Privacy Policy (EU)

Privacy Policy (EU) – GDPR

Last updated: 11/01/25

This Privacy Policy describes how Dongiò Caffè SRL collects, uses, stores, and protects personal data, in accordance with EU Regulation 2016/679 (GDPR) and applicable Italian law. By using the website www.dongiocaffe.com and purchasing our products, you accept the terms of this Policy.

1. Data controller

Dongiò Caffè SRL

Registered office: S.da P.le per Spinazzola CS Km 64,235 – 70020 Gravina in Puglia (BA), Italy

VAT number: 08564580721

Email: info@dongiocaffe.com

2. Types of data collected

While using the site, we collect the following categories of data:

Data provided directly by the user:

  • Name and surname

  • Shipping and billing address

  • Email and phone number

  • Payment data (not stored by us, managed by Shopify/Stripe/PayPal)

  • Data entered via contact forms or customer support

Data collected automatically:

  • IP address

  • Browser technical data

  • Cookies and tracking technologies

  • Pages visited, products viewed, browsing time


Order data:

  • Products purchased

  • Amounts paid

  • Payment Method

  • Shipping preferences

3. Purpose of the processing

The data is processed for the following purposes:

A. Contract execution and order management (account registration, shipments, payments, customer support)

B. Fulfillment of legal obligations (accounting, tax obligations)

C. Marketing purposes, subject to the user's consent (newsletter, personalized promotions)

D. Security and fraud prevention (protection from suspicious activity and unauthorized access)

4. Legal basis for processing

The legal bases of the processing are:

  • Execution of the contract

  • Explicit consent (newsletter, non-technical cookies)

  • Legal obligation

  • Legitimate interest (site security and fraud prevention)

5. Cookies and tracking technologies

We use:

  • Necessary technical cookies

  • Analytical cookies (Shopify, Google Analytics)

  • Marketing cookies (Meta Pixel, Google Ads)

Details are available in the Cookie Policy (EU). Users can manage their preferences via the cookie banner or through their browser settings.

6. Subjects who can access the data

The data may be processed by:

  • Authorized internal personnel

  • Third-party service providers, including:

    • Shopify (e-commerce platform)

    • Stripe / PayPal / Shopify Payments (payments)

    • Couriers (DHL, GLS, UPS, etc.)

    • Newsletter services (e.g. Klaviyo/Mailchimp)

    • Analytics services

All operate in compliance with the GDPR as Data Processors.

7. Transfer of data outside the EU

Some data may be transferred to non-EU countries (e.g., the USA, Canada), particularly via Shopify, Google, and Meta. The transfer is carried out with appropriate safeguards, including the Standard Contractual Clauses (SCCs).


8. Data retention

  • Order data: 10 years (accounting requirement)

  • Customer account: as long as active

  • Newsletter: until consent is revoked

  • Cookies: according to the duration indicated in the Cookie Policy


9. User rights (Articles 15–22 GDPR)

The user can exercise the following rights:

  • Data Access

  • Correction

  • Cancellation (“oblivion”)

  • Restriction of processing

  • Data portability

  • Objection to processing

  • Revocation of consent

To exercise your rights: info@dongiocaffe.com


10. Data security

We implement appropriate technical and organizational measures, including encryption, secure HTTPS servers, controlled access, firewalls, and security systems.

11. Minors

The site is not intended for anyone under the age of 18, and we do not knowingly collect information from minors.

12. Changes to this policy

This Policy may be updated periodically. The updated version will always be posted on this page.

13. Contacts

For any request or information regarding the processing of personal data:


Dongiò Caffè SRL

Email: info@dongiocaffe.com

Headquarters: S.da P.le per Spinazzola CS Km 64,235 – 70020 Gravina in Puglia (BA), Italy