For us, the confidentiality and protection of the personal data processed is highly important. We therefore strictly observe the regulation on the protection of natural persons – Data Subjects - with regard to personal data processing, as well as the free movement of such data.
Hence, the personal data provided will be processed in compliance with the provisions of Regulation EU no. 679/2016 - Regulation – in the manner and for the purposes set out below.
1. Data Controller
The Data Controller is BONETTO CINTURINI S.r.l, in the person of its pro tempore legal representative, with registered offices in Caldogno (VI), via Ronchi Dei Legionari 9, Tax code/VAT number 03278300243.
For data processing purposes, the Data Controller uses the services of specifically appointed Data Processors. An updated list of these is kept at the registered offices of the Data Controller.
2. Personal Data
Personal data of the people registered to the event are any information concerning an identified or identifiable natural person.
URL, the IP address of the computer that requests, the date and the time of the server request and the customer's file request (file name and URL).
b) Personal data are acquired -only when provided voluntarily by the Data Subject -in order to identify the natural person, directly and/or indirectly, with particular reference to an identifier such as the name and the surname, the e-mail address, the telephone number, the reference company, corporate role, country and or nationality.
3. Purpose of Processing personal data and Legal Basis
Personal data will be processed, if necessary, without explicit consent:
a) in the event that processing is necessary for the purposes of the legitimate interests pursued by the Controller concerning the provision of services offered through the website, such as for example the improvement of website navigation also through interaction with other platforms and the implementation of cyber security.
b) in the event that processing is necessary for compliance with a legal obligation to which the Controller is subject.
c) in order to process the request sent by e-mail and/or contact form.
4. Communication of data
The Controller may communicate your data to other third parties, such as Public Administrations and/or appointed employees and/or data processors, e.g. accountants and fiscal experts, lawyers, legal assistants, transport companies, for the purposes described in Par. 3.
5. Transfer of data abroad
Your personal data will be handled and stored on servers located in Italy or in the European Union by the Data Controller and/or by third-party companies assigned and duly appointed as Data Processors.
In any case, let it be clearly understood that, if required, the Data Controller will be entitled to move the location of the servers within the European Union and/or to non-EU countries and/or appoint Data Processors situated and/or having servers in non-EU countries.
In this case, the Data Controller hereby guarantees that the transfer of data outside the EU will take place in compliance with Article 44 and subsequent amendments of Regulation EU no. 679/2016 and with applicable legal provisions,
stipulating, if necessary, agreements and/or certification mechanisms that guarantee an appropriate level of protection such as the Privacy Shield and/or adopting appropriate or suitable guarantees.
The User has the right to obtain further information regarding any transfer of data outside the EU or to a public international law organisation or one constituted by two or more countries and regarding security measures and/or appropriate guarantees adopted to protect such data. In addition, the User has the right to obtain a copy of such data or to be informed of the place where the data has been made available upon making a specific request to the Data Controller at the contact details specified in point 9.
6. Methods of processing
Personal data will be processed either manually or by automated operations, such as collection recording organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
7. Period of storage
Personal data are retained for the period required to fulfil the purposes of the operations for which they are collected.
a) personal data processed in order to pursue a legitimate interest of the Data Controller and/or to fulfil obligations under Italian law will be retained for a period strictly required to fulfil the purposes specified in Paragraph 3.a) and 3.b);
b) personal data processed after their provision by the Data Subject, by filling in the appropriate contact form, will be retained for the period strictly required for processing the request.
8. Rights of the Data Subject
The Data Subject has the right:
a) to request from the Controller access to and rectification or erasure of personal data or restriction of processing concerning the data subject or to object to processing as well as the right to data portability.
b) to withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
c) to lodge a complaint with the Supervisory Authority for the protection of personal data.
9. Procedure for exercising rights
At any time, the Data Subjects will be able to exercise their rights and/or entitlements set out in points 8.a) e 8.b) by sending written communication to the following e-mail address: firstname.lastname@example.org.
The Italian data protection authority for the rights referred to in point 8.c) is The Data Protection Autohority, based in Rome, Piazza Venezia n.11. Any information can easily be seen on the reference website.
10. Nature of data provision and consequences of failure to provide such data
The provision of personal data described in P. 2.a) may be necessary for the attainment of some of the purposes set out in P. 3.a) and 3.b).
The provision of personal data described in P. 2.b) is optional. In this case, if you decide not to provide your personal data, the Controller will be not allowed to process your request.
- for the purpose of requesting some information - by filling in the Request Form - the Data Subject must enter the following data: Name, Surname, E-mail address, Type of request and Country. The Data Subject can also insert the name of the Company, at their own choice.
Entering the above data will allow the Data Controller to process the request in a customised way (e.g. by choosing the language for the reply). In this way, the Data Controller will also be able to identify the person who processed the request and, if applicable, provide protection against any unwanted access made for the purposes of spamming or phishing.
Failure to fill in the Form with the requested data will prevent the Data Subject’s request from being submitted for the provision of the service.