Privacy Policy

(Code regarding the protection of personal data)


Introduction

Legislative Decree 196/2003 (Code regarding the protection of personal data) regulates the processing of personal data, where “processing” is understood as any operation or set of operations carried out, even without the aid of electronic tools, concerning the collection, recording, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, dissemination, deletion, and destruction of data, even if not recorded in a database.
In general, the law requires the consent of the data subject for such processing.
Furthermore, the law requires that the data subject be provided with certain information, which is included in this privacy notice.
In accordance with the commitment and care that the data controller dedicates to the protection of personal data, we inform you about the methods, purposes, and scope of communication and disclosure of your personal data, as well as your rights, in compliance with Article 13 of Legislative Decree 196/2003 according to the following principles:

1. Principle of Accountability The processing of personal data is managed over time by specific responsibilities identified within the company’s organizational structure.
2. Principle of Transparency
   Personal data are collected and subsequently processed according to the principles set forth in the Privacy Policy adopted by C.M.R. Carpenteria Metallica Raineri s.r.l., as indicated in this Privacy Policy. If the provision of data is required to access a service or area of the website, the data subject will be provided with a concise but complete information notice, in accordance with the provisions of Article 13 of Legislative Decree no. 196/03.
3. Principle of Relevance of Data Collection
   Personal data are processed lawfully and fairly; they are recorded for specific, explicit, and legitimate purposes; they are relevant and not excessive in relation to the purposes of the processing; they are kept for the time necessary to achieve the purposes of the collection.
4. Principle of Purpose of Use
   The purposes of the processing of personal data are made known to the data subjects at the time of collection.
5. Principle of Verifiability Personal data are organized and stored in such a way that the data subject, if they wish, can know which data have been collected and recorded, as well as verify their accuracy and request any correction, addition, deletion due to legal violations or objection to the processing, and exercise all other rights pursuant to and within the limits of Article 7 of Legislative Decree no. [number]. 196/03.
6. Principle of Security
   Personal data are protected by technical, IT, organizational, logistical, and procedural security measures against the risks of destruction or loss, including accidental loss, as well as unauthorized access or unlawful processing.

Types of Data Collected

Browsing Data

The software procedures and the IT system responsible for the operation of the websites automatically acquire certain data during their normal operation, the transmission of which is implicit in the use of Internet communication protocols.
This information is not collected to be associated with identified individuals, but by their very nature, they could—through processing and association with data held by the Data Controller or third parties—allow the identification of users.
This category of data includes IP addresses or domain names of the devices used by users connecting to the site, the addresses in URI (Uniform Resource Identifier) notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numeric code indicating the status of the server’s response (success, error, etc.), and other parameters related to the user’s operating system and IT environment.
These data may be used by the Data Controller solely to obtain anonymous statistical information about the use of the site, in order to identify users’ preferred pages and thus provide increasingly suitable content, as well as to verify its proper functioning. The data could also be used to ascertain liability in the event of suspected cybercrimes against the site.

Use of IP Addresses
An IP address is a number automatically assigned to the user’s device each time they connect to the Internet through their Internet Service Provider or via a corporate LAN/WAN network using the same Internet protocols. The IP address is necessary for the website’s server to send the information related to the pages visited and to enable the display of content. IP addresses are generally anonymous, as they are not directly linked to an identified user, and are used only for statistical purposes when applicable.

Cookies

Cookies are files that can be stored on the user’s device memory. This allows for smoother navigation and greater ease of use of the website itself.
Cookies can be used to determine whether a connection has already been established between the user’s device and our pages. Only the cookie stored on the user’s device is identified.
The cookies present on a website are divided into the following main categories:

1. Strictly Necessary Cookies (Technical Cookies)
2. Performance Cookies (Analytics Cookies)
3. Functional Cookies (Profiling Cookies)
4. Promotional or Targeting Cookies

This website does not use commercial profiling cookies. In the event that third-party cookies are present, C.M.R. Carpenteria Metallica Raineri s.r.l. declines all responsibility for any data collection and profiling that occurs beyond the agreements stipulated or due to unilateral modifications of such agreements by the third-party provider. Upon becoming aware of such activities, it will promptly comply with legal obligations by either removing the connection to the relevant application or providing due information and communication..

