Dear User,
Please read our Privacy Policy carefully. It applies whenever you access the website, browse its pages, and use its services.
This notice describes, pursuant to and in accordance with Article 13 of EU Regulation 679/2016 (General Data Protection Regulation, hereinafter GDPR), how the Data Controller processes the personal data you provide while browsing this website.
The processing of personal data will comply with the principles of lawfulness, transparency, fairness, and confidentiality, as well as with your rights, in full compliance with applicable national and European regulations.
Data Controller
The Data Controller, pursuant to Articles 4 and 24 of the GDPR, is Marina Yacht Sales S.r.l., Viale Andrea De Luca 8/A – Salerno 84131, email address info@marinayachtsales.com
Types of Data Collected
The Controller collects the following types of data:
Common personal and contact data (name, surname, email, phone, address), as well as any additional data you provide by filling out the forms available on the website. In some cases, the form-filling process may be bypassed using social login, which allows automatic data entry via your Facebook or Google profile. These data are used exclusively to process your requests.
Personal data voluntarily transmitted via email to the addresses provided on the website. In this case, your email address and any other personal data included in the message will be collected and used solely to fulfill your specific requests.
Personal and sensitive data contained in CVs received through contact forms or email. The Controller will provide a specific privacy notice regarding the processing of CV data at the first useful contact with the candidate, in compliance with regulations and guidelines from the Data Protection Authority.
Browsing data: The website’s IT systems and software procedures acquire certain personal data as part of their normal operation. The transmission of these data is implicit in the use of Internet communication protocols. While these data are not collected to identify users, they could potentially be used to do so by associating them with third-party data. These data include IP addresses, domain names of the devices used to connect to the site, URI (Uniform Resource Identifier) addresses of requested resources, browser type, request time, and other parameters related to the user’s operating system and IT environment. These data are used only to obtain anonymous statistical information about website use and to ensure its proper operation. They are deleted immediately after processing.
Third-Party Services Used
The website also uses the following third-party services. We encourage Users to review their respective privacy policies:
Google Analytics 4: Privacy Policy
Google Tag Manager: Privacy Policy
Mailgun: Privacy Policy
Mailing List or Newsletter: For more details on data processing related to mailing list management, please refer to our dedicated section.
Contact Form: The data entered in the contact form is used solely to respond to user inquiries.
Zendesk Widget: Privacy Policy
Purposes and Legal Basis of Processing
The data are processed for the following purposes:
To fulfill the User’s requests and respond to inquiries submitted through forms or emails listed on the website. The legal basis is the Controller’s legitimate interest (Article 6, letter f, GDPR) in providing information efficiently, responding to all inquiries, and improving services.
To fulfill contractual obligations and comply with administrative and tax requirements. The legal basis is the execution of pre-contractual and contractual measures requested by the customer (Article 6, letter b, GDPR) and compliance with legal obligations (Article 6, letter c, GDPR).
For marketing and promotional purposes, including sending news about products, services, events, and promotions via email, SMS, phone, or other digital communication tools. The legal basis is the explicit consent provided by the User (Article 6, letter a, GDPR).
To process CV data, which is lawful when necessary for the execution of pre-contractual measures (Article 6, letter b, GDPR) requested by the candidate. The processing of “special category” data is lawful based on the Data Protection Authority’s decision of June 5, 2019, which modifies General Authorization No. 1/2016.
To comply with legal obligations to which the Data Controller is subject (Article 6, letter c, GDPR).
Provision of Personal Data
Whether data provision is mandatory or optional is specified for each request. Mandatory information is marked with an asterisk (*). Failure to provide mandatory data makes it impossible for the Controller to execute the contract or provide the requested services. The provision of additional data is optional.
Processing Methods and Location
Personal data are processed electronically and digitally by authorized internal personnel. Appropriate security measures are implemented to minimize risks of accidental destruction, data loss, unauthorized access, or processing inconsistent with the stated purposes. Data processing occurs at the Controller’s headquarters and at hosting servers where applicable. For more information, contact the Controller.
Data Retention Period
Data are processed for the time necessary to provide the requested services or achieve the purposes for which they were collected. Certain data may be retained longer due to fiscal, administrative, or accounting obligations. For marketing purposes, data is retained for 24 months from the date of consent, unless revoked by the User. After this period, personal data will be automatically deleted or permanently anonymized.
Disclosure and Communication of Personal Data
User data will not be disclosed to third parties indiscriminately. However, they may be communicated to professionals, collaborators, legal entities, and third parties providing technical and organizational services on behalf of the Controller. These entities may act as Controllers, Joint Controllers, or Data Processors as per Article 28 GDPR, and will only receive the necessary information to perform their tasks. A complete and updated list of Data Processors is available upon request. Additionally, data may be communicated to entities authorized by law, such as banks, credit institutions, debt collection agencies, and insurance companies.
Transfer of Personal Data
If necessary to execute the contract with the User, personal data may be transferred to non-EU countries in compliance with Articles 44 and following of the GDPR, using appropriate data protection measures.
Links to Other Websites, Platforms, and Social Networks
This privacy notice applies only to marinayachtsales.it and not to other websites or social platforms accessed via links or social buttons. For third-party data processing, please refer to their respective privacy policies:
Google and YouTube: Privacy Policy
Facebook: Privacy Policy
Instagram: Privacy Policy
Twitter: Privacy Policy
User Rights
At any time, pursuant to Articles 15 and following of GDPR, the User may:
Access their data.
Request rectification, deletion, or restriction of processing.
Obtain information about the purposes of processing, categories of data, recipients, and retention periods.
Object to processing.
Request data portability.
Withdraw consent (without affecting the lawfulness of processing before withdrawal).
File a complaint with the Data Protection Authority.
Requests (except for complaints) can be submitted via email to info@marinayachtsales.com
Updates and Changes
The Controller may update or modify this Privacy Policy in whole or in part due to changes in laws or regulations. Updates take effect upon publication on the website. Users are encouraged to review this section regularly.
This document was last updated on July 22, 2024.
