Privacy Policy e Cookie Policy

 

Data Controller
Leonardo Natale– 444 Madison Avenue Ste 1206 New York – NY 10022
info@bravo-compliance.com – +1 (201) 9899436

1. General considerations

The protection of your privacy when using our site is very important to us. We have therefore drafted this Privacy Policy with the aim of explaining what information we acquire and store and how this information can be further used by Bravo-Compliance.com. In this document we also illustrate our methods of use of cookies and analysis tools on our site and in the context of our products and services.

By accepting the following Privacy Policy, you consent to the collection, processing and use of your data in compliance with the laws in force on data protection and the provisions set out below. Please take due note of the fact that users under the age of 18 cannot transmit any personal data or provide any declaration of consent without the approval of their parents or responsible guardians. Any changes to our Privacy Policy will be published on this site and users, where necessary, will be informed by e-mail.

2. Our contacts

You have any questions or concerns about the data protection provided by Bravo-Compliance.com. In this case, please contact our data protection officer, who can be reached at the following contact details:

Good Compliance.

Privacy, Legal Service

444 Madison Avenue,

Ste 1206 New York

The easiest and fastest way to submit your questions is to write to our email address: info@bravo-compliance.com

 

3. Your rights

You can exercise your data protection rights against us at any time and free of charge.

You have the right to request confirmation of the processing of personal data concerning you. In this case, it is your right to obtain access to such data as well as further information in accordance with Article 15 of the General Data Protection Regulation (GDPR).
In accordance with Article 16 of the GDPR, you have the right to obtain the correction of inaccurate personal data without undue delay.
According to the provisions of Article 17 of the RGPD, it is your right to request that the data concerning you be immediately deleted or otherwise require, in accordance with Article 18 of the RGPD, the limitation of data processing.
Pursuant to Article 19 of the RGPD, you have the right to receive confirmation that all recipients to whom we have transmitted the personal data have been duly informed about any rectification, cancellation or limitation of processing.
You have the right, in accordance with Article 20 of the RGPD, to receive the data provided to us in a structured format, commonly used and readable by an automatic device, as well as to transmit them to another data controller.
You have the right to withdraw at any time or even in part the consent provided pursuant to Article 7, paragraph 3 of the RGPD. Furthermore, having regard to Article 21 of the RGPD, you have the right to object to the processing of your personal data in the event that they are processed by virtue of the legitimate interests of Bravo-Compliance.com. You have the right at any time to refuse the use of your data for direct marketing activities.
Pursuant to Article 77 of the RGPD, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State in which you usually reside or in the place where the alleged violation has occurred.

4. Where your data is located

Your data is saved within the European Economic Area (EEA). Data processing also takes place abroad, in non-European countries, within the limits permitted by law. Without prejudice to any legal or contractual authorizations, we process data in a third country only in the presence of the specific requirements indicated in Article 44 and following of the GDPR, i.e. the processing takes place, for example, on the basis of specific guarantees, such as the officially recognized finding of a level of data protection corresponding to the European level (for example, the Privacy Shield for the United States) or in compliance with specific officially recognized contractual obligations (the so-called standard contractual clauses). For more information see http://eur-lex.europa.eu/legal-content/en/TXT/?uri=CELEX%3A32010D0087 and https://eur-lex.europa.eu/legal-content/DE/TXT /? uri = CELEX: 32000D0520.

5. Data transmission

Your personal data is treated with the utmost confidentiality. The data is not sold to third parties or passed on for commercial purposes. However, Bravo-Compliance.com may make your data accessible to third parties (so-called data controllers).

where this is necessary for the purpose of providing and executing our services. The categories of these third parties are listed in the specific procedures in point 9. These service providers are bound by the obligation of the utmost confidentiality and can process the data transmitted only for the services they must provide. Where possible, the data is first subjected to anonymization or pseudo-anonymization. The transmission of your personal data to recipients other than those listed in this Privacy Policy takes place only where there is a legal obligation in this regard (for example, transmission to the authorities).

