PURSUANT TO ART. 13 OF EU REGULATION 2016/679
Beta Utensili S.p.A: (hereinafter referred to as the Company) (C.F.- P.IVA: 09321470966), with registered office in Sovico (MB), 20845, Via Volta n. 18, as Data Controller pursuant to Art. 4, par. 1, no. 7) and Art. 24 EU Regulation 2016/679 (hereinafter referred to as GDPR) on personal data protection, in compliance with the obligations set forth in Art. 13 GDPR, provides this Information Notice detailing the purposes and means of processing your personal data.
It should be noted that:
- personal data (ex art. 4, par. 1, no. 1) GDPR) means 'any information concerning an identified or identifiable natural person ('data subject'); an identifiable person is one who can be identified, directly or indirectly, with particular reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more elements that are characteristic of his or her physical, physiological, genetic, mental, economic, cultural or social identity';
- processing of personal data (ex art. 4, par. 1, no. 2) GDPR) means 'any operation or set of operations, carried out with or without the help of automated processes and applied to personal data or sets of personal data, even if not recorded in a database, such as the collection, recording, organization, structuring, storage processing, selection, limitation, adaptation or modification, extraction, consultation, use, communication by transmission, dissemination or any other form of making available, comparison or interconnection, restriction, erasure or destruction'.
1. Data controller and contact details
The Data Controller, pursuant to art. 24 of the GDPR, i.e. the person who determines the purposes and means of processing, is Beta Utensili S.p.A., with registered office in Sovico (MS), 20845, Via Volta n. 18 - Tel.: 03920771. - e-mail address: email@example.com.
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the communication protocols of the Internet.
This information is not collected to be associated with identified interested parties, but by their very nature could, through processing and associations, allow users to be identified. This category of data includes IP addresses or domain names of computers used by users who connect to the site, URI (Uniform Resource Identifier) of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the response from the server (successful, error, etc..) and other parameters regarding the operating system and computer environment.
These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and are deleted immediately after processing. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site.
Data provided voluntarily by the user
The optional, explicit and voluntary sending of electronic mail to the addresses indicated on this site, as well as the completion of the contact form or the transmission of data through other sections of the site, involves the subsequent acquisition of the sender's address, necessary to respond to requests, and any other personal data entered by the user.
Purposes of the Treatment and legal basis
2.1 Your personal data, subject to processing, are used for the following purposes:
- a) to respond to your specific requests;
- b) subject to your necessary and explicit consent, to send you via email and/or post and/or sms and/or mms and/or telephone contact, newsletters, informative messages, commercial, promotional and advertising communications on the products and services offered by the Owner in accordance with the principles dictated by the GDPR.
- c) fulfill legal and/or regulatory obligations of a fiscal, administrative and accounting nature;
- d) fulfill pre-contractual, contractual and fiscal obligations relating to the conclusion and/or execution of contracts to which you are a party;
- e) to protect credit.
2.2 The processing of your personal data is based on art. 6, par. 1 lett. b) and c) of the GDPR for the purposes referred to in art. 2.1, lett. a), c) and d) of this Information Notice and on art. 6, par. 1 lett. a) of the GDPR for the purposes referred to in art. 2.1. lett. b) of this Information Notice.
3. Nature of conferment
For the purposes referred to in Article 2.1, letters a), c), d) and e) of this Policy, the provision of data is necessary to respond to your requests and/or to perform the services provided by the Owner and any refusal will make it impossible to provide the same. In order to carry out the processing referred to in Article 2.1, letters a), c), d) and e) of this Information Notice, it is not necessary to obtain the consent of the interested party.
For the purposes referred to in art. 2.1, letter e) of this Information Notice, the provision of data is optional and there are no consequences in case of refusal to provide such data, except for the impossibility for the Data Controller to carry out the related activities.
4. Treatment modalities
The treatment of data is done through paper, computer and telematics, even with the help of electronic means, by specially authorized internal subjects and/or through third parties, according to logics strictly related to the purposes of the present. The data are stored in electronic and paper archives, in such a way as to guarantee the security and confidentiality of the data. The processing of personal data is carried out in accordance with the principles which inspired the GDPR.
