Privacy Policy

Privacy Policy

This Application collects some Personal Data from its Users.

This document can be printed using the print command in the settings of any browser.

Data Controller
BOOK ON A TREE 2023. VAT N. 283 597064
Email address of the Data Controller: contact@bookonatree.com

Types of Data Collected

Among the types of Personal Data collected by this Application, either independently or through third parties, are: Usage Data; Tracking Tools.

Complete details on each type of Personal Data collected are provided in the dedicated sections of this privacy policy or through specific information texts displayed before the data is collected.

Personal Data may be freely provided by the User, or, in the case of Usage Data, collected automatically during the use of this Application.

Unless otherwise specified, all Data requested by this Application is mandatory. If the User refuses to provide it, it may be impossible for this Application to provide the Service. Where this Application indicates that some Data is optional, Users are free not to communicate such Data without affecting the availability or functioning of the Service.

Users who are uncertain about which Data is mandatory are encouraged to contact the Data Controller.

Any use of Cookies – or other tracking tools – by this Application or by the owners of third-party services used by this Application is aimed at providing the Service requested by the User, in addition to the other purposes described in this document and in the Cookie Policy.

The User assumes responsibility for the Personal Data of third parties obtained, published, or shared through this Application.

Methods and Place of Data Processing

Methods of Processing

The Data Controller takes appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of Personal Data.

Data processing is carried out using IT and/or telematic tools, following organizational procedures and methods strictly related to the stated purposes. In addition to the Data Controller, in some cases, the Data may be accessible to other parties involved in the operation of this Application (administrative, sales, marketing, legal, system administration staff) or external parties (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communication agencies) appointed, if necessary, as Data Processors by the Data Controller. The updated list of these parties may be requested from the Data Controller at any time.

Place

The Data is processed at the operational offices of the Data Controller and any other locations where the parties involved in the processing are located. For further information, contact the Data Controller.

The User’s Personal Data may be transferred to a country different from the one in which the User is located. To obtain further information about the location of the data processing, the User can refer to the section detailing the processing of Personal Data.

Retention Period

Unless otherwise specified in this document, Personal Data is processed and stored for as long as required by the purpose for which it was collected. It may be retained for a longer period due to legal obligations or based on the User’s consent.

Purposes of Processing the Collected Data

The User’s Data is collected to allow the Data Controller to provide the Service, comply with legal obligations, respond to requests or enforcement actions, protect its rights and interests (or those of Users or third parties), detect any malicious or fraudulent activity, and for the following purposes: Displaying content from external platforms, Analytics, and Advertising.

For detailed information on the purposes of the processing and on the Personal Data used for each purpose, the User may refer to the section “Details on the processing of Personal Data.”

Details on the Processing of Personal Data

Personal Data is collected for the following purposes and using the following services:

Advertising

This type of service allows the use of the User’s Data for commercial communication purposes. These communications are displayed in this Application as banners and other forms of advertising, possibly tailored to the User’s interests.
This does not mean that all Personal Data is used for this purpose. Data and usage conditions are outlined below.
Some of the services listed below may use Tracking Tools to identify Users or employ behavioral retargeting techniques, meaning personalized ads are shown based on the User’s interests and behavior, even outside this Application. For more information, you are encouraged to check the privacy policies of the respective services.
Generally, such services offer the option to disable this tracking. In addition to any opt-out features provided by the services listed in this document, Users can read more about how to disable interest-based ads in the relevant section “How to disable interest-based advertising” in this document.

jsDelivr (jsdelivr.com)
jsDelivr is a service for traffic optimization and distribution provided by jsdelivr.com.
Personal Data processed: Usage Data; Tracking Tools.
Place of processing: Poland – Privacy Policy.

Analytics

The services in this section enable the Data Controller to monitor and analyze web traffic and can be used to track User behavior.

Google Analytics 4 (Google LLC)
Google Analytics is an analytics service provided by Google LLC (“Google”). Google uses the Personal Data collected to track and examine the use of this Application, compile reports, and share them with other Google services.
Google may use the collected Personal Data to contextualize and personalize ads within its advertising network.
In Google Analytics 4, IP addresses are used at the time of collection and then removed before data is stored in any data center or server. To learn more, you can refer to Google’s official documentation. For an understanding of how Google uses the data, please refer to Google’s Partner Policies.
Personal Data processed: Usage Data.
Place of processing: United States – Privacy PolicyOpt Out.

