Privacy policy and cookie policy

This Application collects some Personal Data from its Users.

Data Controller and Owner

Giovanni Dall’Ò – Shine Library
Via del Faggio, 113 – 97100 Ragusa (Italy)

Owner contact email: [email protected]

 

Types of Data collected

Among the types of Personal Data that this Application collects, by itself or through third parties, there are: Cookies, Usage Data, email address and first name. In order to use the shine-library.com store, this application collect also: first name, last name, address, email address, username and password. In order to offer to the User the invoice service, this application collect also: VAT Number, country, ZIP/Postal code, city, and various types of Data.

 

Other Personal Data collected may be described in other sections of this privacy policy or by dedicated explanation text contextually with the Data collection.
The Personal Data may be freely provided by the User, or collected automatically when using this Application.
Any use of Cookies – or of other tracking tools – by this Application or by the owners of third party services used by this Application, unless stated otherwise, serves to identify Users and remember their preferences, for the sole purpose of providing the service required by the User.
Failure to provide certain Personal Data may make it impossible for this Application to provide its services.

Users are responsible for any Personal Data of third parties obtained, published or shared through this Application and confirm that they have the third party’s consent to provide the Data to the Owner.

 

Mode and place of processing the Data

Methods of processing

The Data Controller processes the Data of Users in a proper manner and shall take appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of the Data.
The Data processing is carried out using computers and/or IT enabled tools, following organizational procedures and modes strictly related to the purposes indicated. In addition to the Data Controller, in some cases, the Data may be accessible to certain types of persons in charge, involved with the operation of the site (administration, sales, marketing, legal, system administration) or external parties (such as third party technical service providers, mail carriers, hosting providers, IT companies, communications agencies) appointed, if necessary, as Data Processors by the Owner. The updated list of these parties may be requested from the Data Controller at any time.

Place

The Data is processed at the Data Controller’s operating offices and in any other places where the parties involved with the processing are located. For further information, please contact the Data Controller.

Retention time

The Data is kept for the time necessary to provide the service requested by the User, or stated by the purposes outlined in this document, and the User can always request that the Data Controller suspend or remove the data.

How do we protect your information?

We do not use vulnerability scanning and/or scanning to PCI standards.
We don’t collect credit card information, and we did not know PCI compliant scans are now required.
We do not use Malware Scanning.

Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology.

We implement a variety of security measures when a user places an order enters, submits, or accesses their information to maintain the safety of your personal information. All transactions are processed through a gateway provider and are not stored or processed on our servers.

The use of the collected Data

The Data concerning the User is collected to allow the Owner to provide its services, as well as for the following purposes:

Analytics, Traffic optimization and distribution and Interaction with live chat platforms, Displaying content from external platforms and Interaction with external social networks and platforms. SPAM protection, Contacting the User, Managing contacts and sending messages, User database management, Remarketing and behavioral targeting, Commercial affiliation, Registration and authentication, Advertising, Content commenting, Handling payments, Invoice generation, Live chat, Interaction with support and feedback platforms, Managing support and contact requests and Social features.

The Personal Data used for each purpose is outlined in the specific sections of this document.

 

Detailed information on the processing of Personal Data

Personal Data is collected for the following purposes and using the following services:

Analytics

The services contained in this section enable the Owner to monitor and analyze web traffic and can be used to keep track of User behavior.

 

Google Tag Manager (Google Inc.)

Google Tag Manager is an analytics service provided by Google Inc.

Personal Data collected: Cookies and Usage Data.

Place of processing: US – Privacy Policy

Google Analytics with anonymized IP (Google Inc.)

Google Analytics is a web analysis service provided by Google Inc. (“Google”). Google utilizes the Data collected to track and examine the use of this Application, to prepare reports on its activities and share them with other Google services.
Google may use the Data collected to contextualize and personalize the ads of its own advertising network.
This integration of Google Analytics anonymizes your IP address. It works by shortening Users’ IP addresses within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the complete IP address be sent to a Google server and shortened within the US.

Personal Data collected: Cookies and Usage Data.

Place of processing: US – Privacy Policy – Opt Out

Interaction with live chat platforms

This type of service allows Users to interact with third party live chat platforms directly from the pages of this Application, for contacting and being contacted by this Application support service.
If one of these services is installed, it may collect browsing and Usage Data in the pages where it is installed, even if the Users do not actively use the service. Moreover, live chat conversations may be logged.

