x
2.0
10 April 2025

Privacy Policy

1.    Introduction
Please carefully read this Privacy Policy, which is intended for users of the website www.beghelli.it (hereinafter, the “Website”), prepared pursuant to Articles 13 and 14 of the General Data Protection Regulation No. 2016/679 (hereinafter, “GDPR”), where we provide you with details regarding the processing of your personal data.
This Privacy Policy is applicable solely to the processing of personal data carried out on the Website and not to processing conducted on different and additional Websites, even if accessible via links present within the Website itself.
The Website is intended exclusively for persons of legal age. By navigating the Website, the user declares to be at least 18 years old.


2.    Who is the data controller?
The data controller is Beghelli S.p.A. (hereinafter, the “Controller”, “Company”, or “Beghelli”), with registered office in Valsamoggia (BO), Monteveglio, Via Mozzeghine No. 13/15, VAT No. 00666341201. The Controller can be contacted at the email address: privacy@beghelli.it


3.    Who is the data protection officer?
The Controller has appointed a data protection officer (“DPO”), who can be reached for any information regarding the processing of personal data, at the email address: dpo@beghelli.it.


4.    What kind of data will we process?
4.1.    Data provided voluntarily by the data subject
Through the forms present within the Website, the data subject can provide personal data such as: name, surname, tax code, address, location, postal code, country, province, email address, phone number, and interests.


4.2.    Data processed in interaction with third-party services
Within the Website, it is possible that personal data of the data subject are collected through third parties. Specifically, this can occur if the data subject decides to log in through the “social login” method (e.g., Google, Microsoft). In this case, the Controller processes the email address data related to the account created by the data subject with third parties.
For more details about the operation, sharing of personal data, and management of “social login”, the data subject is invited to consult the privacy policies made available, respectively, by each service provider.


4.3.    Data related to online payments
Regarding payments made by users, Beghelli processes only the data transmitted by digital payment companies, namely the return information on the status related to the payment (successful/declined). All further information regarding the account (e.g., PayPal) is stored by the entities managing the related service, which are not authorized to use the personal data received through the Website for other purposes.


4.4.    Location data
Beghelli may locate the user’s position to allow them to identify, through a map, the nearest service centres. With the user’s explicit consent, the browser shares their geographical location with the Website.
Even if consent has been given, the data subject can disable location tracking at any time through the browser settings (or through the settings of the operating system of the device used). For more information, the data subject is invited to consult the specific privacy policies of their browser and/or the provider of the device they use for browsing the Website.


4.5.    Cookies
For details regarding the processing of personal data connected to the operation of cookies installed on the Website, please refer to the Cookie Policy available here .


5.    Why are personal data processed and what is the legal basis for processing?
5.1.    Registration and access to the My Beghelli area
Purpose: To allow the users to register and manage their own “My Beghelli ” account, access dedicated services, and customize their experience of using the Website. The provision of personal data for this purpose is optional, but without it, it will not be possible to allow the user to register on the Website.
Legal basis: Performance of a contract to which the data subject is a party (Art. 6(1)(b) GDPR).
Retention period: Personal data are retained until the possible deletion of the account, which can be done by the user through the Website by pressing the “Delete profile ” button within the “Account and Security ” section of the user’s profile. After the account deletion, personal data are retained for the period allowed by Italian law for the protection of its interests in case of claims related to the services (Art. 2946 et seq. of the Civil Code).


5.2.    Management and execution of purchase orders
Purpose: To manage and execute purchase orders for products and services made by the user on the Website, including related payment, shipping, and delivery activities. Providing personal data for this purpose is optional, but without it, it will not be possible to manage and execute the purchase orders made by the data subject on the Website.
Legal basis: Performance of a contract to which the data subject is a party (Art. 6(1)(b) GDPR).
Retention period: Personal data are retained for the time strictly necessary to achieve the purpose of managing and executing purchase orders. In any case, being processing carried out for the provision of products/services, personal data are retained for the period allowed by Italian law for the protection of its interests in case of claims related to the services (Art. 2946 et seq. of the Civil Code).


5.3.    Management of information and support requests
Purpose: To respond to information and/or support requests sent by the user through: (i) the sections available on the Website (e.g., “Support Request ”); and/or (ii) through toll-free numbers; and/or (iii) via email addresses reachable through links available on the Website. Providing personal data for this purpose is optional, but without it, it will not be possible to manage and respond to information and support requests submitted by the data subject.
Legal basis: Performance of a contract to which the data subject is a party or of pre-contractual measures adopted at their request (Art. 6(1)(b) GDPR).
Retention period: Personal data are retained for the time strictly necessary to achieve the purpose of managing information and support requests. In any case, being processing carried out for the provision of services, personal data are retained for the period allowed by Italian law for the protection of its interests in case of claims related to the services (Art. 2946 et seq. of the Civil Code).


5.4.    Newsletter
Purpose: To send informational communications via email about news, initiatives, and events related to the Beghelli world.
Legal basis: Performance of a contract to which the data subject is a party (Art. 6(1)(b) GDPR).
Retention period: Personal data are retained until the potential unsubscription from the service by the data subject, made through the appropriate link at the bottom of each communication or by contacting the Controller at the email address privacy@beghelli.it.


