Privacy and cookie

In compliance with the obligations stemming from national legislation (Legislative Decree 30 June 2003 No. 196, Code regarding the protection of personal data) and community legislation (European Regulation for the protection of personal data No. 679/2016, GDPR) and subsequent amendments, this site respects and protects the confidentiality of visitors and users, making every possible and proportionate effort not to infringe on the rights of users.
This privacy policy applies exclusively to the online activities of this site and is valid for visitors/users of the site. It does not apply to information collected through channels other than this website. The purpose of the privacy information is to provide maximum transparency regarding the information that the site collects and how it uses it.

Legal basis of processing

This site processes data based on consent. By using or consulting this site, visitors and users explicitly approve this privacy policy and consent to the processing of their personal data in relation to the methods and purposes described below, including the possible disclosure to third parties if necessary for the provision of a service.
The provision of data and therefore Consent to the collection and processing of data is optional, the User can deny consent, and can revoke at any time a consent already given (through this page). However, denying consent may prevent the provision of some services and the browsing experience on the site could be compromised.
As of May 25, 2018 (the date of entry into force of the GDPR), this site will process some of the data based on the legitimate interests of the data controller.

Data collected and purposes

Like all websites, this site also uses log files in which information collected automatically during user visits is stored. The collected information could include the following:
– Internet protocol (IP) address;
– type of browser and device parameters used to connect to the site;
– name of the Internet service provider (ISP);
– date and time of visit;
– visitor’s referral and exit web page;
– possibly the number of clicks.
The above information is processed automatically and collected in an exclusively aggregated form in order to verify the correct functioning of the site, and for security reasons (from May 25, 2018, such information will be processed based on the legitimate interests of the owner).
For security purposes (antispam filters, firewalls, virus detection), the automatically recorded data may also include personal data such as the IP address, which could be used, in accordance with laws in force, to block attempts to damage the site itself or to harm other users, or otherwise malicious activities or constituting a crime. Such data is never used for the identification or profiling of the user, but only for the protection of the site and its users (from May 25, 2018, such information will be processed based on the legitimate interests of the owner).
If the site allows the posting of comments, or in the case of specific services requested by the user, the site automatically detects and records some identifying data of the user, including the email address. Such data is deemed voluntarily provided by the user at the time of requesting service delivery. By entering a comment or other information the user expressly accepts the privacy policy, and in particular agrees that the contents entered are freely disclosed also to third parties.
The data received will be used exclusively for the provision of the requested service and only for the time necessary for the provision of the service.
The information that the users of the site will consider to make public through the services and tools made available to them, are provided by the user knowingly and voluntarily, exempting this site from any liability regarding possible violations of laws. It is up to the user to verify that they have permissions for the input of personal data of third parties or contents protected by national and international laws.
The data collected by the site during its operation are used exclusively for the purposes indicated above and kept for the time strictly necessary to carry out the specified activities. In any case, the data detected by the site will never be provided to third parties, for any reason, unless it is a legitimate request by the judicial authority and only in the cases provided by law.
Data used for security purposes (blocking attempts to damage the site) are kept for 7 days.

Place of processing

The data collected by the site are processed at the headquarters of the Data Controller, Zia Lucy di Lucia Ferrara – VAT NUMBER 06252650657


As is customary on all websites, this site also uses cookies, small text files that allow for the storage of information about visitors’ preferences, to enhance the functionality of the site, simplify navigation by automating procedures (e.g., login, site language), and for site usage analysis.
Session cookies are essential for differentiating between logged-in users, and are useful for ensuring that a requested feature is not provided to the wrong user, as well as for security purposes to prevent cyber attacks on the site. Session cookies do not contain personal data and last only for the current session, i.e., until the browser is closed. Consent is not required for these cookies.
The functionality cookies used by the site are strictly necessary for the use of the site, particularly they are linked to an explicit request for functionality by the user (such as login), for which no consent is required.
By using the site, visitors expressly consent to the use of cookies.

