Privacy Policy

Gilena International Motor Books recognizes that respecting User privacy is highly important. We believe in the adequate protection and processing of the personal data shared by the User with us, in order to guarantee the User, in total transparency, the ability to protect their privacy.

This page describes how the website is managed concerning the collection and subsequent processing of the personal data of visitors and customers. This information is provided pursuant to the EU Regulation 2016/679 (GDPR), Legislative Decree 196/2003, and subsequent amendments made by Legislative Decree 101/2018 regarding the protection of personal data. It applies to those who interact with the web services of the Gilena Bookshop website, accessible electronically from the homepage https://www.gilena.it. This policy is provided exclusively for the Gilena Bookshop website and not for any other websites that the user may consult via external links.

Data Controller

Gilena International Motor Books, with registered office in Costa Volpino (BG), Via Bosca del Pomo 37/c.

The Data Controller guarantees compliance with personal data protection regulations by providing the following information regarding the processing of data communicated or otherwise collected during navigation on this site.

Guiding Principles

The processing carried out by Gilena International Motor Books is based on the principles of transparency, relevance, purpose limitation, verifiability, lawfulness, fairness, storage limitation, data minimization, accuracy, integrity, and confidentiality.

Place of Processing

The processing operations connected to the services of this site take place at the operational headquarters of Gilena International Motor Books, with registered office in Costa Volpino (BG), Via Bosca del Pomo 37/c, and are handled solely by the Data Controller's authorized personnel.

Authorized Processing Personnel, Data Processors, and Data Disclosure

The processing of the collected data is carried out by Gilena International Motor Books' internal staff, identified and authorized for this purpose according to specific instructions provided in compliance with current legislation.

For the provision of our services, your data may be processed by our selected suppliers acting as Data Processors (Article 28 of the GDPR). For example:

  • professionals or companies providing accounting, administrative, legal, tax, financial, and technical assistance and consulting;
  • professionals or companies necessary for the provision of the service (e.g., couriers, hosting providers);
  • subjects, entities, or authorities, for administrative purposes and for the fulfillment of legal obligations, such as accounting, tax, or to respond to requests from judicial authorities.

In any case, personal data will never be publicly disseminated or sold to third parties.

Extra-EU Data Transfer

Some of the personal data collected (for example, via cloud service providers, newsletter mailing platforms, or third-party statistical services) may be transferred to servers or entities located outside the European Economic Area (EEA). In such cases, the Data Controller ensures that the transfer will take place in compliance with applicable legal provisions, for example, subject to the stipulation of standard contractual clauses adopted by the European Commission or to countries deemed adequate.

Types of Processed Data, Purposes, and Legal Basis

The computer systems and software procedures used to operate this website acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols. This category of data includes IP addresses or domain names of the computers used by users connecting to the site, URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.), and other parameters related to the user's operating system and IT environment.

These data are used for the sole purpose of:

  • obtaining anonymous statistical information on the use of the site;
  • checking its correct functioning and managing security requirements;
  • ascertaining responsibility in case of hypothetical computer crimes against the site.

The legal basis legitimizing the processing of such data is the legitimate interest of the controller in making the site's functionalities usable and secure following the user's access.

The personal data provided by the user via forms are collected and processed for the following purposes:

  • to allow navigation, account registration, and the purchase of goods and services;
  • to allow the conclusion of the purchase contract and the correct execution of the obligations arising from this contract (e.g., delivery, invoicing);
  • to respond to requests sent (e.g., customer care);
  • for the periodic sending, via e-mail, of newsletters and promotional material, subject to specific consent;
  • for the communication of the availability of requested items through the "Notify me" service, subject to specific consent.

The legal basis legitimizing the main processing is the execution of a contract to which the data subject is a party or the execution of pre-contractual measures. In the cases of marketing and availability notifications, the legal basis is the consent freely given by the data subject.

The provision of data is optional; however, it is necessary to allow the provision of the requested services, and failure to provide them will result in the inability to conclude a purchase contract or receive a response.

In the event that you provide data of third parties (e.g., for a Gift Voucher), we will send them a link to the privacy policy in our first communication. We do not knowingly process personal data relating to minors. By using our services, you declare that you are of legal age.

All information sent on the site is safeguarded and transmitted using the encrypted SSL method. Gilena International Motor Books does not directly record or store credit card information or numbers.

Cookies

Cookies are simple text files stored on the visitor's device that allow recording useful parameters for our system to adapt the site to the user's needs and facilitate its use.

The cookies present are divided into:

  • Technical and Session Cookies: essential for browsing (e.g., setting the language, keeping items in the cart, accessing the Customer Area). They are deleted when the browser is closed or expire after a short time.
  • Persistent and Profiling/Statistical Cookies: used to analyze site usage or remember long-term preferences.
  • Third-Party Cookies: provided by external services integrated into the site to improve the experience (e.g., maps, videos, statistical analysis).

The installation of non-technical cookies (such as statistical or profiling cookies) occurs only upon your explicit consent expressed through the cookie banner upon your first access to the site. You can refuse or revoke authorization at any time by modifying the cookie banner settings or configuring your browser options.

To know in detail all the cookies we use, their specific purposes, and to find out how to manage, modify, or revoke your consent at any time, we invite you to carefully read our complete Cookie Policy.

Processing Methods and Retention Periods

The collected data will be processed using electronic or otherwise automated, computer, and telematic tools, or through manual processing, with logics strictly related to the purposes for which they were collected and in a way that guarantees maximum security.

Data are kept for the time strictly necessary for the management of the purposes for which they are collected, in compliance with the principle of data minimization. Data related to invoicing and purchases will be kept for the periods established by current tax and accounting laws (10 years). Specific security measures are observed to prevent data loss, illicit uses, or unauthorized access.

Data Subject Rights

The data subject, pursuant to Regulation 2016/679 (GDPR), has the right to:

  • obtain confirmation of the existence or otherwise of personal data concerning them and request access to it;
  • obtain the updating, rectification, or integration of inaccurate data;
  • obtain the erasure (right to be forgotten) of personal data if no longer necessary or if consent is revoked;
  • obtain the restriction of processing;
  • receive their data in a structured, commonly used, and machine-readable format and transmit it to another controller (data portability);
  • object at any time, for legitimate reasons, to the processing of data (including direct marketing);
  • lodge a complaint with a supervisory authority (Data Protection Authority), if they believe the processing violates current regulations.

At any time, the user can revoke the given consent or exercise their rights. Requests should be addressed in writing to the following address: info@gilena.it.


This policy may undergo changes and additions over time; we therefore invite you to periodically verify its contents.

Last updated: July 17, 2026

Consult the Official Journal of the European Union for the Full text of the EU Regulation 2016/679 (GDPR).

Menu
Discover our BOOKSHOP >>