Updated 26 May 2018
Note: this page is aligned with the general page also published on the main Venipedia site. Currently, the links on this page will take you out of Venipedia® Merchant and into the main Venipedia® site. We are working to align all content on all sites as soon as possible. Thank you for your patience!
Your privacy, your personal data and their protection are extremely important to us. These are the fundamental principles on which we operate:
- We value the personal information we ask you for and the information we collect when you interact with our sites and services.
- We only collect as little information as we need to in order to provide you with access to information and to ensure the smooth operation of our platforms.
- Even when you use our services, we only ask for what is strictly necessary.
- We only store data for as long as necessary, not a minute longer.
- We work so that you can access, modify and delete your data as easily as possible.
- We work to be as transparent as possible about how we collect, handle and share your personal data.
What you will read below is the most detailed explanation of how we implement these principles, i.e. our policy on the management and protection of your personal data.
We also ask you to help us, i.e. if you identify any anomaly between this Policy and any practical aspects of the use of Venipedia® and related Services - which may not even depend on us but on third parties, e.g. payment systems such as Stripe and Paypal to name a few -, please do not hesitate to report it to us through our Unified Support Centre: [email protected]. For this we thank you and are grateful from now on!
Venipedia® is part of Bazzmann Agency.
We run Venipedia® as if it were a company in its own right, therefore with the greatest possible care in all legal and juridical aspects.
With Venipedia® we want to offer you the best project of information, divulgation, utility and service related to the topic "Venice", using all the innovation, authority, reliability and efficiency possible to give you the best experience on the subject. All in maximum security.
The data controller is Bazzmann Sas di Trevisan Marco & C. (Bazzmann Agency).
The data controller is Marco Trevisan.
Our location is:
Bazzmann Sas di Trevisan Marco & C.
Via Verdi 10
You can get in touch with us with the dedicated e-mail [email protected]connected to a unified external ticketing system to ensure the greatest possible transparency and efficiency.
What data we collect and why we collect it
The most important thing to know is that we only collect the necessary data, not one more. We need this to provide you with our Services, to communicate with you, or to make our Services better every day.
We collect information in three ways: if and when you provide it to us, automatically by operating our Services and from outside sources. By Services we also mean operating this website for you to browse.
Information you provide us with
The amount and type of information you give us depends on the context and how we use the information. For example:
- Basic account informationAccess to Venipedia® is for the most part free and anonymous. However, to use non-public content, services and other useful tools, you are required to create an account where basic information ('credentials') is stored. This information is your username, e-mail address and password.
- Personal InformationOnly in certain cases, such as when you purchase a Smart Guide, may your telephone number be necessary for the Service to run smoothly and allow us to provide you with all possible assistance.
- Geographical coordinatesOnly if you use Venipedia® Sextant from your mobile phone and only with your explicit consent, we will ask your mobile phone for your latitude and longitude of where you are at that moment, without storing them in any way and only for the period of time necessary to obtain the data. This means, at most, a few seconds.
- E-commerce informationonly if you use Venipedia® Mercante, in addition to the need for basic account information, you will be asked to provide a range of information necessary to carry out the sales contract, finalise the order, and make everything run smoothly (including any refunds you request or tax calculations we have to make by law). This includes your contact details, billing and shipping address, and your first and last name. Since we sell different types of products, including digital products that do not require any additional information beyond your username, e-mail and password, most of the information is optional and will only be requested from you when strictly necessary.
- Transactions and billing/shipping informationIf you purchase something from us, you will be asked for the data strictly necessary for the transaction and purchase to go through. These data are required by the payment systems and generally consist of: first and last name, your credit card details, contact information, and e-mail address.
- Communicating with usYou may provide us with information when answering our surveys, communicating with our unified support centre, when contacting us in the editorial department or when posting a comment/review (if and where the functionality exists).
Information we collect automatically
We collect certain information, automatically:
- Log informationLike most websites and web hosts, we collect information that web browsers, mobile devices, and servers normally make available, such as browser type, IP address, unique device identifiers, language preferences, referring sites, date and time of access, and network provider. This information is automatically collected by the server where the Venipedia® project is hosted, even when you simply open a page.
