Privacy Policy

At Sanpellegrino Mall, we respect your privacy and are committed to protecting the personal information you share with us. As your trusted online destination for authentic Italian Sparkling Water & Beverages, we understand the importance of safeguarding your data and ensuring transparency in how we collect, use, store, and disclose your personal information. This Privacy Policy outlines our practices in compliance with global privacy regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), to help you understand your rights and how we protect your privacy when you use our website (sanpellegrinomall.com) and our services.
By accessing or using our website, creating an account, placing an order, or submitting any personal information to us, you acknowledge that you have read, understood, and agree to the terms of this Privacy Policy. If you do not agree with our practices, please do not use our website or services.

1. What Personal Information We Collect

We collect personal information that you voluntarily provide to us, as well as information automatically collected when you interact with our website. We only collect data that is necessary to provide our services, process your orders, and enhance your shopping experience, in line with the principle of "minimum necessary".

1.1 Information You Voluntarily Provide

When you use our services, you may choose to provide us with the following personal information:
  • Account Information: When creating an account, we collect your full name, email address, password (encrypted), and phone number (optional). This information is used to identify you, manage your account, and communicate with you about your orders and our services.
  • Order & Payment Information: To process your orders, we collect your shipping address, billing address, payment details (e.g., credit card information, PayPal account details), and order history. Please note that we do not store full credit card details; this information is processed by our trusted third-party payment processors (see Section 4) for security purposes.
  • Communication Information: If you contact our customer service team (via email at [email protected]) or submit feedback, we collect your inquiry, feedback, and any additional information you provide to assist with resolving your request.
  • Marketing Consent: If you opt in to receive our marketing communications (e.g., newsletters, promotions, new product updates), we collect your consent to send you these materials, along with your contact information (email address or phone number).

1.2 Automatically Collected Information

When you visit our website, we automatically collect certain non-identifiable and identifiable technical information to improve our website performance and your user experience. This includes:
  • Device & Browser Information: Your IP address, browser type and version, operating system, device type, and device identifiers (e.g., unique device ID).
  • Browsing & Usage Data: Pages you visit on our website, the time and duration of your visits, the products you view or add to your cart, and your search queries. This data helps us understand user behavior, optimize our website layout, and personalize your shopping experience.
  • Cookies & Similar Technologies: We use cookies (small text files stored on your device) and similar technologies (e.g., web beacons) to track your activity on our website, remember your preferences (e.g., language, cart items), and improve our services. You can manage your cookie preferences through your browser settings (see Section 6).

2. How We Use Your Personal Information

We use your personal information for legitimate business purposes, always in compliance with applicable privacy laws. We will never use your data for purposes unrelated to our services without your explicit consent. The main uses of your personal information include:
  • Process & Fulfill Orders: To process your purchases, verify your payment details, arrange shipping and delivery, and provide order updates (e.g., confirmation emails, tracking information).
  • Manage Your Account: To maintain your account, allow you to access your order history, update your personal information, and ensure the security of your account.
  • Provide Customer Support: To respond to your inquiries, resolve issues (e.g., order problems, returns), and provide assistance with our services.
  • Improve Our Services: To analyze user behavior, identify areas for improvement on our website, develop new products or features, and enhance the overall shopping experience.
  • Send Marketing Communications: If you have opted in, we may send you newsletters, promotions, new product announcements, and other marketing materials. You can unsubscribe from these communications at any time (see Section 7).
  • Ensure Security & Compliance: To detect and prevent fraud, protect our website and services from unauthorized access, and comply with applicable laws, regulations, and legal obligations.

3. How We Store Your Personal Information

We take the security of your personal information seriously and implement industry-standard security measures to protect your data from unauthorized access, use, disclosure, or destruction. Our data storage practices include:
  • Secure Storage: Your personal information is stored on secure servers with encryption (e.g., SSL/TLS encryption for data transmitted between your device and our website, AES encryption for stored data) to protect sensitive information.
  • Access Controls: Only authorized personnel (e.g., customer service, IT teams) have access to your personal information, and they are required to maintain the confidentiality of your data.
  • Data Retention: We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. Once your data is no longer needed, we securely delete or anonymize it. For example, we retain order history for 7 years for legal and tax purposes, while marketing consent data is retained until you unsubscribe.
  • Third-Party Storage: Some of your data may be stored by our trusted third-party service providers (e.g., payment processors, hosting services), who are contractually obligated to protect your data and only use it in accordance with our instructions.

