Privacy Policy

Information for the processing of personal data

Website www.guardinipietre.com

Last updated: 27/07/2018

Guardini Pietre srl, with registered office in Loc. Croce dello Schioppo 2, 37020 FANE VERONA ITALIA, CF e P.IVA 02133890232, n. REA VR–218929 as Data Controller (hereinafter “Data Controller”), it informs you, pursuant to EU Regulation 679/2016 (“GDPR”) and the legislation, including national, on the protection of personal data for the applicable time ( “Privacy Law”), that your data will be processed in the manner and for the purposes indicated below.

The information may be subject to changes following the introduction of new rules, so we invite you to periodically visit this section for updating.

The Privacy Policy you are reading is exclusively referable to the website www.guardinipietre.com and the Data Controller is not responsible for the methods of managing the processing of personal data carried out by third-party websites that can be linked through the Cookie section, or through any links present in the Home page.

If you are under the age of 16, your consent is legitimate only if given or authorized by the person with parental responsibility towards you.

The Data Controller may use the personal data of underage users to carry out checks on their age and enforce any age restrictions defined by it or provided for by law.

Object of the treatment
The Data Controller processes personal, identifying and non-sensitive data (by way of example but not limited to, name, surname, address, telephone, e-mail, etc. – hereinafter, “personal data” or even “data”) communicated by you when completing the request form for subscription to the Data Controller’s newsletter or requesting information from the Data Controller by filling in the appropriate contact form.

Browsing on this site is also permitted to non-registered users. By simply browsing, no identification data will be collected. However, for the purposes of the normal operation of this site it is possible that the computer system acquires some information whose transmission is implicit in internet communication protocols (eg log files). In addition, information that the user does not provide directly will be collected through the use of cookies (http://www.guardinipietre.it/cookie-policy/).

In any case, this is information that is not collected for the purpose of an association with identified interested parties, but which despite this, given their very nature, could still allow third parties to identify the user, through processing and association with other data already in their possession.

Purpose and legal basis of the processing
Your data are processed:

A. without your prior consent, for the following purposes:
a) the fulfillment of a legal obligation to which the Owner is subject:
fulfill the obligations established by law, by a regulation, by community legislation or by an order of the Authority
b) the pursuit of the legitimate interests of the Data Controller for the correct management of the website:
– analyze cookies (as indicated in http://www.guardinipietre.it/cookie-policy/) deriving from your use of the Site;
– manage and maintain the Site;
– prevent or discover fraudulent activities or abuses harmful to the Site;
– exercise the rights of the owner, for example the right to defense in court

B. only with your consent from the user:
– allow you to register for the newsletter and send you promotional e-mails, commercial communications and / or advertising material on the Controller’s products or services;
– process contact requests and release the information requested by the user (assistance on services, product information, etc.).

Methods of processing
On this Website, the data is collected electronically and processed through collection, registration, updating, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, cancellation and destruction operations carried out in prevalence with the aid of electronic tools, ensuring the use of suitable measures for the security of the data processed and guaranteeing its confidentiality.

Personal data will be processed by collaborators and / or employees of the Data Controller as data processors, within the scope of their respective functions and in accordance with the instructions given by the Data Controller.

According to the rules of the GDPR, the treatments carried out by the Data Controller will be based on the principles of lawfulness, correctness, transparency, purpose limitation and retention, data minimization, accuracy, integrity and confidentiality.

Data retention
The Data Controller processes the Data for the time necessary to respond to your request and fulfill the aforementioned purposes and in any case for no more than 6 months from the collection for navigation data.

As for the “Contact Us” form, the retention period of the released data ends with the completion of the requested service.

As regards, however, the newsletter, the retention period of the same ends with the revocation of the consent previously issued by the user.

Provision of data
The release of data is mandatory for the purposes referred to in point 2, lett. A. If you decide not to provide the data, we will not be able to process your request.

The provision of personal data for the purposes referred to in point 2, lett. A, on the other hand, is optional. You can therefore decide not to provide the data or to subsequently deny the possibility of processing data already provided: in this case, you will not be able to receive personalized commercial communications on the Controller’s products, but you will continue to have the right to use the services of the Site.

Refusal to provide data
Failure to enter data in the mandatory fields by the interested party does not allow the company to perform the requested service.

Access to data
Your data can be accessed for the aforementioned purposes:

  • employees and / or collaborators of the Data Controller, in their capacity as persons in charge of processing and / or system administrators;
  • third-party companies or other subjects (for example, website provider, e-payment service provider, suppliers, hardware and software assistance technicians, credit institutions, professional firms, etc.) who carry out outsourced activities on behalf of the Data Controller, in some cases as external data processors.

The Data Controller undertakes to protect the security of personal data by adopting all the IT and physical measures necessary for the protection of the personal data provided. No security system guarantees this protection with absolute certainty, therefore, except in cases of its own responsibility for negligence, the Owner is not liable for the fait accompli by third parties who illegally access the systems without the necessary authorizations.

Our website uses cd. plugins of some Social Networks, such as Facebook and Instagram. More details on the Facebook and Instagram plug-ins and their characteristics can be found at http://www.guardinipietre.it/cookies-policy/.

