Skip to main content

Privacy Policy

1. Data Controller

The Data Controller is:
Caffè Lavena s.r.l.
San Marco 133/134, 30124 Venice VE Italy
Email: info@caffèlavena.it

2. Types of data collected

The website collects and processes the following types of data:

  1. Technical data

    • Technical cookies necessary for website functionality

    • Server access logs

  2. Data voluntarily provided by the user

    • Information submitted through the contact form (name, email, message)

  3. Data collected via third-party services

    • Maps embedded via OpenStreetMap may collect technical navigation data such as IP addresses and display preferences

Note: no user registration, shopping cart, or advertising profiling data are collected.

3. Purpose of processing

The collected data are processed to:

  • ensure the website functions properly

  • respond to messages submitted through the contact form

  • display integrated maps and external services

4. Legal basis for processing

  • Execution of contractual or legal obligations

  • User consent (for any non-technical cookies or future additional services)

  • Legitimate interest of the Data Controller to ensure the correct operation of the website

5. Processing methods

Data are processed using manual and IT tools in a manner that is:

  • lawful, fair, and transparent

  • relevant and limited to what is necessary

  • secure, with technical and organizational measures to prevent unauthorized access, loss, or disclosure

6. Data retention

  • Contact form data: retained for up to 12 months or until the user receives a response

  • Technical and navigation logs: retained for up to 6 months

  • Technical cookies: according to the durations indicated in the Cookie Policy

7. Disclosure of data

Collected data are not publicly disclosed and are not shared with third parties except for:

  • legal obligations

  • service providers strictly necessary for website operation (e.g., hosting, maintenance, map services)

8. Users’ rights (GDPR)

Under Articles 15-22 of the GDPR, users have the right to:

  • access their personal data

  • request correction or deletion

  • restrict or object to processing

  • request data portability

  • withdraw consent at any time

To exercise these rights or request information, contact the Data Controller at the email address above.

9. Security measures

The website implements adequate technical and organizational measures to protect personal data from unauthorized access, loss, alteration, or disclosure.

10. Updates to the Privacy Policy

This Privacy Policy may be updated periodically to comply with regulatory or technical changes.

Last update: 16/03/2026