Privacy Policy

We would like to inform you how Emmi Dessert Italia S.p.A., 111 Upper Richmond Road, Putney, London SW15 2TJ, United Kindom processes your personal data. Please read through the Privacy Policy carefully. You can contact our Data Protection Coordinator at any time by writing to the email address indicated in Section 1 if you have any questions or comments concerning this Privacy Policy.

This Privacy Policy explains how we process any relevant data (hereafter Personal Data) if:

  • you visit our website www.emmi.com/gbr/en or use our app;
  • you purchase any products or services from us;
  • you otherwise enter into a contract with us;
  • you contact us by email, letter, social media or SMS, via a contact form, etc.;
  • you sign up for particular offers (e.g. competitions) and our newsletter;
  • you have any other dealings with us involving any other processing of data in relation to our products and services.

Under certain circumstances, special privacy rules may apply, for instance for job applicants and employees, instead of this Privacy Policy or in addition to this Privacy Policy.

This privacy policy applies to the processing of personal data by:  

Controller: Emmi Dessert Italia S.p.A. (hereinafter "Emmi"), 111 Upper Richmond Road, Putney, London SW15 2TJ, United Kindom 

If you have any contact with another Group company, e.g. because you or your company are/is receiving a service from this company or because you are corresponding directly with this company, the respective company will have the status of Data Controller. The Privacy Policy of the respective company will apply.

If you have any questions relating to data protection, please send them to the following address so that we can answer your concerns as quickly as possible:

Email: info@emmidessert.it

Telephone: +39 0322 1918111

The company data protection coordinator of Emmi can be contacted at the attention of Data Protection Division or at info@emmidessert.it.

a) If you visit the website

If you visit our website www.rachelli.it/gbr/en 

the browser used on your device automatically sends information to our website’s server. This information is stored temporarily in a so-called “log file”.

We anonymise or erase this information once it is no longer relevant for the purposes pursued, which depending upon the type of data may occur after up to 24 months (for preferences relating to products and services). This period may be longer where necessary or essential on a technical level for the purpose of securing evidence or compliance with statutory or contractual requirements.

We process the following data whenever you visit our website:

  • IP address of the requesting terminal;
  • information concerning your device, its operating system and language settings
  • information concerning your internet provider
  • the content accessed, or the logs in which usage of our systems is recorded
  • the date and time of access to the website along with your approximate location
  • information concerning the content and files in the user account accessed
  • any other information arising in relation to usage of the user account, such as e.g. the transmission of the access code by push message for the purpose of logging in to your user account through the website

The data referred to above are processed by us for the following purposes:

  • ensuring a seamless connection to the website;
  • ensuring an optimal user experience on our website;
  • assessing system security and stability
  • other administrative purposes.

The legal basis for this is point (f) of Article 6(1) GDPR. Our legitimate interest in processing your personal data results from the purposes mentioned above.

We also use cookies and analytical services whenever you visit our website. Further details concerning these can be found in Section 5 of this Privacy Policy.

For ease of reference, this website may contain links to other websites, plug-ins and third party applications (for further details see below). If you click on or activate any of these links, it is possible that third parties may collect or share data relating to you. We do not have any influence over any such third party websites and are thus not responsible for their respective privacy policies. If you leave our website, we recommend that you read the privacy policy for each website that you access.

b) On social media platforms

If you communicate with us or comment on or share content via social media and our related social media profiles (e.g. Facebook, Instagram, Twitter, Snapchat, Pinterest, TikTok, YouTube, WhatsApp, LinkedIn or Xing), we collect information, which we use in particular in order to communicate with you, for marketing purposes and for statistical assessment. Please note that, whenever you visit our social media pages, the provider of the respective platform will also collect and use data itself (e.g. concerning user behaviour), where appropriate alongside other data known to it (e.g. for marketing purposes or for the purpose of personalising platform content).

We use the data that you enter when accessing our contributions on social media platforms for the following purposes:

  • to share your data on our social media pages, where this function is offered by the social media platform concerned;
  • to communicate with you via the social media platform;
  • to hold competitions (see Section g) below).

The legal basis for data processing by us is your consent (point (a) of Article 6(1) GDPR), the performance of a contract (point (b) of Article 6(1) GDPR) or the protection of legitimate interests (point (f) of Article 6(1) GDPR). The legitimate interest is justified by our interest in public relations work and communication.

We automatically erase your personal data from our systems after three years, unless a longer legal retention requirement applies. If this is the case, we shall erase your personal data after this legal retention requirement has expired.

