Menu Search Search
Search Search Basket
0
Cart

Privacy Policy

INFORMATION ON THE PROCESSING OF PERSONAL DATA pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 (GDPR)

Premise

This notice is provided for the site “https://www.designinluce.com” (Site) owned by ARQUITECTONICA SRL, located at via flaminia vecchia 855 ROMA RM 00191 IT, with VAT no. 04427051000 (Data Controller), as the Data Controller pursuant to the GDPR.

Purchases on the Site

With your prior provision, your personal data will be processed to allow you to make purchases on the Site.

Registration

The information and data requested during registration will be used to allow you to access the reserved area of the Site and to take advantage of the online services offered by the Data Controller to registered users.

Marketing

With your prior consent, the Data Controller may process the personal data you provided in order to send you advertising material and/or newsletters related to its own products or those of third parties.

Soft spamming

The Data Controller may use, for the purpose of direct sale of products offered for sale through the Site, the email address you provided in the context of a purchase on the Site, even without your consent, provided that it is a product similar to that of the previous sale (so-called soft spamming). You may refuse this processing at any time by communicating your opposition to the Data Controller.

***

In compliance with the GDPR, we hereby intend to inform you that the Data Controller will process your personal data under the following conditions.

Art. 1. Purpose and legal basis of processing. Mandatory or optional provision. Consequences of refusal to process.

The processing of personal data is aimed at achieving the following purposes:

a. to allow registration on the Site and access to services reserved for registered users as well as to ensure compliance with obligations arising from law or regulations in force, particularly in the administrative, accounting, and public safety fields. The legal basis for processing is the necessity for the Data Controller to execute pre-contractual measures adopted at the request of the data subject or to fulfill a legal obligation;

b. in the case of placing an online purchase order, to allow the conclusion of the purchase contract and the correct execution of the related operations (and, if necessary under sector regulations, to fulfill tax obligations). The legal basis for processing is the obligation of the Data Controller to execute the contract with the data subject or to comply with legal obligations;

c. limited to the email address provided by You in the context of a purchase through the Site, to allow the direct offering by the Data Controller of similar products (so-called soft spamming), provided that You do not oppose such processing in the manner provided for in this notice. The legal basis for processing is the legitimate interest of the Data Controller in sending this type of communication. This legitimate interest can be considered equivalent to the interest of the data subject in receiving "soft-spam" communications;

d. with Your consent, for sending newsletters and conducting market research, also aimed at assessing user satisfaction, and sending advertising material related to products of the Data Controller and/or third parties, via systems such as email (marketing purposes); The legal basis for processing is the consent of the data subject;

e. if the chat service is operational, to allow the activation of the service, through which the user can contact and be contacted by the Data Controller, with Your consent, during Your navigation on the Site. The legal basis is the legitimate interest of the Data Controller in carrying out this type of activity. This legitimate interest can be considered equivalent to the interest of the data subject in using the chat service on the Site;

f. to respond to Your requests through the customer care service. Providing this information is optional, but Your refusal will result in the inability of the Data Controller to respond to Your questions through this service. The legal basis for processing is the legitimate interest of the Data Controller in following up on user requests. This legitimate interest is equivalent to the user's interest in receiving a response to communications sent to the Data Controller;

g. to respond by email, phone to Your requests. Providing this information is optional, but Your refusal will result in the inability of the Data Controller to respond to Your requests. The legal basis for processing is the legitimate interest of the Data Controller in responding to user requests. This legitimate interest is equivalent to the user's interest in receiving a response to communications sent to the Data Controller.

The provision of data for the purposes referred to in points a) and b) is merely optional. However, since such processing is necessary to make a purchase on the Site, your possible refusal to provide the data in question will result in the inability to make such a purchase through the Site.

Consent to the processing of your data for marketing purposes is merely optional. The lack of consent will only imply the consequences described below.

The lack of consent to the processing of data for marketing purposes will result in your inability to receive advertising material related to products of the Data Controller and/or third parties as well as the inability for the Data Controller to conduct market research, including aimed at assessing user satisfaction, as well as to send you newsletters.

Notwithstanding the above, it is understood that the Data Controller may still use your personal data solely for the purpose of correctly fulfilling the obligations set forth by the laws in force and the obligations arising from the contractual relationships in place between you and the Data Controller.

We remind you that you can oppose the processing of your personal data also through a specific link present at the bottom of any promotional email sent by the Data Controller.

Payment card data

To make a payment using one of the payment cards offered on the Site, the user must enter the confidential card details directly on a page that will communicate through a secure encryption protocol with the payment service provider (which will act as an independent data controller), without passing through the server of the Data Controller, which will therefore not process such data in any way. The data will be acquired in encrypted format.

