Terms of Service, Privacy and Cookies Policy
the company FRANCO S.R.L., with registered office in Via Nazionale 80 – 12010 Cervasca (CN), VAT No. 02542430042, as Data Controller, wishes to inform you that your data will be processed in accordance with the principles established by the GDPR (General Data Protection Regulation EU 679/2016), namely in compliance with the principle of lawfulness, fairness, transparency, purpose limitation and storage, data minimization, accuracy, integrity and confidentiality.
INFORMATION PURSUANT TO ART. 13 OF EU REGULATION 2016/679
The Regulations in force require us to provide information regarding the processing of personal data for this website with reference to the processing of personal data of users who consult it and use the related web services accessible by electronic means through the Site and any services connected to it.
The information is provided, pursuant to EU Regulation 2016/679 (hereinafter also “Regulation” or “GDPR”), to all users who interact with the Site and its related services.
The validity of the information contained in this page is limited to the Site and the Owner’s own services that are configured in the processing of personal data; it does not extend to other websites external to the Entity that may be consulted through hypertext links.
For the Regulation on the processing of personal data:
a) We, i.e. FRANCO SRL owner of this site, are the “Owner” of the Treatment;
b) You are “the interested party”.
1.1. The Owner of the Treatment treats the acquired data according to the principles of lawfulness, correctness, transparency, limitation of the purposes and of the conservation, minimization of the data, exactness, integrity and confidentiality. The Owner of the treatment guarantees the security, confidentiality and protection of personal data in its possession, in any phase of the treatment process of the same.
2. Data Controller
2.1. The Data Controller of data relating to identified or identifiable natural persons who have consulted the above-mentioned website and social network pages is FRANCO S.R.L., with registered office in Via Nazionale 80 – 12010 Cervasca (CN), VAT no. 02542430042, E-mail firstname.lastname@example.org.
3. Categories of data processed
3.1. Browsing data: the IT systems and programs used to operate the site collect certain personal data, the transmission of which is implicit in the use of Internet communication protocols (e.g. IP addresses or domain names of the computers used by users connecting to the site, URI -Uniform Resource Identifier- addresses of the resources requested, time of the request, method used to submit the request to the server, size of the file obtained in response, numerical code indicating the status of the response provided by the server – good outcome, error, etc.- and other parameters relating to the operating system and the user’s computer). and other parameters relating to the user’s operating system and computer environment). Although this information is not collected in order to be associated with identified interested parties, by its nature it could, through processing and association with data held by third parties, allow users to be identified. These data are processed, for the time strictly necessary in accordance with the law, for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning. It should be noted that the above data could be used to ascertain responsibility in case of computer crimes against the Site or other sites connected or linked to it.
3.3. Data provided voluntarily by the User:
Interactions through the website require the provision of personal data by the User with reference to filling in the “Contact” form or subscribing to the newsletter service.
Any further contact with the Owner, for example to request information on a particular product or service through the spontaneous sending of messages, by e-mail or traditional mail, to the Owner’s addresses indicated on the Site, entails the subsequent acquisition of such personal data of the sender, necessary to respond to requests, as well as any other personal data voluntarily entered by the user in the relevant communications.
3.4. Personal data (personal details, payment details, contact details) voluntarily provided by customers/suppliers during: visits to the offices or telephone calls; requests for quotes from the Data Controller or offers; previous transactions.
4. Purposes and Legal Bases of the Treatment
4.1. The personal data voluntarily provided will be processed for the following purposes:
(a) navigation on the website and use of related services;
b) responding to a request for information or a business request;
c) to perform the service or provision requested;
d) to fulfill any administrative, financial, accounting, tax obligations to perform or enforce contractual obligations entered into with customers / suppliers during requests and negotiations;
e) to fulfill any obligation required by law and / or order of the Public Authority;
f) possibly, to assert or defend a right in court;
g) with prior explicit consent, to send newsletters and communications concerning informative and/or commercial and/or promotional messages on products, services, news, events promoted by FRANCO S.R.L. and to allow the interested party to stop receiving such messages, or to unsubscribe from the list of recipients.
4.2. The processing of personal data is carried out on the basis of the principle of lawfulness by virtue of the legal bases referred to in Article 6 of the GDPR for one or more of the specific purposes listed above. With reference to marketing activities, it should be noted that, in the event that you do not give your specific consent to the processing, it will not be possible to carry out these activities.
