PRIVACY POLICY

 

This notice describes how personal data of users interacting with the David Halfon website (the “Site”) is processed, in accordance with Regulation (EU) 2016/679 (“GDPR”) and applicable laws.

Users may be simple visitors, customers, newsletter subscribers, or individuals interacting with services offered through the Site.

1. Data Controller

The data controller is Almavida Halfon S.A., with registered office at Via Attilio Friggeri 129, 00136 Rome (Italy), VAT No. 17291931008 (the “Controller”).

2. Categories of Personal Data

The Controller may process the following categories of personal data:

• identification and contact data (name, surname, email, phone number);
• order and purchase-related data;
• browsing and Site usage data;
• data voluntarily provided through forms or contacts;
• data relating to preferences and interactions with the Site.

3. Cookies and Similar Technologies

The Site uses cookies and similar technologies for technical, functional, analytical and, where applicable, marketing purposes.

These tools may collect information regarding the user’s browsing activity, preferences, and use of the Site.

For a detailed description of the types of cookies used, their purposes, and how to manage preferences, please refer to the Cookie Policy available here.

4. Purposes of Processing and Legal Basis

Personal data is processed for the following purposes:

• order management and online sales (performance of a contract);
• customer account management (performance of a contract);
• customer support and request handling (performance of a contract or pre-contractual measures);
• legal and tax compliance (legal obligation);
• fraud prevention and security (legitimate interest);
• direct marketing and commercial communications (consent or legitimate interest where permitted by law);
• service analysis and improvement (legitimate interest);
• possible personalization of the experience and communications, within the limits allowed by applicable law.

5. Processing Methods

Data is processed using appropriate technical and organizational measures, in compliance with applicable security standards, to prevent unauthorized access, loss, or unlawful use.

6. Data Disclosure

Personal data may be disclosed to third parties supporting the Controller in providing services, including:

• technology providers and e-commerce platforms;
• payment service providers;
• couriers and logistics operators;
• marketing and communication service providers;
• legal and tax advisors.

These parties process data as data processors or independent controllers, as applicable.

7. Data Transfers

Some personal data may be transferred to countries outside the European Economic Area. In such cases, transfers will take place in compliance with applicable safeguards, including standard contractual clauses approved by the European Commission or other valid legal mechanisms.

8. Data Retention

Personal data is retained for as long as necessary to achieve the purposes for which it was collected and thereafter for the period required by applicable law.

In particular:

• contractual data: for the duration of the relationship and thereafter as required by law;
• marketing data: until consent is withdrawn or objection is made;
• security-related data: for the time strictly necessary.

9. Data Subject Rights

Users may exercise at any time the rights provided under Articles 15–22 GDPR, including:

• access to data;
• rectification or erasure;
• restriction of processing;
• objection;
• data portability;
• withdrawal of consent;
• lodging a complaint with the competent authority.

10. Exercise of Rights

To exercise their rights, users may contact the Controller through:

• the dedicated form available on the Site;
• email: info@davidhalfon.com.

11. Updates

This notice may be updated over time. Updates will be published on the Site.

Last update: January 2026