PRIVACY POLICY

Dear User,

This page contains information about the management of your personal data through our website.

We provide this information not only to comply with the legal obligations regarding the protection of personal data provided for by Regulation (EU) 2016/679 or “Regulation”, but also because we believe that the protection of personal data is a fundamental value of our business activity and we want to provide any information that can help you to protect your privacy and to control the use of your data in relation to the browsing experience on our site.

This Privacy Policy is intended to describe the management of this site, with reference to the processing of personal data of users / visitors who consult it. This information is granted pursuant to Articles 13 and 14 (C60-C62) of the regulation 679/16 and due to WP187 – 259 – 260 to those who connect to the site.

The information is provided for the site mentioned above and also for other websites, directly or indirectly owned by the reporting company, possibly consulted by the user through appropriate links.

This site is owned and managed by Nannini Italian Quality Srl which guarantees compliance with the legislation on the protection of personal data. Users / visitors must read this Privacy Policy carefully before submitting any personal information and / or filling out any electronic form on the site.

Information pursuant to art. 13 of Legislative Decree 196/2003 and Article 13 of Regulation (EU) no. 2016/679

Pursuant to art. 13 of Legislative Decree no. 196/2003 (hereinafter “Privacy Code”) and art. 13 of Regulation (EU) No. 2016/679 (hereafter “GDPR 679/16”), we wish to inform you that the personal data you provide will be processed in compliance with the abovementioned law and the confidentiality obligations of Nannini Italian Quality Srl.

HOLDER:

The holder of the processing of personal data is  Nannini Italian Quality SrlVia J.F. Kennedy, 10 – 42124 Reggio Emilia (RE) – Italy Tel. 0522.739188; P.iva: 02350150351

DATA SUPPLIED VOLUNTARILY FROM USERS / VISITORS:

If users / visitors, by connecting to this site, send their personal data, Nannini Italian Quality Srl will acquire the address of the sender and / or other personal data that will be processed exclusively to respond to the requests sent to us.

Any data you provide will be processed in accordance with the current legislation on the processing of personal data (curriculum, personal information you provide us with and / or present on the site).

Regarding time markers (so-called cookies), you can see this page

Navigation data

The computer systems used to operate this site acquire, during normal operation, some personal data that are implicitly transmitted in the use of Internet communication protocols. This information could, by their nature, allow identification of users / visitors (eg IP address, etc.).

Type of Data IP address and navigation DATA
Purpose of the treatment
  • Web Site browsing
  • Comply with legal obligations
Obligation (or not) to provide Data Required to visit the site and access the various features of the site.
Method and place of treatment Treatments related to the web services of this site take place at the Register.it datacenters.

Personal data are mainly processed with automated tools. Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access.

Legal basis for processing personal data The data are processed with the purpose of providing the necessary tools to visit the site and access the available features.
Data Recipients Only internal subjects within the company, such as collaborators and / or consultants appointed by the Owner for the aforementioned purposes.
Data retention period For the duration of the session and the entire duration of use of the site.
Data provided for the e-commerce portal
Type of Data
  • Full Name
  • Company name
  • Shipping address of the material
  • Phone number
  • E-mail address
  • TAX  code or VAT number (for Italy and EU country)
The purpose of the processing
  • The treatment is carried out for the use of the service required to purchase goods from the portal of the website.
  • The processing is carried out for the purpose to make an economic transaction between the parties;
Obligation (or not) to provide Data The refusal to provide data makes it impossible to use the service requested.
Treatment methods The treatment will be carried out in an automated and / or manual form, in compliance with the provisions of art. 32 of the GDPR 2016/679 and Annex B of the Legislative Decree 196/2003 (articles 33-36 of the Code) regarding security measures.
Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access.
Legal basis for Data processing Data is voluntarily provided by the user when the purchase format is sent.
Data recipients Internal company subjects (collaborators and / or consultants)
Banks and credit institutions
Entities responsible for debt collection.
These subjects are appointed by the Owner for the purposes mentioned above.
Data retention period For the necessary period to achieve the purposes for which they were collected (ie, for the duration of the disbursement of the relationship with the customer).
To this period must be added ten years for the conservation for legal, civil, fiscal and accounting purposes.
Data provided for the subscription to the newsletter
Type of Data Registration email address
The purpose of the processing
  • Processing is carried out for the purpose of establishing relationships with users, in particular for the purpose of providing commercial information (marketing);
  • Send promotional and advertising communications
Obligation (or not) to provide Data The refusal to provide data makes it impossible to use the service requested.
Treatment methods The treatment will be carried out in an automated and / or manual form, in compliance with the provisions of art. 32 of the GDPR 2016/679 and Annex B of the Legislative Decree 196/2003 (articles 33-36 of the Code) regarding security measures.
Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access.
Legal basis for Data processing Data are voluntarily provided by the user when the registration format is sent.
Data recipients Individuals within the company, such as collaborators and / or consultants appointed by the Owner for the purposes mentioned above.
Data retention period For the necessary period to achieve the purposes for which they were collected (ie, for the duration of the disbursement of the relationship with the customer).
To this period must be added ten years for the conservation for legal, civil, fiscal and accounting purposes.

TREATMENT METHODS

The treatment will be carried out in an automated and / or manual form, in compliance with the provisions of art. 32 of the GDPR 2016/679 and Annex B of the Legislative Decree 196/2003 (articles 33-36 of the Code) regarding security measures. The treatment is carried out through the operations or complex of operations, such as:

  • Collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, deletion of data;
  • Operations can be performed with or without the support of electronic or automated tools;
  • The processing is carried out by the owner and / or by persons in charge of processing (also external).

