Last update: March 2021
WELCOME TO OUR WEBSITES!
When you visit our websites oceanreefgroup.com (diving.oceanreefgroup.com, snorkeling.oceanreefgroup.com), nemosgarden.com, mestelsafety.com and use our services, including databases and online shops (oceanreefgroup.mybigcommerce.com, oceanreefeurope.mybigcommerce.com), you trust us with your personal information. We take your privacy very seriously. We respect the privacy of our users and visitors.
Websites are powered by Ocean Reef Group in collaboration with Appfactory Srl (Italy).
COLLECTION OF YOUR INFORMATION
We may collect different kind of information including:
Personal or User Data
Personally identifiable information, such as your name, shipping address, email address, and telephone number, demographic information, such as your age, gender, hometown, and interests, that you voluntarily give to us when you register with the Site or when you may choose to participate in various activities related to the Site, such as online chat and message boards. You are under no obligation to provide us with personal information of any kind, however your refusal to do so may prevent you from using certain features of the Site.
Derivative or Technical Data
We automatically collect certain information when you visit, use or navigate the Sites. This information does not reveal your specific identity (like your name or contact information) but may include device and usage information, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country, location, access times, length of visit, website navigation paths, timing, frequency and pattern of your service use, and the pages you have viewed directly before and after accessing the Site. This information is primarily needed to maintain the security and operation of our Sites, and for our internal analytics and reporting purposes.
We may process information contained in any enquiry you submit to us regarding goods and/or services. The enquiry data may be processed for the purposes of managing, marketing and selling relevant goods and/or services to you.
We may process information that you provide to us for the purpose of subscribing to our email notifications and/or newsletters. The notification data may be processed for the purposes of sending you the relevant notifications and/or newsletters. The legal basis for this processing consent communications with our website visitors and service users.
Data From Social Networks
User information from social networking sites, such as Facebook, Instagram, Youtube, including your name, your social network username, location, gender, birth date, email address, profile picture, and public data for contacts, if you connect your account to such social networks.
Where you choose to do this, we will receive certain profile information about you from your social media provider. The profile Information we receive may vary depending on the social media provider concerned, but will often include your name, e-mail address, friends list, profile picture as well as other information you choose to make public. If you login using Facebook, we may also request access to other permissions related to your account, such as friends, check-ins, and likes, and you may choose to grant or deny us access to each individual permission.
Information from third parties, such as personal information or network friends, if you connect your account to the third party and grant the Site permission to access this information.
Data From Contests, Giveaways, and Surveys
Personal and other information you may provide when entering contests or giveaways and/or responding to surveys.
MODE AND PLACE OF PROCESSING THE DATA
Methods of processing
Ocean Reef takes appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of the data. The data processing is carried out using computers and/or IT enabled tools, following organizational procedures and modes strictly related to the purposes indicated. In addition to Ocean Reef, in some cases, data may be accessible to certain types of persons in charge, involved with the operation of this site (administration, sales, marketing, legal, system administration) or external parties (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communications agencies) appointed, if necessary, as Data Processors by the Owner. The updated list of these parties may be requested from the Ocean Reef at any time.
Legal basis of processing
Ocean Reef may process Personal Data relating to Users if one of the following applies:
- Users have given their consent for one or more specific purposes. Note: Under some legislations Ocean Reef may be allowed to process Personal Data until the User objects to such processing (“opt-out”), without having to rely on consent or any other of the following legal bases. This, however, does not apply, whenever the processing of Personal Data is subject to European data protection law;
- provision of Data is necessary for the performance of an agreement with the User and/or for any pre-contractual obligations thereof;
- processing is necessary for compliance with a legal obligation to which Ocean Reef is subject;
- processing is related to a task that is carried out in the public interest or in the exercise of official authority vested in Ocean Reef;
- processing is necessary for the purposes of the legitimate interests pursued by Ocean Reef or by a third party.
In any case, Ocean Reef will gladly help to clarify the specific legal basis that applies to the processing, and in particular whether the provision of Personal Data is a statutory or contractual requirement, or a requirement necessary to enter into a contract.
The Data is processed at the Ocean Reef operating offices and in any other places where the parties involved in the processing are located. Depending on the User’s location, data transfers may involve transferring the User’s Data to a country other than their own. To find out more about the place of processing of such transferred Data, Users can check the section containing details about the processing of Personal Data.
