GENERAL DATA PROTECTION REGULATION PURSUANT TO THE REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 and law 101/2018
Pursuant to art. 13 EU Regulation n. 2016/679 (hereinafter "GDPR") regarding the protection of personal data (hereinafter the "Code"), the company ERREBI S.p.A. unipersonale, as Data Controller, is required to provide information on the use of your personal data This information refers also to the processing carried out by the subjects who perform, on behalf of the single-member company ERREBI S.p.A. unipersonale, the technical and organizational tasks described in paragraph 1.
1. Object of the Treatment
The Data Controller processes personal data, (such as -name, surname, company name, address, telephone number, e-mail address, bank/payment details- as "personal data" or "data") given on the conclusion of contracts for services of the Owner.
2. Purposes and procedure of the Treatment.
The data in our possession, acquired through contractual relationships or through specific requests are collected directly from the company. All data collected will be processed in compliance with current legislation, and in any case, with due confidentiality. Your personal data are processed as follows:
A) without your express consent art. 6 lett. b), e) GDPR), for the following Service Purposes:
-Advertising of our products;
-preliminary requirements for the conclusion of a possible contract;
-fulfill the contractual obligations of the interested party by executing an act, a plurality of deeds or set of transactions necessary for the fulfillment of the aforementioned obligations;
-executing at any public or private authority the obligations connected to the contract;
-execute legal obligations;
-provide information on other services and / or opportunities provided by our company.
B) With your specific and distinct consent only: (Article 7 GDPR), for the following Marketing Purposes:
-to send via e-mail, regular mail and/or text messages (sms) and/or telephone contacts, newsletters, marketing information and/or advertising material on products or services provided by the Data Controller and survey satisfaction on the quality of services;
-send via e-mail, regular mail and/or text messages (sms) and/or telephone contacts, commercial and / or promotional communications of third parties (for example, business partners, insurance companies, other Group companies).
Please note that if you are already a customer, we may send you commercial information relating to services and products of the Owner similar to those you have already used, subject to your disagreement. The processing of your personal data is carried out by means of the operations indicated in art. 4 n. 2) GDPR and more precisely: collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and destruction of data. Your personal data are subjected to both paper and electronic and/or automated processing. The Data Controller will process the personal data for the time necessary to fulfill the aforementioned purposes and in any case for no more than 10 years from the termination of the Service Finality relationship and no later than 2 years from the collection of data for the Marketing Purposes.
3. Nature of the collection and effect of a possible refusal
Sending of promotional material, catalogs, etc ... or request for information: The collection of data is necessary to fulfill your requests for information and/or sending of material, if we are not given consent for the processing of your personal data, we can not provide the services requested.
Contractual Relationship: The collection of personal data is also mandatory for the stipulation and execution of a contractual relationship, when having to comply with legal and tax obligations, so the refusal to provide such data will make impossible to establish relationships with our company. In this case, the relative processing of data does not require the consent of the interested party (Article 24).
4. Access to data
Your data may be accessible for purposes referred to art. 2.A) and 2.B):
- to employees and consultants of the Data Controller or companies in Italy and abroad, as persons in charge and/or internal managers of the processing and / or system administrators;
- to third-party companies or other subjects (such as, credit institutions, professional firms, consultants, insurance companies, etc.) who carry out outsourced activities on behalf of the Owner, as external managers of treatment.
-to our network of agents
-to factoring companies
-to debt collection companies
-to credit insurance companies
-to commercial information companies
-to professional firms and consultants
-to companies operating in the transport sector
5. Communication and circulation
Without need of an express consent art. 6 lett. b) and c) GDPR), the owner can communicate to the art. 2.A) to Supervisory Boards, Legal Authorities, an insurance companies for the provision of insurance services, as well as to those subjects to whom the communication is mandatory by law for the accomplishment of said purposes. These subjects will process the data as independent data controllers.
6. Data transfer
Personal data is stored on servers located within the European Union. In any case, it is understood that the Data Controller, if necessary, will have the right to move the servers even outside the EU. In this case, the Data Controller hereby ensures that the transfer of non-EU data will take place in accordance with the applicable legal provisions, subject to the stipulation of the standard contractual clauses provided by the European Commission.
7. Rights referred to Article 7 of REGULATION (EU) 2016/679.
You have the rights set forth in art. 15 GDPR and precisely the rights of:
I° to obtain confirmation of the existence of personal data referring to you, even not registered yet, with their communication in an intelligible form;
II° get indication:
a) of the origin of personal data;
b) of the purposes and methods of the processing;
c) of the logic applied in case of treatment carried out with electronic instruments;
d) of the identifying details of the holder, of the responsible and of the designated representative according to art. 3, paragraph 1, GDPR;
e) of the subjects or the categories of subjects to whom the personal data may be transferred or who may become aware of as designated representative in the territory of the State, managers or agents;
III° to get:
a) the updating, the correction or -when necessary- the integration of data;
b) the cancellation, the transformation into anonymous form or the blocking of data processed unlawfully, including data whose retention is unnecessary for the purposes of which they were collected or subsequently processed;
c) the attestation that the operations referred to point a) and b) have been brought to the attention, also as regards their content, of those to whom the data have been communicated or transferred, except in the case where such fulfillment is impossible;
IV° to object, totally or in part:
a) for legitimate reasons, the processing of personal data concerning of you, even if pertinent to the collection purpose;
b) to the processing of personal data concerning of you for the purpose of sending advertising or marketing material or for market research or commercial communication, through the use of automated call systems without intervention of an operator by e-mail and / or through traditional marketing methods by telephone and / or regular mail. It should be noted that the right of opposition, set out in point b) above, for direct marketing purposes through automated methods extends to traditional ones and that in any case the possibility remains for the data subject to exercise the right to object even only partially. Therefore, the interested party can decide to receive only communications using traditional methods or only automated communications or none of the two. Where applicable, it also has the rights referred to in Articles 16-21 GDPR (Right of rectification, right to be forgotten, right of limitation of treatment, right of data portability, right of opposition), as well as the right of complaint to the Competition Authority.
