Cart: 0 Product Products (empty)

No products

Shipping To be determined
Total: 0,00 €


There are 0 items in your cart. There is 1 item in your cart.

Total products
Total shipping  Free!
Continue shopping Proceed to checkout
Product successfully added to your shopping cart
Note legali

Legal Terms

Information on the processing of personal data


This information, provided in accordance with Art. 13 of Reg. 2016/679 (GDPR), aims to clarify to the Users of the Website ( how we collect personal data, why we collect them and how Users can update, manage, export and delete their information.

The aim is to provide you with all the information necessary to make your navigation of the Website transparent and secure. It is therefore important that you read the content below carefully, and if you do not agree with the content, we invite you to stop browsing the Website.

This information applies exclusively to the Website accessible at, and which may be reached by the User via dynamic links.


In order to provide these services, however, we need to collect certain personal data, including through automated tools, as better indicated below.

Data Controller

The Data Controller of the personal data collected is PICCIN NUOVA LIBRARIA SPA, with registered office in Via Altinate, 107 - 35121 Padova (PD), VAT and tax code 01524160288, e-mail, in the person of its pro tempore legal representative.

Type of personal data collected

Through the Website we collect various personal data of Users that can identify them, such as personal data and/or accounting data. In particular, we collect the following personal data:

- Navigation Data:

The Website acquires some personal data whose transmission is implicit in the use of Internet communication protocols (so-called Cookies); this is information that is not collected to be associated with identified individuals but which by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes, by way of example: the IP addresses or domain names of the computers that connect to the Website, the URI (Uniform Resource Identifier) of the resources requested, the date and time of the request and other parameters relating to the operating system.

For more information on the types of data collected, we invite Users to also read the Cookie Policy (

This includes the following data

  • information relating to internet communication protocols, IP addresses and access logs to computer systems;
  • data relating to navigation and websites previously visited;
  • data provided by the browser used by the User;

- Data provided voluntarily and directly by the User:

The User is free to provide personal data to the Data Controller.

The optional, explicit and voluntary sending of personal data to the Data Controller, of the e-mail address and/or the filling in of electronic forms, present on the Website, in order to forward requests aimed at the possible use of our services or for initiatives aimed at receiving our promotions, advertising material, cost estimates and possible supply of goods and/or services, reports of complaints, etc., entail the acquisition, by us, of the sender's address, as well as any other personal data included in the message and/or in the electronic form.

This includes the following data:

  • personal data (e.g.: name, surname, address, tax code)
  • Communication data (e.g.: telephone number, email address)
  • accounting data (e.g.: means of payment)
  • data included in documents sent by Users

- Third party data provided voluntarily by the User: The User may also voluntarily provide data of third parties, who have no relationship with the Data Controller, for example by entering a different shipping address.

This includes the following data

  • identification data of third parties (e.g.: name entered in a shipping address).
  • accounting data of a third party (e.g.: credit card of a third party)
  • data included in documents sent by Users

In the event that the User communicates third party content to the Controller, the latter declares that he has collected the necessary consent for the processing of personal data, and the communication of the same to the Controller.

The Owner will not process "special" and/or "sensitive" and/or "judicial" data pursuant to EU Reg. 2016/679;

Purpose of Processing

Personal data collected through the Website are processed by the Controller for the following purposes:

  • to allow Users to use the Website and the services offered through it;
  • to acquire orders and proceed with the shipment of Products and/or the supply of Digital Content
  • to verify violations and abusive accesses on the Web Site;
  • verify the correct use of the Digital Content;
  • fulfil current administrative, accounting and tax obligations;
  • speed up log-in procedures in case of subsequent purchases through the Web Site;
  • statistical and market analysis;
  • manage access to any reserved areas;
  • send communications to Users and/or communicate with them in case of requests for technical assistance and/or information;

Moreover, with the Users' consent, we may also

  • send, through our representatives, collaborators and/or agents, information and updates in relation to offers, promotions and events linked to PICCIN's activity, by sending informative and advertising material;
  • carry out a direct sales service of the products and digital contents present on the Website.

Obligation to provide data

The provision of data by the User is optional.

However, failure to provide personal data may make it impossible for the Controller to provide the services requested and/or to fulfil its contractual obligations (e.g.: in the event that data for making payments is not provided).

In any case, the provision of data is always compulsory when it is necessary to fulfil a legal obligation (e.g. in the case of sending data in accordance with the Consolidated Law on Public Security; fulfilling accounting obligations; etc.).

Legal basis of processing

The Data Controller processes personal data in the manner indicated in Art. 6 of Reg. 679/2016, and in particular after collecting consent from the User.

