Last update: 22/11/2022
With the present policy, Rocalè S.r.l. unipersonale, with registered office in 20131 – Milano, via Nicola Piccinni n. 3, C.F./P. IVA 07692410967, Numero REA MI – 1975981, in the person of its legal representative pro tempore, in its quality as data controller, provides to the Users of the Website rocalecalzature.it (rocale.it, rocalecalzature.com) (hereinafter referred to as “Website”), informs the data subject (User) that his personal data relating to navigation within the Website, with direct access from the homepage or through sub-pages, as well as related to the services, goods or products offered, will be treated with utmost care and with appropriate means to guarantee security. We specify that the present policy – subject to provisions of Articles 13 and 14 of EU Regulation 2016/679 on the protection of personal data (also “General Data Protection Regulation” – GDPR) and to Italian Legislative Decree 196/2003 on data protection (Data Protection Code – “Codice in materia di protezione dei dati personali”) – are not to be considered valid for other and external websites that can be eventually consulted through the links present on this Website.
The data controller is Rocalè S.r.l. unipersonale, with registered office in 20131 – Milano, via Nicola Piccinni n. 3, C.F./P. IVA 07692410967, Numero REA MI – 1975981. The Data controller can also be contacted via e-mail at .
The processing of User data is aimed at:
The processing of the User’s personal data is lawful, as:
Rocalè S.r.l. unipersonale does not process personal data relating to minors who are under the age of 18. With the access to the Website, the eventual registration of a user account, the use of the services offered or the purchase of goods, the User expressly declares to be over 18 years old.
These data, through the normal functioning of the Site, are acquired and transmitted implicitly in the use of Internet communication protocols. This is information that is not collected to be associated with identified data subjects, but, by its very nature, through processing with data held by third parties, could allow Users to be identified.
This category of data includes the IP addresses or domain names of the computers used by the Users who connect to the Website, the addresses in the Uniform Resource Identifier (URI) of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server and other parameters relating to the operating system and to the user’s IT environment.
These data are used for the sole purpose of obtaining anonymous and aggregate statistical information on the use of the Website and to check its correct functioning, and permanently reside on third party servers (or hosting providers). The data could also be used to ascertain responsibility in the event of any illicit or harmful actions committed on or through the Website.
In any case, these e data processing and association activities are not carried out by the data controller, and are only used to check the correct functioning, to be then automatically deleted after processing.
For information on the use of cookies on the present Website, visit the appropriate Cookie Policy Cookie Policy.
These data are provided by the User, during his/her voluntary interaction with the Website, in order to use the services offered on the Website, purchase the products sold on the Website, request information, receive assistance or for any personal purpose.
In particular:
The processing of your personal data is carried out, using methods strictly necessary to meet the aforementioned purposes, by means of some or the set of operations indicated in art. 4, n. 2) of the EU Regulation 2016/679 2016/679: collection, registration, organization, structuring, storage, consultation, processing, adaptation, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and destruction of data. The operations may be carried out with or without the aid of electronic, telematic or automated means, however in compliance with the provisions of art. 32 of the EU Regulation 2016/679.
The provision of personal data by the User, although not a legal obligation, is a necessary requirement for:
therefore, the failure of the provision of personal data involves the impossibility to fulfil the aforementioned purposes.
In any case, by providing one’s personal data to the data controller, or to his authorized persons, for any of the purposes listed above, the data controller may process such data to fulfil legal obligations and pursue its legitimate interests in carrying out aggregated and anonymous statistical analyses related to browsing and users, and in establishing, exercising or defending of legal claims .
The User’s personal data will be processed and stored for the entire period necessary for the fulfilment of the aforementioned purposes and, in particular:
For the purposes listed above and to provide, improve, protect and promote our services, the User’s personal data may be disclosed to, or become known by:
The User’s personal data are not subject to any fully automated decision-making process, including profiling.
Personal data may be transferred to third countries outside the European Union and the European Economic Area, which ensure in any case adequate levels of personal data protection, as established by the European Commission through appropriate adequacy decisions. For further information: https://www.garanteprivacy.it/home/provvedimenti-normativa/normativa/normativa-comunitaria-e-intenazionale/trasferimento-dei-dati-verso-paesi-terzi.
The eventual transfer of personal data to third countries that do not ensure adequate levels of personal data protection, will be carried out only upon prior conclusion of specific agreements containing the so called “standard contract terms” with regard to the processing of personal data, approved by the European Commission.
Pursuant to articles 15-18 and 20-21 of the EU Regulation 2016/679, the User has the right to obtain:
a) confirmation of the existence or non-existence of personal data concerning him/her, even if not yet registered, and their communication in an intelligible form;
b) indication about:
c) updating, rectification or, when interested, the integration of data;
d) cancellation, transformation into anonymous form or blocking of data processed unlawfully, including data whose retention is unnecessary for the purposes for which the data were collected or subsequently processed;
e) attestation that the operations referred to in letters c) and d) have been brought to the knowledge, also as regards their content, of those to whom the data have been communicated or distributed, except in the case where this proves impossible o involves a manifestly disproportionate use of resources with respect to the protected right.
The User has the right to object, in whole or in part:
a) for legitimate reasons, to the processing of personal data concerning him/her, even if pertinent to the purpose of the collection;
b) to the processing of him/her personal data for the purpose of sending advertising or direct sales material, as well as for carrying out market researches or commercial communications.
The User has the right to withdraw, at any time, the consent given in relation to the processing activities of which it represents the legal basis, without affecting the lawfulness of the processing based on consent given before the revocation.
The User has the right to data portability, that is to receive personal data concerning him/her in a structured format, of common use and readable by automatic devices, and he/she has the right to transmit these data to another data controller without hindrance. The User also has the right to lodge a complaint with a supervisory authority (in Italy, the Authority for the Protection of Personal Data: www.garanteprivacy.it)
The User can exercise his rights through written request sent to the data controller, using the contact details indicated above.
Rocalè S.r.l. unipersonale reserves the right to modify, update, add or remove parts of this Privacy Policy at its discretion and at any time. The User concerned (data subject) must periodically check any changes published on the Website.