Visitors can refuse or revoke consent at any time by adjusting the corresponding settings in their browser options. It is possible to browse the site without cookies, but some functionalities may be limited. Most browsers accept cookies automatically, but users can prevent automatic cookie storage by selecting the “do not accept cookies” option in their browser settings

For more information on how to perform this operation, please refer to the browser instructions at the following addresses (non-exhaustive list):

• Google Chrome
• Mozilla Firefox
• Apple Safari
• Microsoft Windows Explorer

For information about the cookies stored on your device and to disable them individually, please use this link: http://www.youronlinechoices.com/it/le-tue-scelte

Use of Third-Party Cookies
Some services used on the site, such as Google Maps, Facebook links, and embedded YouTube videos, may store cookies on your device.
There is no contractual obligation for the website owner to guarantee that these services do not load profiling cookies.
Below is a list of the privacy policies adopted by the main service providers featured on some of these pages:

• Youtube
• Google Maps
• Google+
• Facebook
• Linkedin

Collection and Use of Personal Data Voluntarily Provided by the User

C.M.R. Carpenteria Metallica Raineri s.r.l. collects personal data from its users only when they voluntarily register to access a specific service or send an email. In other cases, the C.M.R. Carpenteria Metallica Raineri s.r.l. website can be visited completely anonymously. The data requested by C.M.R. Carpenteria Metallica Raineri s.r.l. for registration are only those defined by law as “common” data (e.g., personal details): Name, Surname, Email, Type of request, Subject, Message.


In no case are users asked to provide so-called “sensitive” data (Legislative Decree no. 196/2003, art. 4).


When registration is required, users will see, at the end of the page where data is entered, a checkbox related to the “privacy notice.” By clicking on the notice, they can view this document to read it and decide whether to give consent to the processing of the provided data by ticking the appropriate box. Only by giving consent will it be possible to access the requested service.


The site uses mandatory and optional fields for user registration. Data entered in mandatory fields is strictly necessary to provide the services. Data entered in optional fields is useful to improve the services and communications, to better respond to users’ needs, and to inform them about special offers and new products.


Submitting some data may make the user identifiable and traceable.

Processing and Storage of Data

Data Controller
It is hereby communicated that the Data Controller of personal data is C.M.R. Carpenteria Metallica Raineri s.r.l.

Data Processor
It is hereby communicated that the Data Processor of personal data is the appointed representative of C.M.R. Carpenteria Metallica Raineri s.r.l., located at Strada Statale 28, ZIP code 12080 Vicoforte (CN), info@officineraineri.it.

Methods of Data Processing
In relation to the purposes mentioned above, data processing is carried out using manual, IT, and telematic tools, strictly connected to the stated purposes and, in any case, in a manner that guarantees the security and confidentiality of the data. You are kindly requested to promptly inform us of any corrections, changes, or updates.
Specific security measures are observed to prevent data loss, illegal or incorrect use, and unauthorized access.


Such processing may be carried out on behalf of C.M.R. Carpenteria Metallica Raineri s.r.l. for the purposes and in the manner described above, and in compliance with criteria suitable to ensure security and confidentiality, by companies, firms, entities, and external collaborators appointed as data processors, and only insofar as pertains to the purpose and objectives for which the data were collected.

Place of Data Processing
The data processing related to the web services of this site takes place at the operational headquarters of C.M.R. Carpenteria Metallica Raineri s.r.l., and is carried out solely by technical personnel appointed by the Data Controller, or by any personnel assigned to occasional maintenance operations.


However, data may transit through and be temporarily stored on the servers of external telematic service providers of C.M.R. Carpenteria Metallica Raineri s.r.l., such as (but not limited to) internet service providers (ISPs) or email service operators, for the time necessary to perform the service
The data processing related to the web services of this site takes place at the operational headquarters of C.M.R. Carpenteria Metallica Raineri s.r.l., and is carried out solely by technical personnel appointed by the Data Controller, or by any personnel assigned to occasional maintenance operations.


