Privacy Policy

Consent to Data Processing
[Text to be checked before purchase]
I accept the Terms and Conditions.
I acknowledge and agree that I have read the privacy policy provided pursuant to Article 13 of European Regulation (EU) 2016/679.

COOKIE BANNER
This website uses cookies to enhance navigation and to collect statistical and profiling data. This includes technical cookies, analytics cookies, and third-party profiling cookies. For further details and/or to refuse consent to all or some cookies, please refer to the dedicated “Cookie Policy”.

PRIVACY POLICY
This section provides information in accordance with the new European regulation introduced by Regulation (EU) 679/2016 and with Italian legislation (Legislative Decree no. 196/2003), regarding the processing of personal data of users who visit the website bananauniversityshop@gmail.com (hereinafter referred to as the “Site”) or use the purchasing services available on it (hereinafter “Users” or “Data Subjects”).

This privacy notice applies solely to the Site and not to any other websites that users may access through links provided on the Site.
Data Controller
The data controller for personal data processed via the website https://thebananauniversity.com/ is Lazzarini Consulting International FZ LLE (hereinafter also referred to as the “Company”), with its registered office in Fujairah – Creative Tower P.O. Box 4422.

To contact the controller or request the deletion of your personal data (if collected with your prior consent), you may write to: bananauniversityshop@gmail.com
***
A - Types of Data Processed
I. Identification Data
In accordance with European Regulation (EU) 679/2016 and Italian law (Legislative Decree no. 196/2003), browsing the Site and potentially purchasing products made available on it may involve the processing of data capable of directly or indirectly identifying a natural person, such as: first and last name, residential address, email address, phone number, and IP address.

The Site does not require the Data Subject to provide so-called “special categories” of personal data as defined under Article 9 of the GDPR—such as data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, as well as genetic data, biometric data used to uniquely identify an individual, and data concerning health, sex life, or sexual orientation. If the service requested requires the processing of such data, the Data Subject will receive specific prior notice and be asked to provide explicit consent.

II. Banking Data
When purchasing products on the Site, banking data may also be processed, such as credit card numbers or bank account details used for payment, as well as the cardholder or account holder’s name.

III. Browsing Data
Browsing data is automatically collected by the Site’s technical systems and software procedures, and is necessary for the proper delivery of web services. This data includes, for example, IP addresses, the type of browser used, domain names of users' devices, the URI (Uniform Resource Identifier) of requested resources, time of request, method used to submit the request to the server, size of the response file, numerical response code from the server (success, error, etc.), and other parameters related to the user’s operating system and IT environment.

This data is also collected in the absence of user registration or specific requests. It is used in aggregated form solely for statistical purposes and to ensure the proper functioning of the Site. It is not used to identify users and is deleted immediately after being anonymized. However, such data may be used to determine liability in the event of cybercrime or other attacks against the Site.

IV. Data Voluntarily Provided by the User
Any personal data voluntarily submitted by the User (e.g., name, surname, email address) in order to send messages to the Site or to purchase products will be used solely for responding to the User’s requests and for fulfilling legal obligations.
The legal basis for this processing is the performance of services related to the User’s requests or purchases, and compliance with applicable legal requirements.
Any information the User chooses to share publicly using the tools provided by the Site is submitted voluntarily and knowingly, and the Site is not liable for any breach of laws resulting from such disclosures.
It is the sole responsibility of the User to ensure they are authorized to submit third-party personal data or content protected by applicable national or international laws.

V. Data Collected Through Analytical Cookies
The Site also collects user data through the use of cookies.
For more information about data collected through cookies, the types of cookies in use, and how to disable them, please refer to the Site’s Cookie Policy.
These cookies are used to monitor the user’s browsing preferences and to collect statistical data. Users may disable such cookies through their browser settings as indicated in the Cookie Policy.
***
B - Purpose of Data Processing
The personal data collected is used for the following purposes:
⦁ to deliver the software purchased by the User;
⦁ to generate anonymous statistical data regarding the use of the website;
⦁ to ensure the proper functioning of the website;
⦁ to send communications and newsletters, in either paper or electronic form, to the email address provided by the User;
⦁ to ascertain liability in the event of potential cybercrimes against the website;
⦁ to comply with any other legal obligations not included in the purposes listed above.

