INFORMATION TO CUSTOMERS AND SUPPLIERS ON THE TREATMENT OF PERSONAL DATA ART. 13 "EUROPEAN REGULATIONS ON THE PROTECTION OF PERSONAL DATA - GDPR" (EU REGULATION 2016/679)
Tecno Vacuum S.r.l. based in Via Monza 62, 20060 Gessate (MI) ITALY, C.F./P.IVA. 07080500965 (hereinafter "Data Controller"), in quality of the data controller, informs you pursuant to art. 13 EU Regulation n. 2016/679 (hereinafter, "GDPR") that your data, in relation to your browsing on our website, will be processed in the manner and for the following purposes:
B) DATA PROCESSING
1) Object of the processing
The Data Controller processes personal, identifying and non-sensitive data (for example, but not limited to, name, surname, company name, address, telephone number, e-mail address - hereinafter, "personal data" or even "data") communicated by you on the online request for clarifications or support requests.
2) Purpose of the processing
Your personal data are processed:
Without your express consent (Article 24 letter a), b), c) Privacy Code and art. 6 lett. b), e) GDPR), for the following Service Purposes:
• allow you to use any of the Services requested by you;
• process a contact request;
• fulfill the obligations established by law, by a regulation, by the community legislation or by an order of the Authority;
• prevent or discover fraudulent activities or abuse harmful to the Site;
• exercise the rights of the Data Controller, for example the right to exercise a right in court.
In the cases indicated above, the legal basis for processing your personal data consists in executing a contract with you or in providing the service you have specifically requested or in following up a legal obligation or protecting our legitimate interests.
3) Processing methods
The processing of your personal data is carried out by means of the operations indicated in art. 4 of the Privacy Code and art. 4 n. 2) GDPR and more precisely: collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and destruction of data. Your personal data are subjected to both paper and electronic and / or automated.
4) Retention time of the processed data
The Data Controller will process personal data for the time necessary to fulfill the aforementioned purposes.
5) Navigation data processing
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.
This is information that is not collected to be associated with identified interested parties, but which by their very nature could, through processing and association with data held by third parties, allow users to be identified.
This category of data includes IP addresses or domain names of the computers used by users connecting to the site, the addresses in the Uniform Resource Identifier (URI) notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (success, error, etc.) and other parameters relating to the operating system and the user's computer environment.
These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning. The data could also be used to ascertain responsibility in case of hypothetical computer crimes against the site.
6) Security measures
The Data Controller has taken a variety of security measures to protect your data against the risk of loss, misuse or alteration.
7) Access to data
Your data may be made accessible for the purposes referred to in art. 2:
• to the employees and collaborators of the Data Controller, in their capacity as persons in charge and / or internal managers for data processing
• to third-party companies or other entities that carry out outsourced activities on behalf of the Data Controller, in their capacity as managers of the data processing.
8) Data communication
Without your express consent (pursuant to Article 24 letter a), b), d) Privacy Code and art. 6 lett. b) and c) GDPR), the Data Controller may communicate your data to Supervisory Bodies, Judicial Authorities and to all other subjects to whom the communication is mandatory by law for the accomplishment of said purposes. Your data will not be disclosed.
9) Data transfer
The management and storage of personal data will take place in Europe, on servers located in Italy of the Data Controller and / or third-party companies appointed and duly appointed as Managers of the data processing.
10) Nature of the provision of data and consequences of refusal to respond
The provision of data for the purposes referred to in art. 2 is mandatory. In their absence, we cannot guarantee the services of the art. 2.
11) Rights of the interested party
In compliance with the provisions of Chapter III, Section I, GDPR, you may exercise the rights indicated therein and in particular:
Right of access - To obtain confirmation that personal data processing concerning you is being processed and, in this case, to receive information relating, in particular, to: purpose of processing, categories of personal data processed and retention period, recipients which these can be communicated (Article 15, GDPR);
Right of rectification - To obtain, without undue delay, the correction of inaccurate personal data concerning you and the integration of incomplete personal data (Article 16, GDPR);
Right to cancellation - To obtain, without undue delay, the cancellation of personal data concerning you, in the cases provided for by the GDPR (Article 17, GDPR);
Right of limitation - To obtain from the Data Controller the limitation of the treatment, in the cases provided for by the GDPR (article 18, GDPR);
Right to portability - Receive in a structured format, commonly used and readable by an automatic device, the personal data concerning you provided to the Data Controller, as well as obtaining that the same are transmitted to another controller without impediments, in the cases provided by the GDPR (article 20, GDPR);
Right to object - Oppose to the processing of personal data concerning you, unless there are legitimate reasons for the joint controllers to continue processing (Article 21, GDPR);
Right to propose a complaint to the supervisory authority - Propose a complaint to the Guarantor for the protection of personal data, Piazza di Montecitorio n. 121, 00186, Rome (RM).
12) Method of exercising rights
You can exercise your rights at any time by sending:
- a registered letter with return receipt to Tecno Vacuum S.r.l., Via Monza 62, 20060 Gessate (MI)
- an e-mail to the address: firstname.lastname@example.org
13) Changes to this Information
Last updated on 25 May 2018.