Privacy Policy

1. INTRODUCTION
1.1. Techno Serramenti S.r.l. takes the online privacy of users of its website “www.technoserramenti.it” (the “Site”) seriously and is committed to fully respecting it.

1.2. This document (the “Policy”) has been drafted in accordance with the obligations imposed by Regulation (EU) 679/2016 (the “GDPR”) to enable you to understand how your personal data is processed when you, as a visitor or user (the “Data Subject”), browse the Site and possibly use the services and features available there (the “Services”).

1.3. This Policy applies only to the Site and not to other websites that may be accessed via links, for which you are referred to their respective policies.

1.4. We invite you, therefore, to read this Policy carefully before providing any type of personal data, filling out any form, or using any functionality on the Site. In any case, a specific reference to this Policy is provided in the sections of the Site set up for particular Services where your personal data is requested.

2. IDENTIFICATION DETAILS OF THE DATA CONTROLLER
2.1. The Data Controller is the company Techno Serramenti S.r.l., with registered office in San Giorgio di Nogaro (UD), Via Palmanova, No. 83, VAT No. 02261650309 – Tel.: 0431.621206; E-Mail: privacy@technoserramenti.it; Certified Email: technoserramenti@pec-mail.it.

3. TYPES OF DATA PROCESSED
3.1. The Site offers informative and interactive content. During your navigation on the Site or when you make use of the Services available, the Company acquires and processes your personal data, defined as “any information relating to an identified or identifiable natural person.”

3.2. Such personal data may consist of an online identifier or, depending on your decisions on how to use the Services, your identification or contact data, as well as any information that you freely choose to provide (e.g., when filling out forms, submitting requests, or otherwise).

3.3. Specifically, through the Site, the Company processes the following personal data:

a) BROWSING DATA
The Company does not commonly carry out the direct processing of browsing data. However, the computer systems and software procedures used for the operation of the Site acquire, during their normal functioning, some personal data whose transmission is implicit in the use of Internet communication protocols. This is information that is not collected by the Company to be associated with identified individuals, but which by its very nature could, through processing and association with data held by third parties, allow users to be identified.

In this category of data, IP addresses or domain names of the computers used by users connecting to the Site, URI (Uniform Resource Identifier) addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (success, error, etc.) and other parameters relating to the operating system and the user’s computer environment are included.

This data may be used solely for the purpose of obtaining anonymous statistical information on the use of the Site and to check its correct functioning, to identify anomalies and/or abuses. Except for cases where the data is used to ascertain liability in the event of hypothetical computer crimes against the site or third parties, such data is stored within the terms and timelines prescribed by law.

b) COOKIES
Information regarding the use of cookies is available in the specific Cookie Policy, accessible by clicking on the link at the bottom of each page of the Site or by clicking here.

c) DATA PROVIDED VOLUNTARILY BY YOU
You are free to choose to use the specific Services available on the Site.

In this case, before activating or using a particular Service or sending a specific request, you will provide – after having read this Policy and, if necessary, given the required consent – your personal data, to obtain what interests you (e.g., information, quotes, site inspection requests, etc.).

Specifically, you will be asked to enter, for example, information such as your name and surname, your telephone number, your email address, etc. The personal data required for individual Services may differ depending on the forms used from time to time, but it will always be clear what is requested from you.

4. SPECIAL CATEGORIES OF PERSONAL DATA AND THIRD-PARTY DATA
4.1. Some sections of the Site include free fields where you can freely communicate your requests to the Company, allowing us to better meet your needs. However, we ask you not to provide unnecessary or excessive personal data.

4.2. In particular, we urge you not to disclose (either voluntarily or unintentionally) special categories of personal data (the “special data”), that is, data suitable for revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, as well as genetic data, biometric data intended to uniquely identify a natural person, data concerning health or data concerning a natural person’s sex life or sexual orientation; while noting that sending any information you wish to communicate to us through various forms is entirely optional, we ask you to consider that special data may only be processed with your explicit consent and in compliance with current privacy legislation, which, if applicable, you must provide us.

4.3. Similarly, we invite you not to provide (either voluntarily or unintentionally) any data related to third parties other than yourself, because in this case you will assume all legal obligations and responsibilities, indemnifying the Company from any and all disputes, claims, demands for damages, or other matters that may come from third parties whose personal data you have processed through the Site. In any case, should you provide or otherwise process personal data of third parties in the use of the Site, you guarantee from now on – assuming all related responsibility – that this particular processing is based on the consent of that third interested party or on another appropriate legal basis that legitimizes the processing of the information in question, in accordance with current privacy regulations.

