Pursuant to Lgs. decree 196/2003, as envisaged in Lgs. Decree 101/2018, and Art. 13 of EU Regulation no. 679/2016 (“GDPR”)
1 – Data Controller e Data Processor
DATA CONTROLLER
Daunia Serramenti Srl
Zona industriale SS89 km 9,800
71011 Apricena (FG) – Italy
VAT reg. no. IT 01510990714
+39.0882.64.76.96
info@dauniaserramenti.it
DATA PROCESSOR
Daunia Serramenti Srl
Zona industriale SS89 km 9,800
71011 Apricena (FG) – Italy
VAT reg. no. IT 01510990714
+39.0882.64.76.96
info@dauniaserramenti.it
2 – Personal data processed
- Data processed for the purposes of website operation
During normal use, the computerised systems and processes put in place for the operation of the website www.dauniaserramenti.it acquire personal data, the transmission of which is implicit in the use of internet communication protocols. This is information that is not collected to be associated with identified data subjects but which could, by its very nature and through the processing and association with data held by Daunia Serramenti or third parties, allow website users to be identified.
This data category includes IP addresses or domain names of computers and terminals used by those users who connect to the website, URI/URL addresses for the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, and other parameters concerning the operating system and IT environment of the user. - Data provided by the user
The optional, explicit and voluntary sending of data, as required by the different sections on this website are used for the purpose of executing the requests of the user (for example, completing registration for the Newsletter or sending in contact requests using the contact form, or completing registration to access the reserved area), and involve the acquisition of the sender’s identification and contact data, as required to answer the user’s requests. In particular, within specific sections of the website, such as the reserved area, users may voluntarily provide personal data (e.g. First Name and Surname, Email address, business name, telephone no., VAT reg., etc.), in order to be able to use specific services provided through these sections of the website.
We inform you that, during the registration process, Daunia Serramenti will ask you to provide an email address to make the necessary checks (e.g., Daunia Serramenti will send an email with the code necessary to complete your registration) to verify you and to be able to contact you if necessary, in case of changes to this privacy policy or of risks due to the circulation of your personal data. - Cookie
The website uses cookies to guarantee the normal browsing and use of the website and to improve the user experience of the site. For more information on our use of cookies, we recommend reading the full policy at the following address: www.www.dauniaserramenti.it/en/cookie-policy/
3 – Purposes of processing
| PURPOSES OF PROCESSING | LEGAL BASIS FOR PROCESSING | DATA RETENTION PERIOD |
| Website operation The data collected during navigation are used to obtain anonymous statistical information on website use and to check the correct operation. | The processing put in place for this purpose is based on the lawful interest of the Data Controller in the correct administration of the website. | For the duration strictly necessary to achieve valid statistical information and to effectively control the correct operation of the website. |
| Sending of commercial or informative communication Data provided directly by the user are used for the purposes of meeting the request of this latter (e.g., the sending of newsletters, marketing communication) | The processing put in place for this purpose is performed with the specific consent of the user. | Until consent for the sending of newsletters or commercial information is revoked by the user |
| Contractual purposes Data provided directly by the user are used for the purpose of preparing and executing contracts with users (e.g., preparation of quotes) | Processing put in place for this purpose is based on the performance of a contract of which the user is part. | 10 years from the cessation of the contract |
| Use of specific services by the data subject Data collected directly from the user are used for the purpose of providing services for access to areas and services reserved to the assistance service. | Processing put in place for this purpose is based on the performance of a contract of which the user is part. | 10 years from the cessation of the contract |
| Purposes connected to the exercise of the Data Controller’s rights (e.g. defence in court) | for this purpose, consent is not necessary since data processing is related to the exercise of the Data Controller’s rights | 10 years |
| Purposes connected to the fulfilment of the obligations envisaged by law or regulations, as well as to meet obligations ratified by anti-money laundering laws | for this reason, consent is not required, since data processing is related to compliance with this law and/or regulatory obligations/provisions) | 10 years |
| Profiling activities Data collected is processed for the purposes of analysing and processing the browsing preferences, habits and experiences of users. | The processing put in place for these purposes is performed with the specific consent of the user. | 12 months from user’s acceptance. |
3 – Nature of granting data
Navigating data are needed to implement computerised and electronic protocols. Data marked as obligatory (e.g., first name, surname, email address, telephone number, locality, province) on contact forms are needed for the provision of the services offered (e.g., sending of newsletters, sending of messages, directions to the nearest showroom) and failure to grant these data will mean that the company is unable to provide the required service.