4. When We Disclose Your Personal Information

We do not sell, rent, or share your personal information with third parties for their own marketing purposes without your explicit consent. We may disclose your personal information in the following limited circumstances:
  • Trusted Third-Party Service Providers: We share your data with third parties who assist us in providing our services, such as payment processors (e.g., PayPal, Stripe) to process payments, shipping carriers (e.g., DHL, FedEx) to deliver your orders, and email service providers to send communications. These third parties are contractually bound to protect your data and only use it to perform the services we request.
  • Legal Obligations: We may disclose your personal information if required by law, regulation, court order, or government request (e.g., to comply with a subpoena or tax requirements).
  • Fraud Prevention & Security: We may disclose your data to detect, prevent, or investigate fraud, security breaches, or other illegal activities, and to protect the rights, property, or safety of Sanpellegrino Mall, our customers, or the public.
  • Business Transfers: In the event of a merger, acquisition, sale of assets, or other business transfer, your personal information may be transferred to the new owner or operator, who will be bound by this Privacy Policy.

5. Your Privacy Rights

Under applicable privacy laws (e.g., GDPR, CCPA), you have certain rights regarding your personal information. We are committed to helping you exercise these rights, which include:
  • Right to Access: You have the right to request a copy of the personal information we hold about you.
  • Right to Correct: You can request to correct any inaccurate or incomplete personal information we have about you.
  • Right to Delete: You can request to delete your personal information, subject to legal obligations (e.g., retaining order history for tax purposes).
  • Right to Restrict Processing: You can request to restrict the processing of your personal information in certain circumstances (e.g., if you dispute the accuracy of your data).
  • Right to Data Portability: You can request to receive your personal information in a structured, machine-readable format, or to have it transferred to another data controller.
  • Right to Withdraw Consent: If you have given consent for us to use your data (e.g., for marketing), you can withdraw your consent at any time without affecting the legality of processing based on consent before withdrawal.
To exercise any of these rights, please contact us at [email protected] with your request. We will respond to your request within 30 days (or within the timeframe required by law) and may ask for additional information to verify your identity and ensure the security of your data.

6. Cookies & Similar Technologies

We use cookies and similar technologies (e.g., web beacons, pixel tags) to enhance your experience on our website. Cookies are small text files that are stored on your device when you visit our site, and they help us remember your preferences, track your browsing activity, and improve our website performance.
You can manage your cookie preferences through your browser settings. Most browsers allow you to block or delete cookies, but please note that disabling cookies may affect the functionality of our website (e.g., you may not be able to add items to your cart or log in to your account). We do not use cookies to collect personal information without your consent.

7. Marketing Communications

If you opt in to receive marketing communications from us, we will send you emails or text messages about our products, promotions, and special offers. You can unsubscribe from these communications at any time by clicking the "Unsubscribe" link in our emails, replying "STOP" to text messages, or contacting us at [email protected]. Unsubscribing will not affect your ability to receive transactional communications (e.g., order confirmations, shipping updates).

8. Third-Party Links

Our website may contain links to third-party websites (e.g., social media platforms, payment processors). This Privacy Policy does not apply to these third-party websites, and we are not responsible for their privacy practices. We recommend that you review the privacy policies of any third-party websites you visit to understand how they collect and use your personal information.

9. Children’s Privacy

Our website and services are not intended for children under the age of 13 (or the age of consent in your jurisdiction). We do not knowingly collect personal information from children under this age. If we become aware that we have collected personal information from a child without parental consent, we will promptly delete that information and contact the child’s parent or guardian to inform them.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or applicable laws. When we make changes, we will update the "Last Updated" date at the top of this policy and post the revised policy on our website. We encourage you to review this Privacy Policy regularly to stay informed about how we protect your personal information. Your continued use of our website or services after the changes are posted constitutes your acceptance of the updated policy.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or the handling of your personal information, please contact us at:
Email: [email protected]
We will respond to your inquiry as soon as possible and work to resolve any issues you may have.