This Privacy Policy describes how Bricoflow (the “Website”) collects, uses, and protects the personal data of users who browse or make purchases on www.bricoflow.com, in accordance with Regulation (EU) 2016/679 (GDPR) and applicable Italian data protection laws.
The Data Controller of personal data is:
Weprod S.R.L.
Registered Office:
Via Ferrante Imparato, Edif. 3 – 190 Condom. Napoli Est
P3 Int. 301
80146 Naples (NA)
Italy
VAT Number: 10883491218
Email address: info@bricoflow.com
The Data Controller may collect the following categories of personal data:
First and last name
Billing and shipping address
Email address
Phone number
Tax code or VAT number (if required)
Login credentials (if an account is created)
IP address
Browser type and version
Operating system
Referring URLs
Date and time of access
Pages visited and interaction data
Payment information is processed exclusively by third-party payment providers. The Data Controller does not store credit card or sensitive payment data.
Personal data is processed for the following purposes:
a) To allow browsing of the Website
b) To create and manage user accounts
c) To process and fulfill orders
d) To manage payments and invoicing
e) To provide customer support
f) To comply with legal and tax obligations
g) To prevent fraud and ensure website security
h) To send transactional communications related to orders
i) To send marketing communications (only with user consent)
The processing of personal data is based on:
Performance of a contract (Art. 6(1)(b) GDPR)
Compliance with legal obligations (Art. 6(1)(c) GDPR)
Legitimate interests of the Data Controller (Art. 6(1)(f) GDPR)
User consent, where required (Art. 6(1)(a) GDPR)
Data processing is carried out using electronic and IT tools, with organizational and technical measures designed to ensure security, integrity, and confidentiality of personal data.
Personal data is retained for the time strictly necessary to achieve the purposes for which it was collected, including:
Contractual and accounting data: up to 10 years
Marketing data: until consent is withdrawn
Account data: until account deletion
Personal data may be disclosed to:
Payment service providers
Shipping and logistics partners
IT service providers and hosting companies
Accounting and legal consultants
Public authorities, when required by law
All recipients process data in compliance with GDPR.
If personal data is transferred outside the European Union, such transfers will occur only to countries with an adequate level of protection or based on appropriate safeguards in accordance with Articles 44–49 of the GDPR.
Users have the right to:
Access their personal data
Request rectification or deletion
Request restriction of processing
Object to processing
Request data portability
Withdraw consent at any time
Lodge a complaint with the competent supervisory authority
Requests may be sent to: info@bricoflow.com
The Website uses technical, analytical, and profiling cookies.
For detailed information, please consult the Cookie Policy available on the Website.
Users may create an account on the Website. Account credentials must be kept confidential. The Data Controller is not responsible for unauthorized access due to user negligence.
Marketing communications are sent only with explicit user consent. Users may unsubscribe at any time by clicking the unsubscribe link or contacting the Data Controller.
The Data Controller adopts appropriate technical and organizational security measures to protect personal data from unauthorized access, alteration, disclosure, or destruction.
The Data Controller reserves the right to modify this Privacy Policy at any time. Changes will be published on this page and, where appropriate, notified to users.
For any questions regarding this Privacy Policy or the processing of personal data, please contact: