Privacy Policy
In order to provide both personalized and non-personalized services through its website, Svimark S.r.l., as the Data Controller, must process certain identifying data necessary for the provision of such services.
Svimark S.r.l. is also the owner of the Revesto brand and manages the website revesto.it (including its subdomains and any redirects). Therefore, this privacy policy applies to both svimark.it and revesto.it, and is equally valid for users of either domain.
Pursuant to Article 13 of GDPR 679/2016 – “European Regulation on the Protection of Personal Data” – and in relation to the personal data concerning you that will be subject to processing, Svimark S.r.l. guarantees, within the scope of legal provisions, that the processing of personal data is carried out in compliance with the fundamental rights and freedoms, as well as the dignity of the data subject, with particular reference to confidentiality, personal identity, the right and protection of personal data.
This document describes the methods of managing the site svimark.it and revesto.it (and any domains redirected to it)with reference to the processing of personal data of those who interact with the services provided: the information is provided in accordance with the European Regulation on the Protection of Personal Data 679/2016 (hereinafter GDPR), as well as Legislative Decree 196/2003, as amended by Legislative Decree 101/2018, only for the website in question and not for other sites that may be consulted by the user through links, for which Svimark S.r.l. is not in any way responsible.
This privacy policy is specifically drafted for visitors of the website svimark.it and replaces any previous document regarding web privacy and cookies.
Information notices
Specific additional and contextual information is provided on pages of the website prepared for particular on-request services that include data collection forms.
TYPES OF DATA PROCESSED
Personal data may be collected automatically while browsing and using the site and its related services, or voluntarily entered by the user.
Among the personal data collected by the Controller autonomously or through third parties, the following may be included (non-exhaustive list): cookies, usage data, passwords, first and last name, and email address.
Browsing data and other data
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified individuals but could, through processing and association with data held by third parties, allow users to be identified.
This data category includes IP addresses or domain names of the computers used by users connecting to the site, URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numeric code indicating the server response status (success, error, etc.) and other parameters related to the user’s operating system and IT environment. This data is used only to obtain anonymous statistical information on the use of the site and to check its correct functioning and is deleted immediately after processing. The data could be used to ascertain responsibility in case of hypothetical cybercrimes against the site, upon request from the competent authorities.
The use of cookies – or other tracking tools – by this site or by third-party service providers used by it, unless otherwise specified, aims to identify the user and record their preferences strictly related to the provision of the service requested by the user.
Failure by the user to provide certain personal data may make it impossible for the site to provide its services.
Personal data voluntarily provided by the user
In several sections of this site, the user can provide personal data (e.g., email address, name, zip code, other personal and non-personal data), including through form completion or email communication. Providing such data is optional, explicit, and voluntary, and implies the subsequent acquisition of the sender’s email address, necessary to respond to requests, as well as any other personal data entered for service purposes and additional uses permitted by the user. Specific summary notices are present on the pages with forms, indicating whether the data is mandatory for using the service.
The user takes responsibility for third-party personal data published or shared through this site and guarantees that they have the right to disclose or disseminate such data, releasing the Controller from any liability.
LEGAL BASIS FOR PROCESSING
Personal data is processed, as further detailed below, exclusively for purposes related to the activities of Svimark S.r.l. and its related obligations; legal bases include consent (e.g., for processing special categories of personal data or for marketing/profiling), and/or execution of a contract or service involving the user, and/or execution of pre-contractual measures upon user request, and/or compliance with legal obligations, and/or the legitimate interest of the Controller.
PURPOSES OF THE PROCESSING
User data is collected and processed for the following purposes:
Performing operations strictly related and instrumental to managing user or visitor relationships with the site, such as:
browsing;
registration and authentication.
Additional purposes may apply, with explicit user consent when required, in relation to services provided through the site, including (but not limited to): interaction with social networks and external platforms, social applications, payment management, live chat platforms, remarketing and behavioral targeting, email message management, display of content from external platforms, commercial affiliation, heat mapping, user database management, and customer support.
DATA PROVISION, REFUSAL CONSEQUENCES, AND CONSENT MANAGEMENT
Providing data is optional, except where marked as required to access specific services.
Processing for the purposes in point 1 is mandatory, and failing to provide the necessary data may limit or prevent the full use of the website’s features and services.
Regarding optional data, more information is available in the “Cookies Policy.”
As per regulations, users may be asked to express consent for specific data processing activities by ticking a box in the relevant registration form. Consent excludes processing necessary for services explicitly requested by the user.
Only with the user’s express consent can data be used for market research or commercial communications via email, postal mail, phone, SMS, MMS.
Users may access and modify their consents and manage active services at any time.
DATA PROCESSING METHODS
Data processing may be performed with or without electronic or automated tools, including cookies and database integration. Data processing will comply with appropriate safety and confidentiality standards, for the time necessary to fulfill the user’s request, after which users may request data deletion.
Svimark S.r.l. has adopted adequate technical and organizational measures according to GDPR to reduce the risk of data breaches.
Data is processed at the Controller’s operational headquarters and any other locations of involved parties. Contact the Controller for more information.
DATA RETENTION PERIOD
Data is processed only as long as necessary to fulfill stated purposes and legal obligations. Retention criteria follow legal and fiscal rules.
Marketing profiling data is retained for 1 year and direct marketing data for 2 years.
Personal data may also be retained as long as permitted under Italian law to protect Svimark S.r.l.’s legitimate interests (Art. 2947, para. 1 and 3 of the Italian Civil Code).
DATA ACCESS AND RESPONSIBILITY
Personal data is processed by authorized individuals within Svimark S.r.l. or by third-party providers (outsourcers) acting under formal contractual obligations. These third parties process data in accordance with the Controller’s instructions and for the purposes specified in this notice. An updated list of Data Processors can be requested by contacting the Controller.
DATA SHARING AND DISCLOSURE
Data may be shared with:
Public/private bodies with legal access rights;
Service providers essential for fulfilling user agreements (e.g., banks, couriers);
Consultants under confidentiality agreements;
IT and auxiliary service companies with data protection clauses.
Data is not publicly disseminated unless the user gives specific consent.
LEGAL DEFENSE
User data may be used for legal defense or in preparatory stages thereof due to misuse of services. The user acknowledges that the Controller may be required to disclose data to public authorities.
DATA CONTROLLER
The Data Controller is Svimark S.r.l., based in Via Salvatore Matarrese 10 – 70124 Bari, VAT 08480530727 – info@svimark.it, also owner of the REVESTO trademark. The same privacy policy applies to REVESTO.
DATA SUBJECT RIGHTS
Users may exercise rights under GDPR, including: access, rectification, limitation, portability, objection, and deletion of personal data, provided no conflicting legal obligations exist.
Users may object to data processing for marketing purposes via any contact method.
Requests should be sent to info@svimark.it or via postal mail to the Controller’s address.
Users may revoke consent at any time without affecting the lawfulness of previous processing and may lodge complaints with the Data Protection Authority.
APPLICATION AND MODIFICATIONS OF THIS NOTICE
The Controller may modify this privacy policy at any time and will notify users on this page. Users should consult it regularly. Continued use of the site after updates implies acceptance. If users disagree, they must stop using the services and request data removal.