The following erasure period according to Section g) applies to data that we use specifically for competitions.

Please note that the erasure of your personal data by the operator of the social media platform is governed by the privacy policy of the respective social media platform operator.

On our website we offer the opportunity to use “social media plugins” (e.g. of Facebook, Instagram, LinkedIn) in order to incorporate the functions of these providers into our website. These plugins are disabled as the default setting. After you have activated them (e.g. by clicking on the button), the respective provider will be able to establish that you have visited our website. If you have an account with the social media provider concerned, it may allocate this information to you, and as a result track your usage of online content.

As a general rule, we are responsible jointly alongside the respective provider for the sharing of data that the social media platform provider collects using plugins or comparable functions (although not for any further processing by the provider). Where possible, we have concluded a specific addendum with the provider concerned. You can submit requests for information and other data subject enquiries relating to our joint responsibility directly to the provider concerned.

c) When signing up for our electronic newsletter

If you have provided your express consent in accordance with point (a) of Article 6(1) GDPR, we use your email address to send our electronic newsletter to you at regular intervals, or to arrange for it to be sent on our behalf. All we need in order for you to be able to receive the electronic newsletter is your email address.

You can unsubscribe from the newsletter at any time by clicking on the link at the end of each newsletter. Alternatively, you can send an email to info@emmidessert.it if do not wish to receive the newsletter any longer.

d) If you request the sending of information by post

If you request the sending of information by post, we shall use your postal address in order to send you the information desired at regular intervals by post, or to arrange for it to be sent to you. In order to receive information by post it is sufficient to provide your name and a postal address.

The legal basis for processing is either our legitimate interest in accordance with point (f) of Article 6(1) GDPR or your express consent in accordance with point (a) of Article 6(1) GDPR.

You can unsubscribe from the newsletter at any time, for instance by sending an email to info@emmidessert.it, using the contact form on our website or sending a letter or postcard to the sender’s address as indicated in the information sent out.

e) By using our contact form

The website contains a contact form, which can be used to submit any questions. Depending upon the person to whom the enquiry is addressed, a valid email address, your first name, surname and address including post code and town/city and a telephone number must be provided so that we can know who has submitted the enquiry and answer it efficiently. You can provide additional information on a voluntary basis.

The processing of data for the purposes of contact with us (and our answer) is based on our legitimate interest in accordance with point (f) of Article 6(1) GDPR in communicating with you and answering your enquiries.

The personal data collected by us in the contact form are automatically erased after the enquiry submitted by you has been dealt with, or otherwise at the latest after six months.

f) Using our live chat

With our live chat we offer you the opportunity to talk directly to us. In order to do so, it is necessary to provide an email address so that we can get in touch with you at a later stage.

The duration and time of the call are stored for statistical purposes. A transcript of the chat is stored after anonymisation for quality assurance purposes.

Data processing for the purposes of communication with you is based on our legitimate interest in accordance with point (f) of Article 6(1) GDPR.

 

g) Competitions

From time to time we hold competitions, contests or other similar advertising initiatives. Depending upon the type of competition, contest or advertising initiative, we may ask to receive the following personal information in order to hold them:

  • Title, surname, first name;
  • Address;
  • Date of birth;
  • Contact information (email address and mobile telephone number)
  • Where appropriate, other information based on our legitimate interest

The legal basis for the processing of these data is point (b) of Article 6(1) GDPR (performance of a contract). The data are erased after the competition or initiative has ended. If we use your data for marketing purposes (email, newsletter etc.) or other purposes, this processing occurs on the basis of your prior consent in accordance with point (a) of Article 6(1) GDPR. In such cases, the data are retained for these purposes in accordance with Section b) above. We shall only share your personal data with a third party for the purpose of their own usage within the ambit of a competition or other initiative with your express consent or if this is necessary in order to hold the competition.

 

When providing our services we work with external service providers, which process your personal data on our behalf. These may include recipients from the following categories:

  • IT service providers for data hosting services
  • marketing service providers in relation to marketing activities (e.g. competitions, marketing campaigns, analytical cookies)
  • customer communication service providers

Where any service provider processes personal data as an outsourced data processor, it is obliged to process personal data exclusively in accordance with our instructions and to put in place measures to ensure data security.

Data may also be shared with other recipients, e.g. courts and authorities within the ambit of proceedings or under the terms of legal disclosure and cooperation obligations, to buyers of companies and assets, to financing companies in the event of securitisation and to debt collection companies.

In specific individual cases it is possible that we may share personal data with other third parties also for their own purposes, e.g. if you have consented to this or if we are obliged or entitled under law to share them.

In addition, we only share your personal data within the Emmi Group and/or with third parties if:

  • you have provided your express consent;
  • it is necessary for the performance of a contract with you;
  • the processing of your data is required to comply with a statutory obligation;
  • processing is necessary in order to protect our legitimate interests or those of a third party, unless there is any reason to assume that you have any overriding interest dictating otherwise.

Where necessary for the purposes mentioned above, we also transmit your data to recipients situated outside the UK and the European Economic Area (EEA). Please note that, under certain circumstances, the level of data protection in these third countries may not be comparable to that available in the UK or the EEA, and it thus cannot be fully excluded that your data may be passed on to state authorities in the third country without reasonable opportunities to enforce rights.

We ensure that data are only transmitted to third countries where adequate protection for your personal data is guaranteed. This means that we only share your data if the UK Government or the EU Commission has issued an adequacy decision for the respective third country (Article 45 GDPR), if appropriate safeguards have been put in place to protect your personal data (Article 46 GDPR) or if it is permitted by law (Article 49 GDPR).

Adequate safeguards within the meaning of Article 46 GDPR include the standard contractual clauses published by the EU Commission, or equivalent issued by the UK Government. For further information concerning the standard contractual clauses, which we use as a basis for the transmission of your personal data to third countries, please contact us using the details mentioned in Section one.

We use cookies and similar technologies on our website, and can also allow particular third parties to do so. Cookies are small files generated automatically by your browser, which are stored on your device (laptop, tablet, smartphone etc.) whenever you visit our website. A full list of the cookies used can be found below.

However, depending upon the purpose of these cookies we may ask for your express consent before using them. You can access your current settings by clicking on the button Change Cookie Settings (click below). You can also configure your browser so that it blocks or provides incorrect information to particular types of cookies or alternative technologies, or erases any cookies previously saved. You can also incorporate a software add-on into your browser that blocks third party tracking. Further information can be found on the help pages of your browser (generally under the heading “Privacy”) or on the third party websites mentioned below.

We use the following types of cookies:

  • Necessary cookies:         
    Necessary cookies are essential for the proper operation of the website or of particular functions. They make it easier for you to use the website. For instance, they help to make a website usable by enabling basic functions such as page navigation and access to secure areas of the website. They also ensure that you can navigate between pages without losing information that has been entered into a form and whilst enabling you to remain logged in. These cookies are only stored temporarily (“session cookies”). Session cookies are automatically deleted when you leave our website. If you disable them, the site may not work properly. Other cookies are necessary in order to enable the server to store options or information (entered by you) after the end of a session (i.e. a visit to a website), if you use these functions (e.g. language settings, consents, automatic login functions etc.). These cookies have an expiry date of up to 12 months. The legal basis for this is our legitimate interest in accordance with point (f) of Article 6(1) GDPR in providing you with all functions on our website. By clicking on this (click below) you can find a detailed list of all necessary cookies and their specific expiry dates.
  • Performance cookies:   
    With a view to optimising our website and related content and tailoring it better to the needs of users, we use cookies to log and analyse usage of our website, potentially across more than one session. For this purpose, we use the analytical services of third party providers mentioned below (see Section 5(b)). We analyse for instance the pages that a user most frequently visits and whether any error messages are displayed. These cookies do not save any further information. They are used exclusively to enhance user-friendliness and to tailor websites better to the needs of users. Before we use any such cookies, we shall ask for your express prior consent. You can withdraw your consent at any time via the cookie settings. Performance cookies also have an expiry date of up to 12 months. By clicking on this (click below), you can find a detailed list of all performance cookies and their specific expiry dates.
  • Marketing cookies:        
    We and our advertising partners have an interest in structuring advertising in as targeted a manner as possible, i.e. we only display advertising messages to the people we would actually like to address. We have listed our advertising partners below. For this purpose – if you have consented – we and our advertising partners save cookies that can record the content accessed or the contracts concluded. This enables us to optimise our content (see Section 5(b)), and enables both us and our advertising partners to display advertising on our website, although also on other websites that display advertising placed by us or by our advertising partners (see Section 5(b)) that in our view may be of interest for you. The legal basis for these cookies is your consent. If you consent to the usage of these cookies, corresponding advertising will be displayed to you. If you do not consent to the usage of these cookies, you will not be displayed fewer adverts but rather generically selected adverts. You can withdraw your consent at any time via the cookie settings. Depending upon the circumstances, marketing cookies have an expiry date of between a couple of days and 12 months. By clicking on this (click below) you can find a detailed list of all marketing cookies and their specific expiry dates.