Users are also entitled to learn about the legal basis of Data transfers to a country outside the European Union or to any international organization governed by public international law or set up by two or more countries, and about the security measures taken by Ocean Reef to safeguard their Data.If any such transfer takes place, Users can find out more by checking the relevant sections of this document or inquire with Ocean Reef using the information provided in the contact section.
USE OF YOUR INFORMATION
Having accurate information about you permits us to provide you with a smooth, efficient, and customized experience. Specifically, we may use information collected about you via the Site to:
- Administer sweepstakes, promotions, and contests.
- Compile anonymous statistical data and analysis for use internally or with third parties.
- Deliver targeted advertising, coupons, newsletters, and other information regarding promotions and the Site to you.
- Enable user-to-supplier communications.
- Generate a personal profile about you to make future visits to the Site more personalized.
- Increase the efficiency and operation of the Site.
- Monitor and analyze usage and trends to improve your experience with the Site.
- Notify you of updates to the Site.
- Offer new products, services, and/or recommendations to you.
- Perform other business activities as needed.
- Request feedback and contact you about your use of the Site.
- Respond to product and customer service requests.
- Send you a newsletter.
DISCLOSURE OF YOUR INFORMATION
Your information may be disclosed as follows:
By Law or to Protect Rights
We may disclose your information where we are legally required to do so in order to comply with applicable law, governmental requests, a judicial proceeding, court order, or legal process, such as in response to a court order or a subpoena (including in response to public authorities to meet national security or law enforcement requirements).
We may disclose your information also where we believe it is necessary to investigate, prevent, or take action regarding potential violations of our policies, suspected fraud, situations involving potential threats to the safety of any person and illegal activities, or as evidence in litigation in which we are involved. This includes exchanging information with other entities for fraud protection and credit risk reduction.
We may process any of your personal data identified in this Policy where necessary for the establishment, exercise or defense of legal claims, whether in court proceedings or in an administrative or out-of-court procedure. The legal basis for this processing is our legitimate interests, namely the protection and assertion of our legal rights, your legal rights and the legal rights of others.
Third-Party Service Providers
We may share your data with third party vendors, service providers, contractors or agents who perform services for us or on our behalf and require access to such information to do that work. Examples include payment processing, data analysis, email delivery, hosting services, customer service and marketing assistance. We may allow selected third parties to use tracking technology on the Sites, which will enable them to collect data about how you interact with the Sites over time. This information may be used to, among other things, analyze and track data, determine the popularity of certain content and better understand online activity. Unless described in this Policy, we do not share, sell, rent or trade any of your information with third parties for their promotional purposes.
We are not responsible for the actions of third parties with whom you share personal or sensitive data, and we have no authority to manage or control third-party solicitations. If you no longer wish to receive correspondence, emails or other communications from third parties, you are responsible for contacting the third party directly.
Third Party Websites
With your consent, or with an opportunity for you to withdraw consent, we may share your information with third parties for marketing purposes, as permitted by law.
Cookies and Web Beacons
You should be aware that getting a new computer, installing a new browser, upgrading an existing browser, or erasing or otherwise altering your browser’s cookies files may also clear certain opt-out cookies, plug-ins, or settings.
HANDLING PERSONAL DATA WHEN USING SOCIAL FUNCTIONS
Our websites use social plug-ins of various social networks provided that you have granted us your consent for this purpose. The interaction and information obtained through this site are always subject to the User’s privacy settings for each social network. This type of service might still collect traffic data for the pages where the service is installed, even when Users do not use it.
The Twitter Tweet button and social widgets are services allowing interaction with the Twitter social network provided by Twitter, Inc.
Personal Data collected: Cookies and Usage Data.
Privacy Shield participant.
