Privacy Policy

Last updated: 11 March 2025

1. Data controller and contact details

The data controller responsible for the processing of your personal data in connection with this website and the PhytoVigor product is:

Phaltronclixarem
Via del Corso, 497/498
00186 Roma RM
Italy

Email: office@phaltronclixarem.world
Phone: +39 06 320 3657

You may contact us at any time regarding the processing of your personal data, to exercise your rights under the General Data Protection Regulation (GDPR) and the Italian Legislative Decree 196/2003 (Codice privacy), or to request information about this policy.

2. Scope and purpose of this policy

This Privacy Policy describes how we collect, use, store, disclose and protect your personal data when you use our website https://phaltronclixarem.world (the "Website") and when you place orders, contact us or interact with our services. We process personal data in compliance with Regulation (EU) 2016/679 (GDPR), the Italian Codice privacy as amended, and any other applicable local or international data protection laws.

3. Personal data we collect

We may collect and process the following categories of personal data:

  • Identification and contact data: name, surname, email address, telephone number (if you provide it), and delivery address when you place an order or use the contact form.
  • Transaction and order data: order details, purchase history, payment-related information (e.g. payment method; we do not store full card numbers), and correspondence related to your orders.
  • Technical and usage data: IP address, browser type and version, device type, operating system, referring URL, pages visited, date and time of access, and similar data collected automatically when you use our Website. This may include data collected through cookies and similar technologies as described in our Cookie Policy.
  • Communication data: content of messages you send us via contact form, email or other channels, and records of our responses.
  • Consent and preferences: your consent to processing (e.g. for marketing, cookies, terms and privacy policy), and any preferences you have expressed.

We do not collect special categories of personal data (e.g. health data) unless you voluntarily provide them in a message and we have a lawful basis to process them (e.g. consent or legitimate interest in responding to your request).

4. Legal basis and purposes of processing

We process your personal data only where we have a valid legal basis under the GDPR. The main purposes and corresponding legal bases are:

  • Performance of a contract: to process and fulfil your orders, manage deliveries, handle returns and refunds, and provide customer support. Legal basis: performance of a contract (Art. 6(1)(b) GDPR).
  • Legitimate interests: to operate and improve our Website, prevent fraud and abuse, ensure security of our systems, and defend our legal rights. Legal basis: legitimate interest (Art. 6(1)(f) GDPR), where our interests are not overridden by your rights.
  • Legal obligation: to comply with tax, accounting, consumer and other laws (e.g. retention of invoices and order data as required in Italy). Legal basis: compliance with a legal obligation (Art. 6(1)(c) GDPR).
  • Consent: for optional activities such as marketing communications, non-strictly-necessary cookies (e.g. analytics, marketing), and where we explicitly ask for your consent. Legal basis: consent (Art. 6(1)(a) GDPR). You may withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

5. How we use your data

Specifically, we use your personal data to:

  • Create and manage your order and deliver the PhytoVigor product or other products offered on our Website.
  • Communicate with you about your order (e.g. order confirmation, shipping updates, customer support).
  • Respond to your enquiries sent via contact form, email or phone.
  • Send you service-related messages (e.g. important updates about your order or our services).
  • Send you marketing communications only if you have given your consent and in accordance with your preferences.
  • Improve our Website, products and services (e.g. through analysis of aggregated usage data, where permitted by cookie settings).
  • Ensure the security and proper functioning of our Website and IT systems.
  • Comply with legal and regulatory obligations (e.g. tax, consumer law, responding to lawful requests from authorities).
  • Establish, exercise or defend legal claims.

6. Data retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected and to comply with legal obligations.

  • Order and contract data: we retain data related to orders, invoices and customer support for the period required by Italian law (e.g. at least 10 years for tax and accounting documents) and for the duration of any warranty or guarantee period, plus a reasonable period for handling disputes.
  • Contact and communication data: we retain correspondence and contact form submissions for the time needed to handle your request and for a reasonable period thereafter (e.g. up to 2 years) unless longer retention is required for legal or contractual purposes.
  • Marketing and consent records: we retain evidence of your consent and marketing preferences until you withdraw consent or object, and for a short period thereafter to document compliance.
  • Technical and log data: we retain server logs and similar technical data for a limited period (e.g. up to 12 months) unless a longer period is required for security or legal reasons.
  • Cookie-related data: retention periods for data collected via cookies are described in our Cookie Policy.

