Privacy policy

PRIVACY POLICY

Last updated: March 8, 2026

1. INTRODUCTION

MuranoAtelier ("we," "us," or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you visit our website muranoatelier.com and purchase our products.

This policy complies with the EU General Data Protection Regulation (GDPR - Regulation 2016/679) and Italian privacy legislation (Legislative Decree 196/2003 as amended).

2. DATA CONTROLLER

Data Controller:
MuranoAtelier - Ditta Individuale
Cinzia Gambini
Via Margherita 10, 56034 Chianni (PI), Italy
Email: cinzia.gambini2@gmail.com
VAT: IT02547240503

3. WHAT PERSONAL DATA WE COLLECT

We collect and process the following types of personal data:

A. Information You Provide to Us:

  • Contact details: Name, email address, phone number
  • Billing address: Street address, city, postal code, country
  • Shipping address: Delivery address (if different from billing)
  • Payment information: Processed securely by our payment provider (we do not store full credit card details)
  • Order details: Products purchased, order history, preferences
  • Communication data: Correspondence via email or contact forms

B. Information Collected Automatically:

  • Technical data: IP address, browser type, device information
  • Usage data: Pages visited, time spent on site, navigation patterns
  • Cookies: See our Cookie Policy section below

4. HOW WE USE YOUR PERSONAL DATA

We use your personal data for the following purposes:

A. Order Processing and Fulfillment (Legal basis: Contract performance)

  • Process and fulfill your orders
  • Communicate order status and shipping updates
  • Handle payments and invoicing
  • Manage returns, refunds, and customer service inquiries

B. Legal Obligations (Legal basis: Legal compliance)

  • Comply with tax and accounting requirements
  • Maintain records as required by Italian and EU law
  • Respond to legal requests from authorities

C. Marketing Communications (Legal basis: Consent or Legitimate interest)

  • Send promotional emails about new products and special offers (only with your consent)
  • Inform you about updates relevant to your purchases
  • You may unsubscribe at any time using the link in our emails

D. Website Improvement (Legal basis: Legitimate interest)

  • Analyze website usage to improve user experience
  • Detect and prevent fraud or security issues
  • Optimize website performance

5. LEGAL BASIS FOR PROCESSING

We process your personal data based on:

  • Contract performance: To fulfill our obligations under your purchase agreement
  • Legal compliance: To meet tax, accounting, and legal requirements
  • Consent: For marketing communications (you can withdraw consent at any time)
  • Legitimate interest: To improve our services and protect against fraud

6. WHO WE SHARE YOUR DATA WITH

We may share your personal data with:

A. Service Providers:

  • Shopify: Our e-commerce platform (hosting, order management)
  • Payment processors: Secure payment gateway providers
  • Shipping carriers: To deliver your orders
  • Email service providers: For order confirmations and communications

B. Legal Requirements:

  • Law enforcement or regulatory authorities when required by law
  • Legal advisors in case of disputes

We do not sell your personal data to third parties.

All third-party service providers are required to protect your data in accordance with GDPR and process it only for specified purposes.

7. INTERNATIONAL DATA TRANSFERS

Some of our service providers (such as Shopify) may be located outside the European Economic Area (EEA). When we transfer your data internationally, we ensure:

  • Adequate protection through EU-approved mechanisms (Standard Contractual Clauses, adequacy decisions)
  • Compliance with GDPR requirements for international transfers

8. HOW LONG WE KEEP YOUR DATA

We retain your personal data for:

  • Order and transaction data: 10 years (Italian tax and accounting requirements)
  • Marketing communications: Until you unsubscribe or withdraw consent
  • Website analytics: 26 months maximum
  • Correspondence: As long as necessary to resolve your inquiry

After these periods, we will securely delete or anonymize your data.

9. YOUR RIGHTS UNDER GDPR

You have the following rights regarding your personal data:

✅ Right to access: Request a copy of your personal data
✅ Right to rectification: Correct inaccurate or incomplete data
✅ Right to erasure ("right to be forgotten"): Request deletion of your data (subject to legal obligations)
✅ Right to restriction: Limit how we use your data
✅ Right to data portability: Receive your data in a structured, machine-readable format
✅ Right to object: Object to processing based on legitimate interest or for marketing purposes
✅ Right to withdraw consent: Withdraw consent for marketing at any time
✅ Right to lodge a complaint: File a complaint with the Italian Data Protection Authority (Garante per la protezione dei dati personali)

To exercise your rights, contact us at: cinzia.gambini2@gmail.com

We will respond to your request within 30 days.

10. DATA SECURITY

We implement appropriate technical and organizational measures to protect your personal data against:

  • Unauthorized access
  • Accidental loss or destruction
  • Unlawful processing

Security measures include:

  • Secure SSL/TLS encryption for data transmission
  • Secure hosting with Shopify (PCI DSS compliant)
  • Access controls and password protection
  • Regular security updates

However, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.

11. COOKIES

Our website uses cookies to:

  • Enable essential website functions (shopping cart, checkout)
  • Analyze website traffic and user behavior
  • Remember your preferences

Types of cookies we use:

  • Essential cookies: Required for website functionality (cannot be disabled)
  • Analytics cookies: Help us understand how visitors use our site (Google Analytics or similar)
  • Marketing cookies: Track your activity for advertising purposes (only with consent)

Managing cookies:
You can control cookies through your browser settings. Disabling essential cookies may affect website functionality.

For more information, see our detailed Cookie Policy [link if you create a separate cookie policy].

12. THIRD-PARTY LINKS

Our website may contain links to third-party websites (social media, payment providers, etc.). We are not responsible for the privacy practices of these external sites. Please review their privacy policies.

13. CHILDREN'S PRIVACY

Our website and products are not intended for children under 16. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately.

14. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. Significant changes will be communicated via email.

15. CONTACT US

For questions about this Privacy Policy or to exercise your rights:

Email: cinzia.gambini2@gmail.com
Address: Via Margherita 10, 56034 Chianni (PI), Italy
VAT: IT02547240503

16. SUPERVISORY AUTHORITY

If you have concerns about how we handle your personal data, you may contact the Italian Data Protection Authority:

Garante per la protezione dei dati personali
Piazza Venezia 11, 00187 Roma, Italy
Website: www.garanteprivacy.it
Email: garante@gpdp.it