To prevent the transmission and storage of data relating to Internet browsing via Social Networks, the user must log out of them before visiting our website. For more information on this topic, please read our http://www.guardinipietre.it/cookie-policy/.

Data communication
Your data may be disclosed, even without your consent, for the aforementioned purposes to supervisory bodies, law enforcement agencies or the judiciary who will process them, upon their express request, as independent data controllers for institutional and / or institutional purposes. or by law in the course of investigations and checks. Your data may also be disclosed to third parties (for example, partners, freelancers, agents, etc.), as independent data controllers, for the performance of activities instrumental to the aforementioned purposes.

Data transfer and profiling
The Data are not subject to disclosure. The management and storage of personal data will take place on servers located within the European Union.

The email address you provided may be transferred to third countries where the servers are stored, in particular, as regards the “Mail Chimp” application used for promotional communications, personal data may be transferred to the USA. The country guarantees an “adequate” level of protection in compliance with the requirements of the GDPR, as the Privacy Shield is currently in force, and in particular the EU-US shield, as well as the 2016/1250 Commission adequacy decision of 12 July 2016 pursuant to Directive 95/46 / EC. For more information on Mail Chimp’s privacy policy, see the following link https://mailchimp.com/legal/privacy/.

Save the discipline on cookies (to which reference is made for more information), this website does not provide for the existence of an automated decision-making process for commercial profiling purposes (targeted marketing technique which includes the set of collection and processing activities of users’ data in order to understand their choices and their behaviors in order to divide the interests into “profiles”, or in homogeneous groups for increasingly specific behaviors or characteristics).

Rights of the interested party
In your capacity as interested parties, the Data Controller informs you that you have the right to:

  • obtain confirmation of the existence or not of your Personal Data, even if not yet registered, and that such Data be made available to you in an intelligible form;
  • obtain indication and, if necessary, copy: a) the origin and category of Personal Data; b) the logic applied in case of processing carried out with the aid of electronic tools; c) the purposes and methods of the processing; d) the identity of the owner and managers; e) the subjects or categories of subjects to whom the Personal Data may be communicated or who can learn about them, in particular if they are recipients of third countries or international organizations; e) when possible, the retention period of the Data or the criteria used to determine this period; f) the existence of an automated decision-making process and, in this case, the logic used, the importance and consequences envisaged for the data subject; g) the existence of adequate guarantees in the event of data transfer to a non-EU country or to an international organization;
    obtain, without undue delay, the updating and correction of inaccurate data or, when interested, the integration of incomplete data;
  • obtain the cancellation, transformation into anonymous form or blocking of Data: a) unlawfully processed; b) no longer necessary in relation to the purposes for which they were collected or subsequently processed; c) in case of revocation of the consent on which the treatment is based and in case there is no other legal basis, d) if you have opposed the processing and there is no legitimate overriding reason to continue the processing; e) in case of fulfillment of a legal obligation; f) in the case of data referring to minors. The Owner can refuse the cancellation only in the case of: a) exercise of the right to freedom of expression and information; b) fulfillment of a legal obligation, performance of a task carried out in the public interest or exercise of public authority; c) reasons of public health interest; d) archiving in the public interest, scientific or historical research or for statistical purposes; e) exercise of a right in court;
  • obtain the limitation of processing in the case of: a) contestation of the accuracy of personal data; b) unlawful processing by the Data Controller to prevent its cancellation; c) exercise of your right in court; d) verification of the possible prevalence of the legitimate reasons of the Data Controller with respect to those of the interested party;
  • receive, if the processing is carried out by automatic means, without hindrance and in a structured, commonly used and legible format, the Personal Data concerning you to transmit them to another holder or – if technically feasible – to obtain direct transmission by the Data Controller to another owner;
  • object, in whole or in part: a) for legitimate reasons, to the processing of Personal Data concerning you, even if pertinent to the purpose of the collection; b) to the processing of Personal Data concerning you for the purpose of sending advertising or direct sales material or for carrying out market research or commercial communication, through the use of automated call systems without the intervention of an operator by email and / or through traditional marketing methods by telephone and / or paper mail;
  • lodge a complaint with the Guarantor Authority for the Protection of Personal Data.
    In the cases mentioned above, where necessary, the Data Controller will inform the third parties to whom your personal data are communicated of the possible exercise of rights by you, with the exception of specific cases (eg when this fulfillment proves impossible or involves the use of means that are manifestly disproportionate to the protected right).

How to exercise rights
You can exercise your rights at any time by sending a registered letter with return receipt. to the address of the Data Controller or by sending an email to info@guardinipietre.com.

Owner and manager of the treatment
The Data Controller is: GUARDINI PIETRE s.r.l. as specified above.

With regard to the personal data provided by the user while browsing this website, the Data Controller has not appointed a data processor, so the data will be processed by the employees and / or collaborators of the company appointed in writing to manage the online sector.

For any clarification or exercise of your rights, you can contact the Data Controller at:

mail: info@guardinipietre.com

Download the information for Guardini Pietre customers

Download the information for Guardini Pietre suppliers