By browsing our website and using our services (order) or by filling out a contact form on our website pasta4you.lu you agree and agree that Pasta4you SARL may collect, process, store and/or use the personal data submitted in accordance with the rules set out below. By giving us your consent, you also retain the right to rectification, the right to be forgotten and/or the right to erasure of your personal data.
The Pasta4you website is produced by the company PASTA4YOU Sàrl, owner of the Brand with its registered office at 14 Avenue du Rock’n’Roll L-4361 Esch-sur-Alzette registered with the Luxembourg Trade Register under number B222174. The Data Protection Officer (DPO) of Pasta4you SARL can be contacted by email at: email@example.com
Personal data collected on the site
Pasta4you SARL is the controller of personal data. Pasta4you undertakes not to communicate, free of charge or with consideration, the contact details of its customers (*with the exception of third parties involved in the execution of orders (carriers, banking services) and / or its subscribers to its newsletter to a third party. The customer has a right of access, modification, rectification and deletion of data concerning him, which he can exercise with Pasta4you.
When you use our website, in particular when placing orders and when creating a customer account or when you register or our contact form, we collect and process personal data concerning you such as: Your first and last name, your email address, your mobile number, and any information you wish to bring to our attention to facilitate the withdrawal or delivery of your orders; Your encrypted username and password necessary to identify you on our sites or applications; Your choices regarding commercial prospecting; Encrypted information relating to your means of payment (including credit card number);
This information is collected as part of the creation of an account and the identification and management of your orders, the sending of emails of information and notifications. By using our services, the following data is collected and processed: connection data and browsing data when you authorize it, order history, billing, payment, promotions you can or have benefited from, your complaints, possible incidents. Some data is collected automatically as a result of your actions on the site (see the paragraph on cookies below).
When you connect to our Site, we may be required, subject to your choices (see below “Your choices regarding cookies”), to install various cookies in your terminal allowing us to recognize the browser of your terminal during the period of validity of the cookie concerned. These Cookies allow us to:
- to establish statistics and volumes of attendance and use of the various elements composing our Site (sections and content visited, routes), allowing Us to improve the interest and ergonomics of our services;
- to adapt the presentation of our Site to the display preferences of your terminal (language used, display resolution, operating system used, etc.) during your visits to our Site, according to the hardware and software for viewing or reading that your terminal contains;
- to memorize information relating to a form that you have filled out on our Site (registration or access to your account) or to products, services or information that you have chosen on our Site (subscribed service, content of an order basket, etc.);
- to allow you to access reserved and personal areas of our Site, such as your account, using identifiers or data that you may have previously entrusted to us;
- implement security measures, such as when you are asked to log in to a content or service again after a certain period of time.
Your Choices Regarding Cookies
Data collected by standard Internet technologies
We may also use standard Internet technologies, such as scripts, pixels and redirects to improve your experience on our sites and applications. These technologies give us access to the following information:
Information about your use of our sites and applications; Information relating to the presence of cookies on your terminal, the time and date of consultation of a page, and a description of the page where the web beacon is put; Information about whether or not to read the emails we send you, about the clicks you make on the links contained in these emails.
Our sites and applications may also include scripts, pixels, and redirects from third parties. These technologies allow third-party service providers to collect certain information such as your browser type, and the web page that redirected you to our websites. These third-party service providers process the information they collect for auditing, research, and reporting information about our sites and apps and the advertisements viewed on them. We do not share your identification data with these third parties in connection with their use of these technologies.
Data provided by mobile devices
Some mobile devices, depending on the features you have enabled (for example: “Push” or “Geolocation”) when downloading one of our applications, send information, including: model of your phone, version of its operating system, type of connectivity, name and version of the application used.
This data, necessary for the proper functioning of the mobile applications we publish, is automatically processed by our servers and those of some of our partners (in particular Google Analytics) in order to be able to provide you with a service adapted to the technical characteristics of your device and measure the audience of our application.
Purposes of processing and legal basis
The main purpose of collecting your personal data is to provide you with a safe, optimal, efficient and personalized experience. For this purpose, you agree that we may use your personal data to:
- Provide our services and facilitate their operation, including by conducting verifications of you;
- Resolve any problems in order to improve the use of our site and services;
- Personalize, evaluate, improve our services;
- Analyze the volume and history of your use of our services;
- Inform you about our services;
- For customers who have registered directly on the site, we process their data for the execution of the contract for the provision of services.