8. Modality of exercise of the rights
You can exercise the rights at any time, by sending to the designated manager for the personal data processing, in the person of the legal representative, available at the company, either by sending a notification to the certificate e-mail address of ERREBI SpA unipersonale, or by a registered letter sent to the business head office, in order to provide a feedback to the person concerned.
9.Owner, representative, managers and authorized persons
The owner of the personal data processing referred in this reporting is the company ERREBI S.p.A. unipersonale with registered office in Via Pianezze, 42-49 - 32040 CIBIANA DI CADORE (BL). The role of Representative of the treatment is held by the General Manager. The updated list of data processors and persons authorized to process the data is kept at the registered office of the Company.
Therefore, for full use of this website it is advisable to configure the browser so that it accept cookies.
By default, most web browsers are set to automatically accept cookies. Visitors/users can still change the default configuration. As pointed out above, the disabling or deletion of cookies could prevent optimum use of some areas of the site or compromise the use of the services under authentication.
If users/visitors wish to decide each time whether to accept cookies or not, they can also configure their browser to generate a message whenever a cookie is saved.
The cookies used are either persistent (they remain stored until they expire, on the hard disk of the personal computer of users/visitors) or session (they are not permanently stored on the computer of users/visitors and disappear when closing the browser).
Cookies are used to facilitate navigation within the site and its correct use, to facilitate access to services that require authentication (saving users from having to re-enter authentication credentials at each access to the services), for statistical purposes, to know which areas of the site were visited and, in some cases, for optimum management of the pages and advertising spaces or to deliver content and advertising in line with the choices made by users.
Session cookies are used for transmitting the session identifiers required to enable safe and efficient website browsing. The session cookies used on this website avoid recourse to other information technologies that could compromise the privacy of users/visitors, and are also used to improve the delivery of services.
Cookies may also be specific to the website (for example, to know the number of pages viewed within the site) or third-party (created by other websites to deliver content on the site being visiting). This site may use anonymous third-party cookies for the purpose of managing the delivery of ads in a dynamic and advanced way.
The most popular browsers allow the blocking of third-party cookies, accepting only those of the website.
Also, some companies that create cookies on other sites offer the possibility of disabling and/or inhibiting only their own cookies in a simple and immediate way, even when they are anonymous or do not involve registration of personal identification data (e.g. IP address).
COOKIES INSERTED FOR AGGREGATE ANALYSIS OF WEBSITE VISITS
The information generated by cookies on the use of websites by users (including IP address made anonymous by removing some digits) will be transmitted to and stored by Google servers.
This information is used for tracking and examining the use of websites by users, to compile reports on the activities of websites for their operators and to provide other services relevant to website activities and Internet use.
To fully protect the privacy of users, www.errebispa.com applies the IP masking option, which requires the system to obscure the last 8 digits of the visitor's IP address before any processing, thus making the analysed data anonymous.
Users who do not want cookies relevant to Google Analytics can prevent them from being stored on their computer by means of the special "Browser additional component to disable Google Analytics" made available by Google at https://tools.google.com/dlpage/gaoptout.
HOW TO DISABLE COOKIES
Most Internet browsers are initially set to automatically accept cookies. Users can change these settings in order to block cookies or to alert that cookies are sent to their device. There are several ways to manage cookies. Users can refer to the instruction manual or the help screen of their browser to find out how to adjust or change their browser settings. In case of different devices (e.g. computer, smartphone, tablet, etc.), users must ensure that each browser on each device is adjusted to reflect their preferences relevant to cookies.
I cookie utilizzati su www.errebispa.com
|Source of cookies||Cookies||Description|
|Google Analytics||__utma, __utmb, __utmc, __utmz, __utmv||We use the information, obtained through limited monitoring, to improve the content of the website, in order to improve the paths of navigation within the site. For example, this information helps us to know the number of pages viewed, the search engine of origin and the keyword used.|
|TYPO3 - Content Management System||fe_typo_user||This cookie is set by the content management system to univocally identify a user visiting the website. It is used to provide visitors with usability information, such as remembering sentences, form inputs, navigation choices, etc..|
|www.errebispa.com||stato, PHPSESSID||This technical cookies are used for the management of the output banner and session|
|private_content_version||Appends a random, unique number and time to pages with customer content to prevent them from being cached on the server.|
|persistent_shopping_cart||Stores the key (ID) of persistent cart to make it possible to restore the cart for an anonymous shopper.|
|form_key||A security measure that appends a random string to all form submissions to protect the data from Cross-Site Request Forgery (CSRF).|
|store||Tracks the specific store view / locale selected by the shopper.|
|login_redirect||Preserves the destination page the customer was navigating to before being directed to log in.|
|recently_viewed_product||Stores product IDs of recently viewed products for easy navigation.|
|recently_viewed_product_previous||Stores product IDs of recently previously viewed products for easy navigation.|
|recently_compared_product||Stores product IDs of recently compared products.|
|recently_compared_product_previous||Stores product IDs of previously compared products for easy navigation.|