COOKIE POLICY
Full cookie policy
Contents
- About us
- Your obligations
- Data Protection Officer (DPO)
- What type of data do we collect?
- Why do we collect your data?
- What are cookies and for which purposes are they used?
- Social buttons
- Who will process your data?
- What happens if you do not provide your data?
- How will we process your personal data?
- How long is your personal data stored for?
- Where is your data stored?
- What are your rights?
- To whom can you complain?
About us
Santoni S.p.A. (Tax ID/VAT no. 01806460430), with registered office in Via Montenapoleone 9 Milan, Italy, in its capacity as data controller (the “Data Controller” or “Santoni”), provides this notice not only to comply with legal obligations under Regulation (EU) 2016/679, but also because it believes that it is essential to protect personal data in the performance of its activities and wants to provide you with all the information you need in this regard.
Your obligations
All we ask is that you read this notice carefully in order to be fully informed about how we process your personal data, so that you can give your consent, where applicable, for the processing referred to in paragraph 3.
Data Protection Officer (DPO)
Santoni S.p.A. has appointed a data protection officer (DPO) whom you can contact at the following address if you have questions about the processing of personal data: privacy.santoni@legalmail.it.
How does the Data Controller collect and process your data?
Your personal information will be processed:
1) Browsing the site www.santonishoes.com
The processing of your personal data, such as browsing data, e.g. IP address and cookies issued when browsing the site www.santonishoes.com, are processed by the Data Controller in order to carry out site management operations and to collect information, also of aggregate nature.
Your personal data will in no way be shared or disclosed to unspecified persons.
2) For IT security purposes
The Data Controller, also via its suppliers (third parties and/or other recipients), processes your personal data (e.g. IP address) or traffic data gathered, or obtained in the case of exposed services on the website, to the extent strictly necessary and proportionate for the purposes of ensuring that a network or connected servers are secure and able to withstand, up to a given level of safety, accidental events or unlawful or malicious actions that compromise the availability, authenticity, integrity and confidentiality of stored or transmitted personal data.
For these purposes, the Data Controller has procedures in place to manage personal data breaches.
What are cookies and for which purposes are they used?
A “cookie” is a small text file that some websites create on the user's computer when the user accesses a particular site, with the purpose of storing and transporting information. Cookies are sent from a web server (the computer on which the website visited is running) to the user's browser (Internet Explorer, Mozilla Firefox, Google Chrome, etc.) and stored on the user's computer; they are then sent back to the website on subsequent visits.
Some operations couldn’t be performed without the use of cookies, which in some cases are therefore technically necessary. In other cases, the site uses cookies to facilitate and ease the user’s browsing experience or to enable the user to take advantage of specifically requested services.
Cookies may remain in the system for long periods of time and may also contain a unique identification code. This allows the sites that use them to keep track of the user's browsing activity on the site itself for statistical or advertising purposes, i.e. to create a personalised profile of the user based on the pages they have visited and then show and/or send them targeted advertising (so-called Behavioural Advertising).
Which cookies are used and for which main purposes?
Social buttons
On the www.santonishoes.com website, there are special “buttons” (called “social buttons/widgets”) showing the icons of social networks (e.g. Facebook, LinkedIn, etc.) and of other web services (e.g. YouTube, etc.). They allow users who are browsing the Data Controller's web page to access the relevant social networks with just a click. These services issue “third-party cookies”. Below are links to the privacy policies of the most frequently used social networks and websites linked via the buttons:
Facebook: https://www.facebook.com/help/cookies
Pinterest: https://policy.pinterest.com/it/cookies
Instagram: https://help.instagram.com/1896641480634370?ref=ig
YouTube: https://policies.google.com/technologies/cookies?hl=it#types-of-cookies
LinkedIn https://www.linkedin.com/legal/privacy-policy
Who will process your data?
Your personal data will only be processed by authorised Santoni personnel. However, in order to carry out all processing activities necessary for the purposes described above, your personal data may be communicated to the following recipients in compliance with the principle of data minimisation: IT consultants and IT service providers and marketing/communication agencies.
What happens if you do not provide your data?
Please note what may happen when disabling individual cookies, as listed in the table above.
How will we process your personal data?
Your personal data is processed using both electronic and manual means and equipment provided to persons acting under the authority of the Data Controller and authorised and trained for this purpose. In any case, personal data is protected as appropriate, using effective and adequate security measures to mitigate the risk of a breach.
How long is your personal data stored for?
-Cookies:
Please note the retention periods for personal data as indicated in the table above.
-Site navigation:
Personal data is stored for the time necessary to browse the site and, in any case, the IP address and log data, including log-in details, are stored for 90 days, except in cases where events requiring the intervention of the competent Authorities may occur, also in cooperation with third parties/recipients entrusted with the Data Controller's data security activities, to carry out any investigations on the causes leading to the event, as well as to protect the Data Controller's interests in relation to any liability arising from the use of the site and its services.
Where is your data stored?
Your data is stored in hard-copy, computerised and online archives located within the European Economic Area.
For further information, please contact Santoni by email at privacy@santonishoesit.com.
What are your rights?
We remind you that you may exercise the following rights under Articles 15 to 21 of the GDPR at any time:
- access;
- rectification;
- erasure;
- restriction of processing;
- objection to processing;
- portability.
You are granted your rights without any special charges or formalities and exercising them is essentially free of charge. You have the right:
- to obtain a copy, also in electronic form, of the data to which you have requested access, Should you require further copies, Santoni may charge you a reasonable fee;
- to obtain the erasure of your personal data or the restriction of its processing or the updating and rectification of your personal data, and for third parties/recipients to comply with your request in the event that they should receive your data, insofar as no legitimate reasons prevail that are more compelling than those that motivated your request (e.g. environmental investigations and emergency risk containment handled by the Data Controller using the same);
- to obtain any relevant communication concerning the activities carried out following the exercise of your rights without delay and, in any case, within one month of your request, unless you are duly informed of a substantiated extension of up to two months.
For further information and to send your enquiry, please contact Santoni by email at privacy@santonishoesit.com.
To whom can you complain?
Without prejudice to any other administrative or judicial action, you may file a complaint with the relevant supervisory authority, i.e. the authority discharging its duties and exercising its powers in Italy where you have your permanent residence or place of work or, if otherwise, in the Member State where the breach of EU Regulation 2016/679 occurred.
Last updated 19 August 2025