6. Deletion of data

Unless expressly indicated in the framework of this Privacy Policy, the data stored at our company will be automatically deleted in accordance with articles 17 and 18 of the RGPD as soon as they cease to be necessary for the purposes mentioned in this data protection directive and their deletion will not contravenes any legal obligation to retain data. In the event that the data are not deleted as they are necessary for other purposes provided for by law, their processing will be limited, i.e. the data will be blocked and will not be processed for other purposes. This applies, for example, to data that must be kept for tax or commercial purposes.

7. Data security

Bravo-Compliance.com attaches great importance to the secure processing of your personal data and has therefore adopted adequate security measures from a technological and organizational point of view. We protect your data from loss, destruction, modification, publication and unauthorized access. We are constantly in line with technological advances to ensure a level of protection that is in step with the times. Where possible, the data is encrypted and made anonymous so that it cannot be read by third parties. The processing and transfer of data takes place through the use of the SSL (Secure Socket Layer) system. We use physical and logical tools for controlling and limiting access, firewalls, recovery systems and integrity tests. Our collaborators periodically participate in training activities on the careful management of sensitive data and are bound to comply with the obligation of confidentiality on data in accordance with the current regulatory framework.

8. Legal basis for data processing

Unless the legal basis is explicitly mentioned in the Privacy Policy, the following applies: the legal basis for the collection and processing of data with your consent is Article 6, paragraph 1, letter a and Article 7 of the RGPD. The legal basis of the processing for the purpose of fulfilling our services and the implementation of (pre) contractual measures as well as the response to the questions presented is Article 6, paragraph 1, letter b of the GDPR. The legal basis for processing for the purpose of fulfilling our legal obligations is Article 6, paragraph 1, letter c of the RGPD. Where the processing of data is necessary to guarantee a legitimate interest of our company or third parties, in this case Article 6, paragraph 1, letter f of the GDPR constitutes the legal basis of this processing. In the event that we commission third parties to process data on the basis of a so-called data processing liability agreement, this is done on the basis of Article 28 of the GDPR.

9. When and how do we process personal data?

We process your personal data to ensure the correct use of our services and to constantly improve them. We also use your data to receive orders and requests and to make home deliveries. It is possible to classify the purposes of the processing in the following categories:

9.1 Site provision

Purpose and scope of data processing

In principle, we do not save any personal data when you simply visit our site. With so-called server log files, our web servers merely log access data without references to persons, such as the IP address, the version of your browser and operating system, the previously visited page (the so-called referrer URL ), the page consulted and the time of viewing. The collection and processing of such data takes place in order to allow the use of our site (connection) and to guarantee its system security and stability as well as for the technical administration functions of the network infrastructure. These data do not allow us to trace your person in any way.

Data retention and access period

The information in the log files are kept for security reasons (for example for the analysis of any abuse or fraud) for a maximum duration of 7 days, after which they are automatically deleted.

She is not operated on

n transmission of such data to third parties, except in the event that this is necessary for the provision of our services (for example, hosting providers, web analytics companies for evaluating the general online behavior of our users).

Legal basis and possibility of opposition

As the legal basis for the storage on our servers (server log files) for each access we indicate Article 6 (1) (f) of the GDPR and our legitimate interests, such as the optimization of services or the protection against abuse by use unauthorized.

 

The recording of data for the provision of the site and the storage of data in log files are essential operations for the management of the website. There is therefore no possibility of opposition by the user.

 

10. Cookies, tools for analysis and social media applications

10.1 Cookies

Purpose and scope of data processing

Cookies are small files that allow you to save specific information on the device itself on the device from which the user accesses (PC, smartphone or similar) as well as to retrieve this information when the user returns to the same site. Cookies are used to improve your online experience on our site, as they allow us to make it easier to use, faster and safer. Furthermore, by analyzing anonymously how you use our website, they are also used for advertising purposes and to conduct market surveys. We use cookies pursuant to art. 6, paragraph 1, letter f of the RGPD on the basis of our legitimate interests relating to the analysis, optimization and management of our online store for commercial purposes.

