Skip to main content

PRIVACY POLICY

POLICY PURSUANT TO ARTICLE 13 OF EU REGULATION 2016/679

Privacy Policy pursuant to art. 13 of EU Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data, as well as on the free movement of such data (hereinafter “Regulation”), with reference to the processing of personal data of users who access this website.

1. Data Controller
The Data Controller of the data provided by users is EDAM DI MASTRILLI DEGLIO E FIGLI S.N.C., Via Padre G. Piamarta 20, 25010 Remedello (BS), Italy.

2. Type of data collected
a) Browsing Data
The computer systems and software procedures used to operate this website acquire some personal data whose transmission is implicit in the use of Internet communication protocols.
This category of data includes IP addresses or domain names of computers used by users who connect to the website.
b) Data provided voluntarily by the user
No provision of personal data by the user is required to visit this website. However, the optional, explicit and voluntary sending of emails to the addresses indicated on this website, or the use of the “Contact us” section, involves the acquisition of the sender’s address and the data entered by the user, which is needed to respond to the requests.
c) Cookie
For information regarding the use of cookies through this website, please read our cook,ie policy.

3. Purpose and legal basis of the processing
Browsing data (point 2, letter a) are used to:

  • acquire data and information in an exclusively aggregated form in order to verify the correct functioning of the website;
  • collect data and information to protect the security of the website (spam filters, firewalls, virus detection) and of its users;
  • obtain statistical information on the use of the website.

Data provided voluntarily by the user (point 2, letter b) shall be processed electronically and/or manually by the Data Controller exclusively for purposes related to the request by the Data Subject. The data provided shall not be disclosed to third parties without the express and unambiguous consent of the Data Subject to the processing. The data collected through the “Contact” form on this website or by sending spontaneous emails to the contacts indicated on the same, are used only to perform the service or provision requested.
In case of hypothetical computer crimes against the website, browsing data could be used to ascertain responsibility.

4. Methods of data processing
The processing of the user’s personal data is carried out, according to the principles of correctness, lawfulness and transparency, by manual and/or electronic means, with organisational systems related to the purpose of the processing and to ensure security, integrity and confidentiality of the data and the rights of the Data Subject.
Technical and organisational measures have been taken to protect data from being lost or destroyed, even accidentally, and against unauthorised access or disclosure.
The processing may be carried out with or without the use of electronic or automated means.

5. Disclosure of Data
In addition to the Data Controller, in some cases, the data may also be accessed by internal staff (administrative, sales, legal staff, system administrators) appointed for this purpose and authorized for processing, for the purposes of the processing itself.
The data may also be disclosed to external parties (for instance, third-party technical service providers, hosting providers, IT companies), possibly appointed as Data Processors pursuant to Article 4, Paragraph 1, Point 8) of the Regulation, who process data on behalf of the Data Controller and according to the instructions provided, but exclusively for activities strictly related to the purposes indicated above (for instance, to guarantee the operation of the Internet service, management of information and communications systems)

6. Data retention period
Browsing data (point 2, letter a) shall be retained, in accordance with the provisions of current legislation, for a period of time no longer than necessary for the purposes for which the data are being processed and as further described in the extended cookie policy.
The Data Controller shall process data provided voluntarily by the user (point 2, letter b) for the time strictly necessary to provide the service requested and as further described in the extended policies.

7. Provision of data
Browsing data collected within the scope of this processing (point 2, letter a) are strictly functional to the IT management of the website.
The provision of personal data provided voluntarily (point 2, letter b) is optional and intended solely for the purpose of fulfilling the user’s request; therefore, failure to provide the necessary data makes it impossible for the Data Controller to reply.

8. Place of Data Storage
Personal data shall be stored at the Data Controller’s operating offices and in any other places, within the European Union, where the parties involved with the processing are located.

9. Rights of the data subject
Users may exercise certain rights regarding their Data processed by the Data Controller; in particular, pursuant to Articles 15-21 of EU Regulation 679/2016, users have the right to:

  • access the personal data;
  • check and request the rectification of personal data;
  • obtain the cancellation of personal data;
  • obtain the restriction of the processing of personal data;
  • obtain the portability of personal data;
  • oppose the processing;
  • submit a complaint to the Supervisory Authority (Privacy Authority) or engage in legal proceedings.

10. How to exercise your rights
Users may exercise their rights at any time by sending:

  • an e-mail to: edam@edamitalia.eu;
  • a registered letter with acknowledgment of receipt to: EDAM DI MASTRILLI DEGLIO E FIGLI S.N.C. , Via Padre G. Piamarta 20, 25010 Remedello (BS), Italy.