Pursuant to Article 13 of Regulation (EU) 2016/679 ("the Regulation" or "GDPR"), we wish to inform users about the methods and purposes of the processing of personal data of those who interact with our Website: dimolfettafrantoiani.it

This privacy notice does not apply to other websites that may be accessed through links on the websites under the data controller's domain. The controller is not responsible for third-party websites.

Data Controller

Di Molfetta Pantaleo & C. S.n.c.
Via Ruvo n. 86/88 - 76011 - Bisceglie - Italy
VAT: IT03393030725
Email: This email address is being protected from spambots. You need JavaScript enabled to view it.

Types of Data Collected

Only non-sensitive personal data will be processed for the purposes outlined in this notice. The data will be processed in accordance with the conditions of lawfulness set out in Article 6 of the Regulation. Full details on each type of data collected are provided in the relevant sections of this privacy policy or through specific notices displayed before data collection.

Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically during the use of this Website.

If the User refuses to provide certain data, it may be impossible for this Website to provide the Service. Where this Website indicates certain Data as optional, Users are free to refrain from providing such Data without any consequences on the availability or functioning of the Service.

The User is responsible for any third-party Personal Data obtained, published, or shared through this Website and confirms that they have the right to communicate or disclose them, thus relieving the Controller of any liability towards third parties.

Details on the Processing of Personal Data

  Contacting the User
Mailing list or newsletter (this Website)

By registering for the mailing list or newsletter, the User's email address is added to a list of contacts who may receive email messages containing information, including commercial and promotional content, related to this Website. The User's email address may also be added to this list as a result of filling out a form or making a purchase on this Website. The Data will not be shared with third parties for other commercial purposes.

Personal Data Processed: First Name, Last Name, and Email

Mailchimp (The Rocket Science Group LLC)

Mailchimp is a platform provided by The Rocket Science Group LLC that allows the management of contact lists and email distribution.

Personal Data Processed: First Name, Last Name, and Email

Data processing location: United States - Privacy Policy

SMS (this Website)

Upon the User's authorization to receive news and promotions, this Website includes the User's phone number in a list of contacts who may receive messages containing information, including commercial and promotional content, related to this Website. The User's phone number may also be added to this list as a result of filling out a form or making a purchase on this Website. The Data will not be shared with third parties for other commercial purposes.

Personal Data Processed: Phone Number

"Contact Us" Page Form (this Website)

By filling out the form with their Data, the User consents to their use to respond to information requests, quotes, or any other inquiries indicated in the form.
Data transfer to third parties may be necessary solely for fulfilling the request.
The Data will not be shared with third parties for other commercial purposes.

Personal Data Processed: First Name, Last Name, Email Address, Phone or Mobile Number, Address, City, ZIP code, Province, Date of Birth, other data entered in the form, IP address.

  Online Sale of Goods and Services
Cart Page (this Website)

By filling in the form with their Data, the User consents to their use for the provision of services or the sale of products, including payment and possible delivery.
Transfer of the User's Data to third parties may be necessary solely to fulfill the request.
Data will not be transferred to third parties for other commercial purposes.

Personal Data Processed: Company Name, First Name, Last Name, Email, VAT Number, Tax Code, Recipient Code, Phone Number, Address, IP.

  Payment Management

This Website processes all credit card, bank transfer, or other payments through external payment service providers. Users are kindly requested to provide their payment details and personal information directly to such payment providers.
This Website is not involved in the collection or processing of such information: it will only receive a notification from the relevant payment provider confirming payment.

PayPal (Stripe Inc)

Personal Data Processed: various types of Data as specified in the service's privacy policy.

Data processing location: United States - Privacy Policy

Stripe (Paypal)

Personal Data Processed: various types of Data as specified in the service's privacy policy.