5. TREATMENT METHODS
5.1. Your personal data is processed, both manually and with the help of electronic, computer, telematic, and/or automated tools, with logic strictly related to the purposes indicated and in compliance with the principles imposed by current regulations on the protection of personal data.

5.2. Your personal data is protected by appropriate technical and organizational measures to ensure its security and confidentiality. The Company has implemented specific security measures to prevent destruction, loss, alteration, or unauthorized disclosure of personal data and to prevent accidental or unlawful access to personal data transmitted, stored, or otherwise processed.

6. PURPOSE OF THE PROCESSING AND LEGAL BASES
6.1. The Company processes personal data for multiple purposes, some of which require your specific and optional consent. To facilitate your understanding and ensure greater clarity, we deemed it appropriate to explicitly distinguish the individual purposes, as better detailed below:

a) Primary Purposes: By this term, we mean the performance of all activities strictly functional to meet your requests as well as all activities connected or instrumental to these, functionally linked to the operation of the Company or the protection of its rights. For example and not exhaustively, the data is processed for: managing your communications requesting information, quotes, appointments, or services from the Company; responding to these requests; negotiating and concluding an order/contract; providing services and/or services requested in general. Where necessary, the data can also be used: for quality and internal procedure checks; to fulfill legal, accounting, tax, administrative obligations; to fulfill obligations arising from laws, regulations, or community legislation; for insurance purposes; for the exercise of the Company’s rights in the most appropriate venues.

For these purposes, your consent is not required. In fact, these treatments are lawful because they are necessary for the execution of a contract to which you are a party or for the execution of pre-contractual measures adopted at your request, to allow the Company to fulfill a legal obligation to which it is subject or, finally, to guarantee the protection of its rights.

b) Subject to your consent, entirely free and optional, your data is processed for the purpose of E-Mail Marketing, that is, for sending e-mails, including periodic ones, with advertising content or, in any case, promotional content related to products and services offered or marketed by the Company.

7. REVOCATION OF CONSENT
7.1. If you have given your consent to authorize a specific processing, we inform you that you can revoke it at any time by contacting the Company using the methods indicated in the following paragraph “Rights of the Data Subject.” Such revocation, in any case, will not affect the lawfulness of the processing based on the consent given before the revocation.

8. DATA PROVISION AND CONSEQUENCES OF ANY REFUSAL
8.1. Except for navigation data, which is automatically collected by the system, the provision of data is left to your free will.

8.2. Failure to provide data qualified as “mandatory” in specific forms will make it impossible to provide you with the Service you have requested that requires the processing of said data.

8.3. The provision of data for the Purpose of E-Mail Marketing is necessary to allow the Company to send you informative e-mails with commercial and promotional content. If you do not consent to this processing, which is entirely free and optional, this will have no consequences for you, only determining the impossibility for the Company to use your email to send you commercial and promotional communications, as better indicated above.

9. KNOWLEDGE OF THE DATA AND THEIR COMMUNICATION
9.1. Your personal data, if processed electronically, is accessible from every office/branch of the Company.

9.2. Your personal data is processed by subjects specifically authorized or designated by the Data Controller within its structure (employees and collaborators by any name), based on the tasks and duties assigned to each.

9.3. Your personal data may also be processed by other external parties operating on behalf of the Company under specific contractual obligations or, in any case, duly authorized or appointed as data processors. By way of example, if necessary, your personal data may be processed by: providers of IT, telematic, and technological services, including hosting and maintenance services; companies that offer website maintenance, updating, and development services and related features; quality control and/or certification bodies or related activities; auditors; supervisory bodies; professionals and consultants; with your consent, companies specialized in marketing activities and related activities. The updated list of processors is available at the headquarters and can be consulted upon request.

9.4. For the pursuit of the Primary Purposes, your personal data may occasionally be communicated to the following categories of recipients: product suppliers/manufacturers or possible subcontractors; financial companies; banks or credit institutions; insurance companies; credit recovery companies; professionals, experts, consultants, firms, or consultancy companies in the administrative, insurance, accounting, tax, technical, and legal sectors; companies operating in the shipping and transport sector.