We use cookies in particular for the following purposes:

  • content personalisation
  • displaying personalised adverts and offers
  • displaying adverts on third party websites and measuring their success, i.e. whether you respond to the adverts (remarketing)
  • saving settings between visits
  • identifying whether and how we can improve our website
  • collecting statistical data concerning the number of users and their usage habits as well as improving the website’s speed and performance
  • We may process your contact data in order to display advertising to you on the platforms of third party providers.

We may also use technologies similar to cookies, such as “pixel tags” or “fingerprints” in order to store data in your browser. Pixel tags refer to small, normally invisible images or pieces of program code loaded by a server that transmit particular information to the server operator, e.g. whether and when a website has been visited. Fingerprints refer to information collected during your visit to our website concerning the configuration of your end device or your browser that make it possible to distinguish between your end device and other devices.

We shall only retain your data for as long as is necessary in order to fulfil the above-mentioned purposes. Please refer to the above sections for the specific retention periods. We are also subject to various legal retention and documentation requirements, which may require retention for a longer period of time. On account of these retention and documentation requirements, we will generally retain your data for up to ten years, subject to the specific retention periods set out above for certain types of personal data.

You have the right:

  • if you have provided consent for processing of your personal data, to withdraw your consent at any time. This means that we will not be able to continue processing any data in future on the basis of your consent;
  • to access your personal data and to obtain information concerning your personal data that are being processed by us. You can request in particular information concerning the following: the purposes of processing, the categories of personal data concerned, the categories of recipient to whom your personal data have been disclosed, and the envisaged period for which the personal data will be stored; the existence and source of personal data, where the personal data are not collected by us, and, where applicable, information about automated decision-making, including profiling, which produces legal effects concerning him or her or similarly significantly affects him or her;
  • without undue delay to obtain the rectification of inaccurate data or to have incomplete data stored by us completed;
  • to obtain the erasure or destruction of your personal data stored by us, unless any such processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defence of legal claims;
  • to obtain the restriction of processing of your personal data, if the accuracy of the data is disputed by you or if processing is unlawful but you object to their erasure or if we no longer require the data but you require them for the establishment, exercise or defence of legal claims or you have objected to processing;
  • to obtain the personal data that you have provided to us in a structured, commonly used and machine-readable format or to obtain the transfer of those data to another data controller; and
  • to lodge a complaint with a supervisory authority. As a general rule, you can contact the supervisory authority of your habitual residence or place of work, or alternatively in Switzerland. However, we would appreciate it if we could address your concern before you contact the competent supervisory authority, and therefore ask that you contact us in the first instance.

Please note that these rights are subject to legal prerequisites and restrictions in accordance with Article 23 GDPR, and thus may not be available in full under all circumstances. Specifically, we may have to continue to process your personal data in order to perform under a contract concluded with you, to uphold our own legitimate interests, such as the establishment, exercise or defence of legal claims, or in order to comply with legal obligations. Where permitted by law, in particular in order to protect the rights and freedoms of other data subjects and to protect legitimate interests, we may therefore refuse to answer a request made by a data subject either in full or in part (e.g. by redacting particular content relating to third parties or our own business secrets).

If your personal data are processed on the basis of our legitimate interests, you have the right to object to this processing on grounds relating to your particular situation. If you decide to object to the processing of your personal data, we shall stop processing the personal data concerned unless we are able to identify compelling legitimate grounds for processing that override your interests, rights and freedoms or unless processing is necessary for the establishment, exercise or defence of legal claims.

You also have the right to object at any time to the processing of personal data concerning you for the purposes of marketing; this also applies in relation to profiling, where related to any such marketing. If you decide to object to processing for the purposes of marketing, we shall stop processing the personal data concerning you for these purposes.

If you would like to exercise your right to object, please send an email to info@emmidessert.it.

We operate the widely used Transport Layer Security (TLS) technology on our website in conjunction with the highest level of encryption supported by your browser. This is generally 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. If any individual page from our website is transmitted in encrypted form, you can recognise this from the symbol of a locked padlock on your browser’s status bar.

In addition, we take appropriate technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or total loss, destruction or unauthorised third-party access. Our security measures are being continually improved in line with technological developments.

This Privacy Policy is currently valid and was last updated in August 2023.

This Privacy Policy may have to be amended from time to time due to the constant development of our website and its content or to reflect changes in legal or administrative requirements. The currently valid version of the Privacy Policy can be consulted at any time on the website at www.rachelli.it/gbr/en/privacy-policy and can be saved and printed out by you.