Privacy Policy

Welcome to our website www.rivieragear.com. Please read our Privacy Policy carefully, which applies in any case in which you access the website and decide to browse it and use its services, regardless of the purchase of products. Please also read the General Terms and Conditions of Use of www.rivieragear.com, because they also contain important information on privacy and the security systems adopted by the website.

This information is provided in accordance with European Regulation no. 2016/679 (“GDPR”), relating to the protection of natural persons with regard to the processing of personal data, as well as the free movement of such data, as well as Legislative Decree no. n. 196/03 and subsequent amendments (“Privacy Code”) and the Provisions of the Authority for the Protection of Personal Data. Your data will be processed in compliance with the aforementioned legislation, in the manner and for the purposes indicated below.

If you do not consent to the processing of data as described in this policy, please stop and avoid using the site.

Data Controller

The Data Controller of the data collected through this site is RIVIERA s.r.l., with registered office in Rimini (RN), via Pomposa n. 43/A, Tax Code and VAT number 04473210401.

It decides autonomously on the purposes and methods of processing, as well as on the security procedures to be applied to ensure the confidentiality, integrity and availability of the data.

Data Controller

Pursuant to art. 28 GDPR, the Data Controller of your personal data is RIVIERA s.r.l., with registered office in Rimini (RN), via Pomposa n. 43/A, Tax Code and VAT number 04473210401. The Data Controller may make use of third parties who process data on its behalf and formally appointed by them as data processors. The complete and up-to-date list of designated data processors will be available at the following link.

Our Privacy Policy at a glance

The principles on which our Privacy Policy is based are the following:

1. process the data exclusively for the purposes and in the manner illustrated in the information provided at the time of their collection;
2. use the data for purposes other than those for which the data have been specifically released only where the express consent of the user is present;
3. make the data available to third-party companies only for purposes instrumental to the provision of the requested service and as part of an appointment as data processor; not to communicate the data, assign them or transfer them to third parties for their own processing without the users having been previously informed and have granted their consent;
4. respond to requests for cancellation, modification, integration of the data provided, opposition to the processing of data for the purpose of sending commercial and advertising information;
5. ensure correct and lawful data management, safeguarding the privacy of users, as well as apply appropriate security measures to protect the confidentiality, integrity and availability of the data provided.

Optional or mandatory nature of the provision of data

The provision of your personal data that are requested www.rivieragear.com on the various occasions of collection may be necessary for the pursuit of the purposes identified in the specific information, or optional.

The mandatory or optional nature of the provision of data is specified from time to time – with reference to the individual information requested – at the time of the individual data collection, by affixing a specific character (*) to the mandatory information.

Any refusal to communicate to RIVIERA s.r.l. some of your data marked as mandatory makes it impossible to pursue the main purpose of the specific collection: such refusal could, for example, make it impossible for RIVIERA s.r.l. to execute the contract for the purchase of products on www.rivieragear.com or to provide the other services available on www.rivieragear.com.

On the other hand, the provision to RIVIERA s.r.l. of additional data, other than those marked as essential, is optional and does not entail any consequence with regard to the pursuit of the main purpose of the collection (for example, depending on the case, the use of the website and its services or the purchase of products).

Your rights

You always have the right to obtain from RIVIERA s.r.l. confirmation as to whether or not personal data concerning you are being processed, even if not yet registered, and access to personal data on paper or electronically.

You also have the right to receive clear communication in an intelligible form. You also have the right to obtain from RIVIERA s.r.l. information about the origin of your personal data; the purpose and manner of the processing of your personal data; the categories of personal data being processed; the logic applied in the case of processing carried out with the aid of electronic tools; the identification details of the data controller and data processors; the indication of the recipients of the categories of recipients to whom the personal data have been or will be disclosed; the retention period or the criteria that can be used to calculate it. All this information is contained in this Privacy Policy.

You always have the right to obtain from RIVIERA s.r.l.:

1. the updating, rectification and integration of your personal data;
2. the cancellation, transformation into anonymous form or blocking of your personal data processed in violation of the law, including those whose retention is not necessary in relation to the purposes for which the data were collected or subsequently processed;
3. certification that the operations referred to in points (1) (a) and b) have been brought to the attention, also with regard to their content, of those to whom the data have been communicated or disseminated, except in the case in which this fulfilment proves impossible or involves the use of means manifestly disproportionate to the right protected.

