Privacy Policy
The data controller is:
Giuseppe Porrello
Heiligkreuzgasse 31
Frankfurt am Main
Email: info@giuseppe-porrello.com
Phone: 015141636294
We appreciate your interest in our website. Protecting your privacy is very important to us. Below we provide detailed information about how your data is handled.
1. Access Data and Hosting
You can visit our website without disclosing any personal information. With each access to a webpage, the web server automatically stores a so-called server log file that contains, for example, the name of the requested file, your IP address, the date and time of access, the amount of data transferred, and the requesting provider (access data), and documents the access. This access data is evaluated exclusively for the purpose of ensuring the smooth operation of the site and improving our offer. This serves to safeguard our legitimate interests in a correct presentation of our offer according to Art. 6 para. 1 sentence 1 lit. f GDPR. All access data is processed only for as long as necessary for the stated processing purposes.
1.1 Hosting
The services for hosting and displaying the website are partly provided by our service providers as part of processing on our behalf. Unless otherwise explained in this privacy policy, all access data and data collected in forms provided on this website are processed on their servers. If you have any questions about our service providers and the basis of our cooperation with them, please contact us using the contact information provided in this privacy policy.
Our service providers are located and/or use servers in the following countries, for which the European Commission has determined an adequate level of data protection by decision: USA.
The adequacy decision for the USA serves as the basis for data transfers to third countries if the respective service provider is certified. Until certification, data transfers rely on standard contractual clauses of the European Commission.
1.2 Content Delivery Network
For faster loading times, we use a Content Delivery Network (CDN) in some cases. This service delivers content (e.g., large media files) via regionally distributed servers of external CDN providers. Therefore, access data is processed on the service providers’ servers. Our service providers act on our behalf within the scope of processing. If you have any questions, please contact us via the contact details in this privacy policy.
Same data protection regulations apply as in section 1.1 above.
2. Data Processing for Contract Execution and Contact
2.1 Contract Execution
We collect personal data when you voluntarily provide it as part of your order or when contacting us (e.g., via contact form or email). Required fields are marked as such, as we need the data for contract fulfillment or to process your inquiry. The data collected is evident from the input forms.
We use the data you provide in accordance with Art. 6 para. 1 sentence 1 lit. b GDPR. After full processing of the contract, your data will be restricted for further processing and deleted after any statutory retention periods, unless you have consented to further use or we are legally permitted to use the data further.
2.2 Contact
In the context of customer communication, we collect personal data for processing your inquiries as per Art. 6 para. 1 sentence 1 lit. b GDPR when you voluntarily provide it to us. After your inquiry is fully processed, the data will be deleted unless you have consented to further use.
3. Data Processing for Shipping
To fulfill the contract (Art. 6 para. 1 sentence 1 lit. b GDPR), we share your data with the shipping provider responsible for delivery, as required.
4. Data Processing for Payments
4.1 Transaction Processing
Depending on the selected payment method, we share the necessary data for payment processing with technical service providers, credit institutions, or payment service providers under Art. 6 para. 1 sentence 1 lit. b GDPR. Sometimes, the payment provider collects the data directly through their own platform.
4.2 Fraud Prevention and Optimization
We may provide our service providers with additional data for fraud prevention or to optimize payment processes under Art. 6 para. 1 sentence 1 lit. f GDPR.
5. Cookies and Other Technologies
5.1 General Information
We use cookies and other technologies to make our website attractive and enable certain functions. Some cookies are deleted after closing the browser (session cookies), while others remain on your device to recognize your browser at your next visit (persistent cookies).
Privacy on Devices
Technologies that are strictly necessary do not require consent. For non-essential technologies, your consent is required.
Further Processing via Cookies
We use essential technologies for certain website functions (e.g., shopping cart). This includes IP address, browser/device data, visit time, etc., based on Art. 6 para. 1 sentence 1 lit. f GDPR.
We also use technologies to fulfill legal obligations and for web analytics and marketing. More details follow in this policy.
Cookie Settings
Find browser cookie settings here:
Edge™ / Safari™ / Chrome™ / Firefox™ / Opera™
5.2 Jimdo Consent Manager Tool
We use the Jimdo Consent Manager Tool to inform you about cookies and manage your consents. This is required by Art. 6 para. 1 sentence 1 lit. c GDPR and stores your IP, timestamp, browser info, and consent behavior for 365 days.
Our service providers operate in countries listed in section 1.1.
6. Social Media
Our Presence on Instagram (by Meta) and YouTube
With your consent (Art. 6 para. 1 sentence 1 lit. a GDPR), social media platforms collect and store data for analytics and advertising. This includes usage profiles and cookies. For more details, refer to:
For data transfers to countries outside the EU, we rely on adequacy decisions or standard contractual clauses.
7. Contact and Your Rights
7.1 Your Rights
As a data subject, you have the following rights:
– Right to access (Art. 15 GDPR)
– Right to rectification (Art. 16 GDPR)
– Right to erasure (Art. 17 GDPR)
– Right to restriction of processing (Art. 18 GDPR)
– Right to data portability (Art. 20 GDPR)
– Right to lodge a complaint (Art. 77 GDPR)
Right to Object
You may object to processing based on legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR) at any time. If we process your data for direct marketing, you can object at any time. If you object, we will stop processing unless we can demonstrate compelling legitimate grounds.
7.2 Contact
If you have any questions about your personal data, or wish to access, correct, restrict, delete, or revoke consent, contact us using the details in our legal notice.