Personal Data processed for the following purposes and using the following services:

• • Access to third-party accounts

    • Facebook account access

      Permissions: Activities

    • Twitter account access

      Personal Data: various types of Data as specified in the privacy policy of the service

  • Advertising

    • Zanox

      Personal Data: Cookies; Usage Data

  • Analytics

    • Google Analytics and Google Analytics with anonymized IP

      Personal Data: Cookies; Usage Data

  • Commercial affiliation

    • Amazon Affiliation, Awin and TradeTracker

      Personal Data: Cookies; Usage Data

  • Contacting the User

    • Contact form

      Personal Data: address; city; country; email address; first name; last name; phone number; Tax ID; ZIP/Postal code

    • Mailing list or newsletter

      Personal Data: email address

  • Handling payments

    • Gestpay Banca Sella, PayPal and PayPal Payments Hub

      Personal Data: various types of Data as specified in the privacy policy of the service

    • PayPal Carrier Payments

      Personal Data: phone number; various types of Data as specified in the privacy policy of the service

  • Interaction with data collection platforms and other third parties

    • ActiveCampaign widget

      Personal Data: address; email address; last name; phone number; Usage Data

  • Interaction with external social networks and platforms

    • Facebook Like button and social widgets, Twitter Tweet button and social widgets, Pinterest “Pin it” button and social widgets, Google+ +1 button and social widgets and LinkedIn button and social widgets

      Personal Data: Cookies; Usage Data

  • Interaction with live chat platforms

    • LiveChat Widget

      Personal Data: Cookies; Data communicated while using the service; Usage Data

    • ActiveCampaign site messages

      Personal Data: Cookies; Data communicated while using the service; email address; Usage Data

  • Interaction with support and feedback platforms

    • Zendesk Widget

      Personal Data: Cookies; email address; last name; username

  • Location-based interactions

    • Geolocation and Non-continuous geolocation

      Personal Data: geographic position

  • Managing contacts and sending messages

    • ActiveCampaign Text Message and SMS Marketing

      Personal Data: email address; gender; last name; phone number; Usage Data; various types of Data

  • Managing support and contact requests

    • Zendesk

      Personal Data: various types of Data as specified in the privacy policy of the service

  • Registration and authentication

    • Login with Amazon and Log In with PayPal

      Personal Data: various types of Data as specified in the privacy policy of the service

  • Remarketing and behavioral targeting

    • Facebook Remarketing, Criteo Dynamic Retargeting, Google Ads Remarketing and AdRoll

      Personal Data: Cookies; Usage Data

  • Tag Management

    • Google Tag Manager

      Personal Data: Usage Data

  • User database management

    • ActiveCampaign

      Personal Data: Cookies; email address; various types of Data as specified in the privacy policy of the service

Information on opting out of interest-based advertising

In addition to any opt-out feature provided by any of the services listed in this document, Users may follow the instructions provided by YourOnlineChoices (EU), the Network Advertising Initiative (US) and the Digital Advertising Alliance (US), DAAC (Canada), DDAI (Japan) or other similar initiatives. Such initiatives allow Users to select their tracking preferences for most of the advertising tools. The Owner thus recommends that Users make use of these resources in addition to the information provided in this document.

The Digital Advertising Alliance offers an application called AppChoices that helps Users to control interest-based advertising on mobile apps.

Users may also opt out of certain advertising features through applicable device settings, such as the device advertising settings for mobile phones or ads settings in general.

Further information about the processing of Personal Data

• • Privacy Shield participation: data transfers from the EU and Switzerland to the United States

    The Owner participates in and complies with the EU-U.S. Privacy Shield Framework and the Swiss-U.S Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of Personal Data transferred from the European Union and Switzerland to the United States. The policies and rights outlined below are therefore equally and explicitly applicable to Users from Switzerland, except if stated otherwise. The Owner has certified to the Department of Commerce that it adheres to the Privacy Shield Principles.

    If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view the Owner’s certification, please visit https://www.privacyshield.gov/welcome (or find the direct link to the certification list of Privacy Shield participants maintained by the Department of Commerce https://www.privacyshield.gov/list).

    What does this mean for the European User?

    The Owner is responsible for all processing of Personal Data it receives under the Privacy Shield Framework from European Union individuals and commits to subject the processed Personal Data to the Privacy Shield Principles.

    This, most importantly, includes the right of individuals to access their personal data processed by the Owner.

    The Owner also complies with the Privacy Shield Principles for all onward transfers of Personal Data from the EU, which means that it remains liable in cases of onward transfers to third parties.

    With respect to Personal Data received or transferred pursuant to the Privacy Shield Framework, the Owner is subject to the investigatory and regulatory enforcement powers of the FTC, if not stated otherwise in this privacy policy.

    The Owner is further required to disclose Personal Data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

    Dispute resolution under the Privacy Shield

    In compliance with the Privacy Shield Principles, the Owner commits to resolve complaints about its collection or use of the User’s Personal Data. European Union individuals with inquiries or complaints regarding this Privacy Shield policy should first contact the Owner at the contact details supplied at the beginning of this document referring to “Privacy Shield” and expect the complaint to be dealt with within 45 days.

    In case of failure by the Owner to provide a satisfactory or timely response, the User has the option of involving an independent dispute resolution body, free of charge.

    In this regard, the Owner has agreed to cooperate with the panel established by the EU data protection authorities (DPAs) and comply with the advice given by the panel with regard to data transferred from the EU. The User may therefore contact the Owner at the email address provided at the beginning of this document in order to be directed to the relevant DPA contacts.

    Under certain conditions – available for the User in full on the Privacy Shield website (https://www.privacyshield.gov/article?id=How-to-Submit-a-Complaint) – the User may invoke binding arbitration when other dispute resolution procedures have been exhausted.

Contact information

• • Owner and Data Controller

    Farmacia Loreto Gallo - Concetta Ricchizzi - Via M. Schipa 22/35 - 80122 - Napoli - Italy

    Owner contact email: info@loretogallo.com