In addition, you have the right to restrict the processing of your data at any time:

1. in case of inaccuracies in your personal data;
2. in the event of unlawful processing of the same, if you do not request erasure;
3. if the data is necessary for you to establish, exercise or defend a right in court;
4. for reasons related to your particular situation, pending verification of whether the legitimate reasons of the Data Controller prevail over yours.

You have, however, the right to object, in whole or in part:

1. to the processing of personal data concerning you, for legitimate reasons, even if pertinent to the purpose of the collection;
2. to the processing of personal data concerning you for the purpose of sending advertising or direct marketing material or for carrying out market research or commercial communication.

You can freely exercise your rights at any time, with a written request addressed to RIVIERA s.r.l. – at the e-mail address info@newfactor.it, to which we will promptly respond.

To ensure that your personal data is always accurate, up-to-date, relevant and complete, please notify us at info@newfactor.it any changes.

We would like to point out that the legislation on the protection of personal data allows RIVIERA s.r.l. – without the need to obtain your express consent – to use your e-mail address for the purpose of direct sale of products similar to those you have already purchased, provided that you do not refuse such use (art. 130, paragraph 4, d. lgs. 196/2003).

We would also like to point out that the Guarantor has allowed RIVIERA s.r.l. to use your postal address to send you – together with administrative and accounting documents – advertising relating to products similar to those you have already purchased, provided that you do not refuse such use of the postal address issued (Provision of the Guarantor of 19 June 2008, on the simplification of obligations with respect to processing for administrative and accounting purposes).

The above are the minimum information that RIVIERA s.r.l. is obliged to provide you: for any further information regarding the processing of your personal data by RIVIERA s.r.l., we invite you to read this Privacy Policy in full.

How and why we process your personal data

The www.rivieragear.com site it performs an informative and commercial function, as it offers information on the products and price lists of our Company and allows users to place orders directly online. In addition, this site is a digital communication tool.

The processing of personal data is carried out mainly electronically and electronically by RIVIERA s.r.l. and by other subjects who, appropriately selected for their reliability and competence, carry out operations instrumental to the pursuit of the purposes strictly related to the use of the website www.rivieragear.com, its services and the purchase of products through the website (see below, paragraph “Parties who may process your personal data”).

In general, the data are processed for the provision of the following services available by accessing our site:

1. to allow browsing (see Cookies Policy);
2. registration on the site, to use the related services;
3. subscription to specific and additional services, such as our newsletter and other similar information services about our activity, the creation of your mailbox and the sharing of its contents, the invitation to your friends to join the world rivieragear.com, make you known to other users by sending us your photo and comments;
4. fulfilment of orders and related activities;
5. payment management, including anti-fraud control in case of payment by credit card; in this case, the data provided during the purchase process (name, surname, address, credit card number, delivery address if different from the billing address) will be sent to the person in charge of anti-fraud control and processed by him only for this purpose;
6. management of your requests: technical, commercial, on the progress of your orders and requests for information in a broad sense;
7. contact with the representatives of our services (Press Office, Business Development, Web Marketing, Purchasing Department, Customer Service);
8. request for evaluation for your inclusion in our staff, through the sending of CVs.

In the processing of data that can, directly or indirectly, identify your person, we try to comply with a principle of strict necessity. In general, your data will be collected both through a specific procedure when registering and accessing the Reserved Area, and automatically during the use of the Site, unless you access the non-reserved area anonymously.

For this reason, we have configured the site in such a way that the use of your personal data is reduced to a minimum: therefore, the processing of your data is excluded when the purposes pursued in individual cases can be achieved through the use of anonymous data (such as, for example, in market research aimed at improving services) or through other methods that allow the data subject to be identified only in case of necessity or at the request of the authorities and law enforcement (such as, for example, data relating to traffic and your stay on the website or your IP address). In cases where it is necessary to collect personal information for other purposes, this will be clearly highlighted by means of an information notice, prefixed to the data collection form

In some cases, as expressly indicated in the privacy policy, your data will be processed – subject to your express consent – to create profiles based on your preferences and purchases. This is for the purpose of sending you information tailored to your needs and interests. Except in the case provided for by Article 130, paragraph 4, Legislative Decree no. 196/2003 (in which the Data Controller may use the data to send advertising e-mails about its products and services, similar to those already purchased, unless you refuse such use), the Data Controller may use your data to send you advertising about its services and products only with your consent.

