Payments Privacy Policy Shippings Return policy Cookie Policy
Payments Privacy Policy Shippings Return policy Cookie Policy

Privacy Policy on the Processing of Personal Datapursuant to Article 13 of Regulation (EU) 679/2016 (GDPR)

This page describes the management procedures of the website concerning the processing of personal data of users who visit it and their confidentiality. This notice is also provided pursuant to Article 13 of European Regulation 679/2016 – concerning the protection of personal data – to those interacting with the web services of BEAT S.R.L., electronically accessible via the following address: https://www.tessabit.com/, corresponding to the homepage of the official website of Tessabit stores.

This privacy policy does not apply to other websites, pages, or online services accessible via hyperlinks published on the site that refer to resources external to BEAT S.R.L.'s domain.

DATA CONTROLLER

Following the consultation of this website, data relating to identified or identifiable persons may be processed. The "Controller" of personal data potentially processed following the use of our website and all other data used for providing our services is:

BEAT S.R.L.
Via Giulini 12 – 22100 Como – Italy
Paid-in share capital: € 1,000,000
VAT number: 03743490132 – Como Chamber of Commerce
Controller’s email address: legal@tessabit.com

TYPES OF DATA COLLECTED

Among the Personal Data collected by Tessabit, either directly or through third parties, there are: first name; last name; gender; date of birth; email address; password; country; Cookies; Usage Data; various types of data; geographic location.

Full details regarding each type of data collected are provided in the dedicated sections of this privacy policy or through specific informational texts displayed prior to data collection.

Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically during the use of Tessabit.

Unless otherwise indicated, all Data requested by Tessabit are mandatory. If the User refuses to provide them, it may be impossible for Tessabit to deliver the Service. In cases where Tessabit specifically indicates some Data as optional, Users are free to refrain from communicating such Data without any consequence to the availability or operation of the Service.
Users unsure of which Data are mandatory are encouraged to contact the Controller.
Any use of Cookies—or other tracking tools—by Tessabit or by third-party service owners used by Tessabit, unless otherwise stated, serves the purpose of providing the Service requested by the User, in addition to the other purposes described in this document and in the Cookie Policy, if available.

The User assumes responsibility for the Personal Data of third parties obtained, published, or shared via Tessabit, and confirms to have the right to communicate or disseminate them, freeing the Controller from any liability towards third parties.

METHODS AND PLACE OF PROCESSING COLLECTED DATA

METHODS OF PROCESSING

The Controller adopts appropriate security measures aimed at preventing unauthorized access, disclosure, modification, or destruction of Personal Data.

Processing is carried out using computer and/or electronic tools, with organizational methods and logics strictly related to the stated purposes. In addition to the Controller, in some cases, other persons involved in the organization of Tessabit (administrative, commercial, marketing, legal personnel, system administrators) or external subjects (such as third-party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) appointed, if necessary, as Data Processors by the Controller, may have access to the Data. An updated list of Processors can always be requested from the Controller.

LEGAL BASIS OF PROCESSING

The Controller processes Users' Personal Data when one of the following applies:

  • The User has given consent for one or more specific purposes. (Note: in some jurisdictions, the Controller may process Personal Data without requiring User consent or another legal basis until the User opts out. However, this does not apply when processing Personal Data is governed by EU law on data protection.)

  • Processing is necessary for the execution of a contract with the User and/or pre-contractual measures.

  • Processing is necessary to fulfill a legal obligation of the Controller.

  • Processing is necessary for the legitimate interests pursued by the Controller or by third parties.

The User can always request the Controller to clarify the specific legal basis of each processing operation and specify whether the processing is based on the law, provided by a contract, or necessary to conclude a contract.

PLACE

Data are processed at the Controller’s operational offices and any other place where the parties involved in processing are located. For more information, contact the Controller.

User’s Personal Data may be transferred to a country other than the one in which the User is located. Further information on the location of processing is available in the section concerning details on the processing of Personal Data.

The User has the right to obtain information regarding the legal basis of transferring Data outside the European Union or to an international public law organization or an organization formed by two or more countries, such as the UN, and regarding the security measures adopted by the Controller to protect the Data.

Users may verify whether any of the transfers described above take place by examining the relevant section of this document concerning details on the processing of Personal Data or by contacting the Controller.

DATA RETENTION PERIOD OR CRITERIA TO DETERMINE THIS PERIOD

In compliance with Article 5, paragraph 1, letter e) of Reg. EU 2016/679, collected Personal Data will be retained in a form permitting identification of data subjects for no longer than is necessary to achieve the purposes for which the data are processed.

Data retention periods depend on the purposes of processing, particularly:

  • Navigation data for website operation: retained only for the duration of the session.

  • Responding to information requests/service provision (max 12 months for contact requests; 10 years for administrative/accounting/financial documentation related to service provision).

  • Data collection for personnel selection (max 12 months).

  • Newsletter, marketing, promotional communications by email (max 24 months or until withdrawal of consent).

  • Administrative/accounting management: 10 years according to legal requirements.

  • Execution of a contract: until its completion.

  • Legitimate interests of the Controller: until those interests are satisfied.

Further information about retention periods can be obtained by contacting the Controller.

PURPOSES OF PROCESSING COLLECTED DATA

User Data are collected to enable the Controller to provide the Service, comply with legal obligations, respond to enforcement actions, protect rights and interests, detect fraudulent activities, and for the purposes listed in detail within the section “Details on Processing Personal Data.”

(Note: Due to the extensive length of the provided document, subsequent sections detailing each individual processing operation—such as Facebook permissions, payment handling, cookie management, user rights, data transfers, etc.—have been summarized above. If you require a complete and literal translation of all subsequent detailed sections provided, please specify clearly.)

FINAL NOTES

  • Users may exercise their rights (withdraw consent, access data, rectify or delete data, object processing, data portability, complain to authorities, etc.) by contacting the Data Controller at the provided details.

  • For complete information on Cookies and Tracking technologies, refer to the site's Cookie Policy.

Last modified: March 31, 2023