top of page

Privacy Policy

This website collects some personal data from its users.

This document can be printed using the print command in your browser settings.

Data Controller - IPPO Srl

Via Panfilo Castaldi 21, 20154 Milan – VAT number 11636470962
Recipient Code: USAL8PV
Email: info@ipposushi.it
PEC: ipposnc@legalmail.it

Types of data collected

Among the types of Personal Data collected by this Website, either independently or through third parties, there are: Cookies; Usage Data; email address; first name; last name; phone number; delivery address; password; payment information; VAT number; company name; billing address; Data communicated while using the service; session statistics; unique device identifiers for advertising (for example, Google Advertiser ID or IDFA).

Complete details on each type of Personal Data collected are provided in the dedicated sections of this Privacy Policy or through specific information texts displayed before the collection.

Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically when using the Website.
Unless otherwise specified, all requested Data is mandatory. If the User refuses to provide it, it may not be possible to provide the Service. In cases where the Website indicates some Data as optional, Users are free to choose whether or not to provide it, without consequences to the provision of the Service.

The use of Cookies – or other tracking tools – is intended to provide the requested Service, in addition to the other purposes described in this document and in the Cookie Policy.

The User assumes responsibility for the Personal Data of third parties obtained, published, or shared through the Website.

Method and place of treatment

Treatment methods

The Data Controller adopts adequate security measures to prevent unauthorized access, disclosure, modification, or destruction of Personal Data.
The processing is carried out using IT and telematic tools, with organizational methods strictly related to the indicated purposes.

In addition to the Data Controller, in some cases, other internal entities (administration, sales, marketing, IT, legal) or external entities (technical service providers, hosting, IT companies, couriers, communications agencies) may have access to the Data, having been appointed as Data Processors. The updated list of Data Processors is available upon request.

Place

The Data is processed at the Data Controller's operating offices and in other locations where the parties involved in the processing are located. The Data may be transferred to foreign countries, always in compliance with the GDPR and appropriate safeguards.

Retention period

The Data is retained for the time necessary to provide the Service or to comply with legal obligations.

  • Data collected for contractual purposes: until the contract is completed.

  • Data collected for tax purposes: up to 10 years.

  • Data collected for marketing purposes: until consent is revoked.

  • Technical logs and browsing data: up to 24 months.

At the end of the period, the Data is deleted or anonymized.

Purpose of Processing Collected Data

User Data is collected to allow the Owner to:

  • provide the Service (orders, delivery, billing, assistance);

  • comply with legal obligations;

  • respond to legal requests or defend rights;

  • prevent abuse and fraud;

  • carry out marketing and communication activities with prior consent;

  • collect statistics and improve services;

  • manage interactions with external platforms (e.g. social media, advertising services).

User Rights (GDPR)

Users may exercise certain rights regarding the Data processed by the Data Controller:

  • withdraw consent at any time;

  • object to processing;

  • access your Data and obtain a copy of it;

  • request rectification or updating;

  • request cancellation;

  • obtain restriction of processing;

  • receive your Data in portable format;

  • lodge a complaint with the Privacy Guarantor.

Further information on treatment

  • The Data may be used for the Owner's legal defense.

  • System logs may be collected for operation and maintenance purposes.

  • Further specific information may be provided upon request.

Changes to this Privacy Policy

  • The Data Controller reserves the right to modify this Privacy Policy at any time by informing Users on this page or through direct communication.

  • Please check this page periodically, referring to the last modification date.

  • Last modified: September 20, 2025

bottom of page