Your data will be communicated to third parties only with your express consent, except in cases where the communication is mandatory by law or is necessary for purposes provided for by law for the pursuit of which the consent of the interested party is not required; In such cases, the data may be made available to third parties who will process them autonomously and solely for the aforementioned purposes.

Any processing purpose other than the specific one for which you have provided your personal data will be highlighted in the information notice and will be pursued by RIVIERA s.r.l. only after obtaining your express consent (which happens, for example, customer profiling activities based on preferences and purchasing habits), in order to allow transparency and user awareness.

There are, however, processing for which the law provides for the exclusion of consent: for example, we inform you that RIVIERA s.r.l. may process your personal data without obtaining your consent when this is necessary to comply with a legal obligation or when it is necessary to execute the obligations contractually assumed towards you (such as in the case where you have purchased products or have requested to use specific services through the our website).

If you share certain content via one or more social networks, the site may access certain information from your account or profile if you have enabled the sharing of your account or profile data with applications open to third parties.

RIVIERA s.r.l. reserves the right to delete accounts and all related data in the event of illicit content, harmful to the image of RIVIERA s.r.l. and/or its products or third parties, or in any case offensive content or content that promotes illegal or defamatory activities, pornographic content, that incites violence, that promotes discrimination based on race, Gender, religion, and sexual orientation.

In accordance with Art. 13 and 14 of the GDPR, RIVIERA s.r.l. will provide you with the information on the processing of data at a time prior to or at the latest at the time of data collection (for example at the time of registration or at the time of completion of an order).

Parties who may process your personal data

RIVIERA s.r.l. has decided to use third parties for the processing of your personal data, for certain activities. The third parties that carry out these operations have been adequately selected and are experienced, capable and reliable and offer a suitable guarantee of full compliance with the provisions in force on processing, including the data security profile.

These third parties have been appointed for this purpose as “data processors” and carry out their activities according to the instructions given by RIVIERA s.r.l. and under its control (list). Periodically, we verify that the data processors have punctually fulfilled the tasks assigned to them and that they continue to provide adequate guarantees of full compliance with the provisions on the protection of personal data.

Your data is then processed by our persons in charge of the individual services; The categories of employees who carry out these activities depend on the purposes for which the data were provided and are always indicated in the information that we present to you at the time of the release of your personal data.

In summary, the data provided may be made accessible for the purposes specified in the previous points: (i) to employees and collaborators of the Data Controller, in their capacity as persons in charge and/or internal data processors and/or system administrators; and (ii) to third-party companies or other subjects who carry out outsourcing activities on behalf of the Data Controller, in their capacity as persons in charge and/or data processors. In addition, personal data may be communicated, for the purposes referred to in point 1, to, (iii) Companies or external professionals who carry out specific tasks on behalf of the Data Controller (by way of example but not limited to, data processing, assistance, consultancy in the administrative, accounting, tax, legal, regulatory, management/maintenance/implementation of company IT systems), only if the communication of data is necessary and/or in any case functional to the pursuit of the above purposes; (iv) Law firms and lawyers, for the possible protection of contractual rights; (v) Credit institutions, and where necessary, to financial, leasing, credit recovery, protection and assignment companies, for the management of economic transactions and (vi) Central and peripheral State Bodies, Public Bodies and other Institutes for the fulfilment of any legal obligations. In any case, it is understood that the Data Controller, if necessary, will have the right to move the servers even outside the EU. In this case, the Data Controller hereby ensures that the transfer of Data outside the EU will take place in accordance with the applicable legal provisions, subject to the stipulation of standard contractual agreements provided for by the European Commission.

How and for how long your data will be stored

The data are processed and stored with the adoption of specific security measures aimed at avoiding any data breach, such as the loss of the same, any illicit and/or incorrect use and unauthorized access. However, due to the nature of the means of on-line transmission, these measures cannot limit and/or exclude in absolute terms any risk of unauthorized access or loss of data. To this end, it is advisable to periodically check that the support used for browsing and accessing the Site is equipped with software devices suitable for the protection of data transmission over the network, both incoming and outgoing (such as updated antivirus systems) and that the Internet service provider has adopted suitable measures for the security of data transmission on the network (such as, for example, firewall and/or anti-spam filters).