Displaying Content from External Platforms

This type of service allows you to view content hosted on external platforms directly from the pages of this Application and interact with it.
Even if Users do not use the service, it may still collect web traffic data on the pages where it is installed.

Font Awesome (Fonticons, Inc.)
Font Awesome is a font style visualization service managed by Fonticons, Inc., which allows this Application to integrate such content into its pages.
Personal Data processed: Usage Data; Tracking Tools.
Place of processing: United States – Privacy Policy.

Google Fonts (Google LLC)
Google Fonts is a font style visualization service provided by Google LLC, allowing this Application to integrate such content into its pages.
Personal Data processed: Usage Data; Tracking Tools.
Place of processing: United States – Privacy Policy.

Cookie Policy

This Application makes use of Tracking Tools. To learn more, Users can consult the Cookie Policy.

Additional Information for Users

Legal Basis for Processing

The Data Controller processes Personal Data relating to the User if one of the following conditions applies:

It is always possible to ask the Data Controller to clarify the specific legal basis for each processing operation and in particular to specify whether the processing is based on law, a contract, or necessary to conclude a contract.

Additional Information on Retention Time

Unless otherwise specified in this document, Personal Data is processed and stored for the time required to fulfill the purpose for which it was collected and may be retained for a longer period due to legal obligations or based on the User’s consent.

Therefore:

When processing is based on the User’s consent, the Data Controller may retain Personal Data for a longer period until such consent is revoked. Additionally, the Data Controller may be required to retain Personal Data for a longer period to comply with a legal obligation or by order of an authority.

At the end of the retention period, Personal Data will be deleted. Therefore, after that period, the right to access, delete, rectify, and the right to data portability can no longer be exercised.

User Rights Under the General Data Protection Regulation (GDPR)

Users may exercise certain rights regarding their Data processed by the Data Controller.

In particular, within the limits of the law, Users have the right to:

Users also have the right to be informed about the legal basis for the transfer of Data to a country outside the EU or to an international organization, such as the UN, and the security measures adopted by the Data Controller to safeguard their Data.

Details on the Right to Object

When Personal Data is processed in the public interest, in the exercise of official authority, or for the legitimate interests of the Data Controller, Users may object to such processing for reasons related to their particular situation.

Users should note that if their Data is processed for direct marketing purposes, they can object to that processing at any time without providing any justification. If Users object to processing for direct marketing purposes, Personal Data will no longer be processed for those purposes. To find out whether the Data Controller processes Personal Data for direct marketing purposes, Users can refer to the relevant sections of this document.

How to Exercise User Rights

Any requests to exercise User rights can be directed to the Data Controller using the contact details provided in this document. These requests are free of charge, and the Data Controller will respond as quickly as possible, within one month. Any rectifications, deletions, or restrictions on processing will be communicated by the Data Controller to each recipient, if any, to whom the Personal Data has been disclosed, unless this proves impossible or involves disproportionate effort. The Data Controller will inform the User about those recipients if requested.

Additional Information on Data Processing

Legal Defense

The User’s Personal Data may be used by the Data Controller in court or in the preparatory stages for its possible establishment for defense against abuse in the use of this Application or related Services by the User.
The User declares to be aware that the Data Controller may be required to reveal Personal Data upon request of public authorities.

Specific Information

Upon the User’s request, in addition to the information contained in this privacy policy, this Application may provide the User with additional and contextual information regarding specific services or the collection and processing of Personal Data.

System Logs and Maintenance

For operational and maintenance purposes, this Application and any third-party services it uses may collect system logs, which are files that record interactions and may also contain Personal Data, such as the User’s IP address.

Information Not Contained in This Policy

More details concerning the collection or processing of Personal Data may be requested from the Data Controller at any time using the contact information provided.

Changes to This Privacy Policy

The Data Controller reserves the right to make changes to this privacy policy at any time by notifying Users on this page and, if possible, within this Application as well as, if technically and legally feasible, sending a notification to Users via any contact information available to the Data Controller. It is recommended to check this page frequently, referring to the date of the last modification at the bottom.

If the changes affect processing activities based on User consent, the Data Controller will collect new consent from the User, where required.

Legal Definitions and References

Personal Data (or Data)
Personal data refers to any information that, directly or indirectly, in combination with other information—including a personal identification number—makes a natural person identifiable.

