0

Your cart (0 items)

Continue shopping
Home / Privacy Policy

Privacy Policy

Last update: March 2026

1. Introduction

Welcome to Arte Riflessa!
Protecting your privacy, whether as an individual or as a representative of a company or entity, is a priority for us.
This Privacy Policy describes how we collect, use, and protect personal and business data in connection with your use of the https://arteriflessa.com website and related services, in accordance with Regulation (EU) 2016/679 (GDPR) and applicable national legislation.

2. Data controller

The owner of the processing of personal data is:
Connect srls
Registered office: Via Mauro Leone, 40 – Caivano (NA), Italy
Email: info@arteriflessa.com
Phone: +39 351 4539117

Any external data processors (e.g., hosting providers, payment services, or CRM management) operate in accordance with specific agreements under Article 28 GDPR.

3. Types of data collected

As you browse or interact with our site, we may collect the following categories of data:

  • Browsing data: IP address, browser type, operating system, access times, pages visited, and URL referrer. This data is collected in an automated manner and used in aggregate form for statistical or security purposes.
  • Personal data provided voluntarily: first name, last name, email, phone number, company name, VAT number, company role, and any other information sent through contact forms, quote requests, or registration.
  • B2B customer and supplier data: company master and contact information, tax and banking data necessary for the establishment and management of the contractual relationship.
  • Cookies and tracking technologies: we use technical cookies and, with prior consent, analytical and marketing cookies. More details can be found in our Cookie Policy.

4. Purpose of processing.

Data are processed for the following purposes:

  • Delivery of required services: handling business inquiries, orders, quotations, customer service and after-sales communications.
  • B2B relationship management: communications with business contacts, contracting and contract management, invoicing and administrative management.
  • Site and service improvement: visit analysis, user experience optimization, and cybersecurity.
  • B2B promotional activities: sending informative or commercial communications regarding products and services for professionals and companies, based on legitimate interest, unless opposed.
  • Fulfilling legal or tax obligations.

5. Legal basis for processing

Processing is carried out in accordance with Articles 6 and 9 of the GDPR, based on:

  • Performance of a contract or pre-contractual measures.
  • Fulfillment of legal and tax obligations.
  • Legitimate interest of the owner to manage relationships with corporate partners and customers, prevent fraud, and improve services.
  • Explicit consent when required for marketing communications or the use of non-technical cookies.

6. Retention of data

Data will be retained only for as long as necessary to achieve the purposes listed above, or for the terms established by tax and accounting laws (generally up to 10 years).
In consent-based processing, data will be retained until consent is revoked.

7. Disclosure of data

Data may be disclosed, within the limits of the above purposes, to:

  • Technical and IT service providers (hosting providers, email marketing, CRM, order management).
  • Legal, tax or administrative advisors acting on behalf of Connect srls.
  • Public authorities or supervisory bodies when required by law.
  • Business partners or distributors, only if necessary and in accordance with the consent given.

Data will not be disseminated or given to third parties for independent commercial use.

8. Transfer of data outside the EU

Should it be necessary to transfer data outside the European Union (e.g., cloud services), this will only be done to countries that guarantee an adequate level of protection under Articles 44-49 of the GDPR, preferably through Standard Contractual Clauses (SCCs) approved by the European Commission.

9. Data security

We take technical and organizational measures to ensure the confidentiality, integrity and availability of the information processed, including:

  • HTTPS connection,
  • Authentication and backup systems,
  • access limited to authorized personnel.
    Despite the care taken, no computer system can guarantee absolute security.

10. Rights of data subjects

Data subjects (including business contacts) may exercise the following rights:

  • Obtain confirmation of the existence of and access to their data.
  • Request rectification, updating or deletion of data.
  • Limit processing or object to it, including in the case of B2B marketing.
  • Withdraw consent when given.
  • File a complaint with the Garante per la protezione dei dati personali(www.garanteprivacy.it).

To exercise your rights, you can write to: info@arteriflessa.com

11. Changes to the Privacy Policy

We may update this policy in the future due to legal reasons or technological adaptations.
The updated version will be posted on this page with an indication of the date it was last updated.

  • Menu Modern - EN
Menu
Search products
Product has been added to your cart