy). For the purposes of information and commercial promotion of its products, the data, limited to the e-mail address, will be used for sending electronic communications (newsletters) via:

  • The MailChimp platform (The Rocket Science Group, LLC, 512 Means St., Suite 404 – 30318 Atlanta, Georgia) residing outside the European Union.
  • Active Campaign (North Dearborn Street, 5th floor Chicago, IL 60602). The American companies mentioned above have agreed to the contract called “EU-U.S. Privacy Shield “with the European Union, therefore, the regulation on privacy is considered to observe with the current European provisions of the GDPR.

 

Rights of the interested party

The interested party, to whom the personal data refer, has the right to exercise his rights at any time (pursuant to articles 15-22 of the GDPR) in order to obtain: • confirmation that a treatment of personal data is in progress or not in order to gain access to the data and the following information (purpose of the processing, categories of personal data, recipients and/or categories of recipients to whom the data have been and/or will be communicated, storage period); • the rectification of inaccurate personal data concerning the interested party and/or the integration of incomplete personal data, even providing a supplementary declaration; • the deletion of personal data, in the cases provided for by current legislation; • the limitation to processing, in the cases provided by current legislation; • the portability of data, in particular to ask the Data Controller for personal data and/or request the Data Controller to directly transmit the data to another Data Controller; • opposition to the processing of personal data, in the cases provided for by current legislation. With regards to their rights, the interested party may place a request by mail addressed to the Data Controller (see address above) or by sending an e-mail to: dpo@zeni.it, specifying the subject of the request, the right it intends to refer to and by attaching a photocopy of an identity document that certifies the legitimacy of the request.

Right to complain

Interested parties who believe that the processing of personal data referring to them occurs in violation of the provisions of the Regulations, have the right to complain with the competent control authority (Guarantor for the Protection of Personal Data) according to the procedures provided on the website www.garanteprivacy.it (pursuant to art. 77) or to take appropriate legal proceedings in relation to the art. 79 of the Regulation itself (GDPR).

Applicable law and jurisdiction

These conditions have been set by the Italian law. Any dispute arising regarding the interpretation, application or execution of these conditions will be referred to the exclusive jurisdiction of the Court of Verona.