Privacy policy

Last updated: March 31, 2026
This notice is provided pursuant to Art. 13 of EU Regulation 679/2016 (GDPR) to those who access and browse the following website: https://www.archiviomiroglio.com (the "Website").

This Privacy Policy describes how Archivio Miroglio collects, uses, and discloses Your personal data when you access and/or use the website www.archiviomiroglio.com, use its services, make a purchase from archiviomiroglio.com (the “Site”), or otherwise communicate with the Seller regarding the Site (collectively, the “Services”).

Please read this Privacy Policy carefully, which also applies if the User accesses the site and uses the related services but does not purchase any product.

Data Controller

The Data Controller is Archivio Miroglio srl, with registered office in Alba 12051 (CN) Piazza Carlo e Franco Miroglio n.7, VAT No. 04111020048.

Contact details are as follows:

  • Email: info@archiviomiroglio.com

  • Tel: 0173-593445

The external Data Processors are the Shopify platform and the company SERVIZI TRE s.r.l.

Changes to this Privacy Policy

The Controller reserves the right to modify this privacy policy if necessary due to the use of new technologies, new operating practices, or changes in laws and regulations. The revised Privacy Policy will be posted on the Site, updating the "Last Updated" date, and any other measures required by law will be taken.

How we collect and use your personal data

Please note that GDPR regulations apply exclusively to data falling within the category of “personal data,” meaning “any information relating to an identified or identifiable natural person.” Sole proprietorships and freelance professionals are also considered “natural persons” (the Data Subject). Data exclusively attributable to capital companies, partnerships, organizations with legal personality, or public authorities do not fall within the category of “personal data.”

The processing of Your data will, in any case, be based on the principles of correctness, lawfulness, minimization, transparency, and protection of the confidentiality and rights of the Data Subject, in accordance with the provisions of the GDPR, applicable national legislation, and the indications of the Italian Data Protection Authority (Garante).

"Personal Data" means information suitable to identify, directly or indirectly, a natural person—in this case, the User browsing the Website (hereinafter "Data").

When the User visits the Website, the Controller collects their Data both directly (if personal data is entered voluntarily in the formats provided for registration, account creation, or product purchase) and indirectly (by tracking the User's IP address to monitor Website usage).

In particular, Archivio Miroglio processes the following Data:

1) Data provided directly by the User:

  • Contact Data: including name, address, phone number, and email.

  • Order Data: including name, billing address, shipping address, payment confirmation, email address, and phone number.

  • Registration and Account Creation Data: including username, password, security questions, and other information used for account security purposes.

  • Customer Support Data: for example, when a message is sent through the Services, a return request, etc.

    The User may choose not to provide this information, but this may prevent the use and/or access to the services' functionality.

2) Data collected through website use

The Controller may automatically collect certain information about your interaction with the Services (“Usage Data”). For this purpose, cookies, pixels, and similar technologies (“Cookies”) are used. Usage data may include information on how You access and use our Site and Your account, including device information, browser information, network connection information, your IP address, and other information related to your interaction with the Services.

3) Data obtained from third parties

Finally, we may obtain information about the User from third parties, including vendors and service providers, who may collect information on our behalf, such as:

  • Companies supporting our Site and Services (Shopify platform and Servizi tre srl).

  • Payment processors collecting payment information (e.g., bank account, credit or debit card information, billing address) necessary to process payment to fulfill the order and provide the requested products or services.

  • When the User visits our Site, opens or clicks on the emails we send, or interacts with our Services or advertisements, we and/or third parties we collaborate with may automatically collect certain information using online tracking technologies such as pixels, web beacons, software developer kits, third-party libraries, and cookies.

Any information we obtain from third parties will be treated in accordance with this Privacy Policy. See also the following section, Third-Party Websites and Links.


How we use your personal data

The purposes of processing are:

  • a) Provision of products and services: Data will be used to provide the contractually requested Services, including processing payments, fulfilling orders, sending notifications related to the account, purchases, returns, exchanges, or other transactions, creating and managing the account, organizing shipping, and facilitating returns.

    • Legal basis: Processing is necessary for the performance of a contract to which the data subject is party or the execution of pre-contractual measures (Art. 6, par. 1(b) GDPR).

