The Data Controller of personal data is Enrica Moschettini, with registered office in Via della Sapienza, 29 - 80138 Naples,
The personal data being processed are collected directly by The Korean Corner or by third parties expressly authorized by it, or communicated by the Company to such third parties for the pursuit of the purposes described below.
The personal data provided by the user when browsing the website www.thekoreancorner.com are processed by the Data Controller in accordance with current regulations on the protection of personal data.
The legal basis of the processing is identified in the provision of its services by the Company, in the management and facilitation of the website, as well as in the constitution, execution and possible termination of the online sales contract concluded between the parties and in the obligations to same contract connected and / or directly and / or indirectly deriving from the same.
The processing of personal data by The Korean Corner is aimed at pursuing the following purposes:
in the event that the user decides to subscribe to the "The Korean Corner Newsletter", only following a possible and specific consent, the personal data will be processed by the Data Controller for sending commercial or promotional communications, updates relating to, for example, latest trends, new arrivals, exclusive offers, special events and promotions. To unsubscribe from the newsletter, simply click on the unsubscribe link at the bottom of the e-mails received or by writing to info@thekoreancorner.com
3) ONLINE SHOPPING ACTIVITIES : the personal data provided will be used for the establishment, management, execution and / or conclusion of the contract online sales. The data provided will be processed by the Data Controller for the purposes of managing the purchase order with reference, by way of example, to the payment, shipping, taking charge of any returns, for customer assistance, for the execution of the purposes administrative - accounting related to the management of the order, for the fulfillment of obligations under current legislation. In case of payment by credit card, the fundamental information for the execution of the transaction (credit / debit card number, expiration date, security code) will be processed by PayPal, possibly, by companies in charge of anti-fraud control via encrypted protocol. and without third parties having access to it in any way. However, this information will never be viewed or stored by the seller (The Korean Corner).
4) PROFILING THE PHYSICAL PERSON
only after a possible and explicit consent, the personal data provided may be processed by the Data Controller for profiling activities, or for the analysis of preferences aimed at creating customized content and offers.
In relation to the purposes referred to in point 1) of the previous paragraph, the provision of personal data and consent to their processing is optional. Failure to provide consent will make it impossible for The Korean Corner to allow subscription to the Newsletter, sending commercial or promotional communications, updates relating, for example, to latest trends, new arrivals, exclusive offers, events specials and promotions.
If the user decides to subscribe to the newsletter through the section of the site dedicated solely to this activity, the provision of personal data and consent to their processing is mandatory.
Failure to provide consent will make it impossible for The Korean Corner to allow subscription to the Newsletter, sending commercial or promotional communications, updates relating, for example, to latest trends, new arrivals, exclusive offers , special events and promotions.
The personal data processed by the Data Controller are those provided by the user when browsing the website www.thekoreancorner.com, on the occasion of any registration / adhesion to the services / programs made available to The Korean Corner and / or the possible purchase of products made available to The Korean Corner, such as, by way of example: name, surname and e-mail address, in addition to the data necessary for the provision of the online sales service such as, for example, those functional to the execution of the payment and to the shipment / exchange of the purchased products.
The processing of personal data is carried out by the Data Controller in compliance with the provisions of current legislation on Privacy. The Data Controller processes personal data using IT and / or telematic tools and with organizational and logical methods strictly related to the pursuit of the purposes indicated in this information, as well as adopting the appropriate security measures in order to prevent access, disclosure, unauthorized modification or destruction of personal data, their loss and their illicit and incorrect use. However, the Company cannot guarantee its users that the measures adopted for the security of the site and the transmission of data and information on the site are able to limit or exclude any risk of unauthorized access or loss of data by devices. pertaining to the user. For this reason, users of the site are advised to make sure that their computer is equipped with adequate software for the protection of data transmission over the network (for example, updated antivirus) and that their Internet Provider has adopted suitable measures for the security of transmission. of data on the network. The Company also undertakes to process the data according to the principles of correctness, lawfulness and transparency, to collect them to the extent necessary and exact for processing and to allow their use only by authorized personnel. The management and storage of the personal data acquired will take place in archives or on servers located within the European Union owned by the Data Controller and / or by third-party companies appointed as External Data Processors and, in any case, currently located in Italy. = "- webkit-font-smoothing: antialiased;" />In relation to the various purposes for which they are collected, personal data will be kept for the time strictly necessary to achieve them and, in any case, in compliance with the regulations in force on the subject.