Information we collect from other sources
We may collect your personal information from other sources and services. For example, when you use social login features to register your account and log in faster (such as with Google, Facebook, Twitter, Mailchimp, etc.), from which we only ask for the bare minimum, most of the time limited to your user name, first and last name if applicable, password and e-mail address. In any case, the information we receive depends exclusively on the services you authorise and the options you make available.
How we use information and why
Purposes of use
We use the above-mentioned information for the following purposes:
- To provide you with our Services, from simply reading our content to purchasing our products and services for a fee;
- To further develop and improve our Services, e.g. to add new or improved features, making your experience on our platforms better every day;
- In order to understand how people interact with our platform and our Services, so as to help us improve more and more and make it more user-friendly;
- To measure and better understand what content, products and services, including paid ones, people prefer, including which promotional messages are most effective, least invasive and most liked by those who use our platforms, with the aim of focusing as much as possible on what is liked and requested by our audience;
- To monitor and prevent any problems with our platforms and Services, to protect the security of our systems and your personal data, to detect and prevent fraudulent activity, to combat spam, and to protect the rights and property of Venipedia/Bazzmann and others, which could result in, for example, the denial of an economic transaction or use of our Services;
- To communicate with you, either through the exchange of e-mails or through our newsletters, service announcements and/or promotional offers;
- To give you the opportunity to customise your experience with our Services.
Legal basis for use
We mainly use your personal data to enable you to log in, register, browse our platforms, purchase our products and use our Services. Any further processing is done on the basis of legal obligations, i.e. with your explicit consent, which is generally provided electronically.
For greater specificity, we can summarise:
- Use necessary to finalise a sales contract (e.g. when you buy one of our books);
- Use necessary to ensure the proper functioning of the Services, their security, to monitor possible issues and their prevention, and to give you the possibility to customise your experience on our Services;
- Use necessary for administrative, legal and statutory purposes, including as required by the GDPR itself to ensure demonstrable compliance with our obligations;
- Use with your explicit consent.
With whom we share your personal information
The most important thing: we do not sell your personal information, nor do we want to.
In certain cases it is necessary to share your information with someone outside our company circle, always in the most limited and protected way possible:
- Supplierse.g. when purchasing a physical product, in which case we must necessarily tell the person who will do the delivery for us where to deliver your order to you, or in the case of purchasing a service, where it is necessary to share your information in order for the service to be performed correctly.
- Administrative/legal/statutory requirementse.g. if you need to receive a commercial invoice from us following a purchase, this information will then have to be shared with our accountant and all the institutions in charge of handling it (e.g. the Internal Revenue Service)
- Payment CircuitsWhen you buy something from us, for your purchase to go through, you send some of the above-mentioned necessary data through us to the appropriate payment circuit or gateway (e.g. Stripe or Paypal, Visa, American Express, etc.).
- Comments/Reviews: if you write a comment or review, this information and any related personal information (e.g. user name, photo, e-mail address, if any) that you choose to share or that is necessary for publication, will be publicly visible
- With your consentwhere it is necessary to share information at your request or where your consent is required, for example when using the Social Login feature to speed up registration and access to our platforms. In this case, the exchange of information necessary to complete the transaction takes place with your explicit consent.
How long we keep your personal information
As a general rule, all information is deleted when its need for use ceases to exist, except for that information that is needed within the terms of the applicable laws.
For example, if you simply register on the site with your user name, e-mail and password, this data will be deleted as soon as you request it (and in the hopefully short future also in full autonomy on your part without going through us!).
If you have made a purchase, or any action within the terms of the applicable laws, your data will be retained within the terms of the law (currently 10 years). This data also includes our audit logs, as required by the GDPR itself, which are used to prove that we have met and acted upon all GDPR requirements. The data collected in our audit log are the minimum necessary and/or technical data (e.g. IP address) mentioned above.
