Last Updated: November 27, 2025

KORPO.COM is committed to protecting your privacy and personal data. This Policy explains how KORPO S.R.L. (“KORPO,” “we,” or “Controller”) collects, processes, and protects your data when you use or purchase KORPO products through our website. This Policy is drafted in compliance with the General Data Protection Regulation (Regulation (EU) 2016/679, “GDPR”) and applicable national legislation.

  1. DATA CONTROLLER AND DPO CONTACTS

The Data Controller for data collected through the KORPO.COM website is:

KORPO S.R.L. (Tax ID: 03096910108), with registered office at Via XX Settembre 3/28, 16121 Genoa, Italy. Controller’s Contacts: info@korpo.com

Data Protection Officer (DPO): KORPO has established a Data Protection Office, and you may contact the DPO for any questions relating to the processing of personal data and the exercise of your rights:

DPO Contacts: info@korpo.com.

 

  1. PERSONAL DATA COLLECTED

We collect the following types of data:

Data Category Collection Method Examples of Data
Data Directly Provided Completing forms, creating an account, newsletter subscription, purchases, contacting Customer Service. Name, surname, email address, shipping address, payment data, telephone number.
Navigation Data Use of cookies and related technologies while browsing the site. IP address (even if reduced/anonymized), access data, pages visited, products viewed, browser information.
Data from Social Media Interaction with official KORPO pages on social networks (if data is public). Social profile, comments, “Likes.”

 

Note: If the data provision is marked with an asterisk, it is mandatory to access products/services (e.g., for purchase or to respond to a contact request).

 

  1. PURPOSES AND LEGAL BASES OF PROCESSING

We process your data exclusively for the following purposes and based on the relative legal bases:

Purpose of Processing Legal Basis (Art. 6 GDPR) Storage Period
A. Contract Execution and Services Performance of a contract (Art. 6.1.b) For the entire duration of the contractual relationship and for the subsequent 10 years for legal and after-sales obligations.
B. Fulfillment of Legal Obligations Compliance with a legal obligation (Art. 6.1.c) For the period imposed by law (e.g., tax, anti-money laundering, cosmetic regulations).
C. Direct Marketing (Newsletter, Offers) Consent of the data subject (Art. 6.1.a) Until the withdrawal of consent (unsubscription).
D. Profiling and Personalized Marketing Consent of the data subject (Art. 6.1.a) Until the withdrawal of consent or for the maximum period allowed for analysis (e.g., 12-24 months).
E. Service Improvement and Statistics Legitimate interest of the Controller (Art. 6.1.f) Statistical data stored in aggregated and anonymous form.
F. Counteracting Fraud and Counterfeiting Legitimate interest of the Controller (Art. 6.1.f) For the time necessary to pursue the legal interests of KORPO S.R.L.

 

 

  1. RECIPIENTS AND DATA TRANSFER

4.1 Internal and External Recipients

Your personal data is accessible only to a limited number of recipients, based on the “need to know” principle:

  • KORPO Personnel: Employees of the Customer Relationship Management, Commercial, Legal, IT teams, etc.
  • Service Providers (Processors): External parties acting on behalf of KORPO based on secure contractual agreements (e.g., hosting providers, payment services, marketing agencies, customer support services).

4.2 International Transfers

Data may be transferred outside the European Economic Area (EEA) to other KORPO group entities or service providers. Such transfers will always be carried out in compliance with the GDPR, adopting one of the following safeguards:

  • Binding Corporate Rules (BCRs): If adopted and approved.
  • Standard Contractual Clauses (SCCs): Approved by the European Commission.
  • Adequacy Decisions: If the European Commission has recognized the third country as adequate.

 

  1. YOUR RIGHTS (ART. 15-22 GDPR)

As a data subject, you have the right to exercise the following rights at any time by contacting the DPO (Section 1):

Right Description
Right of Access Obtain confirmation of data processing and receive a copy of the data.
Right to Rectification Correct or supplement inaccurate or incomplete personal data.
Right to Erasure (“Right to be Forgotten”) Obtain the deletion of data, provided there are no overriding legal or legitimate reasons to retain it.
Right to Restriction of Processing Request the restriction of processing.
Right to Data Portability Receive the data in a structured, commonly used, and machine-readable format, and transmit it to another controller.
Right to Object Object to processing based on legitimate interest and, at any time, to processing for marketing purposes.
Right to Withdraw Consent Withdraw consent for processing for marketing purposes (e.g., unsubscription from the Newsletter) or profiling, without affecting the lawfulness of processing based on consent before its withdrawal.

 

Right to Lodge a Complaint: You have the right to lodge a complaint with the competent Supervisory Authority (for Italy, the Garante per la Protezione dei Dati Personali) if you believe the processing violates the GDPR.

 

  1. COOKIE AND SIMILAR TECHNOLOGIES POLICY

Cookies are small text files that websites send to the user’s browser and are stored on their device.

Types of Cookies Used:

  • Technical Cookies (Essential): Necessary for site navigation and functionality (e.g., managing the shopping cart, access to the reserved area). They do not require your consent.
  • Non-Anonymized Analytical / Profiling Cookies: Used to analyze your preferences and browsing habits to send you targeted advertising and personalized offers, or to analyze site statistics in detail. They require your consent.
  • Third-Party Cookies: Cookies installed by parties other than KORPO.COM (e.g., social networks, analysis services like Google Analytics if not anonymized, advertising partners). They require your consent.

Consent Management (Cookie Banner)

In compliance with the Guidelines of the Italian Privacy Authority (2021/2022), KORPO.COM uses a Cookie Banner that:

  • Blocks all non-technical cookies (analytical and profiling) before the user expresses their consent.
  • Presents the user with buttons to Accept all cookies and Reject all cookies (or an “X” with the same function) on the same level.
  • Offers a link to access Preference Management (to choose which categories to accept/reject).

Withdrawal of Consent: You can change or withdraw your consent at any time by clicking on the “Cookie Management” (or similar) link in the site’s footer, or by configuring your browser (see instructions below).

How to Disable Cookies via Browser

[Keep the original text’s instructions for disabling cookies in major browsers, ensuring they are up to date.]