Privacy Policy

Privacy Policy  

The purpose of this document (hereinafter “Information Privacy”) is to inform Users about the data personal, understood as any information that allows the identification of a natural person (hereinafter “Personal Data”), collected from the website (hereinafter “Application”).

The Data Controller, as subsequently identified, may modify or simply update, in whole or in part, this Information by informing Users. Changes and updates will be binding as soon as they are published on the Application. The User is therefore invited to read the Privacy Policy each time they access the Application.

In case of non-acceptance of the changes made to the Privacy Policy, the User is required to cease using this Application and may request the Data Controller to remove their Personal Data.

  1. Personal Data collected by the Application

The Data Controller collects the following types of Personal Data:

  1. Content and information provided voluntarily by the User 
  • Contact data and contents: are those Personal Data that the User voluntarily provides to the Application during its use, such as for example personal data, contact details, access credentials to the services and/or products provided, personal interests and preferences and other personal content, etc.

Failure by the User to provide Personal Data, for which there is a legal or contractual obligation or if they constitute a necessary requirement for the use of the service or for the conclusion of the contract, will make it impossible for the Owner to fully provide or part of its services.

The User who communicates the Personal Data of third parties to the Owner is directly and exclusively responsible for their origin, collection, processing, communication or dissemination.

  1. Data and content acquired automatically when using the Application: 
  • Technical data: the IT systems and software procedures used to operate this Application may acquire, during their normal operation, some Personal Data whose transmission is implicit in the use of internet communication protocols. This is information that is not collected to be associated with identified Users, but which by its very nature could, through processing and association with Data held by third parties, allow Users to be identified. This category includes IP addresses, or domain names used by Users who connect to the Application, the addresses in URI (Uniform Resource Identifier) ​​notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained, etc.
  • Usage data: Personal Data relating to the use of the Application by the User may also be collected, such as the pages visited, the actions performed, the features and services used.
  • Personal data collected through cookies or similar technologies: 

The Application uses cookies, web beacons, unique identifiers and other similar technologies to collect Personal Data on the pages, links visited and other actions you take when using our services. They are stored before being re-transmitted on the next visit by the same User.

The User can view the complete Cookie Policy at the following address:

  1. Purpose

The Personal Data collected may be used for the execution of contractual and pre-contractual obligations and for legal obligations as well as for the following purposes:

  1. User registration and authentication: to allow the User to register on the Application to access and be identified.
  2. Support and contact with the User: to respond to User requests and help in case of problems.
  3. Monitoring, analysis and tracking of User behavior: to monitor and analyze how the User behaves on the Application.
  4. Sending emails or newsletters and managing mailing lists: to contact the User with emails containing commercial and promotional information relating to the Application.
  5. Advertising and remarketing targeting: to show more relevant advertisements to the User based on their browsing behavior and preferences.
  6. Personalization of the User's user experience: to modify the Application and adapt it to the User's needs.
  7. User Profiling: to automatically group and analyze the User's characteristics or behaviors and provide personalized services or messages.
  1. Treatment methods

The processing of Personal Data is carried out using IT and/or telematic tools, with organizational methods and with logic strictly related to the purposes indicated.

In some cases, subjects involved in the Data Controller's organization may also have access to Personal Data (such as, for example, personnel management workers, sales area workers, system administrators, etc.) or external parties (such as IT companies, suppliers of services, postal couriers, hosting providers, etc.). If necessary, these subjects may be appointed Data Processors by the Owner, as well as access the Personal Data of Users whenever necessary and will be contractually obliged to keep the Personal Data confidential.

The updated list of Managers can be requested via email at

  1. Legal basis of the processing

The processing of Personal Data relating to the User is based on the following legal bases:

  1. the consent given by the User for one or more specific purposes;
  2. the processing is necessary for the execution of a contract with the User and/or the execution of pre-contractual measures
  3. the processing is necessary to fulfill a legal obligation to which the Data Controller is subject
  4. the processing is necessary for the execution of a task of public interest or for the exercise of public powers vested in the Data Controller
  5. the processing is necessary for the pursuit of the legitimate interest of the Data Controller or third parties
  6. the processing is necessary for the pursuit of a vital interest of the Owner or of third parties.

However, it is always possible to request the Data Controller to clarify the legal basis of each processing at

  1. Place

Personal Data is processed at the Owner's operational offices and in any other place where the parties involved in the processing are located. For further information, contact the Owner at the following email address or at the following postal address Corso Magenta 28, 20025 Legnano (MI).

  1. Security measures

The Processing is carried out according to methods and with tools suitable to guarantee the security and confidentiality of the Personal Data, the Data Controller having adopted adequate technical and organizational measures which guarantee, and allow to demonstrate, that the Processing is carried out in compliance with the relevant legislation.

  1. Data retention period

Personal Data will be retained for the period of time necessary to fulfill the purposes for which they were collected.

In particular, Personal Data will be retained for the entire duration of the contractual relationship, for the execution of the obligations inherent and consequent thereto, for compliance with applicable legal and regulatory obligations, as well as for own or third party defensive purposes.

If the processing of Personal Data is based on the User's consent, the Owner may retain the Personal Data until the consent is revoked.

Personal Data may be retained for a longer period if necessary to comply with a legal obligation or by order of an authority.

All Personal Data will be deleted or stored in a form that does not allow identification of the User within 30 days of the end of the retention period. Upon expiry of this deadline, the right of access, cancellation, rectification and the right to portability of Personal Data can no longer be exercised.

  1. Automated decision-making processes

All Personal Data collected will not be subject to any automated decision-making process, including profiling, which could produce legal effects for the person or which could significantly affect them.

  1. User Rights

Users can exercise certain rights with reference to Personal Data processed by the Owner. In particular, the User has the right to:

  1. revoke consent at any time;
  2. object to the processing of your Personal Data;
  3. access your Personal Data;
  4. verify and request rectification;
  5. obtain the limitation of processing;
  6. obtain the deletion of your Personal Data;
  7. receive your Personal Data or have it transferred to another owner;
  8. lodge a complaint with the Personal Data Protection Supervisory Authority and/or take legal action.

To exercise their rights, Users can direct a request to the contact details of the Owner indicated in this document. Requests are made free of charge and processed by the Data Controller as quickly as possible, in any case within 30 days.

  1. Data Controller

The Data Controller is 4YOU DESIGN s.r.l., with registered office in Corso Magenta 28, 20025 Legnano (MI), Tax Code / VAT number 11421780963, e-mail address, PEC address

Last update: 09/21/2021