Privacy Policy

Schedule: Data Protection Act 2018 Compliance

  1. DEFINITIONS

In this Schedule, the following words shall have the following meanings:

“Act”

means the Data Protection Act 2018.

“Associate”

means any corporate or other form of organisation or any individual person with whom you have an association which does, or could, entail the transfer of personal data to us for processing.

“ICO”

means the Information Commissioner’s Office.

“Data Protection Legislation”

means all or any of:

(a) the UK GDPR,

(b) the Act,

(c) regulations made under the Act

(d) regulations made under section 2(2) of the European Communities Act 1972 which relate to the EU GDPR or the Law Enforcement Directive.

“the UK GDPR”

means Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (United Kingdom General Data Protection Regulation), as it forms part of the law of England and Wales, Scotland and Northern Ireland by virtue of section 3 of the European Union (Withdrawal) Act 2018.

“the EU GDPR”

means Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation) as it has effect in EU law..

“Law Enforcement Directive”

means Directive (EU) 2016/680 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data by competent authorities for the purposes of the prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, and on the free movement of such data, and repealing Council Framework Decision 2008/977/JHA.

"data controller", "data processor", “sub-processor”, "data subjects", "personal data", "process", "processed" and "processing" shall have the meanings respectively, as defined in the Act.

In this agreement, “personal data”, is limited to data which comes into our hands in some way connected to this agreement.

  1. DATA PROTECTION
    • The obligations described in this Schedule are in addition to our obligations under the Data Protection Legislation.
    • To enable us to provide the Services under this agreement, you authorise us to process personal data on your behalf.
  2. POLICY FOR PROCESSING OF PERSONAL DATA
    • Regarding the processing of personal data as required by the general data protection regulation Data Protection Act Compliance 2018, before proceeding with processing, the user of the websitestudio-sette.com is informed that personal data collected through the website are subject to processing by the company through it and/or online tools, for the purpose indicated in this policy. To this end, the user is presented with the privacy policy prepared by Studio Sette (hereafter also “The Company”), creator of the activities available on the websitewww.studio-sette.com – registered office at 26 Bridge Street, Aberdeenshire, AB31 5SX. Information processing of personal data is collected directly by Studio Sette, for the purposes described below:
    • Legal basis – the personal data provided by the user when browsing the website are processed by The Company in accordance with the current regulations for the protection of personal data. The legal basis of the processing is identified in the prevision of its services by the company, in the management and facilitation of the website, as well as in the execution of online sales contract between the parties. The processing of your personal data by Studio Sette aimed at pursuing the following purposes:
    • Subscription to the newsletter:subscription to The Company’s newsletter denotes that you consent your personal data will be processed by the company for sending of commercial or promotional communications, relative updates (e.g. new arrivals, exclusive offers). Toa unsubscribe from the newsletter simply click on the “unsubscribe” link at the bottom of the emails received or by writing to info@sette-studio.com.
    • Registration: Registering on the websitestudio-sette.com only after your express and specific consent, personal data will be processed by the company for the purpose of registration on Our Website. You can alter this information any time in ‘my account’ section.
    • Online shopping:the personal data you provide will be used for the management, execution and fulfilment of the online sales contract. The data you provide will be processed by the company for the purpose of managing the purchase order – including but not limited to, payment, shipment, returns, customer support, administrative and accounting purposes. Payment by credit card, the fundamental information for the execution of the transaction (credit/debit card number, expiration date, security code) will be processed by paypal or other service provider.
    • Other:After you consent to content, the personal data you provided may be processed by the company for profiling activities, or analysis of your preferences aimed at creating personalized content and offers.
3.              METHODS OF PROCESSING AND STORING DATA – The processing of personal data is performed by the company in compliance with the provisions of the current legislation on privacy. The company processes personal data using The Webiste and online tools and with procedures strictly related to the purposes indicated in this policy. The company cannot guarantee its users that the measures taken for website security and the transmission of data and information on the website are capable of limiting or excluding any risk of unauthorized access or loss of data by devices pertaining to the user. It is suggested that the users of The Website ensure their computer is equipped with adequate software to protect the transmission of data (such as antivirus).
 
4.              APPROPRIATE TRANSMISSINO OF DATA – The company will process the data according to the principles of correctness - data will be used to the extent necessary and exact for processing and will only be used by company employees for authorized purposes.
5.              CHANGES TO THIS POLICY The company reserves the right to make changes to this policy at any time, giving notice to users on the website www.studio-sette.com or by email. The data subject may request the company to delete their personal data. Unless otherwise specified, the previous privacy policy will continue to apply to personal data collected until then

Appendix 1 to Schedule

Data Processing Activities

What we or you may process in each category

  1. We shall process this basic personal data
    • Name
    • Address
    • Email address
    • Phone number
    • Date of birth
    • Technical information relating to electronic communication, which is personal information only when associated with the name or identity of the data subject
  2. Retention period
    • We may retain personal data, along with much other data, for six years, for these reasons:
      • for accounting and taxation purposes;
      • to provide evidence if required in connection with a legal claim;
      • for any other reason where the law provides a six years limitation period;
    • If any event occurs which requires us lawfully to continue to retain data beyond that period, then we may do so.

 

Updated March 2022