Privacy Policy pursuant to Regulation (EU) 679/2016

Pursuant to Regulation (EU) 2016/679 (hereinafter “GDPR” or “Regulation”), the following describes the methods for processing the personal data of users who visit the website
www.laffilotecnica.it
Following the viewing of the website noted above, data on natural persons identified or identifiable may be processed.

DATA CONTROLLER.

The Data Controller is L’AFFILOTECNICA S.R.L., VAT no. 02459120305, with registered office in Strada di Salt 59/24, Remanzacco (UD) (hereinafter “Data Controller”).
To exercise the rights recognised by REGULATION (EU) 2016/679 (hereinafter “GDPR” or “Regulation”) or to request any clarification concerning the processing of personal data, the Data Controller can be reached at the following contacts: Tel +39 0432667590 – email info@laffilotecnica.it

INFORMATION ON TYPES OF DATA PROCESSED

Browsing data

During normal operation, computer systems and software procedures that serve to keep the website operational collect certain personal information, whose transmission is implicit in the use of Internet communication protocols.
This category includes IP addresses or the domain names of computers and terminals used by users, addresses in URI (Uniform Resource Identifier/Locator) notation of requested resources, the time the request is made, the method used to submit the request to the server, the file size obtained in response, the numerical code indicating the response status from the server (successful, error, etc.) and other parameters related to the user’s operating system and computer environment.

Purposes and legal grounds for processing
(Art. 13, paragraph 1, letter c)

These data are used to verify the correct operation of the website and to obtain statistical information (most visited pages, number of visitors per hour or day, geographical areas of origin, etc.). Furthermore, personal data could be used for verifying responsibility in case of computer crimes committed at the expense of the website (legitimate interests of the data controller).

Scope of disclosure

(Art. 13, paragraph 1, letters e, f)

The data are processed exclusively by internal personnel who are duly authorised and instructed for processing, and will not be disclosed to third parties, disseminated or transferred to non-EU countries. Only in the case of an investigation might they be made available to the competent authorities.

Data storage period
(Art. 13, paragraph 2, letter a)

Unless otherwise required for investigations in the event of illicit activities, data are generally stored for no more than [quantify] days.

Provision of data
(Art. 13, paragraph 2, letter f)

The data are not provided by the data subject but rather they are automatically acquired by the website’s technological systems

Contact form

The optional, explicit and voluntary sending of messages to the Data Controller’s contact addresses, as well as the completion and submission of the forms present on the aforementioned websites, entail the acquisition of the sender’s contact data which are necessary to allow a reply, as well as all the personal data included in the communications themselves.

Purposes and legal grounds for processing
(Art. 13, paragraph 1, letter c)

The personal data provided by users are used to respond to requests sent via the website’s contact form.

Scope of disclosure
(Art. 13, paragraph 1, letters e, f)

Personal data may only be accessed by persons authorised to process data and those who process personal data on behalf of the Data Controller who have been appointed as Data Processors. These parties are bound to secrecy and confidentiality.
The data will not be disclosed to third parties or disseminated.

Data storage period
(Art. 13, paragraph 2, letter a)

The data will be kept for the time necessary to process the request, including any subsequent ancillary activities.
If necessary, further notice will be provided concerning any processing to which your personal data may be subjected. In any case, checks are carried out every three years to delete data no longer necessary for the purposes for which they were processed.

Provision of data
(Art. 13, paragraph 2, letter f)

Failing to provide required data will make it impossible to send the message.

Cookies

For specific information you can consult the cookie policy.

RIGHTS OF DATA SUBJECTS.

The Data Controller informs you that as a data subject, you have the right to request:
• Access to your personal data and information (art. 15 of the GDPR).
• The rectification or erasure of the data (art. 16 and 17 of the GDPR).
• The restriction of the processing of your personal data (art. 18 of the GDPR).
Finally, you can:
• Object to the processing of your personal data under the conditions and within the limits set forth in art. 21 of the GDPR.
• Exercise the right to data portability (art. 20 of the GDPR).
With regard to processing operations based on consent (pursuant to article 6, paragraph 1, letter a) and article 9, paragraph 2, letter a) of the GDPR), we inform you that you have the right to withdraw your consent at any time, without prejudice to the lawfulness of the processing based on the consent given prior to withdrawal.
Finally, if you believe that the processing of your personal data infringes the GDPR you have the right to lodge a complaint with a supervisory authority (Personal Data Protection Authority or other authority having jurisdiction) in accordance with article 77 and following of the GDPR.