The Controller may, in any case, process the personal data of the Users even without their consent in the following cases:

  • the processing is necessary for the performance of a contract to which the User is party or for the performance of pre-contractual measures taken at the request of the User;
  • processing is necessary for compliance with a legal obligation to which the Data Controller is subject;
  • processing is necessary for the protection of the vital interests of the User or of another natural person;
  • processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the data controller;
  • processing is necessary for the purposes of pursuing the legitimate interests of the controller or a third party, provided that the interests or the fundamental rights and freedoms of the data subject which require the protection of personal data do not prevail, in particular where the data subject is a child.

Methods of Processing

The processing of personal data will be carried out by persons authorised to do so (e.g. employees, collaborators, agents), at the Data Controller's head office and/or at the offices of external collaborators/agents, using both manual procedures (e.g. on paper) and computerised/telematic methods, with logic strictly related to the purposes specified in the privacy policy, and in any case in such a way as to ensure compliance with the measures prescribed by EU Reg. 2016/679 to guarantee the security and confidentiality of the data, as well as respect for the fundamental rights and freedoms of the Users, and their dignity.

The information systems and computer programs are configured to minimize the use of personal data and identification data, so as to exclude their processing when the purposes pursued in individual cases can be achieved through, respectively, anonymous data or appropriate methods that allow identification of the person concerned only when necessary.

We also guarantee data security through appropriate backup and data recovery systems.

Duration of processing

Personal data will be retained for as long as necessary to provide the services requested by the User (e.g. until the Account is deleted from the Website) and/or until consent is revoked.

In case of withdrawal of consent and/or at the end of the provision of services, the data will be kept within the time limits established by law for the fulfilment of, for example, civil and fiscal obligations, and in any case for a period of not less than 10 years.

Transfer of personal data abroad

In order to improve the services we offer, we may transfer your personal data to other member countries of the European Union, for example when using cloud systems.

If for the provision of the requested services, or for matters of a technical and/or operational nature it is necessary to use entities located outside the European Union, or it is necessary to transfer some of the data collected to technical systems and services managed in the cloud and located outside the European Union area, the processing will be regulated in accordance with the provisions of Chapter V of Reg. 679/2016 and authorised on the basis of specific European Union decisions.

The user's personal data shall be communicated to third parties in the sole and exclusive case in which this is necessary for this purpose. Without prejudice to the communications made in execution of obligations provided for by laws, regulations or Community legislation, the data collected may be communicated to subjects or categories of subjects such as: Authorities and Public Institutions, IT and business consultancy companies, external professionals and/or companies providing services and consultancy (for example: in the field of accounting, tax, legal, etc.); other suppliers of goods and/or services necessary to meet the requirements of the applicant, companies operating in the transport sector; subjects whose right to access data is recognised on the basis of legal provisions and secondary regulations.

Sharing of personal data

The personal data of the Users, as well as employees and/or collaborators authorised for processing and/or external managers, who may become aware of the personal data within the scope of their respective functions and in accordance with the instructions received, may be communicated to:

  • subjects with whom it is necessary to interact for the provision of services, including:
    • Subjects to whom communication is necessary to provide the services requested
    • Subjects delegated to carry out activities of a technical nature
    • Other employees and/or collaborators specifically authorised to process data
  • subjects whose services are used by the Controller to send commercial information.
  • subjects authorised to send commercial information (e.g.: collaborators; agents; etc).
  • professional firms that provide assistance and consultancy in accounting, administrative, legal, tax and financial matters.
  • judicial authorities for purposes of repression and investigation.

Users' data will never be disseminated.

Rights of the interested parties

Each User and/or Data Subject may at any time exercise the rights provided for by Articles 15-22 of Reg. 679/2016, and in particular:

  • revoke his/her consent to the processing of personal data, in cases where the processing of data is based on the consent given by the same;
  • to know whether the Controller holds and/or processes personal data of the same and to access them in full, including by obtaining a copy (Art. 15 Right of Access);
  • ask for the rectification of inaccurate personal data or the integration of incomplete personal data (Art. 16 Right to rectification);
  • request the deletion of personal data held by the Controller if one of the reasons set out in Reg. 679/2016 applies (Right to Deletion, 17);
  • ask the Controller to limit the processing to only certain personal data, in the cases provided for (Art. 18 Right to Restrict Processing);
  • request and receive their personal data processed by the Controller, in a structured, commonly used and machine-readable format or request transmission to another controller without hindrance, in the cases provided for (Art. 20, Right to Portability);
  • object in whole or in part to the processing of data for the purpose of sending commercial and/or promotional material, as well as any related profiling activities (Art. 21, Right to object);

Each interested party may exercise these rights by notifying the Data Controller at the addresses indicated in the heading.

Furthermore, the Data Subject shall always have the right to lodge a complaint with the Data Protection Authority pursuant to Art. 77 of Reg. 679/2016.


We reserve the right to modify the content of this information on the processing of personal data at any time, giving notice in the forms of use and in any case by publication on the Website.

Changes will be effective, unless otherwise notified, from the time of publication of the update.

The official version of this policy on the processing of personal data is the version written in Italian.