Antonioli S.r.l., as Data Controller, provides the following specific information about the methods of managing the site (https://www.antonioli.eu) in reference to the processing of personal data of users that consult it. It is also a privacy notice pursuant to art. 13 of EU Regulation 2016/679 ("GDPR" or "Regulation").
Directive 2002/58/EC on “personal data processing and protection of private life in the field of electronic communications”.
Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
Legislative Decree 30 June 2003 n. 196 “Code regarding the protection of personal data", as amended by Legislative Decree 10 August 2018 n. 101.
The Data Controller is Antonioli S.r.l., Milano, via Pasquale Paoli n. 1, email address: [email protected]
DATA PROCESSING PLACE
The processing connected with the web services of this website is realized at the seat of Antonioli S.r.l., as well as at the seat of third parties, appointed as Data Processor, who offer outsourced services.
TYPE OF DATA PROCESSED
The information systems and the software procedures necessary for the functioning of this web site acquire, during their normal exercise, some personal data whose transfer is implicit in the employment of communication protocols on the Internet. These information are not collected to be associated to identified Data Subjects, but – due to its nature – it could, through processing and association with data held by third parties, allow the identification of the users. To this category belong the IP addresses or the domain names of the PCs used by the users that connect to the web site, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request, and other parameters concerning the operation system and the user’s information environment. These data are used only to obtain anonymous statistic information on the employment of the web site and to control if it works correctly and are cancelled immediately after the processing. The data, besides, could be used to assess the responsibility in case of possible cyber-crimes against the web site.
Data provided freely by the user
The collection of personal data freely provided by the user through the form on the website or by calling any telephone number listed within the website, involves the subsequent acquisition of the data provided by the user, necessary for the execution of the service or the transmission of the information required. Specific information notice will be reported or displayed on the site pages set up for particular services requested.
Anonymous or aggregated data
Anonymization is a treatment that prevents the identification of the data subject. The anonymised data does not fall within the scope of the legislation on data protection. The aggregate data may derive from personal data provided by the user but are not considered personal data as, as specified, they do not allow either directly or indirectly the identification of the data subject.
PURPOSE AND LEGAL BASE OF THE PROCESS
Personal data will be processed for the following purposes:
- To allow navigation and consultation of the website.
The legal basis of the process is the consent that is clearly given by consulting the site (art. 6, first paragraph, let. a)).
- Purposes related to the provision of the services required (as answer to request of information and registration to a newsletter).
The legal basis of the process is the consent that is clearly given by filling the form (art. 6, first paragraph, let. a)).
- Purposes related to the purchase of the products.
The legal base of the process is the performance of the contract (art. 6, first paragraph, let. b)).
- Purposes related to marketing communications.
The legal basis of the process is the consent (art. 6, first paragraph, let. a)).
- Purposes related to the sending of commercial communications to customers who have purchased a product, through the use of the email address provided in the context of the sale, in relation to products similar to those being sold.
The legal base of the process is the legitimate interest (art 6, first paragraph, let. f)).
- Profiling purposes aimed at evaluating the preferences expressed by users in the context of purchases and views on the website.
The legal basis of the process is the consent (art. 6, first paragraph, let. a)).
- Defensive purposes in the event of abuses in the use of the site or attempts at fraud.
The legal base of the process is the legitimate interest (art. 6, first paragraph, let. f)).
LINKS TO OTHER WEBSITES
This site may contain links or references for accessing other sites. We inform you that the Data Controller does not control the cookies or other monitoring technologies of such websites to which this Policy does not apply. We therefore suggest that you consult the individual privacy policies relating to these websites.
DISCRETIONARY NATURE OF THE DATA PROVIDING
Apart from what has been specified concerning the surfing data, users are free to provide their personal data or not by filling the form on the site. However, the non-providing can enable obtaining what was requested.
CHECK ON YOUR PERSONAL DATA
We inform you that at any time you can choose to limit the collection or use of your personal data. For example, if you have previously consented to the processing of your personal data for marketing purposes, you can change your mind at any time by writing or sending us an email at [email protected] The company will not sell or distribute the personal data collected to third parties unless it has obtained explicit and free consent from the interested parties or unless this is expressly required by law. Subject to the collection of consent from the interested parties, personal data may however be used to send commercial communications.
PROCESSING METHODS AND DATA RETENTION
Personal data are processed, even through the use of automated tools, for the time strictly necessary to achieve the purposes for which they were collected. Specific safety measures are observed in order to prevent the loss of data, the illegal or wrong use of them and any unauthorized access. The Data Controller inspired by the main international standards, has adopted additional security measures to minimize the risks concerning secrecy, availability and integrity of personal data collected and processed.
SHARING, COMMUNICATION AND SPREADAING OF DATA
The data collected may be transferred or communicated to other companies, specifically appointed as Data Processors, for activities strictly connected to the purposes indicated above and instrumental to the efficiency of the service, such as the management of the information system; the collection of debt, the provision of marketing activities, electronic communication services. Apart from these cases, personal data will not be communicated or transferred to anyone, unless is provided by the agreement or authorized by the data subjects. In this case, personal data could be transmitted to third parties, but only in case: a) there is explicit consent to share data with third parties; b) the information must be shared with third parties in order to carry out the service required; c) it’s needed to meet requests by the Judicial Authority or Public Security. No data deriving from the web service is disseminated.
TRANSFER OF PERSONAL DATA TO THIRD COUNTRIES
Personal data will not be transferred to third countries, by which we mean countries not belonging to the European Union or the European Economic Area. If this happens, the Data Controller declares and guarantees to comply with the provisions of Articles. 44 and ss. of the GDPR.
RIGHTS OF INTERESTED PARTIES
The regulation for the protection of personal data provides some rights for the subject to whom the data refer (data subject). In particular, according to art. 15 and subsequent of the EU Regulation 2016/679, each data subject has the right to obtain confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to the personal data, to obtain rectification, erasure or restriction of processing concerning the data subject or to object to processing as well as the right to data portability. To exercise the aforementioned rights, the user can contact the Data Controller by sending a registered letter with return receipt to the address indicated or an email to [email protected]
RIGHT TO LODGE A COMPLAINT WITH A SUPERVISORY AUTHORITY
Every data subject who believes that the processing of personal data relating to him or her, through the web site, infringes the Regulation, shall have the right to lodge a complaint with a supervisory authority, as provided by the article 77 of GDPR.
The Data Controller informs you that the data collected will be kept only for the time necessary to fulfil the specific purposes indicated. Any further storage of data or part of the data may be arranged to assert or defend their rights in any eventual location and in particular in judicial offices.
CHANGMENT TO THIS PRIVACY POLICIES
The Data Controller periodically verifies its own privacy and security policies and, if necessary, revises them according to regulatory, organizational or technological changes. In the event of a change in policies, the new version will be published on this page of the site.
LAW AND JURISDICTION
The interpretation and execution of these conditions are governed by Italian law. The Court of Milano (MI) (Italy), will be exclusively competent for any dispute connected with these conditions. The Data Controller reserves the right to obtain urgent remedies in any Court, even abroad, to protect his interests and enforce his rights.
QUESTIONS, COMPLAINTS, SUGGESTIONS AND EXERCISE OF RIGHTS
Anyone interested in more information, in contributing with their suggestions or making complaints or disputes regarding the privacy policies, on the way in which the Data Controller processes personal data, as well as to assert their rights under the legislation on protection of personal data, you can contact the Data Controller by writing to Antonioli Srl, based in Milan, via Pasquale Paoli n. 1, e-mail address: [email protected]