I - PRIVACY POLICY OF THE WEBSITE
Pursuant to the General Data Protection Regulation (GDPR), our website handles data related to privacy in compliance with applicable laws. This privacy policy provides all necessary information to help you understand what type of data we collect, why we collect it, how it is used, and how it is stored.
We consider it essential that you are fully informed about our practices. Therefore, we kindly ask you to read the entire Privacy Policy.
Please note the following:
-
This section contains all the information relating to the way in which www.fotobymax.com handles the data of users of this website.
-
This policy is also provided pursuant to Article 13 of Legislative Decree No. 196/2003, the Personal Data Protection Code, and Article 13 of Regulation EU 2016/679, concerning the privacy protection with regard to the processing of personal data and the free movement of such data, for those interacting with www.fotobymax.com, accessible through the homepage: https://en.fotobymax.com/privacypolicy.
-
This policy applies exclusively to www.fotobymax.com, and not to other websites that the user may access through links contained herein.
-
The purpose of this document is to provide guidance regarding the methods, timing, and nature of the information that the data controller must provide to users when they connect to the web pages of www.fotobymax.com, regardless of the purpose of the connection, as per Italian and European legislation.
-
This policy may be subject to changes due to the introduction of new regulations. Users are therefore encouraged to periodically check this page.
-
If the user is under 14 years of age, according to Article 8, Paragraph 1 of Regulation EU 2016/679 and Article 2-quinquies of Legislative Decree 196/2003, as amended by Legislative Decree 181/18, they must provide consent through parental or guardian authorization.
II - DATA CONTROLLER AND PROCESSOR
1. Data controller and contact details:
The data controller is the natural or legal person, public authority, service, or other body that, individually or jointly with others, determines the purposes and means of personal data processing. This role also involves security profiles. For this website, the data controller is Max Frank Sørensen, based in Castiglione del Lago (PG) - 06061, Vocabolo Cimbano 60. For any clarifications or to exercise user rights, you may contact him at the following email address: info@fotobymax.com.
2. Data processor:
The data processor is the natural or legal person, public authority, service, or other body that processes personal data on behalf of the data controller. For this website, the data processor is the same as the data controller, namely Max Frank Sørensen.
III - COOKIE POLICY
1- Type of Cookies:
The website www.fotobymax.com uses cookies to make the user experience easier and more intuitive. Cookies are small text strings used to store information related to the user, their preferences, or the device used to access the Internet (computer, tablet, or mobile). These cookies primarily aim to tailor the site's functionality to the user's expectations, providing a more personalized browsing experience and saving previously made choices.
A cookie consists of a small amount of data transferred to the user's browser by a web server and can only be read by the server that issued it. Cookies are not executable codes and do not transmit viruses.
Cookies do not record personal information, and any identifiable data will not be stored.
By default, most web browsers are set to accept cookies automatically. Cookies can typically be installed:
-
Directly by the website owner/operator (first-party cookies)
-
By third parties unrelated to the website visited by the user (third-party cookies). Unless specified otherwise, these cookies are under the sole responsibility of their respective operators. Additional privacy information regarding their use can be found directly on the respective operators' websites.
If desired, users can prevent the storage of some or all cookies. However, doing so may compromise the use of the site and the services offered. To proceed without modifying cookie options, simply continue browsing.
Below are the types of cookies used by this website:
1.1 - Technical (essential) cookies
There are various technologies used to store information on the user's computer, which are then collected by websites. Among these, the most well-known and used are HTML cookies. These are essential for navigation and facilitate the user’s access and use of the website. They are necessary for the transmission of communications over an electronic network, or for the provider to supply the service requested by the customer.
The settings for managing or deactivating cookies may vary depending on the Internet browser used. In any case, the user can manage or request the general deactivation or deletion of cookies by modifying the settings of their internet browser. Such deactivation may slow down or prevent access to certain parts of the site. The use of technical cookies enables the safe and efficient use of the site.
Cookies that are placed in your browser and transmitted via Google Analytics or the blogger statistics service or similar are technical only if they are used for site optimization purposes directly by the site owner, who may collect information in aggregate form on the number of users and how they visit the site. Under these conditions, the same rules on information and consent apply to analytics cookies as to technical cookies.
Based on their duration, cookies can be distinguished into two different groups; temporary session cookies, which are automatically deleted at the end of the navigation session and are used to identify the user and avoid logging in on each visited page, and permanent cookies, which remain active on the PC until they expire or are deleted by the user.
Session cookies may be installed to allow access and stay logged-in the reserved area of the website as an authenticated user. These are not stored persistently but exclusively for the duration of navigation until the browser is closed. Their use is strictly limited to the transmission of session identifiers consisting of random numbers generated by the server, necessary to enable secure and efficient site exploration.
1.2 - Third-party cookies
Depending on their origin, cookies can be distinguished between those sent to the browser directly from the site being visited and those from third parties sent to the computer by other sites and not the one being visited.