Data may only be disclosed upon request by judicial authorities and in accordance with applicable law.
***
C - Legal Basis for Data Processing
I. Performance of a Contract
The legal basis for processing personal data is the fulfillment of obligations arising from the contractual relationship established through the purchase of products, the acceptance of the Terms and Conditions, compliance with legal obligations, and the Site’s legitimate interest in carrying out the processing activities necessary for these purposes.

II. Data Subject’s Consent
The voluntary, explicit, and optional sending of emails, messages, or any other type of communication to the contact addresses indicated on this Site entails the subsequent acquisition of the sender’s address, telephone number, or any other personal data provided, which will be used solely to respond to such requests. This processing is based on the data subject’s consent.

This processing will be carried out in accordance with the principles of lawfulness, fairness, transparency, adequacy, relevance, and necessity, as outlined in Article 5(1) of the GDPR. Specific summary notices will be progressively provided or displayed on pages of the Site dedicated to particular on-demand services.

III. Compliance with Legal Obligations
Personal data may be processed without the data subject’s consent where necessary for the Data Controller to comply with legal obligations.

IV. Optional Nature of Data Provision
Aside from what is required for fulfilling contractual obligations, complying with legal obligations, or processing cookies and browsing data, Users are free to provide or withhold their personal data. However, failure to provide certain data may make it impossible to access or benefit from the requested services.
***
D - Methods and Duration of Data Processing
Personal data is processed using electronic tools, in full compliance with Regulation (EU) No. 679/2016 and Legislative Decree No. 196/2003.
Data will be retained for the duration necessary to fulfill the purposes outlined in this policy and, in any case, for the shortest period possible—or until an explicit request for deletion is received from the data subject—and always within the limits established by law.
The Data Controller commits to adopting all appropriate security measures to prevent the loss or alteration of personal data and any unauthorized or unlawful use.
Data will be processed exclusively by individuals expressly authorized by the Data Controller, including any data processors, legal representatives, and public authorities when required to comply with legal obligations. These entities operate as independent data controllers within the scope of their respective duties.
Authorized parties may include, for example: members of the commercial or legal team, third-party technical service providers, hosting providers, and IT companies (this list is non-exhaustive). Under no circumstances will personal data be disclosed to unidentified recipients.
Please note that the absolute security of data cannot be guaranteed in the event of hacker attacks or breaches of the security measures implemented to protect the data.
Nonetheless, in the event of any such attack or breach, data subjects and competent authorities will be duly notified in accordance with legal requirements.
***
E - Location of Data Processing
Data processing activities related to the services offered through the website are carried out by personnel who are specifically identified and authorized based on the specific purposes of the requested and subscribed services.
For the purposes indicated, the Data Controller may rely on external companies, consultants, consortia, and service or software providers. These entities act through designated and authorized staff and must guarantee the highest levels of data security and confidentiality. In all other cases, personal data will not be disclosed to third parties without the explicit consent of the data subject—except when such communication is necessary to comply with legal obligations, regulations, or requests from supervisory authorities, or to safeguard the rights of other users or the website itself.
Personal data will be processed and stored solely for the purposes outlined above and will be hosted securely on remote servers managed by industry-leading providers that guarantee high standards of data protection compliance.
This may involve the transfer of data outside the European Union, to locations where some or all of the aforementioned servers may be located.
In particular, personal data may be transferred outside the EU to the company “Shopify” (https://www.shopify.com and https://www.shopify.com/legal/privacy), an e-commerce plugin used by the Site managed by the Data Controller.
Data processing and storage by this provider will occur in a third country deemed “adequate” pursuant to a decision by the European Commission—specifically, the adequacy decision regarding Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA), or via the Privacy Shield certification (USA), or based on standard contractual clauses approved by the European Commission, or on binding corporate rules approved pursuant to Article 47 of the GDPR.
In general, the transfer of data to countries outside the EU does not require prior authorization from the national Data Protection Authority. However, such authorization is still required if the Data Controller intends to use contractual clauses or administrative arrangements not previously approved by the European Commission or not covered by standard mechanisms.
***
F - Data Subject Rights
While processing is ongoing, the data subject may exercise the following rights at any time:

⦁ obtain confirmation as to whether or not personal data concerning them is being processed, and, if so, access the content and origin of such data;
⦁ verify the accuracy of the data and request its correction, integration, or updating if incomplete or outdated;
⦁ request restriction of processing where one of the conditions outlined in Article 18 of the GDPR applies;
⦁ request the deletion of data processed unlawfully, or where one of the grounds provided under Article 17(1)(a), (b), (c), (e), and (f) of the GDPR applies;
⦁ object, on legitimate grounds, to the processing of their personal data, or object in the other circumstances set out in Articles 21(2), 21(3), and 22 of the GDPR;
⦁ withdraw their consent at any time, where processing is based on freely given consent for specific purposes;
⦁ receive the personal data concerning them in a structured, commonly used and machine-readable format, and transmit those data to another controller (data portability), without hindrance from the original controller—provided that such transmission is technically feasible.
Requests related to the exercise of these rights must be addressed to the Data Controller by email at: bananauniversityshop@gmail.com
If the Data Controller fails to respond, or provides only a partial response, the data subject has the right to file a complaint with the Italian Data Protection Authority (www.garanteprivacy.it) or to initiate legal proceedings, in accordance with Articles 77 and following of Regulation (EU) 2016/679 (GDPR).

G - Policy Updates
Future regulatory updates may lead to amendments of this Privacy Policy, which was published on the Site on January 21, 2021.

In the event of changes, the Data Controller will notify users by publishing the updated version on the Site.

--------------------------------------------------------------

Cookies
Cookies are small text files stored on the user’s device while browsing certain websites via their preferred browser. These files are saved in the browser’s file directory and are used by web applications on the server side to store and retrieve information on the client side.
Cookies are categorized as “technical,” “analytical,” and “profiling” cookies. Additionally, they may be classified as first-party or third-party cookies.
The use of cookies and similar technologies on this Site is carried out in compliance with both national and European regulations, as well as the Italian Data Protection Authority’s provision dated 8 May 2014, titled “Simplified Arrangements to Provide Information and Obtain Consent Regarding Cookies.”
This Site is hosted on the Shopify platform. For further information about the cookies used by Shopify and how to disable them, please visit:🔗 https://www.shopify.com/legal/privacy
The Site Uses the Following Cookies
I. Technical cookies
Technical cookies primarily aim to make website navigation easier. Almost all browsers are set by default to accept cookies; however, users may change their browser settings or use specific add-ons to block them. Doing so may limit the usability of certain services on the website.
Technical cookies are further divided into “session” and “persistent” cookies. Both types are stored on the user’s device: session cookies are deleted when the browser is closed, while persistent cookies remain stored until their expiry date.
The Site uses session technical cookies to support navigation, such as enabling authentication in restricted areas or storing temporary user preferences. These cookies are deleted once the browser session ends.
Session cookies (which are not stored permanently on the user’s device and are automatically deleted once the browser is closed) are strictly limited to the transmission of session identifiers (random numbers generated by the server), necessary for safe and efficient browsing.
In certain cases, the Site may also use persistent technical cookies to remember the user’s language or device type preferences.
Persistent cookies are saved across multiple browser sessions and allow the Site to remember user actions. They can serve purposes such as remembering the user’s language settings or other preferences.

II. Analytical Cookies
These cookies are used to monitor the user’s browsing preferences and to collect anonymous statistical data.
The Site uses third-party analytical cookies only, which are provided by external websites. Users can disable these cookies by changing their browser settings. Below are links to instructions for the most commonly used browsers:

⦁ Internet Explorer:⦁ ⦁ HYPERLINK "https://support.microsoft.com/it-it/help/17442/windows-internet-explorer-delete-manage-cookies"⦁ https://support.microsoft.com⦁ HYPERLINK "https://support.microsoft.com/it-it/help/17442/windows-internet-explorer-delete-manage-cookies"⦁ /it-it/help/17442/windows-internet-explorer-delete-manage-cookies ;
⦁ Firefox:⦁ https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences?redirect=no;
⦁ Safari:⦁ https://www.apple.com/legal/privacy/it/;
⦁ Chrome:⦁ ⦁ HYPERLINK "https://support.google.com/accounts/answer/61416?co=GENIE.Platform=Desktop⦁ &⦁ hl=en"⦁ https://support.google.com/accounts/answer/61416?co=GENIE.Platform%3DDesktop⦁ HYPERLINK "https://support.google.com/accounts/answer/61416?co=GENIE.Platform=Desktop⦁ &⦁ hl=en"⦁ &⦁ HYPERLINK "https://support.google.com/accounts/answer/61416?co=GENIE.Platform=Desktop⦁ &⦁ hl=en"⦁ hl=en;
⦁ Opera:⦁ https://blogs.opera.com/news/2015/08/how-to-manage-cookies-in-opera/

Alternatively, users may disable cookies using specialized software (e.g., Ghostery – http://www.ghostery.com) or activate the browser's “private browsing” or “incognito” mode, which prevents the storage of browsing data.
Analytical Cookies Used by the Site
The Site uses the following analytics services to collect anonymous statistical data:
⦁ Real User Monitoring Service provided by Akamai: https://www.akamai.com/uk/en/products/performance/mpulse-real-user-monitoring.jsp

III. Social Network Plugin Cookies
The Site may also use third-party social network plugin cookies to allow users to share content across various social platforms. These cookies enable users to interact with social networks (e.g., share buttons for Facebook, Twitter, YouTube, or LinkedIn).
Such cookies can be disabled through your browser settings (see links provided above in the analytical cookies section).
Social plugin cookies are not essential for website navigation. For more information on how each social network uses cookies, users can consult their respective privacy and cookie policies:

Facebook: https://www.facebook.com/about/privacy/
Google: http://www.google.com/intl/it/policies/privacy/
Twitter: https://twitter.com/en/privacy
Instagram: https://help.instagram.com/1896641480634370?ref=ig
LinkedIn: https://www.linkedin.com/legal/cookie-policy
ShareThis: https://sharethis.com/privacy/
YouTube: https://support.google.com/youtube/answer/7671399
IV. Third-Party Profiling Cookies
Profiling cookies are used to track user navigation and create a profile based on their behavior. This profile may then be used to send targeted advertising messages to the user’s device.
Third-party profiling cookies originate from external websites or advertising networks (e.g., Google AdSense) and may be sent to the user’s device as a result of browsing this Site.
Facebook Pixel
Facebook Pixel is a service provided by Facebook Inc., 1601 S. California Ave., Palo Alto, CA 94304, USA (“Facebook”) that enables tracking of user behavior after they click on a Facebook advertisement and are redirected to the Site. This conversion tracking tool allows measurement, analysis, and optimization of the effectiveness of Facebook ads for statistical and market research purposes.
The data collected through the Site via the conversion Pixel does not allow the Site to identify the user. Information such as the user's IP address is transmitted via the Pixel to Facebook, which stores and processes the data for conversion tracking purposes. The Site only receives anonymous reports from Facebook that contain no identifiable personal data.
However, it is possible that Facebook may associate the data collected through the Site with other personal data it already holds about the user (e.g., from their Facebook account) or use this information for its own purposes.
Facebook Pixel is managed entirely by Facebook. The Site has no control over how Facebook processes the data.
You can review Facebook’s privacy policy at:
🔗 https://www.facebook.com/about/privacy
Facebook and its partners may display ads both inside and outside of the Facebook platform. To enable this, a cookie may be placed on the user’s device.
To consent to the use of the conversion Pixel, the user must be over the age of 13. By using this Site, the user confirms they meet this age requirement or that a parent or legal guardian has provided consent on their behalf.
Users may withdraw their consent to the use of conversion tracking at any time by visiting:
🔗 https://www.facebook.com/ads/website_custom_audiences/
Alternatively, users can opt out of third-party cookies by visiting the Network Advertising Initiative opt-out page:
🔗 http://www.networkadvertising.org/choices/
Users can also manage and understand ad tracking preferences through tools such as:

YourOnlineChoices (EU)
Network Advertising Initiative (USA)
Digital Advertising Alliance (USA)
DAAC (Canada)