5. Processing modalities
5.1. The Data will be: collected by computer; recorded in digital format on computers and/or stored in archives; protected from the risks of destruction, modification, cancellation and unauthorized access by means of efficient physical, logical and organizational security measures; further processed, possibly also in paper form, to the extent and within the time strictly necessary to carry out the purposes indicated above.
5.2. As part of its activities and for the purposes indicated above, the Owner may use services provided by third parties who operate on behalf of the Owner and according to its instructions, as data processors, as indicated in the next point.
6. Communication and Dissemination of Data
6.1. The personal data acquired will not be disseminated, but may be communicated to subjects contractually bound to the Owner in accordance with and within the limits of the GDPR. The data are communicated only to the extent strictly necessary in relation to the above purposes, or in any case only for the fulfilments necessary for the service, or those required by law or by order of the Authority.
6.2. The categories of recipients are as follows:
a) subjects necessary for the execution of the activities connected with and consequent to the execution of the services and any subsequent contractual obligations, as data processors (e.g. subjects who provide services for the management of the information system used and telecommunications networks, including e-mail). The list of data processors is available at the Data Controller’s head office;
b) Persons authorized by the Data Controller who are committed to confidentiality or have an adequate legal obligation of confidentiality (e.g. employees).
6.3. The Data Controller may also have to disclose the data acquired to comply with legal obligations or to comply with orders from public authorities, including judicial authorities.
7. Period of Data Retention
7.1. The Owner keeps the data for the time strictly necessary to achieve the Purposes indicated above.
7.2. The retention period for data collected with the contact request form is strictly limited to the time necessary to follow up on the need that the user is expressing with his request, how the business relationship will evolve as a result of contacts. The data processed for marketing purposes will be kept by the Company from the moment the interested party has given their consent until such consent is revoked.
7.3. The data will be eliminated when it is no longer necessary for the purposes indicated above, without prejudice to further conservation obligations provided for by law.
8. Data transfer
8.1 The Owner does not transfer personal data to third countries or international organizations. However, it reserves the possibility of using cloud services; in which case, the service providers will be selected from among those who provide adequate guarantees, as provided for by art. 46 GDPR.
9. Nature of the conferment of data
9.1. Apart from what has been specified for surfing data, as regards the data provided when subscribing to the newsletter service and filling in the “Contact us” form, the interested party may refuse to communicate the same to the Data Controller, as conferment is optional. However, the compilation of the fields indicated is indispensable in order to receive the newsletter requested and to be able to process the requests received.
9.2. Where provided for in relation to the relationship between the data subject and the Data Controller (execution of contractual obligations); the data subject cannot refuse to provide the Data Controller with the personal data necessary to comply with the legal regulations governing commercial transactions and taxation. Therefore, refusal to provide the data required by law will prevent the pursuit of the purposes pursued. Persons acting in the name and on behalf of legal entities may refuse to provide the Data Controller with their personal data. The conferment of these, however, is necessary for the correct and efficient management of the contractual relationship. Therefore, any refusal to provide it may compromise all or part of the contractual relationship itself.
10 Rights of the interested party
10.1. Pursuant to the GDPR, the data subject has the right of access (art. 15), the right to rectification (art. 16), the right to erasure (art. 17), the right to restriction of processing (art. 18), the right to portability (art. 20), the right to object (art. 21), the right to object to automated decision-making (art. 22), the right to lodge a complaint with the supervisory authority of the State of residence (art.77). The interested party in order to enforce their rights may contact the Data Controller specifying the object of their request, the right they intend to exercise and attaching a photocopy of an identity document certifying the legitimacy of the request at the following address: Spett. FRANCO S.R.L. Via Nazionale 80 – 12010 Cervasca (CN). Or by sending an e-mail to the following address: email@example.com
11. Automated decision-making processes
11.1. The Data Controller does not carry out processing operations consisting of automated decision-making processes on the data, therefore in particular there is no profiling system.
12. Modifications to this informative report
12.1. The Owner reserves the right to modify the content of this information, in whole or in part, also due to changes in the Privacy legislation. The Owner will publish the updated version of this act on the Site, and from that moment it will be binding: the interested party is therefore invited to visit this section regularly.