Privacy policy - protection of personal data art. 13 of Regulation (EU) 2016/679 (GDPR)

This page describes how the website is managed with regard to the processing of personal data of Users who navigate or interact with it. This information is provided to those who interact with the website accessible at The information is also not rendered for other websites that may be consulted by the User through links.

Purpose and legal basis for processing

Personal data may be requested and provided for the following purposes:

  1. navigation in the site;
  2. contact of the User aimed, in accordance with the intentions manifested by the latter through the spontaneous sending of messages/requests to the addresses indicated in the site, at the mere exchange of information inherent to the services offered by the owner;
  3. administrative-accounting purposes necessary by law, as strictly related to the conclusion of the contract.

The legal basis for the processing of the User's personal data is represented by the need to allow the navigation of the Balilla website as well as to deal with any requests made by the User.


The processing will be carried out using manual, computerized and telematic tools, with logic strictly related to the purposes for which they were collected and, in any case, in such a way as to ensure the security and confidentiality of the data themselves and in compliance with art. 11 paragraph 1 of Legislative Decree n 196 of June 30, 2003.

Type of personal data subject to processing.

Data provided voluntarily by the User The optional, explicit and voluntary sending of electronic mail to the addresses indicated on this site involves the subsequent acquisition of the sender's address, necessary to respond to requests, as well as any other personal data included in the message.

Navigation data The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This is information that is not collected in order to be associated with identified interested parties, but which by its very nature could, through processing and association with data held by third parties, allow Users to be identified. This category of data includes IP addresses or domain names of the computers used by Users who connect to the site, the addresses in URI (Uniform Resource Identifier) notation of the resources requested, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the User's operating system and computer environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and are deleted over a period of about twelve months. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site.


Cookies are small files that are stored on the terminal used by the User to browse the web. They can have a persistent or temporary character (session cookies), perform the function of allowing the activation of certain site functionalities (technical cookies, which serve, for example, to keep track of language preferences and page display mode, allow the User's login in case there is the possibility of his/her registration, etc. ) or analyze traffic and provide information to the site operator on the number of visits received (analytical cookies, which in turn can be managed directly by the site owner or by third parties, possibly adopting suitable technical solutions to prevent the User's data from being tracked further), or even provide for the profiling of the tastes and interests manifested by the User in order to process advertising messages in line with the profile thus created (profiling cookies, which in turn can be managed by the site owner or by third parties). For first-party technical and analytical cookies, the User's consent is not required while for third-party analytical cookies (without the adoption of special precautions to protect the User's privacy) or profiling cookies, their use is conditional on the User's prior consent to be manifested through an unequivocal positive action. For more information on the type of cookies used by this site, the User is referred to the specific information available on the home page.

Confidentiality of data provision.

Apart from what has been specified for navigation data, the User is free to provide personal data, however, failure to do so will make it impossible, totally/partially depending on the case, to fulfill the User's requests. With regard to cookies, the User can always arrange for their deletion or inhibit their installation, referring to the guide of the browser used, and in such an eventuality some features of the site may not be activated. A guide for deleting/inhibiting cookies with reference to the most popular browsers can be found at

Personal Data Retention Time.

The User's personal data will be processed for the time strictly necessary for the realization of the above-mentioned purposes. In particular, for the technical time necessary to respond to any of your requests forwarded to the contact details indicated by the site.

Area of access to personal data.

Only authorized persons may access Users' personal data, e.g., internal staff in the performance of their work duties, persons acting in a responsible capacity for the purpose of administration and maintenance of the website.

Sphere of communication and dissemination of personal data.

No User data is disclosed to third parties or disseminated in any form. The User's data will not be transferred to non-EU countries.

Privacy Policy - protection of personal data art. 13 of Regulation (EU) 2016/679 (GDPR)

Personal Data Controller - Data Protection Officer.

The data controller of the User's personal data is:

San Babila Store S.r.l.
Registered office: Via Leonardo da Vinci, 43
20090 Trezzano sul Naviglio (MI)

Rights of the interested party - Complaint to the Guarantor.

The User, by referring to the contact details indicated in this notice, may exercise the rights that Regulation (EU) 2016/679 recognizes to the data subject. More specifically, the User will be able to exercise the right of access to his/her data, rectification of inaccurate data, cancellation, restriction, portability and opposition to the processing of his/her data (the full list of the rights recognized to data subjects is contained in Articles 15 - 22 of the aforementioned Regulation). Also, for the case of processing carried out in violation of the relevant rules on personal data protection, the data subject has the right to lodge a complaint with the Guarantor.