Permanent cookies are often third-party cookies. Most third-party cookies consist of tracking cookies used to detect online behavior, understand interests, and customize advertising offers for users.
Third-party analytical cookies may be installed. These are sent from third party domanis external from this website. Third-party analytical cookies are used to collect information about user behaviour on www.fotobymax.com. The collection is done anonymously in order to monitor performance and improve the usability of the site. Third-party profiling cookies are used to create profiles of users in order to propose advertising messages in line with the choices made by users. The use of these cookies is governed by the rules set by the third parties themselves; users are therefore invited to read the privacy notices and instructions for managing or disabling cookies published on their respective websites.
1.3 - Profiling and marketing cookies
Profiling cookies create profiles related to the user and are used to send advertising messages in line with the preferences expressed by the user during web navigation. When these types of cookies are used, the user must give explicit consent. Article 22 of EU Regulation 2016/679 and Article 122 of the Data Protection Code will apply.
2 - Support in configuring your browser:
The user can manage cookies also through the settings of their browser. However, deleting cookies from the browser may remove preferences previously set for the website. For further information and support you can also visit the specific help page of the web browser you are using:
-
Internet Explorer: http://windows.microsoft.com/en-us/windows-vista/block-or-allow-cookies
-
Firefox: https://support.mozilla.org/en-us/kb/enable-and-disable-cookies-website-preferences
-
Chrome: https://support.google.com/accounts/answer/61416?hl=it
-
Opera: http://www.opera.com/help/tutorials/security/cookies/
IV - DATA PROCESSING
1 - Type of data processed and processing methods:
Like all websites, this site uses log files where information collected automatically during user visits is stored. The IT systems and software procedures used to operate this website acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols.
The information collected may include:
-
Internet Protocol (IP) address;
-
Type of browser and parameters of the device used to connect to the site;
-
Name of the Internet Service Provider (ISP);
-
Date and time of access;
-
Time spent on individual pages;
-
Referring and exit web pages;
-
Number of clicks, if applicable;
-
Internal navigation paths and other parameters regarding the user’s operating system and computer environment.
The above information is processed automatically and collected exclusively in aggregated form to verify the proper functioning of the site and for security reasons. Such information is processed based on the legitimate interests of the Data Controller.
For security purposes, the automatically recorded data may also include personal data such as the IP address, which could be used, in compliance with applicable laws, to block attempts to damage the site itself or to harm other users, or otherwise harmful or criminal activities. This data is never used to identify or profile the user, but only to protect the site and its users from external threats. Such information will be processed based on the legitimate interests of the Data Controller.
Should the site allow the insertion of comments, or in the event of specific services requested by the user, including the possibility of sending a Curriculum Vitae for a possible employment relationship, the site automatically detects and records certain user identification data, including the user's e-mail address. This data is understood to be voluntarily provided by the user when requesting the service. By entering a comment or other information, the user expressly accepts the privacy policy, and in particular consents to the contents entered being freely disclosed to third parties. The data received will be used exclusively to provide the requested service and only for the time necessary to provide the service.
The information that users of the site decide to make public through the services and tools made available to them, is provided by the user knowingly and voluntarily, exempting this site from any liability for any violation of the law. It is the user’s responsibility to ensure they have permission to input personal data of third parties or content protected by national and international regulations.
2 - Purpose of data processing:
The purposes of data processing are to provide the service requested by the user, to manage the contracts finalized by the same user, to carry out the relative administrative, accounting, fiscal and legal fulfillments, as well as to process the requests forwarded, to survey the user's experience in using our platforms and the services we offer and to ensure the correct functioning of the web pages and their contents. Carry out profiling activities, i.e. the analysis and processing of information relating to the user, their preferences, habits, consumption choices and/or browsing experiences. This activity is carried out using technologies such as cookies, as detailed in paragraph III.
The data collected by the site during its operation and those used for security purposes (blocking attempts to damage the site) are used exclusively for the purposes indicated above and stored for the time strictly necessary to carry out the specified activities.
3 - Data provided by the user:
As indicated above, the optional, explicit and voluntary sending of electronic mail to the address indicated on this website entails the subsequent acquisition of the sender's address, which is necessary to reply to requests, as well as any other personal data included in the message.
The website may use external components such as social plug-ins. Social plug-ins are special tools that allow social network functionalities to be embedded directly into the website (e.g., the Facebook "like" button). Any social plug-ins present on the site are identified by the respective social network platform’s logo (e.g., Facebook, Instagram, WhatsApp, Google, Twitter, LinkedIn). When visiting a page of our site and interacting with a plug-in (e.g., clicking the "like" button) or deciding to leave a comment, the corresponding information is transmitted from the browser directly to the social network platform and stored there. For information on the purposes, type, and methods of data collection, processing, usage, and storage by the social network platform, and on how to exercise your rights, please refer to the privacy policy adopted by the individual social network.
