Privacy Policy

Data Controller

  • Business Name: Pixuprint – Marco Cotugno

  • Address: Corso Galileo Ferraris 80, Turin (Italy)

  • Email: info@pixuprint.net

  • DPO: not appointed

Scope

This Privacy Policy describes the processing of users’ personal data in relation to the website www.pixuprint.net (the “Website”), e-commerce services for digital products, contact forms, and marketing activities.

It is provided in compliance with the Regulation (EU) 2016/679 (GDPR), the Italian Legislative Decree 196/2003 as amended, and applicable e-privacy regulations.

Data Processed

  • Account/Order Data: first name, last name, email address, phone number, billing address, tax details where required, order contents, and notes.

  • Payments: transaction results, payment identifiers, tokens, or technical references required to manage the order. The Controller does not store full payment card details. Payments are processed by Stripe and/or PayPal according to their respective privacy policies.

  • Contact/Support: data submitted through forms (first name, last name, email, phone number, message).

  • Reviews/Content: published reviews, possible alias/name, anti-spam metadata.

  • Browsing Data: IP address, user-agent, technical logs, online identifiers (cookies/SDKs) according to preferences expressed in the cookie banner.

  • Language Preferences: language settings (Polylang), language preference cookies.

  • Newsletter: email address and preferences, aggregated statistics (opens/clicks) if subscribed.

Purposes and Legal Bases

  • Website Technical Management and Security: delivery of website pages, abuse prevention, diagnostics. Legal basis: legitimate interest (Art. 6.1.f GDPR).

  • E-commerce: management of digital orders, accounts, delivery of purchased files, invoicing, and post-sale support. Legal basis: contract performance/pre-contractual measures (Art. 6.1.b) and legal obligations (Art. 6.1.c).

  • Payments: payment processing and anti-fraud security through Stripe and/or PayPal. Legal basis: contract performance (Art. 6.1.b) and legitimate interest (Art. 6.1.f).

  • Contacts: responding to requests submitted via forms/email. Legal basis: pre-contractual measures and legitimate interest (Art. 6.1.b/f).

  • Reviews/Content: publication and moderation. Legal basis: contract performance/legitimate interest (Art. 6.1.b/f).

  • Analytics: Google Analytics (via Site Kit) for aggregated traffic analysis. Legal basis: consent (Art. 6.1.a).

  • Marketing/Newsletter: sending promotional communications through Mailjet. Legal basis: consent (Art. 6.1.a).

  • Advertising/Remarketing: possible tools such as Meta Pixel, TikTok Pixel, and Google Ads/Remarketing, if enabled. Legal basis: consent (Art. 6.1.a).

  • Language Localization: storage of language preferences (Polylang). Legal basis: consent or functional necessity.

Mandatory Nature of Data Provision

Data marked as mandatory during checkout/forms are necessary to provide the service.

Marketing activities are optional and carried out only with prior consent.

Processing Methods

Data is processed using electronic tools and appropriate security measures.

Access is limited to authorized personnel and service providers acting as Data Processors pursuant to Art. 28 GDPR or, where applicable, as Independent Data Controllers (e.g., Stripe, PayPal).

Recipients

  • Hostinger: hosting and technical infrastructure, with servers located in Germany – EU.

  • Payments: Stripe and PayPal, for secure transaction management. Stripe Privacy: https://stripe.com/privacy. PayPal Privacy: https://www.paypal.com/legalhub/privacy-full.

  • Analytics/Google: Google Ireland/Google LLC, where services such as GA4 or Site Kit are active, subject to consent where required. Google Privacy: https://policies.google.com/privacy.

  • Newsletter: Mailjet / Sinch Email, if the user subscribes to the newsletter. Mailjet Privacy: https://www.mailjet.com/legal/privacy-policy/.

  • Advertising: Meta Platforms, TikTok, and Google Ads, only if enabled and with marketing consent.

  • Authorities/Consultants: where required by law or necessary to protect rights.

Possible Future Integration of Printing Services

Currently, Pixuprint sells downloadable digital products and does not ship physical products.

In the future, the Website may integrate printing, production, and shipping services through third-party providers such as Printful or similar services. In such case, this Privacy Policy will be updated before the service is activated, and additional data necessary for shipping may be processed, such as delivery address, phone number, and delivery-related information.

Transfers Outside the EEA

Some providers, including Stripe, PayPal, Google, Mailjet / Sinch Email, Meta, and TikTok, may process data outside the European Economic Area.

Transfers are carried out based on the mechanisms provided by the GDPR, including Standard Contractual Clauses (SCCs), adequacy decisions, or other applicable safeguards adopted by providers.

Data Retention

  • Orders/invoices: 10 years (accounting/tax obligations).

  • Accounts: for the duration of the account; order data remains for legal obligations (10 years).

  • Contacts: up to 24 months.

  • Newsletter: until withdrawal/unsubscription. Consent logs are retained for up to 10 years for legal proof purposes.

  • Technical logs: up to 6 months.

  • Cookies/Identifiers: according to the durations indicated in the Cookie Policy.

Cookies and Consent

A consent banner (Complianz) with prior blocking is active: non-essential scripts/cookies remain disabled until consent is provided.

You can change your preferences at any time via “Manage Consent”. Details are available in the Cookie Policy.

Newsletter (Mailjet)

  • Data: email address, optionally first/last name; aggregated statistics (opens/clicks).

  • Legal basis: consent; revocable at any time.

  • Provider: Mailjet / Sinch Email (SCCs; privacy link above).

Advertising/Pixels (Meta, TikTok, Google Ads)

Any advertising/remarketing tools, such as Meta Pixel, TikTok Pixel, or Google Ads, are activated only with Marketing consent. They may collect identifiers (cookies), IP addresses, user-agents, and browsing or purchase events such as view content, add to cart, and purchase.

If “advanced matching” (Meta) is enabled, hashed email/phone data may be sent, only with consent.

reCAPTCHA (Anti-Spam)

Some forms may be protected by Google reCAPTCHA. Google’s privacy policy applies. It is loaded only with consent if configured as a consent-based service.

E-commerce and Payments

  • Digital Orders: purchased files are made available after payment via download links or account area. No physical product is shipped.

  • Payments: processed by Stripe and/or PayPal; the Website only receives tokens, outcomes, identifiers, or technical references necessary to manage the order.

Data Subject Rights

You have the right to: access, rectification, deletion, restriction, objection, portability, withdrawal of consent, and objection to automated decision-making where applicable.

For requests: info@pixuprint.net.

You also have the right to lodge a complaint with the Italian Data Protection Authority (www.garanteprivacy.it – Piazza Venezia 11, 00187 Rome, Italy).

Security

Appropriate technical and organizational measures are implemented (TLS/HTTPS, updates, hardening, access controls, backups).

Data is processed on servers located in Germany (EU), except where indicated regarding transfers outside the EEA.

Minors

The Website and services are not intended for children under 14 years old (Art. 2-quinquies Italian Privacy Code).

If we become aware of unauthorized children’s data, it will be removed.

Automated Decision-Making and Profiling

No solely automated decisions producing legal effects on users are carried out.

Advertising/remarketing activities may involve limited profiling for ad personalization purposes, only with consent.

Changes

This Privacy Policy may be updated. Please review it periodically.

Last updated: 11/05/2026

Scroll to Top