We point out that, in compliance with the principles of lawfulness, pursuant to art. 5 GDPR 2016/679, your personal data will be kept for the period necessary to achieve the purposes for which they are collected and processed.

OPTIONAL OF DATA SUPPLY

Apart from that specified for navigation data, users / visitors are free to provide their personal data. Their non-communication can only lead to the impossibility of evaluating the message sent.

DATA COMMUNICATION

The data will be known to the data controllers and may be communicated to external collaborators and, in general, to all those subjects that Nannini Italian Quality Srl deems necessary for the correct fulfillment of the purposes indicated.

DATA DIFFUSION

The data you provide on the website will not be disclosed directly by Nannini Italian Quality Srl unless specifically requested by the user. The information that users of the site will deem to make public (eg Facebook, Linkedin, etc…), are managed by the user knowingly and voluntarily, exempting this site from any responsibility regarding possible violations of the laws. The user must have the permission to enter personal data, third parties or contents protected by national and international regulations.

Any improper and fraudulent use of the data given to Nannini Italian Quality Srl by third-party users not authorized by the Data Controller is not to be considered direct responsibility of the company Nannini Italian Quality Srl.

TRANSFER OF DATA ABROAD

Personal data may be allocated in European Union countries and extra UE countries as site management providers may be external to EU member states.

PERSONAL DATA RETENTION PERIOD

Messages are stored within computer systems and in paper archives throughout the 5-year period.

In the case of transformation into a work contract, further information will be provided in the definition of the work contract.

The Owner reserves the right to keep the data for a period of 10 years afterwards for reasons connected to possible legal restrictions.

The right of cancellation or transformation into anonymous form does not apply to cases in contrast with current legislation in the field of company and administrative law.

RIGHTS OF THE INTERESTED PARTY

You have the right to obtain from the Owner or from the Responsible the cancellation, the communication, the updating, the rectification, the integration of the personal data that concern you, and in general can exercise all the rights foreseen by the art. 15-16-17-18-19 of the EU Reg. 679/16.

Specifically, you have the right to access and:

  • copy of personal data (Article 15 par.3);
    In the case of other copies requested by the interested party, the data controller may charge a reasonable fee contribution based on administrative costs
  • the adjustment (Article 16);
  • cancellation of the same (Article 17);
  • the limitation of processing (article 18) concerning him or to oppose their treatment, in addition to the right to data portability;
  • communication to each of the recipients to whom personal data have been transmitted (Article 19).

In accordance with the EU Regulation 679/16 the holder will respond to the request within 30 days (in case of complications to the exercise of rights can take 30 additional days).

RIGHT OF RECTIFICATION:

Users have the right to request the correction of their personal data if they are inaccurate or incomplete. This right also implies that the correction must be communicated to all third parties involved in the processing of the data in question unless this is impossible or particularly difficult. If requested by the user, the organization must also inform him about the identity of these third parties.

For the correction request, you can send an email to: mail@nannini.com

RIGHT TO OPPOSE:

Under the GDPR, users have the right to object to certain processing activities of their personal data made by the data controller. In summary, the user can object to the processing of his data whenever it is based on a legitimate interest of the controller or on the execution of a task of public interest / exercise of public authority or for research and scientific / historical statistics.

For the opposition request, you can send an email to: mail@nannini.com

THE RIGHT TO DATA PORTABILITY:

The user has the right to obtain (in a readable electronic format) his / her personal data in order to transfer them to another holder, without the current owner creating any obstacle. This provision includes both the data “supplied” by the user and those “observed”.

For the portability request, you can send an email to: mail@nannini.com

RIGHT TO THE ERASURE:

Once the  Data are no longer useful for the purposes for which they were collected, in case of revocation of consent by the user or when the personal data were treated in an illicit manner, the user has the right to request cancellation as well as the termination of any other form of dissemination. The right to cancellation can be considered public (such as scientific research), when the data are necessary for defense in the public interest for the exercise of public authority of the owner.

For the cancellation request, you can send an email to: mail@nannini.com

THE RIGHT TO LIMIT THE TREATMENT:

The user has the right to request the limitation of the processing of his data when he contests their accuracy, if the user has opposed the treatment and the organization is evaluating if there is a legitimate reason to exclude it, if the processing is illegal but the user requests a restriction rather than cancellation, or if the data are no longer needed but the user needs it to establish, exercise or defend a legal claim. The limitation must be communicated to all third parties involved in the processing of the data, unless this is impossible or particularly difficult.

For the request for limitation, you can send an email to: mail@nannini.com

RIGHTS RELATED TO AUTOMATED DECISION-MAKING PROCESSES AND PROFILING:

Users have the right not to be subjected to decision-making processes based on automated processing or profiling and which produce a legal effect, or an equally significant effect.  Organizations may make automated decisions only if they are necessary for the execution of a contract, authorized by the applicable EU country legislation to the data controller, without legal effects or similar relevance to the user or based on the explicit consent of the person interested. It is possible to make automated decisions without the explicit consent of the user only if they concern special categories of data, or for reasons of significant public interest

THE RIGHT TO PROPOSE COMPLAINTS TO A CONTROL AUTHORITY:

The interested party who believes that the treatment that concerns him / it violates the EU Regulation 679/16 has the right to propose a complaint to a supervisory authority, especially in the Member State in which he / she usually resides, works or the place where the alleged occurred violation.

In the case of the Italian State, the Data Protection Authority has been defined as the supervisory authority.

garante@gpdp.it

Tel. URP 06.69677.291