5. Recipients of data
Data Recipient means, according to Art. 4, par. 1, no. 9) GDPR, 'the natural or legal person, service or other body receiving communications of personal data, whether or not they are third parties. However, public authorities that may receive communications of personal data in the context of a specific investigation in accordance with Union or Member State law shall not be considered recipients; the processing of such data by such public authorities shall be in accordance with the applicable data protection rules according to the purposes of the processing'.
It should be noted that, in relation to the purposes indicated above, personal data may be communicated to recipients in a relationship of collaboration with the Owner or for the fulfillment of legal obligations. These recipients are bound to absolute confidentiality with regard to any information they may become aware of, and below, by way of example, we list the categories.
- Authorities, public administrations and supervisory and control bodies for their institutional purposes.
- Employees and/or collaborators of the Data Controller, Associated Companies, subjects, consultants, professional firms who collaborate with the Data Controller for the achievement of the purposes indicated above and for the fulfilment of legal obligations.
- Subjects who provide services for the management of the Owner's computer system.
- Qualified professionals for the purpose of studying and solving possible legal and contractual problems.
- Banks or similar organizations.
6. Place of data processing and possible transfer of data outside the EU
The data processing activity is carried out within a member state of the European Union (EU) or within a member state of the European Economic Area (EEA).
However, the data processing activity may involve the transfer of data to a State that does not belong to the EU or the EEA. In this case, the Data Controller as of now guarantees that the transfer, if necessary, will only be carried out under the specific conditions provided for in Articles 44 et seq. of the GDPR.
7. Dissemination and communication of data
Your personal data are not subject to dissemination or transfer.
Communication to third parties, other than the Owner and Managers - internal or external to the organizational structure of the Owner - identified and appointed under Articles. 24 and 28 GDPR, is provided for where necessary.
In any case, the processing by third parties will take place in accordance with the principles of fairness, proportionality and necessity, as well as in compliance with applicable laws
8. Conservation times
9. Data security
The Data Controller adopts adequate technical and organisational measures to protect data in order to prevent the loss of data, unlawful or incorrect use and unauthorised access.
10. Rights of the interested party
Please note that, pursuant to art. 13, par. 2, lett. b) GDPR, in relation to the processing of personal data in question, in order to ensure a fair and transparent treatment, the following rights may be exercised:
10.1. Right of information and access (ex art. 15 GDPR): in order to obtain from the Data Controller information on the existence or otherwise of processing of data concerning you as well as access to your personal data and information on the purposes of processing, the recipients or categories of recipients to whom the data are transmitted.
10.2. Right to rectification (ex art. 16 GDPR), erasure (ex art. 17 GDPR) and restriction (ex art. 18 GDPR): in order to request from the Data Controller the rectification and erasure of your personal data and the restriction of processing.
10.3. Right to portability (ex art. 20 GDPR): in order to receive in a structured, commonly used and machine-readable format the personal data concerning you provided to the Data Controller and has the right to transmit such data to another controller, provided that this operation is technically feasible.
10.4. Right of opposition (ex art. 21 GDPR): in order to oppose the processing of your data..
In order to exercise your rights under Art. 13, par. 2, letters b) and e) GDPR, you may write to Beta Utensili S.p.A., Via Volta n. 18, 20845, Sovico (MB), following e-mail address: firstname.lastname@example.org.
11. Right to complain or appeal
Pursuant to art. 13, par. 2, lett. d) GDPR and art. 140 bis Legislative Decree no. 196/2003, as amended by Legislative Decree no. 101/2018, it is also represented that if it is considered that the processing of data violates the European Regulations or the Code on the protection of personal data, a complaint may be lodged with the Privacy Guarantor, pursuant to art. 77 GDPR or, alternatively, appeal to the Judicial Authority.
12. Changes and updates
This information is updated as of 10/03/2022. The Owner may make changes and/or additions as a result of subsequent changes and/or additions to the law.