INFORMATION ON THE PROCESSING OF PERSONAL DATA PURSUANT TO REGULATION (EU) NO. 2016/679

Preziosa Srl di Storri e Okulicz or "Owner", in accordance with Article 13 of the European Regulation 2016/679 (GDPR), offers the user, hereinafter also "interested party" or "applicant", the following information containing transparent indications in compliance with the principles enshrined therein. This information is valid exclusively in relation to the processing of personal data of those who browse the website www.sakrami.com

1.DATA CONTROLLER

The data controller is Preziosa Srl di Storri e Okulicz with headquarters in Arezzo - Via G. Ferraris 252/A P.IVA 02200160519 contactable at the following addresses tel. +39 0575.984234, mail ordini@sakrami.com, hereinafter also "Data Controller"

The interested party may contact the Controller at any time to exercise his/her rights as specified in this document.

2. PURPOSES AND LEGAL BASES OF THE PROCESSING - NATURE OF DATA PROVISION - DURATION OF PROCESSING

Personal data are processed for the following purposes:

  1. To enable the customer to send us inquiries about our products. The data will be processed for the duration of the relationship and then subsequently stored for of 10 years. After this term, the data will be destroyed.

3. PROCESSED DATA.

Data you voluntarily provide to us

The optional, explicit and voluntary sending of electronic mail to the addresses indicated on this Site entails the subsequent acquisition of the sender's address, necessary to respond to requests, as well as any other personal data included in the request.

Optional, explicit and voluntary registration through the forms on www.sakrami.com and in the Apple App Store® in the registration area, as well as the sending of requests by email to the portal involves the subsequent acquisition of all the data reported in the fields filled in, processed in accordance with what is specified in this policy. and processing in accordance with what is stated in this document.

Data we acquire while browsing

The computer systems and software procedures responsible for the operation of this website acquire, in the course of their normal operation, some personal data whose transmission is implicit and necessary in the use of Internet communication protocols. This information is not collected to be associated with identified interested parties, but by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users who connect to the site, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the computer environment of those who navigate. These data are used for the sole purpose of obtaining statistical information on the use of the site and to check its correct functioning. They could also be used to ascertain responsibility in case of hypothetical computer crimes to the detriment of the site: except for this eventuality, the data, as described here, persist for a time not exceeding that necessary for the purposes for which they are collected and subsequently processed.

4. RECIPIENTS OF PERSONAL DATA

Personal data are processed by the Data Controller by applying the principles provided for in current regulations. The processing is also entrusted to the following categories of external parties, duly appointed as data processors: legal, tax and IT consultants; companies that provide technical/informatics services; companies that carry out processing activities through the processing of telematic communications (e-mail, management, cloud, video communication and video conferencing platforms). Said service companies are selected on the basis of their certifications and declarations regarding reliability, security and compliance with national and European regulations on the processing of personal data. These companies have been assigned to them precise tasks and instructions to respect your rights in the performance of their functions in accordance with Article 28 GDPR. In addition,in some cases, judicial bodies may request the data processed by the Controller, in these cases the disclosure of such data is a legal obligation.

5. TRANSFER OF PERSONAL DATA OUTSIDE THE SEE

Through the use of IT services and telematics communications companies, webconference platforms, duly appointed as data controllers, it may occur that personal data is placed or transmitted in countries outside the European Economic Area. Should this occur, said transfer will take place only under the condition that the country of destination has been deemed by the European Commission as suitable for transfer pursuant to Article 45 of Regulation 2016/679 (adequacy decision) or, in the absence of such a decision, if one of the conditions set forth in Articles 46 and 47 of the same Regulation (in particular, standard contractual clauses or binding corporate rules) is met.

6. RIGHTS OF DATA SUBJECTS

The GDPR grants the data subject several rights, which he/she may exercise by contacting the Data Controller at the contact details indicated in this information notice, provided that the prerequisites from time to time provided by the legislation are met:

- the right to know whether the Controller is processing personal data concerning him/her and, if so, to have access to the data being processed and to all information relating thereto;

- the right to the rectification of inaccurate personal data concerning him/her and/or to the integration of incomplete data;

- The right to the deletion of personal data concerning him/her;

- the right to restriction of processing;

- the right to object to the processing;

- the right to portability of personal data concerning you;

- the right to withdraw consent at any time, without affecting the lawfulness of processing, based on consent, carried out prior to the withdrawal.

In any case, it is possible to submit a formal Complaint to the Guarantor for the Protection of Personal Data, according to the procedures available at the Guarantor's website.