Privacy Policy

SEDEI srls (hereinafter also “SEDEI” or the “Company”) invites you to carefully read this privacy notice (hereinafter the “Privacy Policy”), provided pursuant to Article 13 of Regulation (EU) 2016/679 (hereinafter also the “Regulation” or “GDPR”), through which it intends to inform you about SEDEI’s policy regarding the processing of personal data collected during your browsing of the website https://sedei.eu (hereinafter the “Site”).

We inform you in advance that the processing of your personal data is carried out in compliance with current national and European privacy regulations and is based on the principles of fairness, lawfulness, transparency, and the protection of your confidentiality and rights.

—

### **Index**

1. Data Controller
2. Types of Personal Data Processed
3. Purposes and Methods of Data Processing
4. Legal Basis for Processing
5. Recipients / Categories of Recipients of Personal Data
6. What Happens if You Do Not Provide Your Data
7. Withdrawal of Consent
8. Data Retention Period
9. Data Subject Rights
10. Complaint to the Data Protection Authority
11. Updates and Changes
12. Links to Other Websites
13. Social Network Interactions

—

### **1. Data Controller**

The Data Controller is SEDEI srls (hereinafter also “SEDEI”), represented by its legal representative pro tempore, with registered office at Galleria Unione no. 4, 20122 Milan (MI), Tax Code/VAT no.: 13051570961, Email: info@sedei.it

—

### **2. Types of Personal Data Processed**

SEDEI collects and processes personal data (hereinafter collectively “Personal Data” or simply “Data”) relating to the user (hereinafter the “User” or “Users”), specifically:

**Browsing Data:**
The IT systems and software procedures used to operate the Site acquire, during their normal operation, certain data whose transmission is implicit in the use of Internet communication protocols.

This information is not collected to be associated with identified individuals but, by its nature, could allow users to be identified through processing and association with data held by third parties. This category includes, among others, IP addresses, domain names of users’ devices, URI addresses of requested resources, request time, method used to submit the request to the server, file size obtained in response, server response status codes, and other parameters relating to the user’s operating system and IT environment.

These data are not disclosed but are used solely to obtain anonymous statistical information on site usage and to ensure its proper functioning. They are stored for the periods defined by applicable law and may also be used to ascertain responsibility in case of cybercrimes against the Site.

**Data Provided Voluntarily by the User:**
Through online forms and/or for registration and/or access to the “CUSTOMER LOGIN” section: initially, an email address is required, and subsequently identification and contact data such as name, surname, address, postal code, city, province, phone number, and email address.

**Data Provided During Purchases:**
Data provided by the User during the purchase of SEDEI products on the Site, necessary for completing transactions and for pre- and post-sales assistance.

**Cookies:**
The Site uses automatic data collection systems such as cookies. Cookies are small text files stored on the user’s device when visiting a website, containing brief information that allows the site to adapt to the user (e.g. compatible formats or display settings).

Types of cookies used:

* **Technical cookies:** necessary for communication transmission, site display, navigation, or services requested by the User;
* **Analytical cookies:** used to collect anonymous statistical data on site usage;
* **Profiling cookies:** used to analyze user behavior and send targeted advertising.

Cookies may also be:

* **First-party cookies:** managed directly by the website;
* **Third-party cookies:** managed by external entities.

For more details, please refer to the Cookie Policy.

—

### **3. Purposes and Methods of Processing**

Personal Data provided voluntarily through online forms are processed for:

* Completing transactions and providing pre- and post-sales services;
* Sending SEDEI newsletters (via the “SUBSCRIBE TO OUR NEWSLETTER” section);
* Direct marketing purposes, including:

* sending promotional and informational material via email and SMS;
* sending communications about campaigns, events, or contests;
* Managing registration and access to the “CUSTOMER LOGIN” section;
* Technical management of the Site;
* Compliance with legal obligations (accounting, administrative, legal, etc.) and dispute management.

Data processing is carried out by the Data Controller, data processors, and authorized persons using appropriate security measures, both paper-based and electronic, ensuring confidentiality and compliance with applicable laws.

—

### **4. Legal Basis for Processing**

* Contractual or pre-contractual obligations (Art. 6(1)(b) GDPR);
* Consent (Art. 6(1)(a) GDPR);
* Legal obligations and legitimate interests (Art. 6(1)(c) and (f) GDPR).

—

### **5. Recipients of Personal Data**

Personal Data may be shared with:

* Consultants and service providers (legal, administrative, IT, marketing, hosting, etc.);
* Entities authorized by law;
* Postal and logistics service providers;
* Employees involved in handling requests.

These parties act as authorized persons, independent data controllers, or data processors under Article 28 GDPR.

Data transfers outside the EU will comply with adequacy decisions or appropriate safeguards (e.g. standard contractual clauses).

Personal Data will not be publicly disclosed.

—

### **6. What Happens if You Do Not Provide Data**

Providing data for marketing or newsletters is optional. Failure to provide such data does not prevent use of the Site but may limit SEDEI’s ability to send offers or communications.

Providing certain data (e.g. personal details, contact information, payment data) is mandatory for completing purchases.

—

### **7. Withdrawal of Consent**

You may withdraw your consent at any time without affecting the lawfulness of prior processing by contacting the Data Controller via the details provided.

—

### **8. Data Retention Period**

Data are retained only as long as necessary:

* Up to 10 years for contractual/legal obligations;
* Up to 24 months for marketing purposes (unless consent is withdrawn);
* For the duration of registration/account use;
* As required by applicable law.

—

### **9. Data Subject Rights**

You may exercise your rights under Articles 15–21 GDPR, including:

* Access and rectification;
* Erasure;
* Restriction of processing;
* Data portability;
* Objection to processing.

Requests can be sent to the Data Controller using the provided contact details.

—

### **10. Complaint to the Data Protection Authority**

You have the right to lodge a complaint with the Italian Data Protection Authority ([www.garanteprivacy.it](http://www.garanteprivacy.it)).

—

### **11. Updates and Changes**

This Privacy Policy may be updated due to legal or technological changes. Updates will be published on the Site.

—

### **12. Links to Other Websites**

This Policy applies only to this Site and not to external websites (e.g. Facebook, Instagram, TikTok, LinkedIn).

—

### **13. Social Network Interactions**

The Site allows interaction with social networks through social buttons (LinkedIn, TikTok, Facebook, Instagram). These may collect data about your visit.

For more information, please refer to the respective social networks’ privacy policies.