Privacy policy

Privacy Policy – lovecapri.com

Last updated: august 16, 2025

1. Data Controller

The Data Controller responsible for the processing of personal data collected through lovecapri.com is:

Capri Trademark S.r.l.
Registered office: Via Vittorio Emanuele 48, 80073 Capri (NA), Italy
Tax Code / VAT Number: 10682341218
Business Register (REA): NA – 1124301
Certified Email (PEC): capritrademarksrl@pec.it

The Controller determines the purposes and methods of processing in compliance with Regulation (EU) 2016/679 (“GDPR”).

2. Types of Data Collected

2.1 Data provided directly by the user

  • First and last name

  • Shipping and billing address

  • Email address and telephone number

  • Order and purchase details

  • Information provided via contact forms

  • Return and customer service information

2.2 Data collected automatically

  • IP address, browser type, device data, session logs

  • Cookies and similar tracking technologies
    (See Cookie Policy)

2.3 Payment data

Payment details (e.g., credit card numbers) are not stored by the site.
They are processed exclusively by third-party payment providers (Shopify Payments, PayPal, etc.).

3. Purposes and Legal Bases of Processing

Purpose Legal Basis
Processing orders, payments, shipping Contract
Creating and managing user accounts Contract
Customer support Contract / Legitimate interest
Sending newsletters and promotions Consent
Analytics and marketing (via cookies) Consent
Fraud prevention and security Legitimate interest
Invoicing and accounting obligations Legal obligation

4. Methods of Processing

Data is processed using electronic tools and adequate security measures to prevent:

  • unauthorized access

  • disclosure

  • alteration

  • loss

Only authorized personnel and third-party providers may access personal data.

5. Data Retention

  • Orders and invoicing: 10 years (legal requirement)

  • User accounts: until the account is deleted

  • Marketing communications: until consent is withdrawn

  • Cookies and analytics data: as described in the Cookie Policy

6. Third-Party Disclosure and International Transfers

6.1 Service providers

Personal data may be shared with:

  • Shopify Inc. (e-commerce platform & hosting)

  • Payment service providers (Shopify Payments, PayPal, Stripe)

  • Shipping and logistics partners

  • Email and marketing platforms

  • Administrative and accounting consultants

  • IT security and technical providers

All providers process data as Data Processors under signed GDPR-compliant agreements.

6.2 Transfers outside the EU

Some services (e.g., Shopify, email providers) may involve transfers outside the European Economic Area.

Transfers are carried out using:

  • Standard Contractual Clauses (SCCs)

  • Additional technical and organizational safeguards

7. User Rights (Articles 15–22 GDPR)

Users may exercise the following rights at any time:

  • Access their personal data

  • Request rectification

  • Request deletion (“right to be forgotten”)

  • Restrict processing

  • Object to processing

  • Data portability

  • Withdraw consent

How to exercise your rights

Send an email to: capritrademarksrl@pec.it

Requests will be handled within the deadlines required by GDPR.

8. Newsletter and Promotional Communications

With explicit consent, the Controller may send:

  • newsletters

  • product updates

  • exclusive offers

Consent may be withdrawn at any time via:

9. Profiling and Automated Decision-Making

The website may use analytics and marketing tools to:

  • analyze browsing behavior

  • personalize content

  • show tailored promotional messages

These activities occur only with prior user consent.

10. Cookies

This website uses technical, analytical, and marketing cookies.
For full details, see the Cookie Policy.

A cookie banner is displayed on first access to manage user consent.

11. Data Security

Capri Trademark S.r.l. implements appropriate measures such as:

  • SSL encryption

  • access control restrictions

  • secure data storage

  • regular backups

to protect personal data from unauthorized access or disclosure.

12. Children’s Privacy

The website is not intended for individuals under the age of 16.
We do not knowingly collect personal data from minors.

13. Changes to This Policy

The Controller may update this Privacy Policy at any time.
Updates will be published on this page, with the “Last updated” date changed accordingly.

14. Contact Information

For any information regarding the processing of personal data or to exercise your rights, please contact:

Capri Trademark S.r.l.
Via Vittorio Emanuele 48, 80073 Capri (NA), Italy
Certified Email (PEC): capritrademarksrl@pec.it
VAT Number: 10682341218