How we protect your personal data - security
For us, security is one of the vital aspects of our work, so much so that we provide for it as much as possible by design and by default, just like privacy. This means that we are always active and proactive in identifying and applying what we can in order to make systems, platforms, processes and procedures as secure as possible:
- Secure access via HTTPSFor example, back in 2015 we switched all our websites and those of our customers to the secure HTTPS protocol, bar none;
- Firewall, antivirus and antispamOur servers and offices are equipped with firewalls to keep malicious attackers out of our network, plus we use anti-virus and anti-spam systems;
- Automatic backups: we save data daily and automatically, with recovery mode, so that data integrity is guaranteed (at least until the date of the last backup)
- Constant updatingWe update all systems, software and procedures - on the servers and in our office - to prevent as far as possible any unauthorised access, fraudulent use, alteration or destruction of data, external attacks and whatever else is necessary to guarantee the integrity of all systems and the data they contain;
- Constant monitoringsystems, software, procedures and our partners, technological and otherwise, sometimes choosing to massively shift our projects and those of our customers to new suppliers, solutions and partners that guarantee us the level of quality and security we want, and in any case the highest possible;
- Code of EthicsWe demand and contract compliance with our code of ethics from everyone who interacts with us, from our suppliers to our partners, so that they too strive to guarantee this level of quality and safety to the maximum. Sometimes it is easier, sometimes less so and we have to fight harder!
- We also ask you to do yourFor a computer to be truly secure, it must be switched off, disconnected from the power supply and data network. Since it is not possible to guarantee that all the security measures taken to safeguard the integrity of data and their protection from malicious access absolutely exclude any risk, we also ask you to equip yourself with security measures on your devices (computers, laptops, mobile devices, modems, routers, etc.), to update your software including operating systems, and to equip yourself with anti-virus and anti-spam software.
We have created a section dedicated to our Security Policysecurity management of data and infrastructure. This is where all relevant information will be published in an up-to-date manner.
Transfer of your personal data outside the European Union
Processing of personal data of minors
Using the site anonymously (i.e. without submitting personal data) is permitted for everyone, including for study purposes. However, access via credentials and to our Services, including the purchase of products, is only permitted to persons of legal age. We do not process personal data of minors under eighteen (18) years of age without parental consent.
If you have any needs, concerns or information regarding this Policy, you may contact the Controller and the Data Protection Officer with a written request to our unified support centre: [email protected]
You are in any case entitled to:
- be informed of the purposes and methods of the processing of your personal data;
- access to your personal data;
- obtain a copy of your personal data, as well as an indication of the place where such personal data are stored or transferred;
- request the rectification, updating or integration of your personal data;
- request the deletion, anonymisation or blocking of the processing of your personal data;
- object, in whole or in part, to any processing carried out by means of automated decision-making processes, including profiling;
- withdraw your consent to processing, where given, freely and at any time;
- contact the Data Protection Officer of the Data Controller, where appointed;
- file a complaint with the Garante per la protezione dei dati personali.
- Data portability, i.e. the right to receive one's personal data in a structured, commonly used and machine-readable format, and the possibility to transmit them to another data controller freely and without hindrance - where applicable;
- to request the restriction of the processing of your personal data, where applicable.
Links to third-party sites and social plugins
Notwithstanding the above and our utmost commitment to comply with the above, it is not within our power to control the work of others.
This means that neither the Controller nor the Processor of your personal data can supervise what happens on third-party websites and services accessible from our sites through the links contained therein. In this case, Bazzmann Agency and Marco Trevisan cannot be held responsible in any way for how your data is processed on third party websites and services.
We urge you to be careful in this regard and to read up on their policies regarding the processing of your personal data, its protection and security.
Tools for managing your personal data
We have dedicated a section to this as well, so it will be more straightforward for you: Tools for managing your personal data.
Changes and updates
At the bottom of the page you will find the date when this page was last updated. We will still keep track of changes to the text here.
As Venipedia® is a living project and product, it is possible that this Policy will be updated, as also required by current laws and the GDPR. It will be our care to inform you in the most effective and expedient ways possible, in particular through this site itself and extra communication channels (e.g. Venipedia social channels or our newsletter Missiva).
However, we invite you to return to this page periodically to ensure that you remain up-to-date on the Policy.
Amendments to this document