 

Tawk.to Widget (tawk.to ltd.)

The Tawk.to Widget is a service for interacting with the Tawk.to live chat platform provided by tawk.to ltd.

Personal Data collected: Cookies and Usage Data.

Place of processing: UK – Privacy Policy

Traffic optimization and distribution

This type of service allows this Application to distribute their content using servers located across different countries and to optimize their performance.
Which Personal Data are processed depends on the characteristics and the way these services are implemented. Their function is to filter communications between this Application and the User’s browser. Considering the widespread distribution of this system, it is difficult to determine the locations to which the contents that may contain Personal Information User are transferred.

 

CloudFlare (Cloudflare)

CloudFlare is a traffic optimization and distribution service provided by CloudFlare Inc.
The way CloudFlare is integrated means that it filters all the traffic through this Application, i.e., communication between this Application and the User’s browser, while also allowing analytical data from this Application to be collected.

The only cookie we know is installed by cloudflare service is the “__cfduid

In their official page, cloudflare support say:

The __cfduid cookie is used to override any security restrictions based on the IP address the visitor is coming from. For example, if the visitor is in a coffee shop where there are a bunch of infected machines, but the visitor’s machine is known trusted, then the cookie can override the security setting. It does not correspond to any userid in the web application, nor does the cookie store any personally identifiable information.

Note: This cookie is strictly necessary for site security operations and can’t be turned off.

Personal Data collected: Cookies and various types of Data as specified in the privacy policy of the service.

Place of processing: US – Privacy Policy

Displaying content from external platforms

This type of service allows you to view content hosted on external platforms directly from the pages of this Application and interact with them.
This type of service might still collect web traffic data for the pages where the service is installed, even when Users do not use it.

 

SoundCloud widget (SoundCloud Limited)

Soundcloud is an audio content delivery service provided by SoundCloud Limited that allows this Application to incorporate content of this kind on its pages.

Personal Data collected: Usage Data.

Place of processing: Germany – Privacy Policy

 

Google Fonts (Google Inc.)

Google Fonts is a typeface visualization service provided by Google Inc. that allows this Application to incorporate content of this kind on its pages.

Personal Data collected: Usage Data and various types of Data as specified in the privacy policy of the service.

Place of processing: US – Privacy Policy

Interaction with external social networks and platforms

This type of service allows interaction with social networks or other external platforms directly from the pages of this Application.
The interaction and information obtained through this Application are always subject to the User’s privacy settings for each social network.
This type of service might still collect traffic data for the pages where the service is installed, even when Users do not use it.

 

Facebook Like button and social widgets (Facebook, Inc.)

The Facebook Like button and social widgets are services allowing interaction with the Facebook social network provided by Facebook, Inc.

Personal Data collected: Cookies and Usage Data.

Place of processing: US – Privacy Policy

 

Twitter Tweet button and social widgets (Twitter, Inc.)

The Twitter Tweet button and social widgets are services allowing interaction with the Twitter social network provided by Twitter, Inc.

Personal Data collected: Cookies and Usage Data.

Place of processing: US – Privacy Policy

 

Google+ +1 button and social widgets (Google Inc.)

The Google+ +1 button and social widgets are services allowing interaction with the Google+ social network provided by Google Inc.

Personal Data collected: Cookies and Usage Data.

Place of processing: US – Privacy Policy

Contacting the User

Mailing list or newsletter (This Application)

By registering on the mailing list or for the newsletter, the User’s email address will be added to the contact list of those who may receive email messages containing information of commercial or promotional nature concerning this Application. Your email address might also be added to this list as a result of signing up to this Application or after making a purchase.

Personal Data collected: email address and first name.

For more information, please read our Newsletter Policy

 

Managing contacts and sending messages

This type of service makes it possible to manage a database of email contacts, phone contacts or any other contact information to communicate with the User.
These services may also collect data concerning the date and time when the message was viewed by the User, as well as when the User interacted with it, such as by clicking on links included in the message.

 

MailChimp (The Rocket Science Group, LLC.)

MailChimp is an email address management and message sending service provided by The Rocket Science Group, LLC.

Personal Data collected: email address.

Place of processing: US – Privacy Policy

 

Sendgrid (Sendgrid)

Sendgrid is an email address management and message sending service provided by Sendgrid Inc.

Personal Data collected: email address.

