Privacy Policy

Last updated: 16 July 2026

This policy describes how Returnio processes personal data of site users and their end customers, in accordance with Regulation (EU) 2016/679 (GDPR).

1. Data controller

Returnio S.r.l., based in Italy. Contact: returnio@returnio.eu.

2. Data we collect

Account data: email, password (hashed), billing details.

Usage data: technical navigation data, system logs, technical cookies.

End-customer data: name, email, order number, return request reason.

3. Purposes and legal basis

Service delivery and contract performance (art. 6.1.b GDPR).

Legal obligations, including Art. 54-bis of the Italian Consumer Code (art. 6.1.c GDPR).

Security, fraud prevention and service improvement (art. 6.1.f GDPR โ€“ legitimate interest).

4. Retention

Contract data: term of contract + 10 years. Technical logs: 12 months. Return requests: 12 months and 14 days.

5. Recipients

Technical providers (hosting, email, payments) act as processors under art. 28 GDPR. No third-party marketing sharing.

6. Your rights

You can exercise access, rectification, erasure, restriction, portability and objection rights by emailing returnio@returnio.eu. You also have the right to lodge a complaint with your supervisory authority.