The plug-ins of the social network Facebook, 1601 South California Avenue, Palo Alto, CA 94304, USA, are incorporated into our websites. You recognise the Facebook plug-ins on the Facebook logo (white “f” on the blue tile) on our website. An overview of the Facebook plug-ins can be found here: https://developers.facebook.com/docs/plugins. If you visit our websites, a direct connection between your browser and the Facebook server will be created via the plug-in. In this way, Facebook receives the information that you have visited our websites with your IP address. If you click on the Facebook “Like” button while you are logged in to your Facebook account, you can link the content of our websites to your Facebook profile. In this way, Facebook can attribute the visit to our websites to your user account. Please note that we do not obtain any knowledge of the content of the transmitted data or of its use by Facebook. Additional information about this can be found in Facebook’s Data Protection Declaration at www.facebook.com/policy.php. If you do not want Facebook to be able to attribute visits to our websites to your Facebook user account, please log out of your Facebook user account before visiting our website.
Personal Data collected: Cookies and Usage Data.
Privacy Shield participant.
We have also incorporated YouTube videos into our websites. The videos are stored at www.youtube.com and can be played directly from our websites. These videos are incorporated in such a way that no personal data related to you as the user is sent to YouTube if you do not play the videos. If you do play the videos, YouTube cookies will be stored on your computer and data will be sent to Google, Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, as the YouTube operator. When playing videos stored with YouTube, the following personal data is sent to Google, Inc.: the IP address and cookie ID, the specific address of the page visited on our websites, language setting of the browser, system date and time of access and your browser’s identifier. The data is transmitted regardless of whether you are registered with or logged in to Google. If you are logged in, this data will be attributed directly to your account. If you do not want this attribution to your profile, you must log out before activating the button. YouTube or Google, Inc., stores this data as use profiles and uses this data for the purposes of advertising, market research and/or designing its websites based on demand. Such use is meant in particular (not only for logged-in users) to provide advertising based on demand and to inform other users of your activities on our website. You have a right to oppose the creation of these user profiles, and to exercise this right, you must address yourself to Google Inc. as the operator of YouTube. Additional information on the purpose and scope of data collection and processing by Google, Inc., can be found at www.google.at/intl/policies/privacy/. We do not process the personal data collected when the YouTube video is accessed.
On our websites, we place the Instagram plug-ins, the social network operated by Instagram LLC, 1601 Willow Road, Menlo Park, CA 94025, USA. An overview of the Instagram plug-ins and their appearance can be found here: https://blog.instagram.com/post/36222022872/introducing-instagram-badges. If you visit our website, your browser creates a direct connection with the Instagram servers. The content of the plug-in is transmitted by Instagram directly to your browser and integrated into the website. By way of this integration, Instagram receives the information that your browser has visited the corresponding page of our website even if you do not have an Instagram profile or you are not logged in. This information (including your IP address) is transmitted by your browser directly to an Instagram server in the USA and stored there. If you are logged in to Instagram, Instagram can attribute the visit to our website directly to your Instagram account. If you interact with the plug-in, for example, if you activate the “Instagram” button, this information will also be transmitted directly to an Instagram server and stored there. The information is also published in your Instagram account and shown to your contacts there. The purpose and scope of data collection and the further processing and use of data by Instagram as well as your rights and settings options associated with this for protecting your private sphere can be found in the data protection notices of Instagram: https://help.instagram.com/155833707900388.
HANDLING PERSONAL DATA DURING PURCHASE VIA ONLINE STORE
If you make a purchase via the online shops, we collect, store and process personal data (your name, billing and delivery address, e-mail address, telephone number and the serial number assigned to the ordered items and information on the goods that you purchased) for the purposes of contract performance and the fulfilment of any post-contractual obligations (such as a warranty) or even for manufacturing purposes in the case of custom-made orders. For this purpose, we forward your name and your delivery address to transport or courier services for the delivery of the goods that you purchased, and we also forward the payment and transaction data to credit or financial institutions for the handling of payment.
We use the some cookies to enable you to place orders via our website, including some that are a technical requirement for your purchase. We use them so that you can place products in your shopping basket, so that your visits on this website and the content of your shopping basket can be stored and so that you can navigate the website efficiently. If you reject or deactivate these cookies, you cannot make a purchase on our website.
Users have the option to leave ratings on selected products on our online store by providing your nickname, the summary of the review and the product rating. In this case, we will store your nickname (which can be personal data under certain circumstances), your input and your IP address. In addition, you hereby grant us the non-exclusive, unremunerated, temporally unrestricted right, which may be revoked at any time, to use your nickname and to publish your rating on our product pages worldwide, but only as long as [sic: until] you delete the content or request that your rating be deleted. Content may be deleted at any time by notifying us at the contact information specified below.