Data processing location: see Privacy Policy

  Statistics and Technical Navigation Management

The IT systems and software procedures used to operate this Website acquire, during their normal operation and for the sole duration of the connection, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified data subjects, but by its nature could, through processing and associations with data held by third parties, allow users to be identified. This category of data includes, for example: IP addresses or domain names of computers used by users who connect to the Website, URI (Uniform Resource Identifier) addresses of requested resources, the characteristics of the browser used for navigation, screen resolution on the device used, and other parameters related to the user's operating system and IT environment. This data is used solely to obtain anonymous statistical information on the use of the Website and to check its proper functioning, and is deleted immediately after processing. The data may be used to ascertain responsibility in the event of hypothetical computer crimes against the Website.

Google Analytics with anonymized IP (Google Ireland Limited)

Personal Data Processed: Cookies and Usage Data.

Data processing location: Ireland – Privacy Policy

Entity adheres to the Privacy Shield.

Facebook Ads conversion tracking (Facebook pixel) (Facebook, Inc.)

Personal Data Processed: Cookies and Usage Data.

Data processing location: United States – Privacy Policy

Entity adheres to the Privacy Shield.

  Platform and Hosting Services

These services are intended to host and operate key components of this Website, making it possible to provide this Website from a single platform. These platforms provide the Controller with a wide range of tools such as analytics tools, user registration management, comment and database management, e-commerce, etc. The use of such tools involves the collection and processing of Personal Data.

PrestaShop (PrestaShop S.A.)

PrestaShop is a platform provided by PrestaShop S.A. that allows the Controller to create, manage, and host an e-commerce website.

Personal Data Processed: Cookies; various types of Data as specified in the service's privacy policy.

Data processing location: France – Privacy Policy

  Tag Management

These services support the centralized management of the tags and scripts used on this Website. Their use may involve the transmission of the User's Data through these services and, if applicable, their storage.

Google Tag Manager (Google Ireland Limited)

Personal Data Processed: Cookies and Usage Data.

Data processing location: Ireland – Privacy Policy

Entity adheres to the Privacy Shield.

  Displaying Content from External Platforms

These services allow content hosted on external platforms to be displayed directly on the pages of this Website and to interact with them. Such services might still collect web traffic data for the pages where the service is installed, even when Users do not use it. It is recommended to log out of the respective platforms to ensure that the data processed on this Website is not linked back to the User's profile.

Google Fonts (Google Ireland Limited)

Personal Data Processed: Usage Data; various types of Data as specified in the service's privacy policy.

Data processing location: Ireland – Privacy Policy

Entity adheres to the Privacy Shield.

Google Maps Widget (Google Ireland Limited)

Personal Data Processed: Cookies and Usage Data.

Data processing location: Ireland – Privacy Policy

Entity adheres to the Privacy Shield.

  Advertising, Remarketing and Behavioral Targeting

These services allow the use of User Data for communication purposes in the form of advertising, including in relation to the User’s interests. Some of the services listed below may use Cookies or other Identifiers to detect Users or may use behavioral retargeting techniques, i.e., displaying ads tailored to the User’s interests and behavior, including those detected outside this Website.

Facebook Remarketing and Custom and Lookalike Audiences (Facebook, Inc.)

This advertising and behavioral targeting service provided by Facebook, Inc. uses Data collected through the Facebook Custom Audience service in order to show ads to Users with similar behavior to Users who are already in a Custom Audience list based on their previous use of this Website or interaction with relevant content through Facebook apps and services. Personalized ads will be shown to Users suggested by Facebook Lookalike Audiences based on this Data.

Personal Data Processed: Cookies and Usage Data.

Data processing location: United States – Privacy PolicyOpt-Out

Entity adheres to the Privacy Shield.

  Optimization and Traffic Distribution

These services allow this Website to distribute its content via servers located across different countries and to optimize its performance.

Cloudflare (Cloudflare Inc.)

Personal Data Processed: Cookies; various types of Data as specified in the service's privacy policy.

Data processing location: United States – Privacy Policy



Data Processing Methods

The processing will be carried out using manual, computer, and telematic tools in accordance with current regulations and the principles of fairness, lawfulness, transparency, relevance, completeness, non-excessiveness, and accuracy. It will be organized and processed in a way strictly related to the purposes pursued, while ensuring the security, integrity, and confidentiality of the processed data, in compliance with the organizational, physical, and logical measures provided by applicable regulations.