Disabling cookies

Cookies are linked to the browser used and CAN BE DISABLED DIRECTLY FROM THE BROWSER, thus refusing/revoking consent to the use of cookies. It should be noted that disabling cookies may prevent the correct use of some functions of the site.
Instructions for disabling cookies can be found on the following web pages:
Mozilla FirefoxMicrosoft EdgeGoogle ChromeOperaApple Safari

Third-Party Cookies

This site also acts as an intermediary for third-party cookies, used to provide additional services and functionality to visitors and to improve the use of the site itself, such as social media buttons or videos. This site has no control over third-party cookies, which are entirely managed by third parties. As a result, information on the use of these cookies and their purposes, as well as on the methods for their possible deactivation, are provided directly by the third parties on the indicated pages.
In particular, this site uses cookies from the following third parties:
Google Analytics: a Google analysis tool that, through the use of cookies (performance cookies), collects anonymous navigation data (IP addresses truncated at the last octet) and exclusively aggregated for the purpose of examining the use of the site by users, compiling reports on activities on the site, and providing other information, including the number of visitors and the pages visited. Google may also transfer this information to third parties where required by law or where such third parties process the information on behalf of Google. Google will not associate the IP address with any other data held by Google. The data transmitted to Google are stored on Google’s servers in the United States.
Under a specific agreement with Google, which is designated as the data processor, Google commits to processing data based on the requests of the Data Controller (see at the end of the policy), given through the software settings. Based on these settings, advertising and data sharing options are disabled.
Further information on Google Analytics cookies can be found on the page Google Analytics Cookie Usage on Websites.
Users can selectively disable the collection of data by Google Analytics by installing on their browser the specific component provided by Google (opt-out).
For further information on the use of data and their processing by Google, it is recommended to review the information on the specific page prepared by Google, and on the page about How Google uses data when you use our partners’ sites or apps.

Social Network Plugins

This site also incorporates plugins and/or buttons for social networks, in order to allow easy sharing of content on your favorite social networks. These plugins are programmed not to set any cookies upon accessing the page, in order to safeguard users’ privacy. Cookies may be set, if so provided by the social networks, only when the user makes actual and voluntary use of the plugin. It should be noted that if the user navigates being logged into the social network then they have already consented to the use of cookies conveyed through this site at the time of registration to the social network.
The collection and use of information obtained through the plugin are governed by the respective privacy policies of the social networks, to which please refer.
Facebook – (cookie policy link)
Twitter – (cookie policy link)
LinkedIn – (cookie policy link)

Transfer of Data to Non-EU Countries

This site may share some of the data collected with services located outside the European Union area. Specifically, with Google, Facebook, and Microsoft (LinkedIn) through social plugins and the Google Analytics service. The transfer is authorized based on specific decisions of the European Union and the Italian Data Protection Authority, in particular decision 1250/2016 (Privacy Shield – here the information page of the Italian Guarantor), for which no further consent is needed. The aforementioned companies guarantee their adherence to the Privacy Shield.

Security Measures

This site processes user data in a lawful and correct manner, adopting appropriate security measures aimed at preventing unauthorized access, disclosure, modification, or unauthorized destruction of data. The processing is carried out using computer and/or telematic tools, with organizational methods and with logic strictly related to the indicated purposes. In addition to the owner, in some cases, categories of persons involved in the organization of the site (administrative, commercial, marketing, legal personnel, system administrators) or external subjects (such as third-party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) may have access to the data.

User Rights

Pursuant to European Regulation 679/2016 (GDPR) and national legislation, the User may, in the manner and within the limits provided by current legislation, exercise the following rights:
– request confirmation of the existence of personal data concerning them (right of access);
– know its origin;
– receive intelligible communication;
– have information about the logic, methods, and purposes of the processing;
– request the update, rectification, integration, cancellation, transformation into anonymous form, blocking of data processed in violation of the law, including those no longer necessary for the pursuit of the purposes for which they were collected;
– in cases of processing based on consent, receive their data provided to the owner, in a structured and readable form by a data processor and in a format commonly used by an electronic device, at the cost of any support;
– the right to file a complaint with the Supervisory Authority (Privacy Guarantor – link to the Guarantor’s page);
– as well as, more generally, exercise all the rights that are recognized by the current provisions of the law.
Requests should be addressed to the Data Controller through this page.
In cases where data is processed based on legitimate interests, the rights of the data subjects to the processing are still guaranteed (except for the right to data portability, which is not provided for by the rules), in particular, the right to object to the processing which can be exercised by sending a request to the data controller.

Data Controller

The Data Controller is Lucia Ferrara, legal representative of the company Zia Lucy, with its registered office in Via pizzillo 14, 84017 Positano (SA). Requests concerning the exercise of rights under Article 7 of the Code may be sent via email to the address Requests regarding the identity of other data processors appointed by the Company, as well as requests referred to in the previous paragraph 6, letters a), b), and c), may also be made orally.