This page describes how the web site in question processes the personal data of users who consult the site.
The information is provided to people interacting with the company’s web services under art. 13 of European Regulation 2016/679.
The information is provided for this web site only, and not for any other web sites which the user may consult via links.
The information specifies a number of minimum requirements for online collection of personal data, and specifically methods, times and the nature of the information the data controller must provide to users when they connect to the web page, whatever the purpose for which they connect to it.
THE “DATA CONTROLLER”
Data on identified or identifiable persons may be processed as a result of consultation of this web site.
The “Data Controller” is GranitiFiandre S.p.A., represented by its temporary legal representative.
DATA PROCESSING LOCATION
Data processing in connection with this site’s web services takes place in the company’s offices and is performed by the technical staff of the office in charge of data processing or, possibly, by persons appointed to perform occasional maintenance work.
No data obtained from the web service is disclosed or disseminated.
Personal data supplied by users who submit requests for information (newsletters, CD-roms, catalogues, price lists, answers to questions, various documents, etc.) are used strictly for the purposes of providing the requested service.
TYPES OF DATA PROCESSED
The information systems and software procedures that operate this web site acquire a number of items of personal data in the course of their normal operation, the transmission of which is implicit in use of Internet communication protocols.
This is information that is not collected to be associated with identified data subjects, but it could, by nature, permit identification of users through processing and association with data held by third parties.
This category of data includes IP addresses or domain names of computers used by users connecting to the site, addresses of the requested resources in URI (Uniform Resource Identifier), the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code identifying the status of the response given by the server (success, error, etc.) and other parameters pertaining to the user’s operating system and computing environment.
These data are used solely to obtain anonymous statistical information on site use and determine that the site is functioning correctly, and are erased immediately after processing.
The data may be used to ascertain responsibility in the event of hypothetical cybercrime against the site, but other than this case, data on web contacts are not kept for more than seven days.
Data supplied voluntarily by the user
Optional, explicit, voluntary sending of email to the addresses identified on this web site will result in subsequent acquisition of the sender’s address, necessary to respond to requests, and any other personal data that may be included in the email.
Specific summaries of information will be provided on web pages offering particular services available on request.
OPTIONAL NATURE OF DATA CONFERRAL
Apart from the information specified for browsing data, the user is free to decide whether or not to confer personal data. Failure to confer data may make it impossible for us to respond to the user’s request.
Personal data are processed using automated tools only for the amount of time strictly necessary to achieve the purposes for which the data are collected.
Specific security measures are applied to prevent data loss, unlawful or incorrect use and unauthorised access.
TRANSFERS TO THIRD COUNTRIES
Any transfers of personal data to countries outside the European Union or to international organisations will take place on the basis of a decision of adequacy of the Commission or, in the case of transfers under articles 46, 47 or 49, paragraph two, of the European Regulation, on the basis of appropriate and opportune guarantees.
RIGHTS OF THE DATA SUBJECT
The subject of personal data is entitled to access the data at any time and request rectification, erasure, restriction of processing, or the right to object to data processing, as well as the right to data portability, and is also entitled to file a complaint with the supervisory authority.
Requests should be submitted to the Data Controller.