Privacy Policy

Last updated: April 20, 2026

This Privacy Policy applies to the processing of personal data by Junakim (hereinafter "we", "us", "our", or the Data Controller), registered at Via S. Pollini, 134, 27030 Zinasco Nuovo PV, Italy, E-mail: info@junakim.com, Phone: +39 0282 401582. This policy is drafted in full compliance with Regulation (EU) 2016/679 (GDPR) and Italian Legislative Decree 196/2003 (Italian Privacy Code), governing the protection of personal data for consumers and users in Italy and the European Union.

1. Data Controller & Contact Details

Data Controller: Junakim (JUNAKIM)

Business Address: Via S. Pollini, 134, 27030 Zinasco Nuovo PV, Italy

E-mail: info@junakim.com

Phone: +39 0282 401582

Data Protection Officer (DPO): We do not have a dedicated DPO, and all data protection queries may be directed to the above contact details

2. Categories of Personal Data We Collect

We collect and process the following personal data, based on your interaction with our website and services:

2.1 Data Provided Directly by You

- Identification data: Full name, billing/shipping address, phone number, email address

- Payment data: Credit/debit card details (processed securely via third-party payment providers; we do not store full card numbers on our servers)

- Order data: Order history, product preferences, delivery instructions, return/refund requests

- Account data: Username, password (encrypted), account preferences (if you create an account)

- Communication data: Messages, inquiries, feedback, and support requests sent to us

2.2 Automatically Collected Data (via Cookies & Tracking)

- Technical data: IP address, browser type/version, operating system, device type, screen resolution, referring/exit pages, date/time of visit, pages viewed, and website navigation data

- Usage data: Shopping cart activity, product searches, and browsing behavior (for analytics and service improvement)

2.3 Special Category Data

We do not collect or process special category personal data (e.g., racial/ethnic origin, religious beliefs, health data, biometric data) unless explicitly provided by you for a specific, lawful purpose and with your explicit consent.

3. Purposes & Legal Bases for Processing

We process your personal data only for the following specified purposes, based on the legal grounds under Article 6 of the GDPR:

1. Performance of a contract (Art. 6(1)(b) GDPR)
Process and fulfill your orders, manage shipping/delivery, handle payments, and provide after-sales support (returns, refunds, warranty); Create and manage your customer account, send order confirmations, delivery updates, and service-related notifications

2. Legal obligation (Art. 6(1)(c) GDPR)
Comply with Italian tax, accounting, and invoicing laws (retain order/invoice data for the legally required period); Meet regulatory requirements for fraud prevention, anti-money laundering, and consumer protection

3. Legitimate interest (Art. 6(1)(f) GDPR)
Ensure website security, prevent fraud, detect and mitigate unauthorized access or cyber threats; Analyze website usage to improve our products, services, user experience, and marketing effectiveness (using aggregated, anonymized data); Manage customer service and resolve disputes or complaints

4. Explicit consent (Art. 6(1)(a) GDPR)
Send marketing communications (newsletters, product offers, promotions) only if you opt-in via our website or checkout form. You may withdraw your consent at any time (see Section 7).

4. Data Sharing & Recipients

We share your personal data only with the following categories of recipients, as necessary for the purposes listed above:

- Payment service providers: PayPal, Stripe, Shopify Payments, Apple Pay, Google Pay (to process payments securely)

- Shipping & logistics partners: Courier companies (to deliver your orders and handle returns)

- IT & cloud service providers: Hosting, analytics (e.g., Google Analytics), and website maintenance providers (all GDPR-compliant, with Data Processing Agreements (DPAs) in place)

- Legal/accounting advisors: To comply with legal, tax, and regulatory obligations

- Law enforcement/authorities: Only when required by Italian or EU law, or to protect our legitimate rights and interests

We do not sell, rent, or trade your personal data to third parties for commercial purposes without your explicit consent.

5. International Data Transfers

Your personal data is primarily stored and processed within the European Economic Area (EEA). If we transfer data to countries outside the EEA (e.g., for cloud hosting or payment processing), we ensure adequate protection via EU-approved standard contractual clauses (SCCs), Binding corporate rules (BCRs), or Adequacy decisions by the European Commission.

6. Retention Period of Personal Data

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by Italian/EU law:

- Order/payment data: Retained for 10 years (Italian tax/accounting legal requirement)

- Account data: Retained until you close your account, plus 1 year for legal/audit purposes

- Marketing data: Retained until you withdraw your consent, or until you unsubscribe from marketing communications

- Technical/usage data: Retained for 12 months (aggregated and anonymized after this period)

- Return/refund data: Retained for 2 years (to manage after-sales claims and comply with consumer law)

7. Your Rights as a Data Subject (Under GDPR & Italian Law)

You have the following rights regarding your personal data, which you may exercise by contacting us at info@junakim.com or via post at our business address:

1. Right of access (Art. 15 GDPR): Request confirmation of whether we process your data, and obtain a copy of the data we hold

2. Right to rectification (Art. 16 GDPR): Request correction of inaccurate or incomplete personal data

3. Right to erasure ("right to be forgotten", Art. 17 GDPR): Request deletion of your data, where processing is no longer necessary, you withdraw consent, or processing violates the GDPR

4. Right to restriction of processing (Art. 18 GDPR): Request limitation of processing (e.g., while we verify data accuracy)

5. Right to data portability (Art. 20 GDPR): Receive your data in a structured, machine-readable format, or request transfer to another controller (where technically feasible)

6. Right to object (Art. 21 GDPR): Object to processing based on legitimate interest (including direct marketing)

7. Right to withdraw consent: Withdraw any consent you have given (e.g., for marketing) at any time, without affecting the lawfulness of processing before withdrawal

8. Right to lodge a complaint: File a complaint with the Italian Data Protection Authority (Garante per la Protezione dei Dati Personali) if you believe your rights have been violated: https://www.garanteprivacy.it/

We will respond to your request without undue delay and within 1 month of receipt (extendable by 2 months for complex requests), free of charge unless the request is manifestly unfounded or excessive.

8. Data Security Measures

We implement appropriate technical and organizational security measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction, in line with GDPR requirements (Art. 32):

- 256-bit SSL/TLS encryption for all website transactions and data transmission

- Encrypted storage of sensitive data (e.g., passwords, payment details)

- Access controls: Only authorized staff have access to personal data, on a need-to-know basis

- Regular security audits, vulnerability testing, and staff training on data protection

- Data breach notification: In the event of a personal data breach, we will notify the relevant authority within 72 hours (where required) and inform affected users without undue delay if there is a high risk to your rights and freedoms

9. Cookies & Similar Technologies

Our website uses cookies and similar tracking technologies to enhance your browsing experience, analyze usage, and deliver personalized content. For full details on the types of cookies we use, their purposes, and how to manage/opt-out, please review our Cookie Policy (linked on our website footer). You may adjust your browser settings to block or delete cookies, though this may affect website functionality.

10. Children's Privacy

Our website and services are not intended for use by children under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected data from a child under 16 without verifiable parental consent, we will delete that data immediately.

11. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time. Significant changes will be posted on our website with a 15-day prior notice period, and we will notify you via email (where you have provided consent). The updated policy will apply to all data collected after the effective date.

12. Contact Information

For any questions, requests, or concerns regarding this Privacy Policy or our data processing practices, please contact:

Junakim (JUNAKIM)
Via S. Pollini, 134, 27030 Zinasco Nuovo PV, Italy
E-mail: info@junakim.com
Phone: +39 0282 401582

This policy is available in Italian and English. In case of any discrepancy, the Italian version shall prevail for Italian users.