INFORMATION ON the PROCESSING OF PERSONAL DATA PURSUANT TO REGULATION (EU) No 2016/679
Preziosa Srl di Storri e Okulicz or “Owner”, pursuant to article 13 of the European Regulation 2016/679 (GDPR) offers to the user, hereinafter also referred to as “interested party” or the “applicant”, the following information, containing indications transparent in accordance with the principles set out therein. This statement is valid only in relation to the processing of personal data of those who navigate on the internet site www.sakrami.com
1.HOLDER OF THE TREATMENT
Holder of the treatment is Preziosa Srl di Storri e Okulicz, with headquarters in Arezzo Via G. Ferraris 252/A, P. IVA 02200160519 who can be contacted at the following addresses phone +39 0575.984234, mail [email protected], hereinafter also referred to as “Holder”
The interested party may contact the Owner at any time to exercise their rights as specified in this document.
2. PURPOSE AND LEGAL BASIS OF THE PROCESSING - NATURE OF DATA - DURATION OF TREATMENT
The personal data are processed for the following purposes:
- Allow the customer to send us inquiries about our products. The data will be processed for the entire duration of the relationship, and then subsequently kept for 10 years. After this period, the data will be destroyed.
3. THE PROCESSED DATA
The information you provide us voluntarily
The optional, explicit and voluntary sending of electronic mail to the addresses indicated on this Website entails the subsequent acquisition of the sender's address, necessary to respond to requests, and of any other personal data included in the request.
The data that we collect during the browsing
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data the transmission of which is implicit and necessary in the use of Internet communication protocols. This information is not collected to be associated to identified interested parties, but that for their same nature could, through processing and associations with data held from third, allow to identify users. In this category of data includes IP addresses or domain names of computers used by users who connect to the site, addresses in URI notation (Uniform Resource Identifier) of requested resources, time of request, the method used in submitting the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the reply given by the server (successful, error, etc..) and other parameters regarding the operating system and the computer environment of those who sail. These data are used only to obtain information statistics on site usage and to check its correct functioning. May also be used to ascertain responsibility in case of hypothetical computer crimes against the site: save this eventuality, the data, as well as here-described, persist for a time not exceeding that necessary for the purposes for which the data are collected and subsequently processed.
4. RECIPIENTS OF THE PERSONAL DATA
The personal data are processed by the Holder, applying the principles prescribed by the current regulations. Furthermore, the treatment is entrusted to the following categories of external parties, regularly responsible for processing, legal advisers, tax and computer systems; companies that provide technical services/computer systems; companies that carry out processing activities through the development of telematic communications (electronic mail, erp, cloud, platforms, video-conferencing and video-conferencing). These companies are selected on the basis of their certifications, and their representations about the reliability, safety and compliance with national and european legislation relating to the processing of personal data. These companies have been assigned to them, with precise tasks and instructions for the respect of your rights in the performance of their duties pursuant to art. 28 GDPR. Also,in some cases, judicial authorities may request the data processed by the data controller, in these cases, the communication of such data is a legal requirement.
5. TRANSFER OF PERSONAL DATA OUTSIDE THE EEA
Through the use of company services, IT and telematic communications platforms webconference, duly appointed as data processors, it may occur that personal data are to be placed or transferred to Countries not belonging to the European Economic area. If this is to occur, said transfer takes place only on the condition that the Country of destination was deemed by the European Commission as eligible for transfer pursuant to art. 45 of Regulation 2016/679 (adequacy decision) or, in the absence of such a decision, if it avails itself of one of the conditions referred to in articles 46 and 47 of the same Regulation (in particular, the standard contractual clauses or binding corporate rules).
6. RIGHTS OF THE INTERESTED PARTIES
The GDPR grants you various rights, which may be exercised by contacting the Holder at the addresses indicated in this notice, provided that the required conditions exist from time to time prescribed by the regulations:
- the right to know if the Owner has the processing of personal data concerning him and, in this case, to have access to the data object of the treatment, and all the information of this relative;
- the right to the rectification of any inaccurate personal data concerning you and/or integration of incomplete ones;
- the right of erasure of personal data relating to you;
- the right to limitation of treatment;
- the right of opporsi to the treatment;
- the right to portability of personal data that concern you;
- the right to revoke the consent at any time, without prejudice to the lawfulness of processing based on consent before withdrawal.
In any case, it is possible to submit a formal Complaint to the Authority guarantor for the protection of personal data, according to the mode to be found at the website of the Guarantor.