Pursuant to art. 13 of the European Regulation 2016/679 (the “Privacy Regulation”), TESSITURA ATTILIO IMPERIALI SRL intends to inform all users and/or visitors of the websites www.attilioimperiali.it; www.rasoimperiali.it (respectively “Users” and “Website”) about the use of personal data, log files and cookies collected through the Website.
1) Data Controller and Data Protection Officer
The data controller for the processing of personal data is TESSITURA ATTILIO IMPERIALI SPA (tax code and VAT no. 00295440135) with registered headquarters in LURATE CACCIVIO (CO), e-mail firstname.lastname@example.org (hereinafter “Data Controller”).
The company has not appointed a Data Protection Officer.
2) Information collected by the Website:
The computer systems and software procedures used to operate this website, during their normal operation, acquire some personal data whose transmission is implicit in the use of Internet communication protocols.
These data, which are necessary for using web services, are also processed for the purpose of:
- obtaining statistical information on the use of the services
- checking the proper operation of the services offered.
Browsing data remains no longer than 180 days (except in the event of crime investigation by the judicial authority).
- communicated by the user
Data communicated by the user:
The optional, explicit and intentional submission of data through the various forms on the website that entail acquiring the data of the sender, which are necessary for fulfilling the contact requests, delivering products and/or services and assigning credentials.
- via cookies
3) Type of personal data, purposes, legal basis and retention times
We need the requested and provided personal data to permit access to the website and use the following services:
Type of service: use account request e-shop service;
Type of personal data collected: personal details, contact data (for example: e-mail, phone numbers..).
Purposes: permit downloading updated catalogues.
Legal basis: legitimate interest.
Retention times: until cancellation request
Type of service: newsletter service;
Type of personal data collected: personal details, e-mail contact data.
Purposes: contact subscribers by sending a regular newsletter about the company’s activities;
Legal basis: consent
Retention times: 24 months or until consent is revoked
The data processing for the above purposes will be done in compliance with the Privacy Regulation and all the specific sector regulations.
The data provided will be chiefly processed with computer equipment under the authority of the Data Controller by subjects who are specifically appointed, authorised and trained on processing in accordance with articles 28 and 29 of the Privacy Regulation. Please note that appropriate security measures are observed also in accordance with art.5 and 32 of the Privacy Regulation to prevent loss of data, illicit or incorrect use and unauthorised access.
4) Compulsory or optional nature of the consent for the provision of data
The provision of data is optional, but with no provision it will not be possible to use some services contemplated by our website
5) In what setting we can transmit data
Data can be communicated, within the EU, in full observance of the provisions of the Privacy Regulation, to the following subjects:
(1) the financial administration and/or other public authorities, where this is required by law or upon their request;
(2) structures, subjects and external companies the Data Controller uses for conducting activities that are connected, instrumental or consequent to the implementation of the Services of the Website
Information automatically collected by the Website can also be transferred to third-party cloud servers located outside the EU, if this processing is necessary for the implementation of the website services. The legal basis for this processing is, therefore, art. 49, subsection 1, lett. b of the Privacy Regulation.
6) Security measures
Data are processed through the Website in observance of applicable law and using adequate security measures in compliance with the regulations in effect also pursuant to art. 5 and 32 of the Privacy Regulation.
In this connection, it is moreover confirmed that appropriate security measures are implemented to prevent unauthorised access, theft, disclosure, modification or unauthorised destruction of the processed data.
Please be reminded that at any time it is possible to exercise the rights of art. 15 and following of the Privacy Regulation by sending a written notice to the Data Controller’s addresses in order to obtain:
- confirmation of whether there are personal data, specifying their source, verification of their exactness or requesting their update, correction or integration;
- access, cancellation of data or limitation of processing;
- transformation into an anonymous form or blocking of data processed in violation of the law.
It will also be possible to object to the processing of personal data previously provided.
With reference to the Newsletter, it should be noted that any request for cancellation may be expressed through a specific link/button inside it.
8) Changes to the Privacy Notice
The Data Controller reserves the right to make changes to this Privacy Notice, replacing previous versions. This privacy notice was issued in October 2023.