After the retention period, we securely delete or anonymise your personal data so that it can no longer identify you.

7. Sharing and disclosure of personal data

We may share your personal data with:

  • Service providers: logistics and shipping partners, payment processors, IT and hosting providers, email and communication services, and other processors that assist us in operating the Website and fulfilling orders. We ensure that such processors are bound by contract to process data only on our instructions and in accordance with applicable data protection law.
  • Professional advisers: lawyers, accountants or auditors where necessary for legal, accounting or regulatory purposes.
  • Public authorities: when required by law or to protect our rights (e.g. in response to court orders, requests from tax or consumer authorities).

We do not sell your personal data. If we transfer data to countries outside the European Economic Area (EEA), we ensure appropriate safeguards are in place (e.g. adequacy decisions, standard contractual clauses, or other mechanisms approved under the GDPR).

8. Security measures

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, loss or destruction. These measures include:

  • Use of HTTPS and encryption (e.g. TLS) for data transmitted between your browser and our servers.
  • Access controls and authentication so that only authorised personnel can access personal data where necessary for their role.
  • Secure storage and processing environments for our systems and databases.
  • Regular review and updating of security practices and, where applicable, reliance on certified or audited service providers.

While we strive to protect your data, no method of transmission or storage over the Internet is completely secure. We encourage you to use strong passwords and to protect your account and device.

9. Your rights under the GDPR and Italian law

Subject to applicable law, you have the following rights in relation to your personal data:

  • Right of access (Art. 15 GDPR): you may obtain confirmation as to whether we process your personal data and, where that is the case, access to the data and certain information about the processing.
  • Right to rectification (Art. 16 GDPR): you may request correction of inaccurate or incomplete personal data.
  • Right to erasure (Art. 17 GDPR): you may request deletion of your personal data in certain circumstances (e.g. where the data is no longer necessary, you withdraw consent, or you object and there are no overriding legitimate grounds).
  • Right to restriction of processing (Art. 18 GDPR): you may request that we restrict processing in certain situations (e.g. while we verify accuracy or while a dispute is ongoing).
  • Right to data portability (Art. 20 GDPR): where processing is based on contract or consent and carried out by automated means, you may receive your data in a structured, commonly used and machine-readable format and, where technically feasible, have it transmitted to another controller.
  • Right to object (Art. 21 GDPR): you may object to processing based on legitimate interests, including profiling. You may also object at any time to processing for direct marketing.
  • Right to withdraw consent: where processing is based on consent, you may withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
  • Right to lodge a complaint: you have the right to lodge a complaint with a supervisory authority, in particular in the EU Member State of your residence, place of work or place of the alleged infringement. In Italy, the supervisory authority is the Garante per la protezione dei dati personali (www.garanteprivacy.it).

To exercise any of these rights, please contact us using the contact details in section 1. We will respond within the time limits set by the GDPR (generally one month, extendable where necessary). We may need to verify your identity before processing your request.

10. Children

Our Website and services are not directed at individuals under 16 years of age. We do not knowingly collect personal data from children under 16. If you become aware that a child has provided us with personal data without parental consent, please contact us and we will take steps to delete such data.

11. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements or the way we operate. The updated version will be posted on this page with a revised "Last updated" date. We encourage you to review this policy periodically. Where required by law, we will seek your consent or notify you of material changes before they take effect.

12. Further information

For questions about this Privacy Policy or our processing of your personal data, please contact us at:

Phaltronclixarem, Via del Corso, 497/498, 00186 Roma RM, Italy. Email: office@phaltronclixarem.world, Phone: +39 06 320 3657.