- For our newsletters, we process your personal data on the basis of the explicit consent you have given for this purpose.
Recipients of your data
The personal data concerning you collected on the site is intended to be used by Pasta4you. It may be passed on to third parties to process transactions or provide services you have requested (for example, as part of the processing of your payments by your credit card company). Pasta4you ensures compliance with data protection requirements for all its subcontracting companies.
Pasta4you does not sell or rent your personal data to third parties for marketing purposes, under any circumstances. In addition, Pasta4you does not disclose your personal data to third parties, unless:
- You request or authorize disclosure;
- Disclosure is required;
- Pasta4you is compelled to do so by a governmental authority or regulatory body, in the event of a judicial requisition, subpoena or other similar governmental or judicial requirement, or to establish or defend a legal claim;
- The third party acts as an agent or subcontractor Pasta4you in the performance of the services (for example, Pasta4you uses the services of a host for its website).
Your data protection rights
In accordance with the Data Protection Act and the European General Data Protection Regulation 2016/679 (GDPR), you have the rights of access, rectification and deletion of personal data concerning you that you can exercise by sending us a request to firstname.lastname@example.org or via the contact form on our page www.pasta4you.lu or applications.
Your requests will be processed within 30 days. We may ask you for proof of identity or authority. You can also modify your personal data yourself at any time by logging into your personal space on our website or applications.
Pasta4you will not keep your personal data beyond the period necessary to achieve the purposes for which they were collected. In particular, in the event of closure of your account or cancellation or suspension of your registration, the data processed to provide the service may be kept for a longer period, in order to manage any possible dispute related to the provision of the service.
The data processed for marketing purposes will be kept by the company from the moment you have given your consent until the moment this permission is revoked. If the consent is revoked, the data can no longer be processed for marketing purposes, but may be kept in order to manage any dispute and/or dispute and/or to ensure your security.
The data retention period provided for by pasta4you complies with local regulations and the provisions of the Guaranteeing Authority for the Protection of Personal Data.
Place of data storage and transfers
The hosting servers on which Pasta4you processes and stores databases are exclusively located within the European Union.
Pasta4you undertakes to inform you immediately, insofar as we are legally authorized, in the event of a request from an administrative or judicial authority relating to your data.
Data security and integrity
As part of its services, Pasta4you attaches the utmost importance to the security and integrity of its customers’ personal data.
Thus, and in accordance with the General Data Protection Regulation (GDPR), adopted by the European Parliament and entered into force on 25 May 2018, Pasta4you undertakes to take all necessary precautions to preserve the security of the data and in particular to protect them against any accidental or unlawful destruction, accidental loss, alteration, unauthorized dissemination or access, as well as against any other form of unlawful processing or communication to unauthorized persons.
To this end, Pasta4you implements industry standard security measures to protect personal data from unauthorized disclosure. Using industry-recommended encoding methods, Pasta4you takes the necessary steps to protect payment and credit card information.
In addition, in order to prevent unauthorized access, to guarantee the accuracy and proper use of the data, Pasta4you has put in place appropriate electronic, physical and supervisory procedures to safeguard and preserve the data collected through its services.
If, however, a security breach should impact you, Pasta4you undertakes to inform you as soon as possible and to make its best efforts to take all possible measures to neutralize the intrusion and minimize its impacts. In the event that you suffer damage due to the exploitation of a security breach by a third party, Pasta4you undertakes to provide you with all the necessary assistance so that you can assert your rights.
It should be borne in mind that anyone who discovers a security breach and the operator is exposed to criminal sanctions and that Pasta4you will take all necessary measures to preserve the data and rights of its users and its own and to limit the impact of malicious action.
Updates to this policy
All updates to this policy will be posted on this page. Last updated: June 7, 2021.
In accordance with REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation – GDPR. The personal information communicated on the pasta4you.lu website is processed in accordance with the Luxembourg law of 2 August 2002 on the protection of individuals with regard to the processing of personal data as amended, and in accordance with the reform of the EU data protection rules 2018 (GDPR). The customer has at any time, a right of access, modification, rectification and deletion of data concerning him. These rights may be exercised by electronic means email@example.com