We also process the personal data provided in connection with registration and ordering (your name, billing and delivery address, e-mail address, telephone number, the serial number assigned to the ordered item as well as additional information on the goods that you purchased) to improve our products and services. In addition, we process the specified data categories for internal statistical and operational purposes, for example, to measure and understand trends related to demographics, users, user interests, purchases and other trends among our users, as well as for recall actions and for the quick processing of complaints based on our legitimate interests. The specified data categories are also processed for research, precautionary, defence and other measures with regard to non-compliance with this notice, illegal actions or suspected fraud, or to take measures in situations in which the potential risk of violation of our legal rights or the rights of other persons exists.
Based on your granted consentto receive the newsletter, Ocean Reef Group located in Italy will store the related information (your first and last name, your e-mail address and your IP address) for the purposes of sending (i) marketing and product information related to goods and services from Ocean Reef Group, (ii) personalised promotional information and news matching your interest categories and based on your website use (for example, frequent viewing of products within your selected interest categories and geolocalisation), (iii) satisfaction surveys regarding services and advice of Ocean Reef Group and demand analyses. We also store your IP address and the date of registration upon subscribing to the newsletter. This is only saved to serve as proof in the event that a third party misuses an e-mail address and subscribes to receive the newsletter without the knowledge of the rightful owner. Personal data collected when subscribing to the newsletter is not forwarded to third parties for marketing purposes. You may revoke your consent to receive newsletters at any time with effect for the future without specifying the reasons (for example, via a link at the end of every newsletter or via e-mail at email@example.com).
TRANSMISSION OF YOUR PERSONAL DATA TO THIRD PARTIES OUTSIDE OF THE EUROPEAN UNION
SECURITY OF YOUR INFORMATION
We take appropriate technical and organisational security measures to protect your personal data from unintentional or unauthorised deletion or modification, and from loss, theft and unauthorised viewing, forwarding, reproduction, use, alteration or access. Our employees and we are also bound to data secrecy and confidentiality.
While we have taken reasonable steps to secure the personal information you provide to us, please be aware that despite our efforts, no security measures are perfect or impenetrable, and no method of data transmission can be guaranteed against any interception or other type of misuse. Any information disclosed online is vulnerable to interception and misuse by unauthorized parties. Therefore, we cannot guarantee complete security if you provide personal information.
POLICY FOR CHILDREN
We do not knowingly solicit information from or market to children under the age of 18. If you become aware of any data we have collected from children under age 18, please contact us using the contact information provided below.
We will save the personal data processed via our website as long as they are required for the fulfilment of our contractual obligations. If processing depends upon your consent, we will store this data as long as you do not withdraw your consent. We will also store your data only as long as we are obligated by law to store them and as long as claims can be asserted against us.
We do not sell or rent Users’ Data to any third parties for any purpose. The only uses of Data are those highlighted in this policy. Users are the only owner of their Data and can request modification or deletion at any time.
You have the right to receive information in a clear, transparent and intelligible manner regarding how we process personal data and regarding your rights as a data subject (Art. 13 et seqq. GDPR 2016/679):
- You therefore have the right to information and to receive a copy of the personal data about you that is processed
- If the personal data is incorrect or no longer current, you have the right to rectification
- You also have the right to erasure of your data (“right to be forgotten”)
- You also have the right to unsubscribe from marketing campaigns and to opt out in this regard at any time
- You may also revoke your consent to the processing of personal data at any time with effect for the future if processing is based on your consent
- Finally, you have the right to request that the processing of data by us be restricted, so that we may only continue to store them and no longer use or process them. However, this applies only in the following situations: (i) the accuracy of the personal data is contested by you for a period enabling us to verify the accuracy of the personal data; (ii) the processing is unlawful and you oppose the erasure of the personal data and request the restriction of its use instead; (iii) we no longer need the personal data for the purposes of the processing, but you need them for the establishment, exercise or defence of legal claims; (iv) you have objected to processing based on our legitimate interests and the verification of whether legitimate grounds on our side override those on your side is not yet certain.