In compliance with the legal obligations set forth by Directive 2015/2366/EU on payment services in the internal market (PSD2), you are informed that, regarding purchases made on the Site via credit card, among the data necessary to complete the purchase process may be the mobile number you provided, or another personal data necessary to complete the purchase process. In fact, to allow you to complete the purchase, the payment institution responsible for managing the transaction will send you an authentication code, which you must provide during the purchase process to meet the authentication criteria set by PSD2 (Strong Customer Authentication). The processing of your personal data for these purposes is based on the fulfillment of legal obligations and does not require your consent.

With reference to payment card data, it is specified that the processing of your personal data is necessary to allow the conclusion of the online purchase contract with the Data Controller. Therefore, failure to provide this data will not allow you to complete the online purchase process.

Special or judicial data

The Data Controller does not process special or judicial data.

Art. 2. Methods of processing

The processing of your personal data will mainly be carried out with the aid of electronic or otherwise automated means, according to the methods and with the tools suitable to ensure their security and confidentiality in accordance with the GDPR.

The information acquired and the methods of processing will be relevant and not excessive in relation to the type of services provided. The data will also be managed and protected in environments whose access is under constant control.

Art. 3. Communication and dissemination of data

Your data may be communicated:

  • to all those entities (including Public Authorities) that have access to personal data by virtue of regulatory or administrative provisions
  • to companies or third parties responsible for printing, packaging, shipping and/or delivery and/or collection of products purchased through the Site
  • to postal offices, couriers, suppliers (e.g., drop shipping) or shippers responsible for delivering products purchased through the Site
  • to banks and companies that manage national or international payment circuits through which online payments for products purchased through the Site are made
  • to companies, consultants, or professionals possibly appointed for the installation, maintenance, updating, and, in general, management of the hardware and software of the Data Controller or which the latter uses for the provision of its services
  • to external companies responsible for sending advertising communications on behalf of the Data Controller
  • to employees and/or collaborators of the Data Controller
  • to the company responsible for customer care activities
  • to the parties managing online payment transactions
  • to the parties responsible for repairing damaged products or those under the legal warranty of conformity
  • to all those public and/or private entities, natural and/or legal persons (legal, administrative, and tax consulting firms, Judicial Offices, Chambers of Commerce, Labor Chambers and Offices, etc.), when communication is necessary or functional to the correct fulfillment of obligations arising from the law.

The data concerning you will not be disclosed, except in anonymous and aggregated form, for statistical or research purposes.

Art. 4. Data Controller

The Data Controller of personal data can be contacted at the following addresses:

ARQUITECTONICA SRL via Flaminia Vecchia 855 ROME RM 00191 IT
Phone: 0688327400
Email: info@designinluce.it

Art. 5. Retention of personal data

 

User data will be retained only for the time necessary to ensure the correct provision of the services offered and in any case within the terms set by the regulations or by the provisions of the Data Protection Authority.

In the event of account closure on the initiative of the user, the data contained therein will be retained for administrative purposes for a period not exceeding 90 days, without prejudice to any specific legal obligations regarding the retention of accounting documentation or for public safety purposes.

In any case, it is understood that personal data will be stored and processed for marketing purposes for the period of time permitted by law and by the provisions of the Data Protection Authority. At the end of this period, the Data Controller may ask the user to renew consent for the processing of their data for such purposes or to render the same in anonymous form and keep them only for statistical or historical purposes.

 

Art. 6. Transfer of personal data to third countries

The Data Controller will transfer your personal data to Canada. With regard to this country, the European Commission has established that the level of protection offered in terms of personal data protection is adequate and that, therefore, it is possible to transfer personal data there.

Art. 7. Rights of the data subject

Pursuant to Article 13 of the Privacy Regulation, the Data Controller informs you that you have the right to:

  • request the Data Controller access to personal data and the rectification or deletion of the same or the limitation of processing concerning you or to object to their processing, in addition to the right to data portability
  • withdraw consent at any time without affecting the lawfulness of the processing based on the consent given before the withdrawal
  • file a complaint with a supervisory authority (e.g.: the Data Protection Authority).

The above rights may be exercised by making a request informally to the Data Controller at the contacts provided above.

 

Art. 8. Changes

The Data Controller reserves the right to make changes to this policy at any time, providing appropriate notice to users of the Site and ensuring adequate and similar protection of personal data in any case. In order to view any changes, you are invited to regularly consult this policy.

Trustpilot
Apple Pay Bancontact Google Pay iDEAL Wero Klarna Maestro Mastercard PayPal Shop Pay Union Pay Visa
© 2026 Designinluce.
×