Skip to main content

Version 1.0 | Effective Date: January 1, 2026 | Compliant with EU Regulation 2016/679 (GDPR)

Privacy Policy

Trust is the currency of our business. At Saporina, we are committed to protecting not only the quality of our food but also the privacy of the people who interact with us.

This Privacy Policy explains how we collect, use, and protect your personal data when you visit our website, do business with us, or join our manufacturing network.

Related policies: Terms of Use, Code of Business Conduct.

1. Introduction

Trust is the currency of our business. At Saporina, we are committed to protecting not only the quality of our food but also the privacy of the people who interact with us.

This Privacy Policy explains how we collect, use, and protect your personal data when you visit our website, do business with us, or join our manufacturing network.

2. Data Controller

The entity responsible for the processing of your personal data is:

  • Identity Saporina
  • Data Protection Officer (DPO) Contact privacy@saporina.com
  • Address [Insert Registered Address]

3. Data We Collect

We process different types of data depending on your relationship with us:

3.1 Browsing Data

What: IP addresses, URI addresses, time of requests, and device type.

Source: Collected automatically via cookies and server logs. See Section 6 (Cookies) for details.

3.2 Data You Provide

  • Contact Forms: Name, email, phone number, and company name when you request a quote or product specification.
  • Commercial Data: Billing details, tax IDs, and authorized signatories needed to execute contracts.
  • Supply Chain Data: If you are a manufacturing partner, we collect professional data regarding your certifications, audits, and key personnel.

3.3 Whistleblowing Data

What: Data provided through our Responsible Channel (Ethics Reporting).

This data is treated with the highest level of confidentiality and separate security protocols.

4. Purpose and Legal Basis

We process your data for specific, legitimate reasons:

Service Provision

Managing orders, logistics, and customer support.

Contractual Necessity (Art. 6.1.b GDPR)

Supply Chain Compliance

Vetting manufacturing partners (audits, certifications) to ensure they meet Saporina standards.

Legitimate Interest (Quality Assurance)

Legal Compliance

Tax reporting, accounting, and anti-money laundering checks.

Legal Obligation (Art. 6.1.c GDPR)

Marketing

Sending newsletters or product catalogs.

Explicit Consent (Art. 6.1.a GDPR)

Website Security

Preventing fraud and cyber-attacks.

Legitimate Interest

5. Data Sharing

Saporina does not sell your personal data. We only share data when necessary to run our global operations:

Service Providers

Third parties acting as Data Processors (e.g., IT hosting, cloud storage, marketing agencies). They are bound by strict confidentiality agreements.

Logistics Partners

We share shipping details with freight forwarders and customs brokers to deliver products.

Public Authorities

When required by law (e.g., tax authorities or judicial bodies).

International Transfers

We may process data outside the European Economic Area (EEA). In such cases, we ensure protection through Standard Contractual Clauses (SCCs) or adequacy decisions.

6. Cookies

Our website uses cookies — small text files stored on your device — to ensure functionality, improve your experience, and analyze usage patterns.

Strictly Necessary Cookies

Required for the website to function (e.g., session management, security). These cannot be disabled.

Analytics Cookies

Help us understand how visitors interact with our Site (e.g., pages visited, time on site). These are only set with your consent.

Managing Your Preferences

You can manage or withdraw your cookie consent at any time via the cookie banner on our Site, or by adjusting your browser settings. Note that disabling certain cookies may affect Site functionality.

7. Data Retention

We keep your data only as long as necessary:

  • Commercial/Tax Records: 10 years (statutory limitation).
  • Marketing Data: Until you withdraw your consent (unsubscribe).
  • Whistleblowing Reports: Kept only for the duration of the investigation and legal proceedings, then deleted.

8. Your Rights

Under the GDPR, you have the following rights over your data:

Right of Access

Ask if we are processing your data and request a copy.

Right to Rectification

Correct inaccurate information.

Right to Erasure

Request deletion when data is no longer needed.

Right to Restriction

Limit how we use your data.

Right to Object

Stop us from processing your data for marketing.

Right to Portability

Get your data in a structured, machine-readable format.

To exercise any of these rights, please email privacy@saporina.com.

We will respond to your request within 30 days. In complex cases, this may be extended to 90 days, and we will inform you of any extension.

Right to Lodge a Complaint

If you are not satisfied with our response, you have the right to lodge a complaint with your local Data Protection Authority (supervisory authority) under Article 77 of the GDPR.

9. Security

We implement robust technical and organizational measures (encryption, access controls, firewalls) to protect your data against unauthorized access, loss, or alteration.

10. Changes to this Policy

We may update this policy to reflect changes in our operations or legal requirements. When we make material changes, we will update the "Effective Date" at the top of this page.

The latest version of this policy will always be available on this page. We encourage you to review it periodically.

Ready to experience the Saporina Standard?