9.5. We inform you that your personal data may still always be communicated to third parties, both public and private, to fulfill legal obligations, to comply with orders from public authorities, or to exercise a right in court or in any other venue.

9.6. Your personal data will not be transferred to third parties and will not be subject to dissemination.

10.1. The Company mainly processes its data within its premises or, in any case, within the EU and/or European Economic Area.

10.2. Also due to the computer applications used, if necessary, the Company may transfer your personal data to third countries. In any case, we assure you that the transfer and processing of your personal data take place in compliance with the conditions imposed by the GDPR (Art. 44 and following), such as, for example, adequacy decisions by the Commission, standard contractual clauses, or other guarantees considered adequate.

10.3. Sometimes, when necessary to fulfill the performance you have requested, the personal data provided must necessarily be transmitted to a subject (e.g., a supplier/manufacturer) based abroad, even in countries for which there is no adequacy decision. Even in this case, however, your consent is not deemed necessary because the transfer takes place solely to allow the execution of the contract and/or pre-contractual measures requested by you (Art. 49(1)(c) of the GDPR).

11. DURATION OF PROCESSING
11.1. The personal data you provided for the Primary Purposes will be processed and stored for a period determined based on criteria of strict necessity concerning the different purposes pursued and, in any case, in compliance with current regulations on the protection of personal data, preservation of accounting records, and according to the logic of protecting the Company’s rights (statute of limitations under the Civil Code).

11.2. Personal data processed for additional purposes will be stored until you revoke the consent you have provided. Once consent is revoked, the Company will no longer use your personal data for such purposes but may still keep them if necessary for the Primary Purposes, or as may be necessary to protect the Company’s interests from possible liabilities based on such processing.

11.3. In any case, personal data may be stored for the time necessary to allow the Company to protect its rights.

11.4. Further information on the data retention period and the criteria used to determine this period can be obtained by contacting the Company at the following email address: privacy@technoserramenti.it.

12. DATA SUBJECT’S RIGHTS
12.1. In compliance with the GDPR, we inform you that as a “Data Subject,” you may exercise the following rights at any time, as applicable:

– Obtain confirmation whether or not personal data concerning you is being processed, and if so, gain access to the personal data and all information specified in Article 15 of the GDPR, possibly obtaining a copy unless this adversely affects the rights and freedoms of others.
– Obtain the rectification of inaccurate personal data concerning you without undue delay. Considering the purposes of the processing, you have the right to have incomplete personal data completed, including by means of providing a supplementary statement.
– Obtain the erasure of personal data concerning you without undue delay.
– Obtain the restriction of processing when one of the conditions set forth in Article 18 of the GDPR is met.
– Data portability, i.e., receive your personal data provided to the Company in a structured, commonly used, and machine-readable format.
– Not to be subject to a decision based solely on automated processing that has legal effects concerning you or similarly significantly affects you. This right does not apply in cases regulated by Article 22, paragraph 2 of the GDPR.

12.2. To exercise the above rights, you can contact the Company at any time. To better manage your requests, we invite you to contact us by registered mail or by sending an email to the following address: privacy@technoserramenti.it.

12.3. Revoking consent to receive marketing emails can also be done, where provided, by clicking the specific option/link at the bottom of the communication (“Unsubscribe” or other equivalent form).

13. RIGHT TO OBJECT
13.1. In compliance with Article 21 (4) of the GDPR, the Company brings to your attention your right to object. Specifically, you have the right to:

– Object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you under Article 6, paragraph 1, letters e) or f) of the GDPR. In this case, the Company will refrain from further processing the personal data unless there are compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or for the establishment, exercise, or defense of legal claims.
– Object at any time to the processing of personal data concerning you for direct marketing purposes, including profiling to the extent that it is related to such direct marketing. In this case, your personal data will no longer be processed for these purposes.

13.2. To exercise your right to object, you can contact the Company at any time. To better manage your requests, we invite you to contact us by registered mail or by sending an email to the following address: privacy@technoserramenti.it.

14. RIGHT TO LODGE A COMPLAINT
14.1. Furthermore, if you believe that the Company’s data processing is unlawful, you can file a complaint with the competent supervisory authority.

15. UPDATES AND CHANGES
15.1. We remind you that, as the regulatory framework is constantly evolving, we will make any changes or updates to this information, which will be communicated through publication on the website. The currently effective version is the one published on the website. We invite you to periodically check the information to be adequately informed and be sure to agree with any changes.