Cookies provided by providers other than the manager who manages the online offer are considered “third-party cookies”. Cookies are called “permanent” or “persistent” if they remain saved even after the browser is closed. We mainly use so-called “session cookies”, which are automatically deleted after your visit. Depending on the purposes for which they are used, a distinction is made between the following categories of cookies:

Technical / required cookies: these cookies are functional, that is absolutely necessary to guarantee the essential functionality of the site. For example, they allow navigation on the site; therefore they cannot be deactivated.
Analytical / performance cookies: these cookies concern performance and allow you to improve the functionality of the website. They can, for example, increase speed, save the page settings you have selected or your wish list. Analytical cookies are also used to perform statistical evaluations on the use of the website and to improve it. By preventing the saving of these cookies, it is possible that the site responds more slowly or that certain functions are limited.
Advertising / tracking cookies: they are intended to create user profiles and are used to send the user advertising based on their behavior on the browser. We use tracking cookies to analyze visitor preferences (for example which pages of our online shop a customer has visited and which products they have viewed). In this way we can personalize your shopping experience and improve the marketing communications we send you. By refusing these cookies, the products that are suggested to you may not correspond to your interests.

Through cookies, the following information can be detected: IP address, unique identifier (UDID) and device model, domain, browser used and selected language, operating system and system settings, country and time zone specific cookie identifier (cookie identifier), cookie information and other information, for example if the software necessary to use certain functions is installed on your device, previously visited Internet pages, URL of the site from which you arrived on our site, information on the interaction with ours pages, such as access times, the path followed by users on the site, preferences and purchases.

 

10.2 Google Analytics

On the basis of our legitimate interests (i.e. interest in the analysis, optimization and commercial management of our online offer in accordance with Article 6 (1) (f) of the GDPR) we use the Google web analysis service. Analytics. Google Analytics uses so-called “cookies”, text files that are stored on your computer to allow an analysis of your use of the site. Google uses this information for the purpose of examining the use of the site on our behalf, drawing up reports on the activities contained in this online offer and providing us with further services relating to the use of the online offer and the Internet. Neither Within the scope of these operations, user usage profiles identified by pseudonyms can be created from the data processed. The information generated by the cookie on your use of the site is usually transmitted to a Google server in the United States, on which it is stored. On this website the anonymization of the IP address is active for the use of Google Analytics. This means that when the browser has to transmit the user’s IP address for technical reasons, Google proceeds with the anonymization by shortening the IP address (deleting the last eight digits). Only in exceptional cases is the entire IP address transferred to a Google server in the United States and shortened. The IP address transmitted by your browser as part of Google Analytics activities will not be associated with other data held by Google. Google has the Privacy Shield certification and therefore guarantees compliance with European data protection regulations (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active

For more information, see the following page: https: //www.google.com/intl/it_ALL/analytics/learn/privacy.html

You can disable Google Analytics through the following link: https: //support.google.com/analytics/answer/181881? Hl = it

10.3 Use of Facebook, Instagram, Linkedin and WhatsApp plug-ins, Pinterest

The plug-ins of Facebook, Instagramm, Linkedin and WhatsApp (hereinafter, the “Social Media Platforms”) are used on our internet pages. The plug-ins are recognizable through their company logos. When you use these plug-ins, a connection is created with the Social Media Platform server and the Social Media Platform will be shown. In this way, your IP address is transmitted to the Social Media Platform and it is communicated which pages of our site you have visited and when. If, at the same time, you are logged in as a member of the Social Media Platform, the Social Media Platform will assign this information to your personal account. The social media service, through the transmitted data, is able to trace your username and, in some cases, even your real name and to associate this information with your personal account on the social media. You can prevent this by logging out of your account before using the plug-in. More information on the acquisition of data and their use by Facebook, Twitter and Instagram and on your rights and faculties in this regard for the protection of your privacy are available in the privacy policy of each Social Media Platform.

 

Privacy and Cookie Policy updated on 05/07/2022