In any case, the Company will take care to avoid the use of the data indefinitely by proceeding, on a periodic basis, to appropriately verify the effective persistence of the interest of the subject to which they refer.
a) subjects, public and private, who can access the data by virtue of the provisions of law, regulation or community legislation, within the limits set by these rules;
b) subjects who need to access data for purposes related to the contractual relationship between the parties, within the limits strictly necessary for the performance of auxiliary tasks (such as, for example, banks and credit institutions, technical service providers, hosting providers, IT companies, communication agencies, postal couriers and shipping companies);
c) consultants, within the limits necessary for the performance of their professional duties.
The management and storage of personal data will take place on the server of the Data Controller and / or of third-party companies duly appointed as External Data Processors located within the European Union.
Personal data may be transferred abroad, in accordance with the provisions of current legislation, even in countries outside the European Union. The transfer to non-EU countries, in addition to the cases in which this is guaranteed by the Commission Adequacy Decisions, is carried out in such a way as to provide appropriate and appropriate guarantees pursuant to art. 46 or 47 or 49 of the Regulation.
As an interested party, the user can exercise, at any time, the rights provided for in articles 15, 16, 17, 18, 20 and 21 of the GDPR which confer, in particular, the right to:
a) obtain from the Data Controller, pursuant to Article 15, confirmation that personal data is being processed or not and, in this case, obtain access to the data and information such as: ( i) the purposes of the processing; (ii) the categories of personal data; (iii) the recipients or categories of recipients to whom the personal data have been or will be communicated, in particular if they are recipients located in Third Countries or International Organizations; (iv) when possible, the retention period of personal data provided or, if not possible, the criteria used to determine this period;
b) obtain from the Data Controller, pursuant to Article 16, the correction of inaccurate personal data concerning him without undue delay; taking into account the purposes of the processing, the interested party has the right to obtain the integration of incomplete personal data, also by providing an additional declaration;
c) obtain from the Data Controller, pursuant to Article 17, the cancellation of personal data concerning him without undue delay. The Data Controller is obliged to delete personal data without undue delay if one of the reasons indicated in paragraph 1 of Article 17 exists;
d)obtain from the Data Controller, pursuant to Art. 18, the limitation of processing when one of the hypotheses governed by paragraph 1 of Article 18 occurs;
e) obtain from the Data Controller, pursuant to Article 20, the portability of data, i.e. receive in a structured format, commonly used and readable by an automatic device, the personal data concerning him provided to a Data Controller . The Data Subject also has the right to transmit such data to another Data Controller without impediments by the first Data Controller to whom he provided them, if the conditions indicated in Article 20 paragraph 1 are met. Finally, the Data Subject has the right to obtain the direct transmission of personal data from one Data Controller to the other, if technically feasible;
f) object, in whole or in part, pursuant to Article 21, to the processing of personal data concerning him.
It should also be noted that the interested party has the right to revoke the consent at any time without prejudice to the lawfulness of the treatment based on the consent given before the revocation, without prejudice to the consequences indicated above regarding any refusal to provide such personal data. The interested party also has the right to lodge a complaint with a Supervisory Authority.
You can make requests regarding the exercise of these rights by contacting the address: info@thekoreancorner.com
The Company specifies that a possible contribution may be requested from the interested party if the questions are manifestly unfounded, excessive or repetitive; in this regard, the Data Controller will equip itself with a register to track requests for intervention.
The data controller reserves the right to make changes to this Privacy Policy at any time by giving notice to users on the website www.thekoreancorner. Therefore, please consult this page often, referring to the date of the last modification indicated at the end of the document. In the event of non-acceptance of the changes made to this Privacy Policy, the interested party may request the Data Controller to delete their personal data. Unless otherwise specified, the previous Privacy Policy will continue to apply to personal data collected up to that time.