This privacy statement was last updated on October 24, 2025 and applies to citizens and legal permanent residents of the European Economic Area and Switzerland.

In this privacy statement, we explain what we do with the data we obtain about you via https://colosso.org/en. We recommend you carefully read this statement. In our processing we comply with the requirements of privacy legislation. That means, among other things, that:

• we clearly state the purposes for which we process personal data. We do this by means of this privacy statement;
• we aim to limit our collection of personal data to only the personal data required for legitimate purposes;
• we first request your explicit consent to process your personal data in cases requiring your consent;
• we take appropriate security measures to protect your personal data and also require this from parties that process personal data on our behalf;
• we respect your right to access your personal data or have it corrected or deleted, at your request.

If you have any questions, or want to know exactly what data we keep of you, please contact us.

1. Purpose, data and retention period

2. Sharing with other parties

We only share this data with processors and with other third parties for which consent must be obtained.

Third parties

Name: Meta
Country: [country].
Purpose: 
Date: [date] Name: Google
Country: [country].
Purpose: 
Date: [date] Name: AIFB EDOARDO GUZZI
Country: [country].
Purpose: 
Date: [date]

3. Cookies

Our website uses cookies. For more information about cookies, please refer to our Cookie Policy. 

4. Disclosure practices

We disclose personal information if we are required by law or by a court order, in response to a law enforcement agency, to the extent permitted under other provisions of law, to provide information, or for an investigation on a matter related to public safety.

If our website or organisation is taken over, sold, or involved in a merger or acquisition, your details may be disclosed to our advisers and any prospective purchasers and will be passed on to the new owners.

5. Security

We are committed to the security of personal data. We take appropriate security measures to limit abuse of and unauthorised access to personal data. This ensures that only the necessary persons have access to your data, that access to the data is protected, and that our security measures are regularly reviewed.

The security measures we use consist of:

• Login Security
• (START)TLS / SSL / DANE Encryption
• DKIM, SPF, DMARC and other specific DNS settings
• HTTP Strict Transport Security and related Security Headers and Browser Policies
• Website Hardening/Security Features
• Vulnerability Detection

6. Third-party websites

This privacy statement does not apply to third-party websites connected by links on our website. We cannot guarantee that these third parties handle your personal data in a reliable or secure manner. We recommend you read the privacy statements of these websites prior to making use of these websites.

7. Amendments to this privacy statement

We reserve the right to make amendments to this privacy statement. It is recommended that you consult this privacy statement regularly in order to be aware of any changes. In addition, we will actively inform you wherever possible.

8. Accessing and modifying your data

If you have any questions or want to know which personal data we have about you, please contact us. You can contact us by using the information below. You have the following rights:

• You have the right to know why your personal data is needed, what will happen to it, and how long it will be retained for.
• Right of access: You have the right to access your personal data that is known to us.
• Right to rectification: you have the right to supplement, correct, have deleted or blocked your personal data whenever you wish.
• If you give us your consent to process your data, you have the right to revoke that consent and to have your personal data deleted.
• Right to transfer your data: you have the right to request all your personal data from the controller and transfer it in its entirety to another controller.
• Right to object: you may object to the processing of your data. We comply with this, unless there are justified grounds for processing.

Please make sure to always clearly state who you are, so that we can be certain that we do not modify or delete any data of the wrong person.

9. Submitting a complaint

If you are not satisfied with the way in which we handle (a complaint about) the processing of your personal data, you have the right to submit a complaint to the Data Protection Authority.

10. Contact details

Colossus Agency
Via Maretto, 24/26 - Rome 00166
Italy
Website: https://colosso.org/en
Email: info@ex.comcolosso.org
Phone number: +30 697 057 7991

11. Data Requests

For the most frequently submitted requests, we also offer you the possibility to use our data request form

Annex

WooCommerce

This sample language includes the basic elements on personal data collection, storage and sharing, as well as on who is authorised to access this data. Depending on the settings enabled and additional plugins used, the specific information shared by our shop may vary. We recommend that you consult an attorney when deciding what information to disclose on your privacy policy.

During the payment process in our shop we collect information about you.

What we collect and save

As you visit our site, we track:

• Products you have viewed: we will use this information to, for instance, show you products you have recently viewed
• Location, IP address and browser type: we will use this information for tax and shipping estimates
• Shipping address: we will ask you to enter it in order, for example, to estimate shipping before you place your order and to send you what you have purchased!

We also use cookies to keep track of the contents of your shopping cart while you are browsing our site.

Note: for further details on the cookie policy, you will be linked to the section here.

When you make a purchase from us, we ask you to provide information such as your name, billing address, shipping address, email address, phone number, credit card number/payment details, and optional account information such as your username and password. We will use this information for purposes such as:

• We send you account and order information
• We respond to your requests, including complaints and refunds
• Payment processing and fraud prevention
• Set up your account for our shop
• Comply with all legal obligations incumbent on us, such as the calculation of taxes
• Enhance our shop offers
• Sending marketing messages, if you choose to receive them

If you create an account, we will store your name, address, email and phone number: these data will then be used to populate the checkout in your future orders.

In general, we keep your information as long as we need it for the purposes for which we collect and use it and as long as we are legally required to continue to keep it. For example, we store order information for XXX years for tax and accounting purposes. Such information includes name, email address, and billing and shipping addresses.

We also file comments and reviews, if you choose to leave them with us.

People in our team who have access

Our team members have access to the information you provide. For example, both administrators and shop managers have access to:

• Order information such as, purchased item, date of purchase and place of dispatch and
• Customer information such as your name, email address and billing and shipping information.

Our team members have access to this information to help fulfil orders, process refunds and support you.

What we share with others

In this section you must list with whom you share data and for what purpose. This may include, but is not limited to, analytics, marketing, payment gateways, shipping providers, and third party incorporations.

We share information with third parties who help us provide shop services and for ordering purposes; for example -

Payments

In this sub-section, you must list the third-party payment processors you use for payments on your shop as these may handle customer data. We have included PayPal as an example, but if you do not use PayPal, you can remove it.

We accept payments via PayPal. During payment processing, certain data is transferred to PayPal, including information necessary to process or support the payment, such as total purchase and billing data.

For further details, see the PayPal privacy policy .

Complianz | The Privacy Suite for WordPress

This website uses Complianz's WordPress Privacy Suite to collect and record consent based on browsers and devices. For this functionality, your IP address is anonymised and stored in our database. This service does not process any personally identifiable information and does not share any data with the service provider. For more information, see the Privacy Statement of Complianz.

WP Smush

Plugin: Smush

Note: Smush does not interact with end users on your website. The only input option Smush has is to a newsletter subscription for site admins only. If you would like to notify your users of this in your privacy policy, you can use the information below.

Smush sends images to the WPMU DEV servers to optimise them for web use. This includes the transfer of EXIF data. The EXIF data will either be stripped or returned as it is. It is not stored on the WPMU DEV servers.

Smush uses the Stackpath Content Delivery Network (CDN). Stackpath may store web log information of site visitors, including IPs, UA, referrer, Location and ISP info of site visitors for 7 days. Files and images served by the CDN may be stored and served from countries other than your own. Stackpath's privacy policy can be found here.

Loco Translate

This plugin does not collect any data from visitors to the public website.
Directors and auditors may wish to review the’plugin privacy policy of Loco.