Privacy & Cookies
Arbi Arredobagno Srl, with registered office in Viale Lino Zanussi 34/A, 33070 Maron di Brugnera (PN), Italy, Tax Code and VAT number 01250700935 (hereinafter the “Data Controller”), in its capacity as Data Controller, hereby informs you, pursuant to Article 13 of Regulation (EU) 2016/679 (hereinafter the “GDPR”), that your personal data shall be processed in the manner and for the purposes set out below:
1. Scope of the data processing
The Data Controller processes personal identification data (e.g. first name, surname, telephone number, email, IP address) (hereinafter “personal data” or “data”) when using this website.
2. Purpose of the data processing
Your personal data is processed:
A) without your express consent (pursuant to Article 6(f) of the GDPR), for the following Service-related Purposes, through the use of functional or technical cookies:
• to verify that the website is functioning correctly;
• for security-related purposes.
The system must temporarily store the user’s IP address to allow the computer or device to access the website. The user’s IP address shall therefore be stored for the duration of the session. The data shall be stored in log files to ensure the website can function. Moreover, the data is required to optimise the website and ensure the security of our IT systems. In this context, the data shall not be used for marketing purposes.
B) only after your specific and clear consent (pursuant to Article 7 of the GDPR), for the following purposes:
• to improve the relevance of the results provided using analytical cookies;
• to obtain anonymous statistical information about website use.
3. Data processing methods
Your personal data shall be processed by means of the operations set out in Article 4(2) of the GDPR, specifically: collection, recording, organisation, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, deletion and destruction of the data. Your personal data shall be subjected to both paper and electronic and/or automated processing. The Data Controller shall process the personal data collected for security purposes for a period not exceeding 6 (six) months.
4. Access to personal data
For the purposes referred to in Article 2, your data may be made accessible to:
• employees and collaborators of the Data Controller or of Group companies, in their capacity as Persons in charge of the data processing and/or system administrators;
• third-party companies or other subjects performing outsourcing on behalf of the Data Controller, in their capacity as Data Processors:
• Facebook (through the use of the Like feature)
• Instagram (through the use of the Like feature)
• LinkedIn (through the use of the Like button)
The updated list of Data Processors and Persons in charge of processing personal data is maintained at the Data Controller’s registered office.
5. Disclosure of personal data
The Data Controller may disclose your data, without the need for express consent (pursuant to Article 6(b)(c) of the GDPR), for the purposes referred to in Article 2, to supervisory bodies, judicial authorities, as well as subjects to whom disclosure is mandatory by law for the aforementioned purposes. Said subjects shall process the data in their capacity as independent Data Controllers.
6. Transfer of personal data
Personal data shall be stored on the Data Controller’s servers and on Cloud services, located within the European Union. It is, in any case, understood that the Data Controller, where necessary, shall have the right to move its servers outside the EU. In this case, the Data Controller shall ensure that the transfer of data outside the EU takes place in accordance with the applicable legal provisions, subject to the stipulation of standard contractual clauses provided for by the European Commission.
7. Provision of data and consequences of refusal
The provision of data for the purposes referred to in Article 2-A is mandatory and, in its absence, we shall not be able to guarantee the requested Services. The provision of personal data for the purposes referred to in Article 2-B is optional. You can therefore decide not to provide any data or to subsequently deny the processing of data already provided.
8. Rights of the Data Subject
As the Data Subject, you may exercise the rights referred to in Article 15 of the GDPR and, specifically, you are entitled to:
a. obtain confirmation regarding the existence or otherwise of personal data concerning you, even if not yet registered, and its communication in intelligible form;
b. obtain information relating to:
• where the personal data comes from;
• the processing purposes and methods used;
• the logic applied if it is processed using electronic tools;
• the identity of the Data Controller, the Data Processors and of the representative appointed under Article 5(2) of the Privacy Code and Article 3(1) of the GDPR;
• the subjects and subject categories to which the personal data may be communicated or who may gain knowledge of it as representatives appointed in the State, Data Processors or Persons in charge of data processing;
• the updating, the correction or, where interested, the integration of the data;
• the deletion, the transformation into anonymous form or the blocking of unlawfully processed data, including any data which has no need to be kept in relation to the purposes for which it was collected or subsequently processed;
• the confirmation that operations as per letters a) and b) have been notified, including as regard to their contents, to those to whom the data was communicated or disclosed, except where this should prove impossible or should involve the use of means manifestly disproportionate to the protected right;
d. oppose, in whole or in part:
• on legitimate grounds, the processing of your personal data, even if said data may be relevant to the purpose for which it was collected;
• the processing of personal data for sending advertising material or for direct selling or for carrying out market research or commercial communications, through the use of automated calling systems without the intervention of an operator, by e-mail and/or through traditional marketing methods by telephone and/or paper mail. Please note that the Data Subject’s right to object to the processing of personal data for direct marketing purposes using automated means also extends to traditional means and, therefore, the Data Subject shall be entitled to exercise their right to object, even in part. The Data Subject may therefore choose to only receive communications through traditional means or only automated communications or neither of these types of communication.
As applicable, you shall also be entitled to the rights set out in Articles 16-21 of the GDPR (right to rectification, right to be forgotten, right to restrict data processing, right to data portability, right to object), as well as the right to file a complaint with the Italian Supervisory Authority.
9. Exercising consent
1. Launch Firefox; 2. Press the “Alt” key on your keyboard; 3. In the toolbar at the top of the browser, select “Tools” and then “Options”; 4. Select the “Privacy” tab; 5. Go to “History Settings” and then to “Use custom settings”. Deselect the “Accept cookies from sites” option and save your preferences.
• Internet Explorer
1. Launch Internet Explorer; 2. Click on the “Tools” button and then on “Internet Options”; 3. Select the “Privacy” tab and move the slider to the privacy level you wish to configure (up to block all cookies or down to consent to their use); 4. Click OK.
• Google Chrome
1. Launch Google Chrome; 2. Click on the “Tools” icon; 3. Select “Settings” and then “Advanced settings”; 4. Select “Content Settings” under “Privacy”; 5. Access the “Cookies and site data” section where you can search for and delete specific cookies.
1. Type chrome://settings/cookies in the address bar and press Enter; 2. Access the “Cookies and site data” section where you can search for and delete specific cookies.
1. Launch Safari; 2. Choose “Preferences” from the toolbar, then select the “Security” pane in the dialog that follows; 3. In the “Accept cookies” section, you can specify if and when Safari must save cookies from websites. For additional information, click on the Help button (labelled with a question mark); 4. For additional information on the cookies that are stored on your computer, click on “Show cookies”.
10. How to exercise your rights
You may, at any time, exercise the above rights by sending:
• a registered letter with return receipt to Arbi Arredobagno Srl Viale Lino Zanussi 34/A, 33070 Maron di Brugnera (PN), Italy;
• an e-mail to firstname.lastname@example.org.
Any reasons for dissatisfaction or complaints may be reported to the Italian Personal Data Protection Supervisory Authority: Piazza Venezia, 11 – 00187 Rome, Italy, (+39) 06696771, email@example.com (certified e-mail), firstname.lastname@example.org (www.garanteprivacy.it)
Pordenone, 5 October 2020