This page describes how this website processes the personal data of users visiting the site.
The information is provided to people interacting with the company’s web services under art. 13 of European Regulation 2016/679.
The information is provided for this website only, and not for any other websites which the user may consult via links.
The information specifies a number of minimum requirements for online collection of personal data, and specifically methods, times and the nature of the information the Controller must provide to users when visiting the web page, whatever the purpose of visiting the page.
Data on identified or identifiable persons may be processed as a result of consultation of this website.
The “Controller” is GranitiFiandre S.p.A., represented by its legal representative.
PLACE OF DATA PROCESSING
Data processing in connection with the web services of this website takes place at the company’s premises offices and is performed by the technical staff in charge of data processing or, possibly, by persons appointed to perform occasional maintenance work.
No data obtained from the web service is disclosed or disseminated.
Personal data prvoided by users submitting requests for information (newsletters, CD-roms, catalogues, price lists, answers to questions, documents, etc.) are used strictly for the purposes of providing the requested service.
TYPES OF DATA PROCESSED
The information systems and software procedures that operate this website acquire a number of personal data during normal operation, the transmission of which is implicit in use of Internet communication protocols.
This information is not collected to be associated with identified data subjects, but could, by nature, permit the identification of users through processing and association with data held by third parties.
This category of data includes IP addresses or domain names of computers used by users visiting the website, addresses of the requested resources in URI (Uniform Resource Identifier), the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code identifying the status of the response given by the server (success, error, etc.) and other parameters pertaining to the user’s operating system and computing environment.
These data are used solely to obtain anonymous statistical information on website use and determine that the site is functioning correctly, and are erased immediately after processing.
The data may be used to ascertain responsibility in the event of hypothetical cybercrime against the website, but other than this case, data on web contacts are not kept for more than seven days.
Data provided voluntarily by the user
Optional, explicit, voluntary sending of emails to the addresses identified on this website will result in subsequent acquisition of the sender’s address, necessary to respond to requests, and any other personal data that may be included in the email.
Specific summaries of information will be provided on web pages offering particular services available on request.
OPTIONAL NATURE OF DATA PROVISION
Apart from the information specified for browsing data, users are free to decide whether or not to provide their personal data. Failure to provide data may make it impossible for us to respond to the user’s request.
Personal data are processed using automated tools only for the time strictly necessary to achieve the purposes for which the data are collected.
Specific security measures are applied to prevent data loss, unlawful or incorrect use and unauthorised access.
TRANSFERS TO THIRD COUNTRIES
Personal data is transferred to countries outside the European Union or to international organisations only on the basis of a decision of adequacy of the Commission or, in the case of transfers under articles 46, 47 or 49, paragraph two, of the European Regulation, on the basis of appropriate and opportune guarantees.
RIGHTS OF THE DATA SUBJECT
Data subjects may access their data at any time and have the right to request their rectification, erasure, restriction of processing, or the right to object to data processing, as well as the right to data portability, and are also entitled to file a complaint with the Data Protection Authority.
Requests should be submitted to the Controller.