Your Privacy is Important!
Data protection statement in accordance with art. 13 of Italian Legislative Decree no. 196 of 30 June 2003 (“Code”) and Regulation (EU) 2016/679 (“GDPR”)
In accordance with the Code and the GDPR, Webgriffe Srl as identified below, as the Data Controller, wishes to inform you about the use of personal data provided by users browsing and/or interacting with this website.
Purpose of the data processing
Depending on the requirements indicated by the users accessing the various sections of the site, the data supplied by users in the online forms may be used for any of the following purposes:
To enable registration on the website in order to access specific sections of the website and to allow the delivery and management of the services offered;
To enter into contracts for sale and purchase and to allow their fulfilment;
To comply with the requirements necessary to fulfil the contract;
With the user’s consent and until such consent is revoked, to allow marketing activities (including but not limited to the sending of promotional or advertising materials, the carrying out of surveys on registered users to enable Webgriffe to improve its services and products); this may also take place by text or email, with specific consent and until such consent is revoked;
To send newsletters containing updates on the services and activities of Webgriffe;
To reply to users’ queries about Webgriffe services.
Methods of processing
Tools and systems
For the purposes referred to herein, the data will be processed using manual, computerised and electronic systems in strict correlation to the above-mentioned purposes and always in such a manner so as to guarantee the security and confidentiality of the data. Users agree to inform us promptly of any corrections, changes or updates to the data. The data may be processed on behalf of the owner of the website for the purposes and according to the methods described above, according to criteria designed to guarantee security and confidentiality by companies, professional firms, external bodies and contractors appointed as Data Processors, only with regard to the data processing operations they carry out.
The data will be processed for the duration of the contractual relationship. It will only be processed after that in order to comply with legal obligations and for commercial purposes.
Type of data processed
The computer systems and software procedures that operate this website acquire some personal data during normal use, which is transmitted using Internet TCP/IP communication protocols. This information is not collected to identify you personally. However, it could be used to identify you via processing and in association with data held by third parties. This data category includes IP addresses or the domain names of the computers used by any user connecting with this website, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of such requests, the method used for submitting a given request to the server, returned file size, a numerical code relating to server response status (successfully performed, error, etc.), and other parameters related to the user's operating system and computer environment. This data is only used to extract anonymous statistical information on website use, as well as to check its functioning. The data may be used to ascertain liability in the event of computer crimes against the Webgriffe website.
Data provided voluntarily by users
If personal data is sent voluntarily to the addresses indicated on this website in order to access certain services, or to request information, the sender’s email address will then be stored together with any other personal data in the email, in order to reply to the request or query. Failure to provide all or part of the data may mean that the user’s request cannot be fulfilled.
Nature of provision of data
The provision of data is obligatory when entering into a contract for purchase and optional in all other cases. It may be necessary in order for Webgriffe to fulfil the user’s requirements in connection with the functioning of the site. Failure to provide any part of the data marked by an asterisk, or other data necessary to provide the required service, will make the fulfilment of the requested service impossible.
Categories of recipient
The processing of the personal data for the purposes listed above may be done by individuals or companies who provide specific processing services on behalf of Webgriffe Srl or in its interests, or by persons who provide connected, instrumental or support services. Your data may thus be disclosed, for the same purposes, to:
Anyone who legitimately receives communications required by provisions of laws or regulations (such as public offices and authorities);
Anyone receiving communications that are required in order to fulfil obligations deriving from the services provided;
Third parties specialising in the management of commercial credit-related information (such as data processing centres, banks etc.).
Your data will also be processed by:
Companies and/or contractors used to fulfil legal or contractual obligations, for the management of administration services;
Other persons (companies, firms and individuals) who work to provide the services and for the above-mentioned purposes.
These parties will operate as Data Processors or Authorised Parties and will be specifically appointed and instructed.
Data controller and data processor
The Data Controller is Webgriffe Srl, headquartered at Viottolo Peloso 1, Casalgrande (RE) - Italy, tax code and VAT no. IT02277170359.
Rights of the data subjects
In accordance with Article 7 of the Code and Articles 15 et seq of the GDPR, you have the right:
to obtain confirmation as to whether or not personal data concerning you is being processed even if not yet recorded, and its communication in an intelligible form;
to obtain a copy of your personal data;
to the rectification of any inaccurate data;
to the erasure of your personal data;
to limit the processing of your personal data;
in a structured, commonly used and machine-readable format, the personal data you provided or created yourself - except for the opinions created by the Data Controller and/or by the authorised parties (Art. 4 Privacy Code) / by the persons authorised to process the personal data on behalf of the Data Controller under Art. 4 GDPR - and to send it, directly or via the Data Controller, to another data controller;
details of: - the origin of the data; - the categories of processed personal data; - the purposes and methods of the processing; - the logic applied in the case of processing by electronic instruments; - the details identifying the Data Controller and the data coordinators; - the period of storage of your personal data or criteria useful for determining that period; - the persons or categories of person to whom your personal data may be disclosed or who may receive it in their capacity as designated local representative, or as data processor or authorised person (Art. 4 Privacy Code) / persons authorised to process the data on behalf of the Data Controller under Art. 4 GDPR; - the updating, rectification or, where interested, the integration of the data; - the anonymisation or blocking of data that have been processed unlawfully, including data the retention of which is unnecessary for the purposes for which it was collected or subsequently processed; - confirmation that the operations referred to in paragraphs a) and b) were brought to the attention, including for their content, of the persons to whom the data was disclosed or circulated apart from in cases where this is impossible or results in the use of resources that are manifestly disproportionate to the right being protected.
The data subject may object, in full or in part: - on legitimate grounds, to the processing of personal data concerning him/herself, even though it is relevant to the purpose of the collection; - to the processing of personal data concerning him/herself, where it is carried out for the purpose of sending advertising or direct sale materials or for conducting market or commercial communication surveys.
To exercise these rights you may send a communication to the email address email@example.com, indicating in the heading “Privacy - Exercise of Rights under Art. 7 of Italian Legislative Decree 196/2003 and Articles 15 et seq GDPR”.
Finally, we inform you that if you consider that your data has been breached by the Data Controller or by a third party, you may make a complaint to the Data Protection Authority and/or to another body which has authority, according to the GDPR.