- You also have the right to lodge a complaint with the competent data protection authorities if you are of the opinion that the processing of the personal data about you violates the applicable data protection laws.
Before you lodge a complaint with the data protection authorities, or if you have questions, you may also contact us (see the related Section below). We can process your inquiry regarding your rights specified above and ensure that personal data is not given to unauthorised third parties. So, please address the inquiry with clear identification of your person and with a short description regarding the scope of the exercise of your data subject rights listed above.
CALIFORNIA PRIVACY RIGHTS
California Civil Code Section 1798.83, also known as the “Shine The Light” law, permits our users who are California residents to request and obtain from us, once a year and free of charge, information about categories of personal information (if any) we disclosed to third parties for direct marketing purposes and the names and addresses of all third parties with which we shared personal information in the immediately preceding calendar year. If you are a California resident and would like to make such a request, please submit your request in writing to us using the contact information provided below.
If you are under 18 years of age, reside in California, and have a registered account with the Site, you have the right to request removal of unwanted data that you publicly post on the Site. To request removal of such data, please contact us using the contact information provided below, and include the email address associated with your account and a statement that you reside in California. We will make sure the data is not publicly displayed on the Site [or our mobile application], but please be aware that the data may not be completely or comprehensively removed from our systems.
This privacy statement has been prepared based on provisions of multiple legislations, including Art. 13/14 of Regulation (EU) 2016/679 (General Data Protection Regulation). On the basis of the Art. 4 of Regulation (EU) 2016/679, the Data Controller of Mestel Safety SRL is his President Sergio Gamberini.
OCEAN REEF GROUP-MESTEL SAFETY
Via Arvigo 2, 16010 Sant’Olcese (GE), IT
Phone Number: +39 0107082011
Last update: March 2021
Our cookies are “first-party cookies”, and can be either permanent or temporary. A permanent cookie will be stored by a web browser and will remain valid until its set expiry date, unless deleted by the user before the expiry date. The temporary cookie, on the other hand, will expire at the end of the user session, when the web browser is closed.
These are necessary cookies, without which the Site won’t work properly or be able to provide certain features and functionalities. Some of these may be manually disabled in your browser, but may affect the functionality of the Site. If you have questions or comments on this topic, please contact us using the contact information provided in below.
Personalization cookies are used to recognize repeat visitors to the Site. We use these cookies to record your browsing history, the pages you have visited, and your settings and preferences each time you visit the Site.
Security cookies help identify and prevent security risks. We use these cookies to authenticate users and protect user data from unauthorized parties.
Site management cookies are used to maintain your identity or session on the Site so that you are not logged off unexpectedly, and any information you enter is retained from page to page. These cookies cannot be turned off individually, but you can disable all cookies in your browser.
TECHNICAL COOKIES AND COOKIES SERVING AGGREGATED STATISTICAL PURPOSES
Activity strictly necessary for the functioning of the Service
Activity regarding the saving of preferences, optimization, and statistics
CONTROL OF COOKIES
Most browsers are set to accept cookies by default. However, you can remove or reject cookies in your browser’s settings. Please be aware that such action could affect the availability and functionality of the Site. For more information on how to control cookies, check your browser or device’s settings for how you can control or reject cookies, or visit the following links:
OTHER TRACKING TECHNOLOGIES
In addition to cookies, we may use web beacons, pixel tags, and other tracking technologies on the Site to help customize the Site and improve your experience. A “web beacon” or “pixel tag” is tiny object or image embedded in a web page or email. They are used to track the number of users who have visited particular pages and viewed emails, and acquire other statistical data. They collect only a limited set of data, such as a cookie number, time and date of page or email view, and a description of the page or email on which they reside. Web beacons and pixel tags cannot be declined. However, you can limit their use by controlling the cookies that interact with them.
This Cookie statement has been prepared based on provisions of multiple legislations, including Art. 13/14 of Regulation (EU) 2016/679 (General Data Protection Regulation). On the basis of the Art. 4 of Regulation (EU) 2016/679, the Data Controller of Mestel Safety SRL is his President Sergio Gamberini.
OCEAN REEF GROUP-MESTEL SAFETY
Via Arvigo 2, 16010 Sant’Olcese (GE), IT
Phone Number: +39 0107082011