Data Retention Period

In accordance with Article 5(1)(e) of Regulation (EU) 2016/679, the collected personal data will be stored in a form that allows identification of the data subjects for no longer than is necessary for the purposes for which the personal data is processed. The retention period of the provided personal data depends on the purpose of the processing:

- for contact and information requests, a maximum of 2 years;

- for the purchase of goods or services, a maximum of 2 years;

After these periods, the data will be deleted or anonymized, unless their continued retention is required to fulfill contractual obligations, legal obligations, or to comply with orders issued by Public Authorities and/or Supervisory Bodies.

Nature of Data Provision

The User is free to provide their personal data. Failure to provide such data may result in the inability to fulfill the request or use the Controller's web services.

Data Recipients or Categories of Recipients

For the achievement of the purposes described, or if required by law or by authorities with the power to enforce it, the Controller reserves the right to disclose the data to recipients belonging to the following categories:

  • entities providing IT maintenance or similar services;
  • entities providing system and telecommunications management services used by the Controller, including email and website management;
  • Authorities and Supervisory Bodies, and in general public or private entities with public functions (e.g., Prefecture, Police Headquarters, Judicial Authorities, only within the limits established by applicable law);
  • other companies within the same group as the Controller, or controlling, controlled, or affiliated companies as per Article 2359 of the Italian Civil Code;
  • professional firms or companies in the context of assistance and consultancy relationships;
  • personnel of the Controller, including interns, temporary workers, consultants, employees of external companies, all expressly authorized to process the data as required by their duties.

Data Disclosure

The User's data will not be disclosed.

Cookie Policy

This Website uses Cookies. To learn more and view the detailed policy, the User can consult the Cookie Policy.

Data Subject Rights

Articles 15 to 21 of the GDPR grant the data subject specific rights that may be exercised against the Data Controller.

In particular, as a data subject, the User may, under the conditions provided by the GDPR, exercise the following rights:

  • Right of access: the right to obtain confirmation whether or not personal data concerning you are being processed and, if so, to access your personal data, including a copy of the data;
  • Right to rectification: the right to obtain the rectification of inaccurate personal data and/or the integration of incomplete personal data;
  • Right to erasure (right to be forgotten): the right to obtain the erasure of personal data if they are no longer necessary for the purposes pursued by the Controller, if consent is withdrawn (and no other legal basis for the processing exists), or if you object to the processing, in the event of unlawful processing, or if there is a legal obligation to erase them.
  • The right to erasure does not apply where the processing is necessary for compliance with a legal obligation, for the performance of a task carried out in the public interest, or for the establishment, exercise, or defense of legal claims;
  • Right to restriction of processing: the right to obtain restriction of processing where: a) the accuracy of the personal data is contested; b) the processing is unlawful and you oppose the erasure of the data and request restriction instead; c) the data are required for the establishment, exercise, or defense of legal claims;
  • Right to data portability: the right to receive personal data in a structured, commonly used, and machine-readable format and to transmit them to another controller without hindrance, if the processing is based on consent and carried out by automated means;
  • Right to object: the right to object at any time to processing if personal data are processed for purposes other than those for which consent was given.

According to Article 77 of the Regulation, the User has the right to lodge a complaint with a supervisory authority, particularly in the Member State where they habitually reside, work, or where the alleged violation occurred. In Italy, this is the Italian Data Protection Authority, whose contact details can be found at www.garanteprivacy.it.

Furthermore, the GDPR grants the User the right to withdraw consent at any time, with the same ease with which it was given.

The exercise of data subject rights is free of charge under Article 12 of the GDPR. However, in the case of manifestly unfounded or excessive requests, including repetitive ones, the Controller may charge a reasonable fee based on administrative costs or refuse to act on the request.

The User may exercise their rights by contacting the Controller via email or registered mail at the contact details provided in this policy.

Last modified: 14/07/2025