From this website it is possible to connect, via links, to other websites or it is possible from third party websites to connect to our website. The Data controller declines any responsibility for any request and/or release of personal data to third party websites and for the management of authentication credentials provided by third parties.
V - USER RIGHTS
Article 13, paragraph 2 of EU Regulation 2016/679 lists the user's rights. The website www.fotobymax.com informs users, based on the articles of EU Regulation 2016/679 outlined below, of the following rights:
-
Access: Pursuant to Article 15, the user may request confirmation as to whether personal data concerning them is being processed, obtain further details on the information provided in this Privacy Policy, and to receive the data itself, within reasonable limits.
-
Rectification: Pursuant to Article 16, the user may request the correction or supplementation of data they have provided or that is otherwise in our possession if found to be inaccurate.
-
Erasure: Pursuant to Article 17, the user may request the deletion of their acquired data when it is no longer necessary for our purposes, or when there are no disputes or legal claims pending, in cases of consent withdrawal or opposition to processing, unlawful processing, or where a legal obligation to delete exists.
-
Restriction: Pursuant to Article 18, the user may request the restriction of their personal data processing when one of the conditions outlined in Article 18 of the GDPR applies. In such cases, their data will only be processed for storage unless consent is provided, except as specified in paragraph 2 of the same article.
-
Objection: Pursuant to Article 21, the user may object at any time to the processing of their data based on our legitimate interest, unless there are compelling legitimate grounds for processing that override their interests, such as for legal defense. The user's objection will always prevail over our legitimate interest in processing data for marketing purposes.
-
Portability: Pursuant to Article 20, the user may request to receive their data, or have it transmitted to another data controller specified by them, in a structured, commonly used, and machine-readable format.
Users are also entitled to receive confirmation that any updates, corrections, integrations, erasures, blocks, or transformations of their data have been communicated to all entities to whom the data has been transmitted or disclosed, except where such communication is impossible or involves a disproportionate effort relative to the right protected.
Additionally, under Article 7, paragraph 3 of the GDPR, users may exercise their right to withdraw consent at any time, without affecting the lawfulness of processing based on consent prior to its withdrawal. To exercise these rights, report issues, or seek clarification on the processing of personal data, users may send a communication to the following email address: info@fotobymax.com, without any formalities, or alternatively, use the model provided by the Data Protection Authority.
If the processing is based on Article 6, paragraph 1, letter a) – explicit consent for use – or on Article 9, paragraph 2, letter a) – explicit consent for the use of genetic, bio-metric, health-related data, or data revealing religious or philosophical beliefs, trade union membership, racial or ethnic origin, or political opinions – the user has the right to withdraw their consent at any time without prejudice to the lawfulness of processing based on consent before its withdrawal.
In the event of a violation of regulations, the user has the right to lodge a complaint with the "Garante per la Protezione dei Dati Personali", which is the supervisory authority for data processing in Italy.
For a more comprehensive overview of the rights available to you, please refer to Articles 15–22 of EU Regulation 2016/679.
VI - DATA TRANSFER TO NON-EU COUNTRIES
This website may share some of the data collected with services located outside the European Union. In particular with Google, Facebook, Wix and Microsoft (LinkedIn) via social plug-ins and the Google Analytics service. The transfer is authorised and strictly regulated by Article 45(1) of EU Regulation 2016/679, so no further consent is required. The companies mentioned above guarantee their adherence to the Privacy Shield.
No data will ever be transferred to third countries that do not comply with the conditions set out in Article 45 and 22, of the (EU) Regulation.
VII - DATA SECURITY
This website processes user data lawfully and correctly, adopting appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of data. The processing is carried out using IT and/or telematic tools, with organizational methods and logics strictly related to the purposes indicated. Besides the data controller, in some cases, categories of staff involved in site organization (administrative, commercial, marketing, legal, system administrators) or external parties (e.g., third-party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) may have access to the data.
VIII - AMENDMENTS TO THIS DOCUMENT
The possible entry into force of new sector regulations, as well as the constant review and updating of user services, may entail the need to change the methods and terms described in this Privacy Policy. It is therefore possible that this document may change over time. In this regard, users are invited to periodically consult this page in order to stay updated of the latest changes. Previous versions of the document will, in any case, be archived to allow consultation.
Please send an email to info@fotobymax.com if you have any questions regarding any need for clarification or information on the contents of this page. We will reply as soon as possible.
The original Italian document published at the web address: https://www.fotobymax.com/privacypolicy constitutes the privacy policy of this site. The English translation provided above is for convenience, to facilitate the understanding of the original text. In the event of any dispute, the Italian language version of this document shall prevail.
This document was updated on 16/01/2025 to comply with the relevant regulations, and in particular with Regulation (EU) 2016/679.