Usage Data
Usage data is information collected automatically through this Application (including third-party applications integrated into this Application), such as: IP addresses or domain names of computers used by the User who connects to this Application, URI (Uniform Resource Identifier) addresses, the time of the request, the method used to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server’s response (successful, error, etc.), the country of origin, the browser and operating system used by the visitor, various time details of the visit (e.g., the time spent on each page), and details about the navigation path followed within the Application, with particular reference to the sequence of pages visited and parameters related to the User’s operating system and IT environment.

User
The individual using this Application, who, unless otherwise specified, coincides with the Data Subject.

Data Subject
The natural person to whom the Personal Data refers.

Data Processor (or Processor)
The natural or legal person, public authority, agency, or other body that processes personal data on behalf of the Data Controller, as described in this privacy policy.

Data Controller (or Controller)
The natural or legal person, public authority, service, or other body that, individually or together with others, determines the purposes and means of processing personal data, including the security measures related to the operation and use of this Application. Unless otherwise specified, the Data Controller is the owner of this Application.

This Application
The hardware or software tool through which the Personal Data of Users is collected and processed.

Service
The Service provided by this Application as defined in the relevant terms on this site/application.

European Union (or EU)
Unless otherwise specified, any reference to the European Union in this document is meant to include all current member states of the European Union and the European Economic Area.

Cookies
Cookies are tracking tools consisting of small pieces of data stored within the User’s browser.

Tracking Tool
A tracking tool refers to any technology—such as cookies, unique identifiers, web beacons, embedded scripts, e-tags, or fingerprinting—that enables tracking of Users, such as by collecting or storing information on the User’s device.

Legal References

Unless otherwise stated, this privacy policy solely concerns this Application.

Cookie Policy

This document provides information regarding the technologies that enable this Application to achieve the purposes outlined below. These technologies allow the Data Controller to collect and store information (e.g., through the use of Cookies) or utilize resources (e.g., executing a script) on the User’s device when interacting with this Application.

For simplicity, such technologies are collectively referred to as “Tracking Tools” in this document, unless a reason exists to distinguish them. For example, while cookies may be used in both web and mobile browsers, it is inappropriate to refer to cookies in mobile apps since they require a browser. Therefore, in this document, the term “Cookies” is used specifically to refer to that particular type of Tracking Tool.

Some uses of Tracking Tools may require the User’s consent. If consent is provided, it can be freely withdrawn at any time by following the instructions in this document.

This Application uses Tracking Tools managed directly by the Controller (commonly referred to as “first-party Tracking Tools”) and Tracking Tools that enable services provided by third parties (commonly referred to as “third-party Tracking Tools”). Unless otherwise specified in this document, these third parties have access to their respective Tracking Tools.

The duration and expiration of Cookies and similar Tracking Tools may vary depending on the settings defined by the Controller or the third-party provider. Some expire at the end of the User’s browsing session.

In addition to the details provided in each category below, Users can obtain more detailed and up-to-date information on the duration and any other relevant information (such as the presence of other Tracking Tools) by consulting the privacy policies of the respective third-party providers (via the provided links) or by contacting the Controller.

How This Application Uses Tracking Tool

Necessary
This Application uses cookies commonly known as “technical” or similar Tracking Tools to carry out activities strictly necessary to ensure the functioning or provision of the Service.

Third-Party Managed Tracking Tools

Experience
This Application uses Tracking Tools to improve user experience and enable interactions with external content, networks, and platforms.

Third-Party Managed Tracking Tools

Managing Preferences and Consenting/Withdrawing Consent on This Application

When Tracking Tools are used based on consent, Users can provide or withdraw such consent by setting or updating their preferences via the relevant privacy settings panel available on this Application.

For third-party Tracking Tools, Users can manage their preferences by visiting the relevant opt-out link (if available), using the tools described in the third party’s privacy policy, or contacting the third party directly.

How to Control or Delete Cookies and Similar Technologies via Device Settings

Users can manage cookies or similar technologies in their browser settings to:

Consequences of Refusing Tracking Tool

Users are free to decide whether to allow the use of Tracking Tools. However, it should be noted that Tracking Tools enable this Application to provide a better experience and enhanced functionality (in line with the purposes outlined in this document). If Users choose to block Tracking Tools, the Controller may not be able to provide the related functionality.

Data Controller
BOOK ON A TREE 2023. VAT N. 283 597064
Email: contact@bookonatree.com

Since the use of third-party Tracking Tools on this Application cannot be fully controlled by the Controller, any specific reference to third-party Tracking Tools is indicative. For full details, Users are kindly requested to consult the privacy policies of the respective third-party services listed in this document.