Place of processing: US – Privacy Policy Privacy Policy

SPAM protection (reCaptcha)

This type of service analyzes the traffic of this Application, potentially containing Users’ Personal Data, with the purpose of filtering it from parts of traffic, messages and content that are recognized as SPAM.

 

Google reCAPTCHA (Google Inc.)

Google reCAPTCHA is a SPAM protection service provided by Google Inc.

Personal Data collected: Cookies and Usage Data.

Place of processing: US – Privacy Policy

Akismet (Automattic Inc.)

This type of service analyzes the traffic of this Application, potentially containing Users’ Personal Data, with the purpose of filtering it from parts of traffic, messages and content that are recognized as SPAM.

Akismet is a SPAM protection service provided by Automattic Inc.

Personal Data collected: various types of Data as specified in the privacy policy of the service.

Place of processing: US – Privacy Policy

Remarketing and behavioral targeting

This type of service allows this Application and its partners to inform, optimize and serve advertising based on past use of this Application by the User.
This activity is performed by tracking Usage Data and by using Cookies, information that is transferred to the partners that manage the remarketing and behavioral targeting activity.
In addition to any opt out offered by any of the services below, the User may opt out of a third-party service’s use of cookies by visiting the Network Advertising Initiative opt-out page.

 

AdWords Remarketing (Google Inc.)

AdWords Remarketing is a Remarketing and Behavioral Targeting service provided by Google Inc. that connects the activity of this Application with the Adwords advertising network and the Doubleclick Cookie.

Personal Data collected: Cookies and Usage data.

Place of processing: US – Privacy Policy – Opt Out

 

Remarketing through Google Analytics for Display Advertising (Google Inc.)

Google Analytics for Display Advertising is a remarketing and behavioral targeting service provided by Google Inc. that connects the tracking activity performed by Google Analytics and its Cookies with the Adwords advertising network and the Doubleclick Cookie.

Personal Data collected: Cookies and Usage data.

Place of processing: US – Privacy Policy – Opt Out

 

DoubleClick for Publishers Audience Extension (Google Inc.)

DoubleClick for Publishers Audience Extension is a Remarketing and Behavioral Targeting service provided by Google Inc. that tracks the visitors of this Application and allows selected advertising partners to display targeted ads across the web to them.

Personal Data collected: Cookies and Usage data.

Place of processing: US – Privacy PolicyOpt Out

 

Display Advertising extension for Google Analytics (Google Inc.)

Google Analytics on this Application might use Google’s Interest-based advertising, 3rd-party audience data and information from the DoubleClick Cookie to extend analytics with demographics, interests and ads interaction data.

Personal Data collected: Cookies and Usage data.

Place of processing: US – Privacy Policy – Opt Out

Registration and authentication

By registering or authenticating, Users allow this Application to identify them and give them access to dedicated services.
Depending on what is described below, third parties may provide registration and authentication services. In this case, this Application will be able to access some Data, stored by these third party services, for registration or identification purposes.

Direct registration (This Application)

The User registers by filling out the registration form and providing the Personal Data directly to this Application.

Personal Data collected: address, city, country, email address, first name, last name, password, profile picture, username, various types of Data, VAT Number and ZIP/Postal code.

Commercial affiliation

For details of which data are collected, please refer to the privacy policy of each service.

 

ClickBank (Click Sales Inc.)

ClickBank is a commercial affiliation service provided by Click Sales Inc.

Personal Data collected: Cookie and Usage Data.

Place of processing : USA — Privacy Policy

 

AffiliateWP

Our website also uses a cookie from AffiliateWP in order to anonymously track if you come from an affiliate website or campaign and give commissions to our affiliates. You can learn more about how AffiliateWP cookies works, visiting this page:

http://docs.affiliatewp.com/article/1107-how-does-affiliatewp-track-visits-with-cookies

Handling payments

Payment processing services enable this Application to process payments by credit card, bank transfer or other means. To ensure greater security, this Application shares only the information necessary to execute the transaction with the financial intermediaries handling the transaction.
Some of these services may also enable the sending of timed messages to the User, such as emails containing invoices or notifications concerning the payment.

 

PayPal (PayPal Inc.)

PayPal is a payment service provided by PayPal Inc., which allows Users to make online payments using their PayPal credentials.

Personal Data collected: various types of Data as specified in the privacy policy of the service.

Privacy Policy

How can I manage the installation of Cookies?

