Categorie prodotto
Your privacy
Information on the processing of personal data in accordance with Art. 13 of EU Regulation no. 2016/679 (“GDPR”)
Information document pursuant to Art. 13 of Legislative Decree. June 30, 2003 no. 196 and Art. 13 EU Regulation no. 2016/679 Mount Italia s.r.l. (hereinafter, “Data Controller”), as the data controller, informs you pursuant to Art. 13 Legislative Decree. 30.6.2003 n. 196 (hereinafter, “Privacy Code”) and Art. 13 EU Regulation no. 2016/679 (hereinafter, “GDPR”) that your data will be processed in the following manner and for the following purposes:
1. Object of processing
The Controller processes personal, identifying and non-sensitive data (in particular, first name, last name, tax code, VAT number, email, telephone number is hereinafter, “personal data” or also “data”) disclosed when registering to the Controller’s website and/or when subscribing to the newsletter service offered by the Controller and when confirming an order.
2. Purpose of processing.
Personal data are processed:A) without your express consent (art. 24 lett. a, b, c Privacy Code and art. 6 lett. b, e GDPR), for the following Service Purposes:- to allow registration to the website;- to manage and maintain the website;- to allow you to subscribe to the newsletter service provided by the Data Controller and of any additional Services to be requested;- to fulfill pre-contractual, contractual and tax obligations arising from existing relationships;- to fulfill obligations required by law, regulation, EU legislation or an order of the AuthorityB) Only with your specific and distinct consent (Articles 23 and 130 Privacy Code and Art. 7 GDPR), for the following Marketing Purposes:1) to send you via email newsletters, commercial communications and/or advertising material on products or services offered by the Data Controller We point out that if you are already our customer, we may send you commercial communications relating to services and products of the Data Controller similar to those you have already used, unless you disagree (art. 130 c. 4 Privacy Code, the Provision of the Privacy Guarantor 330 of 04/07/2013, EU Regulation 2016/679 recital 171).2) profiling: analysis of the information you provide and/or the products you purchase, in order to better understand your preferences and offer you, as a result, a personalized service
3. Method of treatment
Personal data are subject to both paper and electronic and/or automated processing. The Data Controller will process personal data for as long as necessary to fulfill the above purposes and in any case for no longer than the terms of the law.
4. Data Access.
Data may be made accessible for the purposes of Art. 2.A) and 2.B):- to employees and collaborators of the Data Controller- to companies related to the Data Controller or to third parties (e.g., providers for the management and maintenance of the website, suppliers, credit institutions, professional firms, etc.) that perform outsourcing activities on behalf of the Data Controller, in their capacity as external data processors.
5. Disclosure of data
Without express consent (ex art. 24 lett. a), (b), (d) Privacy Code and Art. 6 lett. (b) and (c) GDPR), the Controller may disclose your data for the purposes set forth in Art. 2.A) to Supervisory Bodies, Judicial Authorities as well as to all other subjects to whom communication is obligatory by law for the fulfillment of the said purposes. Your data will not be disseminated.
6. Data transfer
The management and storage of personal data will take place on servers located within the European Union of the Data Controller and/or third party companies contracted and duly appointed as Data Processors. Currently the servers are located in Italy/Germany. Data will not be transferred outside the European Union. In any case, it is understood that the Holder, should it become necessary, will have the right to move the location of the servers to Italy and/or the European Union and/or non-EU countries. In this case, the Data Controller hereby ensures that the transfer of data outside the EU will take place in accordance with the applicable legal provisions by entering, if necessary, into agreements that guarantee an adequate level of protection and/or by adopting the standard contractual clauses provided by the European Commission.
7. Nature of data provision and consequences of refusal to respond
The provision of data for the purposes of Art. 2.A) is mandatory. Without it, we will not be able to guarantee either site registration or the Services of Art. 2.A). The provision of data for the purposes of Art. 2.B) on the other hand is optional. You may then decide not to provide any data or later deny the possibility of processing data already provided: in this case, you will not be able to receive newsletters, commercial communications and advertising material related to the Services offered by the Owner.
8. Rights of the data subject
In your capacity as a data subject, you may exercise your rights under Art. 7 Privacy Code and art. 15 GDPR and specifically the rights to: i. Obtain confirmation of the existence or non-existence of personal data concerning you, even if not yet registered, and their communication in intelligible form; ii. Obtain the indication of:a) the origin of personal data; (b) of the purposes and methods of processing; (c) of the logic applied in the case of processing carried out with the aid of electronic instruments; (d) of the identification details of the owner, managers and designated representative under Art. 5, paragraph 2 Privacy Code and Art. 3, paragraph 1, GDPR; e) of the subjects or categories of subjects to whom the personal data may be communicated or who may become aware of them in their capacity as designated representative in the territory of the State, as managers or appointees; iii. obtain: (a) updating, rectification or, when interested, supplementation of data; (b) the cancellation, transformation into anonymous form or blocking of data processed in violation of the law, including data whose retention is not necessary in relation to the purposes for which the data were collected or subsequently processed; (c) certification that the transactions referred to in subparagraphs. (a) and (b) have been brought to the attention, also as regards their content, of those to whom the data have been communicated or disseminated, except where this proves impossible or involves the use of means manifestly disproportionate to the right protected; iv. Oppose in whole or in part: a) for legitimate reasons to process personal data concerning you, even if relevant to the purpose of collection; b) to the processing of personal data concerning you for the purpose of sending advertising or direct sales material or for carrying out market research or commercial communication, through the use of automated calling systems without the intervention of an operator by email and/or through traditional marketing methods by telephone and/or paper mail. It should be noted that the data subject’s right to object, set forth in the preceding paragraph (b), for the purpose of direct marketing by automated means is extended to traditional methods and that, in any case, the possibility for the data subject to exercise the right to object even in part remains unaffected. Therefore, the data subject may choose to receive only communications by traditional means or only automated communications or neither type of communication. Where applicable, it also has the rights under Articles 16-21 GDPR (Right to rectification, right to be forgotten, right to restrict processing, right to data portability, right to object), as well as the right to complain to the Data Protection Authority.
9. Ways of exercising rights
You may exercise your rights at any time by sending:- a registered letter with return receipt to Mount Italia s.r.l., via Giacomo Leopardi, 23, 84091 – Battipaglia – Salerno- an e-mail to info@mountitalia.it
10. Minors
This Site and the Owner’s Services are not intended for minors under the age of 18, and the Owner does not intentionally collect personal information referring to minors. In the event that information about minors is unintentionally recorded, the Owner will delete it in a timely manner upon the users’ request.
11. Owner, manager and appointees
The Data Controller is Mount Italia s.r.l., via Giacomo Leopardi, 23, 84091 – Battipaglia – Salerno. The updated list of data processors and processors is kept at the Data Controller’s office.
This post is also available in: Italiano (Italian)