However, data may transit through and be temporarily stored on the servers of external telematic service providers of C.M.R. Carpenteria Metallica Raineri s.r.l., such as (but not limited to) internet service providers (ISPs) or email service operators, for the time necessary to perform the service
Place of Data Processing

Duration:
The data will be processed for the entire duration of the established contractual and non-contractual relationships. Thereafter, it will be processed solely for the fulfillment of legal obligations and any commercial purposes.

Sensitive Data
None of your personal data held by C.M.R. Carpenteria Metallica Raineri s.r.l. falls under the definition of “sensitive data” or “judicial data” as set forth in letters (d) and (e) of Article 4 of Legislative Decree No. 196/2003.

Rights of the Data Subjects

Please note that, pursuant to Article 7 of Legislative Decree no. 196/2003, the data subject has the right to:

• to obtain confirmation, in an intelligible and free manner, of the existence or not of personal data concerning them at Strada Statale 28, 12080 Vicoforte (CN)
• to obtain the updating, rectification or, when interested therein, the integration of the data;
• to obtain the erasure, anonymization, or blocking of data processed unlawfully or after the cessation of the need for retention;
• to object to the processing for legitimate reasons or to processing for the purpose of sending advertising materials, direct sales, market research, or commercial communications.

For any request regarding privacy and to exercise the rights established by art. 7 of Legislative Decree 196/2003, you can write to info@officineraineri.it.

NB:
Users can exercise the rights provided by art. 7 of the “Code” at any time, including the right to access the register to know their data held, correct, delete, or object to the processing of the provided data by writing to:

C.M.R. Carpenteria Metallica Raineri s.r.l.
Strada Statale 28 cap 12080 Vicoforte (CN)
o inviando una email a info@officineraineri.it

The deletion request can also be made by a simple email sent to the institutional address info@officineraineri.it, indicating in the subject line “request for deletion and/or data modification” and providing the minimum data necessary to allow the fulfillment of the request.

Definitions

Personal Data (or Data)
Personal data means any information relating to an identified or identifiable natural person, directly or indirectly, by reference to any other information, including an identification number.

Technical or Usage Data
These are personal data automatically collected by the website (or by third-party applications it uses), including: IP addresses or domain names of the devices used by the User connecting to the site, addresses in URI (Uniform Resource Identifier) notation, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the server’s response (successful, error, etc.), the country of origin, characteristics of the browser and operating system used by the visitor, various timing details of the visit (for example, the time spent on each page), and details related to the navigation path within the Application, with particular reference to the sequence of pages viewed, parameters related to the operating system, and the User’s IT environment.

User
The individual who uses this Application, who must coincide with the Data Subject or be authorized by them, and whose Personal Data are subject to processing.

Data Subject
The natural or legal person to whom the Personal Data refer.

Data Processor
The natural person, legal entity, public administration, or any other body, association, or organization appointed by the Data Controller to process Personal Data, according to the provisions set forth in this privacy policy.

Data Controller
The natural person, legal entity, public administration, or any other body, association, or organization responsible, also jointly with other controllers, for decisions regarding the purposes, methods of processing personal data, and the tools used, including the profile

Definitions and legal references

Website or Application
The hardware or software tool through which the Users’ Personal Data are collected.

Cookie
Small portion of data stored within the User’s device

Legal references

• D.lgs. 196/2003
• Art. 10 della Direttiva n. 95/46/CE
• Direttiva 2002/58/CE, come aggiornata dalla Direttiva 2009/136/CE, in materia di Cookie.

Changes to Privacy Policy
The Data Controller reserves the right to make changes to this privacy policy at any time by notifying Users on this page. In the event that the User does not accept the changes made to this privacy policy, they are required to cease using the website and related services and may request the Data Controller to delete their personal data. Unless otherwise specified, the previous privacy policy will continue to apply to personal data collected up to that moment.

Modified: 29 maggio 2015 Ver.: 1.0