In addition to what is specified in this document, the User can manage preferences for Cookies directly from within their own browser preferences: it is also possible to delete Cookies installed in the past, including the Cookies that might possibly have saved the consent for the installation of Cookies by this website. It is important to note that by disabling all Cookies, some functioning of this site may be compromised. Users can find information about how to manage Cookies in their browser at the following addresses: Google ChromeMozilla FirefoxApple Safari and Microsoft Windows Explorer.

In the case of services provided by third parties, Users can exercise their right to withdraw from the tracking activity by utilizing the information provided in the third party’s privacy policy, by clicking the opt-out link – if provided – or by contacting the third party.

Users may also take advantage of Your Online Choices. This service allows Users to select their tracking preferences for most of the advertising tools. The Owner thus recommends that Users make use of this resource in addition to the information provided in this document.

Additional information about Data collection and processing

Legal action

The User’s Personal Data may be used for legal purposes by the Data Controller, in Court or in the stages leading to possible legal action arising from improper use of this Application or the related services.
The User declares to be aware that the Data Controller may be required to reveal personal data upon request of public authorities.

Additional information about User’s Personal Data

In addition to the information contained in this privacy policy, this Application may provide the User with additional and contextual information concerning particular services or the collection and processing of Personal Data upon request.

System logs and maintenance

For operation and maintenance purposes, this Application and any third party services may collect files that record interaction with this Application (System logs) or use for this purpose other Personal Data (such as IP Address).

Information not contained in this policy

More details concerning the collection or processing of Personal Data may be requested from the Data Controller at any time. Please see the contact information at the beginning of this document.

The rights of Users

Users have the right, at any time, to know whether their Personal Data has been stored and can consult the Data Controller to learn about their contents and origin, to verify their accuracy or to ask for them to be supplemented, cancelled, updated or corrected, or for their transformation into anonymous format or to block any data held in violation of the law, as well as to oppose their treatment for any and all legitimate reasons. Requests should be sent to the Data Controller at the contact information set out above.

This Application does not support “Do Not Track” requests.
To determine whether any of the third party services it uses honor the “Do Not Track” requests, please read their privacy policies.

Changes to this privacy policy

The Data Controller reserves the right to make changes to this privacy policy at any time by giving notice to its Users on this page. It is strongly recommended to check this page often, referring to the date of the last modification listed at the bottom. If a User objects to any of the changes to the Policy, the User must cease using this Application and can request that the Data Controller remove the Personal Data. Unless stated otherwise, the then-current privacy policy applies to all Personal Data the Data Controller has about Users.

Information about this privacy policy

The Data Controller is responsible for this privacy policy, prepared starting from the modules provided by Iubenda and hosted on Iubenda’s servers.

 

Definitions and legal references

Personal Data (or Data)

Any information regarding a natural person, a legal person, an institution or an association, which is, or can be, identified, even indirectly, by reference to any other information, including a personal identification number.

Usage Data

Information collected automatically from this Application (or third party services employed in this Application), which can include: the IP addresses or domain names of the computers utilized by the Users who use this Application, the URI addresses (Uniform Resource Identifier), the time of the request, the method utilized to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server’s answer (successful outcome, error, etc.), the country of origin, the features of the browser and the operating system utilized by the User, the various time details per visit (e.g., the time spent on each page within the Application) and the details about the path followed within the Application with special reference to the sequence of pages visited, and other parameters about the device operating system and/or the User’s IT environment.

User

The individual using this Application, which must coincide with or be authorized by the Data Subject, to whom the Personal Data refers.

Data Subject

The legal or natural person to whom the Personal Data refers.

Data Processor (or Data Supervisor)

The natural person, legal person, public administration or any other body, association or organization authorized by the Data Controller to process the Personal Data in compliance with this privacy policy.

Data Controller (or Owner)

The natural person, legal person, public administration or any other body, association or organization with the right, also jointly with another Data Controller, to make decisions regarding the purposes, and the methods of processing of Personal Data and the means used, including the security measures concerning the operation and use of this Application. The Data Controller, unless otherwise specified, is the Owner of this Application.

This Application

The hardware or software tool by which the Personal Data of the User is collected.

Cookies

Small piece of data stored in the User’s device.

Legal information

Notice to European Users: this privacy statement has been prepared in fulfillment of the obligations under Art. 10 of EC Directive n. 95/46/EC, and under the provisions of Directive 2002/58/EC, as revised by Directive 2009/136/EC, on the subject of Cookies.

This privacy policy relates solely to this Application.