5.5.    Direct Marketing
Purpose: To send commercial and promotional communications via email regarding the products and services offered by the Controller. Providing personal data for this purpose is entirely optional and does not affect the use of the services available on the Website.
Legal basis: Consent of the data subject (Art. 6(1)(a) GDPR).
Retention period: Personal data are retained until the potential withdrawal of consent by the data subject, exercisable on the Website in the “Notification Preferences ” section of the user profile, or by contacting the Controller at the email address privacy@beghelli.it. In any case, personal data are automatically deleted once 24 months have passed since the last interaction by the data subject with the content sent by the Company.


5.6.    Soft Spam
Purpose: To send commercial communications via email regarding products and services similar to those already purchased by the data subject, unless they refuse to receive such communications expressed at the time of the first communication or subsequent communications.
Legal basis: Legitimate interest of the Controller (Art. 6(1)(f) GDPR).
Retention period: Personal data are retained until the potential opposition to processing, exercised by the data subject through the appropriate link at the bottom of each communication or by contacting the Controller at the email address privacy@beghelli.it. In any case, personal data are automatically deleted once 24 months have passed since the last interaction by the data subject with the content sent by the Company.


5.7.    Geolocation
Purpose: To locate the position of the data subject to allow them to identify, through a map, the Beghelli service centres closest to them. Since the geolocation option is linked to the settings of the browser or the operating system of the device used by the user, the user can give their consent and enable geolocation in the appropriate box that appears when navigating the Website. Providing personal data for this purpose is entirely optional and does not affect the use of the services available on the Website, but only the ability to allow the data subject to locate the service centres closest to them.
Legal basis: Consent of the data subject (Art. 6(1)(a) GDPR).
Retention period: Personal data are retained until the potential revocation of consent by the data subject, exercisable at any time through the settings of their browser and/or the device used for browsing the Website.


5.8.    Compliance
Purpose: To comply with any obligations provided by current laws, regulations, or community legislation (including allowing the data subject to exercise their privacy rights) or to meet requests from authorities.
Legal basis: Compliance with legal obligations to which the Controller is subject (Art. 6(1)(c) GDPR).
Retention period: Personal data are retained for the time provided by the specific legal obligation to which the Controller is subject.


5.9.    Exercise and defence of rights in court
Purpose: To prevent fraud committed through the use of the Website and to allow the Controller to defend itself in court.
Legal basis: Legitimate interest of the Controller (Art. 6(1)(f) GDPR).
Retention period: Personal data are retained for the entire duration of the legal dispute, until the expiration of the terms for the exercise of appeal actions.


6.    With whom are my personal data shared?
Personal data may be shared with the following recipients:
•    Third parties acting as data processors, such as: (i) companies responsible for the development and provision of the Website, instrumental to the delivery of services; (ii) entities designated to perform technical maintenance activities on the Website; (iii) individuals, companies, or professional firms providing assistance and consultancy to Beghelli in administrative, legal, and financial matters.
•    Third parties, including companies belonging to the Beghelli Group, acting as independent data controllers, entrusted with organizing and carrying out the shipping, delivery, and return of products purchased on the Website.
•    Third parties acting as independent data controllers in providing payment services.
•    Individuals, entities, or authorities to whom it is mandatory to communicate personal data by virtue of legal provisions or authority orders, or to prevent and/or detect any fraudulent activities or abuses in the use of the Website.


7.    Who is authorized to process the data?
Personal data may be processed by personnel and operators of the Company tasked with pursuing the purposes outlined above, who have been expressly authorized to process by the Controller, have received appropriate operational instructions, and are bound by professional secrecy.


8.    Where are my personal data processed?
Some personal data are shared with recipients who may be located outside the European Economic Area. Beghelli ensures that the processing of personal data by these recipients occurs in compliance with the GDPR. Indeed, transfers may be based on an adequacy decision, the Standard Contractual Clauses approved by the European Commission, or another suitable legal basis. More information is available from the Controller by writing to privacy@beghelli.it.


9.    How can I exercise my rights?
By contacting the Company via email at privacy@beghelli.it, the user can request the Controller for access to their personal data, deletion, correction of inaccurate personal data, completion of incomplete personal data, restriction of processing in cases provided for by Art. 18 GDPR, as well as object to processing, for reasons related to their particular situation, in cases of legitimate interest of the Controller.
Furthermore, if the processing is based on the user’s consent or a contract to which the user is a party and is carried out with automated tools, the user has the right to receive personal data in a structured, commonly used, and machine-readable format, as well as, if technically feasible, to transmit them to another controller without hindrance.
The user, through the specific “Notification Preferences ” button available within their account on the Website, has the right to withdraw, at any time, the consent given. It should be noted, however, that the withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
The user also has the right to lodge a complaint with the competent Supervisory Authority pursuant to Art. 77 of the GDPR, should they consider that the processing of their personal data is in violation of the applicable regulations.


10.    Updates to the Privacy Policy
This Privacy Policy may undergo changes over time, also related to the possible entry into force of new sector regulations, the update or provision of new services, or technological innovations. Such changes will be made known by Beghelli at the time of their introduction and will be considered binding as soon as published on the Website. Beghelli, therefore, invites regular visits to this section to take note of the most recent and updated version of the Privacy Policy, to be always informed about the personal data collected and their use by the Controller.