Owner of the data
The site is controlled and managed by the company
ACETIFICIO MENGAZZOLI s.n.c.
registered office: Via della Costituzione 41/43 – 46010 – Levata di Curatone (MN) Tax Code / VAT 01693940205
For any clarification or exercise of rights, the Data Controller can be contacted at the following email address: firstname.lastname@example.org Pec: email@example.com.
Place of data processing
I trattamenti, connessi ai servizi di questo sito, hanno luogo presso la sede del Titolare e sono curati da personale incaricato del trattamento.
Il sito è ospitato su macchine gestite da Aruba S.p.A. con sede in Via San Clemente 53 – 24036 – Ponte San Pietro (BG), le comunicazioni sono comunque trasmesse sul server di Aruba S.p.A.. per dare riscontro alle richieste pervenute dagli utenti.
The treatments, connected to the services of this site, take place at the headquarters of the owner and are handled by personnel in charge of the treatment.
The site is hosted on machines managed by Aruba S.p.A. with headquarters in Via San Clemente 53 – 24036 – Ponte San Pietro (BG), the communications are in any case transmitted on the Aruba S.p.A server .. to respond to requests received from users.
Purpose of data processing and legal basis
The data collected by the site will be processed for:
(i) manage the service required for sending the questionnaire aimed at drafting a quote and / or answering general questions;
(ii) allow you to use the services requested;
(iii) offer assistance and advice;
(iv) to process a contact request;
(v) general administrative-accounting activities;
(vi) send information messages on legislative news, events, conferences, promotions;
(vii) prevent abuse and fraud in the use of our services;
(viii) transmit data to public bodies and authorities requested in accordance with the provisions of the law.
The legal basis for the processing of the interested party’s data derives from:
-the execution of a contract of which the interested party is a party or the execution of pre-contractual measures adopted at the request of the same (art.6 letter b GDPR), in relation to the purposes referred to in paragraph (i), (ii) , (iii), (iv), (v);
– the consent of the interested party (art.6 letter to GDPR) in relation to the purposes referred to in paragraph (vi);
– the legitimate interest of the Data Controller (art. 6 letter f GDPR) in relation to the purposes referred to in paragraph (vii);
– the fulfillment of legal obligations (art. 6 letter c GDPR) in relation to the purposes referred to in paragraph (viii).
Type of data processed
The Data Controller processes non-sensitive personal data (by way of non-exhaustive example, name, surname, company name, address, telephone, e-mail, etc.), which are communicated to us on the occasion of the registration / interaction / compilation of data on the site Owner web.
During their normal operation, the IT systems and software procedures used to operate this website acquire some personal data, the transmission of which is implicit in the use of internet communication protocols.
This is information, which is not collected to be associated with identified interests, but which by their very nature could, through processing and association with data held by third parties, allow users to be identified.
This category of data includes the IP addresses or domain names of the computers used by users, who connect to the site, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the files obtained in response, the numerical code, indicating the status of the response given by the server and other parameters relating to the operating system and the user’s computer environment.
These data can be used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and are deleted immediately after processing. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site; without prejudice to this possibility. At present the data on web contacts do not persist for more than 60 days.
The aforementioned information is processed automatically and collected in aggregate form.
Data voluntarily provided by the user
The optional, explicit and voluntary sending of e-mails to the addresses of firstname.lastname@example.org, indicated on this site, involves the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any personal data contained in the mail . Where necessary, specific summary information and specific requests for consent are shown on the pages of the site prepared for various services on request.
Registration for events
You can register for events through the site or, in some cases, through third party sites. Through the registration forms, personal information of various types can be collected depending on the case. This information may be shared with third parties who, for various reasons, are involved in the organization of the event (by way of non-exhaustive example, speakers, organizers, etc. …).
It will have to refer to the details provided on the occasion of each individual event, to know precisely how the information is used.
Cookies are not used to determine the personal identity of who is visiting the site.
The cookies used are classified as: Necessary Cookies: essential for the operation of the site; Performance Cookies: they help improve site performance and measure the number of times a page is visited; Functionality Cookies: they help to memorize the settings, which you have selected in order to remember your preferences during a subsequent visit.
Sensitive personal data includes information, which may reveal racial or ethnic origin, political, religious or other beliefs, union membership, health status, sexual orientation, judicial data.
Sensitive data is not intentionally collected through this website, nor genetic or biometric data. We ask you not to provide this information through our site.
Access – Data communication
The Data Controller will communicate personal data only to third parties who provide an adequate level of protection of personal data and for the following reasons: where communication is necessary to satisfy a user request involving a third party with whom the Data Controller has a relationship ; if the communication is reasonably connected to the provision of a requested service; if requested by the Authority or, in any case, according to the rules.
Personal data may be made accessible to employees / collaborators of the Data Controller in their capacity as data processors and / or system administrator.
The Data Controller does not process personal data and / or information obtained through this site for dissemination or sale to third parties for marketing purposes.
This information is not intended for use by minors. Consequently, we do not knowingly process children’s data
Optional supply of data
Apart from that specified for navigation data, the interested party is free to provide personal data requested in the questionnaire for the forwarding of quotes, personal data through the forwarding of e-mails to request information, sending informative material or to join to events and initiatives.
Failure to provide personal data may make it impossible to follow up on the data subject’s request.
Personal data can be processed both on paper and electronically.
Specific security measures are observed to prevent data loss, illegal use, unauthorized access.
In addition to the Owner, in some cases, categories of agents involved in the organization of the site or external subjects (such as IT companies, etc.) may have access to the data.
The data and information collected by users of the site are kept for the time necessary to achieve the purposes for which they are processed.
The fulfillment of legal obligations, the constraints deriving from civil, fiscal and corporate legislation, the need to exercise a right in court, or other specific constraints established by the legislator, may lead to further retention obligations
The interested party is guaranteed the possibility to exercise the following rights:
Right of access (art. 15 EU Regulation 679/2016): obtain confirmation from the Data Controller that the processing of personal data concerning him or her, access to them and a copy of the processing data are in progress;
Right of rectification (art. 16 EU Regulation 679/2016): right to obtain the correction or integration of your data;
Right of cancellation (art.17 EU Regulation 679/2016): when data are no longer necessary; when consent is revoked; when the data are unlawfully processed; etc…;
Right of limitation (art. 18 EU Regulation 679/2016) exercisable when: the accuracy of the data is questioned; the treatment is illegal; personal data are no longer necessary for the original purposes; as part of the cancellation request, the verification of the existence of a prevalent legitimate reason is pending;
Right to object (art.21 EU Regulation 679/2016): exercisable at any time regarding the processing of data concerning him, unless the Data Controller demonstrates legitimate reasons to proceed with the processing that prevail over the rights of the interested party, or in the event to ascertain, exercise or defend a right in court;
Right to portability (art. 20 EU Regulation 679/2016): right to obtain the return of their data or to request the transmission of data from one Data Controller to another;
Right to withdraw your consent at any time.
To exercise their rights, the user can contact us by traditional post at the following address:
ACETIFICIO MENGAZZOLI s.n.c.
registered office: Via della Costituzione 41/43 – 46010 – Levata di Curatone (MN)
he interested party can also contact the Guarantor for the protection of personal data and the other competent public bodies for any complaint arising from the processing of their personal data.