    • Retention period: Duration of the contractual relationship and up to 10 years after its termination for legal compliance.

  • b) Security and fraud prevention: Data will be used to detect, investigate, or take action regarding possible fraudulent, illegal, or harmful activities. The Data Subject is solely responsible for keeping account credentials secure.

    • Legal basis: Legitimate interest in keeping our website secure (Art. 6, par. 1(f) GDPR).

    • Retention period: Duration of the contractual relationship and up to 10 years after termination.

  • c) Communication and service improvement: Data will be used to provide customer support and improve services.

    • Legal basis: Legitimate interest (Art. 6, par. 1(f) GDPR).

    • Retention period: Duration of the contractual relationship.

  • d) Compliance with legal obligations: Data will be processed to fulfill obligations under current laws, regulations, trade practices, and tax/fiscal regulations, including anti-money laundering (Legislative Decree 231/2007).

    • Legal basis: Compliance with a legal obligation (Art. 6, par. 1(c) GDPR).

    • Retention period: Up to 10 years after termination for legal compliance.

  • e) Marketing and advertising: Data will be used for marketing and promotional purposes (email, SMS, or regular mail).

    • Legal basis: Consent of the data subject (Art. 6, par. 1(a) GDPR).

    • Retention period: Until withdrawal of consent or for a maximum of 24 months.

  • f) Profiling: Data will be used to analyze preferences and purchasing habits to provide personalized content.

    • Legal basis: Consent of the data subject (Art. 6, par. 1(a) GDPR).

    • Retention period: Until withdrawal of consent or for a maximum of 12 months.

Providing data for purposes a), b), c), and d) is mandatory. Failure to provide such data will make it impossible to provide the requested services. Providing data for purposes e) and f) is optional.


Data processing by SHOPIFY

To manage our online store and process payments, we collaborate with Shopify International Limited (Ireland). Shopify allows us to manage the store via cloud infrastructure and process payments on our behalf.

Your data may be transferred to Shopify servers in the USA. The transfer takes place pursuant to the European Commission's adequacy decision of July 10, 2023 (Data Privacy Framework) under Art. 45 GDPR combined with EU Standard Contractual Clauses.

Further information is available at: https://www.shopify.com/legal/privacy.

Categories of Recipients

Personal data will be communicated to:

  1. Authorized personnel within the company (Marketing, Warehouse, Customer Service, IT, etc.).

  2. IT service providers (Shopify platform, Sistema Tre srl, payment processors, fulfillment partners, etc.).

  3. Public authorities, when required by law.

  4. Commercial and marketing partners.

Third-party websites and links

Our Site may provide links to third-party websites. Archivio Miroglio DOES NOT guarantee and is not responsible for the privacy or security of such sites. We encourage you to check their privacy policies.

Children's data

The Services on this Website may only be used by persons over the age of 18. We do not knowingly collect personal information about minors.

Rights of the Data Subject (Arts. 7, 15-22 GDPR)

You may exercise the following rights:

  • Right of access: Obtain confirmation of whether your data is being processed.

  • Right of rectification: Correct inaccurate or incomplete data.

  • Right to erasure (Right to be forgotten): Request deletion of data.

  • Right to restriction of processing.

  • Right to data portability.

  • Right to object: Object to processing for specific reasons or marketing.

  • Right not to be subject to automated decision-making.

  • Right to lodge a complaint with the Garante (http://www.garanteprivacy.it).

  • Right to withdraw consent at any time.

International Users

The Controller may transfer, store, and process data outside of Italy. In such cases, it will always be to a state that provides an adequate level of protection.

Cookies

We use cookies to manage and improve our Site. For Shopify-specific cookies, see: https://www.shopify.com/legal/cookies.

  • Global Privacy Control (GPC): Our site recognizes the GPC signal.

  • Marketing/Profiling Cookies: These are installed only with user consent via the cookie banner and can be disabled at any time.

Contact

For clarification or to exercise your rights:

Email: info@archiviomiroglio.com

Address: Piazza Carlo e Franco Miroglio 7, Alba, CN, 12051, IT

Tel: 0173-593445