This privacy notice is provided in accordance with Article 13 of Regulation 2016/679 (GDPR), pursuant to Article 13 of Legislative Decree no. 196/2003 (Personal Data Protection Code), and applies to all personal data processed in the manner indicated below.
Data Controller
The Data Controller of the Personal Data collected is: Ceramica d’arte Ammannati SRL
Operational headquarters: Via Virginio, 330 – Montespertoli, 50025 – Florence – Tuscany – Italy
Email address of the Data Controller: info@mattonelleartistiche.it
Types of Data Collected
Detailed information on each type of data collected is provided in the dedicated sections of this privacy policy. Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically during use of the site. Unless otherwise specified, all requested Data is mandatory. If the User refuses to provide it, the Service may not be available. Where data is optional, Users may choose not to provide it without affecting the availability of the Service. Users who have questions about mandatory data are encouraged to contact the Data Controller. The use of Cookies or other tracking tools by the site, unless stated otherwise, is for the purpose of providing the Service requested by the User. The User is responsible for any third-party Personal Data obtained, published, or shared through the site and confirms they have the third party’s consent to provide the Data to the Data Controller.
METHODS AND LOCATION OF DATA PROCESSING
Purpose of Data Processing
User data is collected to enable the Data Controller to provide its services and for the following purposes: Statistics, Newsletters, Personalized Advertising, Accounting, Performance Testing of content and functionality, Social Network Interaction, Content Display from external platforms, and interaction with data collection platforms and other third parties. For more detailed information on the purposes of processing and the Personal Data involved in each purpose, refer to the relevant sections of this document.
Processing Method
The Data Controller uses appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of Personal Data. Processing is carried out using computers and/or IT-enabled tools, with organizational methods and logic strictly related to the purposes indicated. Besides the Data Controller, in some cases, the Data may be accessible to certain types of external parties (such as administrative, sales, marketing, legal staff, system administrators) or external entities (e.g., third-party service providers, mail carriers, hosting providers, IT companies, communication agencies) appointed as Data Processors by the Data Controller. An updated list of these Data Processors can always be requested from the Data Controller.
Legal Basis of Processing
The Data Controller processes Personal Data related to the User if one of the following conditions applies:
– the User has given consent for one or more specific purposes;
– processing is necessary for the performance of a contract with the User and/or for any pre-contractual obligations;
– processing is necessary to comply with a legal obligation to which the Data Controller is subject;
– processing is necessary to carry out a task of public interest or exercise official authority vested in the Data Controller;
– processing is necessary for the legitimate interests pursued by the Data Controller or a third party.
The Data Controller is willing to clarify the specific legal basis for each processing, especially if based on law, contract, or necessary to conclude a contract.
Location
Data is processed at the operational offices of the Data Controller and in any other locations where parties involved in the processing are located. For more information, contact the Data Controller. Personal Data may be transferred to a country other than the User’s country of residence. For further details on the processing location, the User may refer to the section providing details on the processing of Personal Data. The User has the right to obtain information about the legal basis of data transfers outside the European Union or to an international organization governed by public international law or set up by two or more countries, such as the UN, and the security measures adopted by the Data Controller to protect the Data. Should any such transfer occur, the User can refer to the respective sections of this document or ask the Data Controller for information by contacting them at the details provided above.
Retention Period
Data is processed and retained for as long as required by the purposes for which it was collected:
– Personal Data collected for purposes related to the performance of a contract between the Data Controller and the User shall be retained until such contract has been fully performed.
– Personal Data collected for the purposes of the Data Controller’s legitimate interests shall be retained as long as needed to fulfill such purposes. Users may obtain specific information about the legitimate interests pursued by the Data Controller within the relevant sections of this document or by contacting the Data Controller.
When processing is based on User consent, the Data Controller may retain Personal Data longer until such consent is withdrawn. Furthermore, the Data Controller may be obliged to retain Personal Data for a longer period whenever required by law or by an authority. Once the retention period expires, Personal Data will be deleted. Therefore, the right of access, erasure, rectification, and data portability cannot be enforced after the retention period expires.
Details on the Processing of Personal Data
Personal Data is collected for the following purposes and using the following services:
– Mailing List or Newsletter
By registering on the mailing list or newsletter, the User’s email address is automatically added to a list of contacts who may receive email messages containing information, including commercial and promotional information. The User’s email address may also be added to this list after registering on the site or following a request for a quote.
Personal Data collected: email, first name, last name.
– Contact Form
By filling in the contact form with their Data, the User authorizes its use to respond to requests for information, quotes, or any other request as indicated by the form’s title.
Personal Data collected: first and last name, email (mandatory data), phone, and various types of Data.
– Registration for Access to Reserved Area
By filling in the registration form with their Data, the User authorizes its use to create a unique account that can be used for various site functions (response to information requests, quotes, or e-commerce).
Personal Data collected: first and last name, email (mandatory data), phone, and various types of Data.
– Interaction with Social Networks and External Platforms
This type of service allows interaction with social networks or other external platforms directly from this site. Interactions and information obtained are always subject to the User’s privacy settings for each social network. Even if Users do not use the service, it may still collect traffic data for pages where the service is installed.
For further translations, please let me know!