We remind you that, according to each case, we will inform you of the obligatory or optional nature of communicating the data required, highlighting the obligatory data with an asterisk “*”
4 – Data recipients
We inform you that, for the above purposes, your data may be made accessible to:
- Employees and collaborators of the Controller, expressly trained and authorised for processing
- Other companies, identified by specific agreement, as Data Processors.
- Suppliers of services who perform outsourced activities for the Data Controller (e.g., website administration, management of sending out newsletters, collaboration with the data controller on the subject of accounting, administration, tax, legal and financial, in the capacity as Data Processor, within the limits of the purposes stated in this policy.
- To public administrations to meet legal obligations.
In any case, use of these subjects will occur subsequent to the undertaking on their part to comply with privacy regulations.
A list of Data Processors is available at specific request from the following email address: info@dauniaserramenti.it
5 – Processing methods
The personal data provided by the user is processed using the operations stated in Art. 4, no. 2) of the GDPR, by persons expressly authorised to process and suitably trained in order to guarantee the confidentiality of the data process and to avoid the loss, destruction and unauthorised access or processing of said data, as well as by the units of same, insofar as within their remit.
Data provided will be collected using suitable electronic and/or paper means, with logic strictly in relation with the purpose of the same and in any case, able to guarantee the security, secrecy and confidentiality of same. We inform you that Daunia Serramenti reserves the right to delete the accounts of registered users, together with all associated data, in the case that unlawful content is found or content that is harmful to the image of Daunia Serramenti and/or the products offered by this latter or third parties, or in any case, offensive content that promotes illegal or defamatory activities, pornographic content, or content that incites violence or promoted discrimination on the grounds of race, sex, religion or sexual orientation.
6 – Data transfer
The abovementioned data are mainly stored on servers located within the European Union. Data provided for sending communication for marketing purposes (e.g. “Newsletters”) are partly stored on servers located outside of the EU, and with the following companies:
- MailChimp – the Rocket Science Group, LLC, 512 Means St., Suite 404, Atlanta, Georgia 30318 – which guarantees its participation in the Privacy Shield.
We guarantee that the transfer of data outside the EU takes place in compliance with the applicable laws and that your data will never be used directly by MailChimp or sold on to third parties by same.
7 – Links to other websites
It is possible to connect to other websites owned by third parties using the links on this site (e.g., social networks, using social plug-ins). The Data Controller cannot accept any responsibility for requests and/or issue of personal data to these third-party websites.
8 – Existence of an automated decision-making process
There are no automated decision-making processes.
9 – Data subject’s rights
In the spirit of full transparency and correctness with which Daunia Serramenti intends to manage material, we guarantee that we are at your complete disposal to provide all clarifications required and will collaborate on appropriate processes.
We inform you that the Regulations grant users the possibility to exercise specific rights.
As Data Subject, you have the right to obtain from the Data Controller, confirmation of the processing, if any, of any personal data concerning you. In this case, pursuant to Art. 15 of the GDPR, you have the right to obtain access to your personal data and to check the purposes and methods used for processing. You may also exercise your right to the update, correction, integration, opposition to processing, limitation and deletion of any personal data concerning you.
Users can also deactivate and cancel their subscription to the Newsletter service at any time, by clicking on the unsubscribe link in the Newsletter received.
Pursuant to Art. 7 of the GDPR, the data subject can revoke any consent given at any time.
To exercise these rights, write to Daunia Serramenti, for the attention of the Data Controller, domiciled for the purpose at the company’s registered office, or contact us at the following email address: info@dauniaserramenti.it
The data provided will be stored for a period of no later than one year from the user’s request for deletion. After this term, the data will be destroyed.
We reserve the right to store so-called log-in and log-out data for a longer period, for the purposes of managing any crimes committed to the detriment of the website (hacking).
Data subjects who feel that the processing of their personal data is in breach of the provisions of the GDPR have the right to submit a complaint to the Privacy Authority, as set down in Art. 77 of the Regulation, or to take appropriate legal action, as per Art. 79 of the Regulation.
10 – Amendments to the privacy policy
The Data Controller reserves the right to make amendments to this Policy at any time. The date of the latest update to the Policy is provided at the beginning of this page. In case of substantial amendments to this Policy, the Data Controller will communicate, on the website, that the privacy policy has been changed, providing a link to the new version. In case of substantial changes to the way in which the Personal Identification Details of the User are used, Daunia Serramenti SRL will duly inform the user by email at the address specified in their account (where applicable) and/or via notification published on the home page of the website, offering the possibility to refuse this new or different use. Any amendments to the Policy will become effective as soon as the new version of the Policy is published on the website.
The use of the website after publication of these changes implies the user’s acceptance of the new version of the policy in force.