In any case, it should be noted that personal data:

1. they are stored on servers located in Gatteo a Mare (FC) within the European Union and will be processed and stored for the time necessary to fulfill the purposes for which they are collected, as well as for the time necessary to carry them out;
2. if voluntarily provided, they will be kept until consent is revoked or until the purposes for which they were provided are achieved, i.e. for as long as there is a legitimate business interest;
3. if collected while browsing the Site, they are stored for the duration of the session itself. After these terms, the data will be destroyed, deleted or made anonymous (if not already collected anonymously). In addition, the browsing data collected for the purpose of personalizing advertising (marketing and profiling) are stored for a maximum of 12 (twelve) months, and then automatically deleted.

Minor

It is expressly understood that only those who are over 14 (fourteen) years of age may express consent to the processing of their personal data in connection with the direct offer of information society services. With regard to these services, the processing of personal data of minors under the age of 14 (fourteen) is lawful provided that it is carried out by the person exercising parental responsibility.

Safety Precautions

We adopt appropriate security measures in order to minimize the risks of destruction or loss – even accidental – of data, unauthorized access or processing that is not permitted or does not comply with the purposes of collection indicated in our Privacy Policy.

However, RIVIERA s.r.l. cannot guarantee its users that the measures adopted for the security of the site and the transmission of data and information on the site limit or exclude any risk of unauthorized access or dispersion of data by devices pertaining to the user. We recommend that you make sure that your computer is equipped with adequate software to protect the transmission of data over the network, both incoming and outgoing (such as up-to-date antivirus systems) and that your Internet service provider has adopted appropriate measures for the security of data transmission over the network (such as firewalls and anti-spam filters).

Payments

The Data Controller and the Data Processor do not hold the Credit Card data entered by the Customers.

In order to ensure greater security, the credit card data entered by customers are transmitted from the browser directly to Unicredit’s banking gateway without passing through internal systems. For the purpose of concluding the financial transaction, Unicredit communicates only one credit card token to the Processor. Obviously, this does not imply the need to have a current account with this bank and credit cards issued by any bank and of any type can be used. In the case of credit card use, payment authorization takes place at the time of ordering, while the relative charge is made at the time of shipment.

In case of payment with PayPal, the customer is redirected to a secure page managed by PayPal itself where the necessary authentication for payment is required. You will be charged at the same time as the order.

In the event that someone steals your credit card details, it is important to know that it is always possible to contact the credit card provider and refuse the charge, obtaining, once the actual conditions of use of the card have been ascertained, a refund of the sums charged.

Links to third-party sites

Our website may, from time to time, contain links to third-party websites (e.g. affiliates, partners, etc.) that may offer useful information and services to our Customers and/or visitors. We provide these links to you only as a convenience and the inclusion of any link does not imply endorsement by RIVIERA s.r.l. of the relevant website. If you access these links and websites, please note that the Data Controller and Data Processor are not responsible for the actions of these third parties, who have their own Privacy Policies. Please check these policies before submitting personal information to these websites, especially if they are intended for non-EU countries.

Safeguards

Any dispute relating to the processing described above may be the subject of a complaint to the Guarantor for the protection of personal data, located in Piazza Venezia 11, 00187, Rome (RM). This is without prejudice to the possibility of appealing to the judicial authorities.

Contacts

If you wish to receive more information on how RIVIERA s.r.l. processes your personal data, please send an e-mail to the e-mail address info@rivieragear.com. To find out about your rights and keep up to date on the legislation on the protection of individuals with respect to the processing of personal data, we recommend that you visit the website of the Guarantor for the protection of personal data at http://www.garanteprivacy.it/.

Governing Law

This Privacy Policy is governed by Italian law and in particular by the Code regarding the protection of personal data (Legislative Decree No. 196 of 30 June 2003) which regulates the processing of personal data – including those held abroad – carried out by anyone who is resident or has its registered office in Italy.

The Code guarantees that the processing of personal data is carried out in compliance with the fundamental rights and freedoms, as well as the dignity of the person concerned, with particular reference to confidentiality, personal identity and the right to protection of personal data.

Changes and updates to the Privacy Policy

RIVIERA s.r.l. may modify or simply update, in whole or in part, the Privacy Policy of the site, also in consideration of changes in the laws or regulations that govern this matter and protect your rights. Changes and updates to the Privacy Policy will be notified to users on the Home Page as soon as they are adopted and will be binding as soon as they are published on the website. We therefore ask you to regularly access this section to check the publication of the most recent and updated Privacy Policy.