Privacy policy

INFORMATION ON THE PROCESSING OF PERSONAL DATA

Legal References:

ITALY: LGS 30 GIUGNO 2003 n. 196 (Codice Privacy) – Art. 13

EU REGULATION n. 679/2016 (GDPR) – Art. 13

Dear User/Visitor,

in compliance with the obligations arising from national and Community legislation, we want to assure you that this website respects and protects the privacy of its visitors and users, putting in place every possible and commensurate effort to avoid affecting their rights. This section contains all the information concerning the processing of data collected on foscaringroup.com.

_

General Information

This privacy policy applies only to online activities of foscaringroup.com and is valid for its visitors / users. It does not apply to information collected through channels other than this website. The aim is to provide maximum transparency regarding the information that foscaringroup.com collects and how it is processed and used.

FOSCARIN GROUP S.P.A. is committed to adopting the fundamental principles of data protection and considers the protection of personal data as a natural duty. For this reason, we frequently review our policies regarding the protection of personal data, to make sure that they are free from errors, clearly visible on our website and that they include all the necessary information. As a result, this privacy policy may undergo changes over time that will keep it up to date with the evolution and the new opportunities of the Internet and moreover will ensure its compliance with current legislation. Without your explicit consent, we will never apply restrictive provisions for the rights that are recognized in this statement. Significant modifications of this policy will be announced on our website, simultaneously with the publication of the updated version of the Information on the protection of personal data.

 _

1. Data Controller, Data Processors and other parties involved

The Data Controller for foscaringroup.com is FOSCARIN GROUP S.P.A. with registered office in Castelfranco Veneto (TV), Via del Lavoro 8, in the person of the Chairman of the Board of Directors and pro tempore legal representative (hereinafter, „Controller“). Within the Company itself the collected personal data are processed by employees who act as „internal Processors“, following the specific instructions and recommendations given to them by the Data Controller.

 _

2. Data processing: purposes, methods and type of consent

The data collected and processed through the website foscaringroup.com can be divided as follows:

* Note: some data that are automatically collected may also include personal data such as the IP address, which could be used, in accordance with applicable laws, in order to block attempts to damage the site itself or to harm other users, or other harmful or criminal activities. Such data are never used for the identification or for the profiling of the user, but only for the purposes of protection of the website and of its users (in particular, from May, the 25^th 2018 onwards, such information will be treated according to the legitimate interests of the owner).

_

3. Data access and storage

Your personal data may be accessible for the purposes provided for in Art. 2: – to employees and partners of the Owner or of the Group companies, in Italy and abroad, in their capacity as persons in charge and / or internal managers of the processing and / or system administrators; – to third party companies or other subjects (e.g. consultants and such like) who carry out outsourcing activities on behalf of the Owner, in their capacity as external data controllers.

The personal data collected will be kept for the time necessary to fulfill the aforementioned purposes and in any case for no longer than 2 years from the collection of data for Marketing Purposes.

We have adopted appropriate technical and organizational measures to protect personal data from accidental or illicit events that could cause its destruction, loss, alteration, and unauthorized use, disclosure or access, especially where the processing involves the transmission of data through a network, as well as against any other form of unlawful processing and abuse.

_

4. Google Analytics and Cookies

Google Analytics is a web analysis service provided by Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA („Google“), which uses cookies and similar technologies to analyze and improve our website on the basis of the user’s behavior. Google operates as a data processor for Google Analytics; the data that emerge in this context can be transmitted by Google to a server in the United States for analysis purposes, where they may be stored. In the event that personal data are transmitted to the United States, Google has joined the EU-US Privacy Shield.

Google processes such information for the purpose of tracking and examining the use of the Website, compiling reports and providing other services related to the Website activities. You can configure your browser in order to refuse cookies, or you can prevent data collection generated by cookies and related to the use of our website in the cookies settings of Google’s privacy policy. Alternatively, you can prevent Google from processing such data by downloading and installing the browser add-on provided by Google (Google Analytics Opt-out Browser Add-on) – which however does not work on mobile devices.

You can find a full description of the topic online, in the Google Analytics privacy and data protection policy.

The retention of Google Analytics cookies is based on Article 6, paragraph 1, letter f) GDPR. The website operator has a legitimate interest in analyzing user behavior in order to optimize both its website and its marketing.

More on Cookies: for further details about cookies, please read the related Cookie Policy that will soon be published on our website.

_

5. Communication of Data

One of our fundamental principles is our commitment to treat your data with care, integrity and confidentiality. We will never sell your data to third parties. Your data may be disclosed to third parties only in the event that it is imposed, and on condition that it is permitted, by the laws in force.

We may use service providers and contract data processor to work on orders from Foscarin Group. These third parties are operators who provide hosting and maintenance services, analysis services, e-mail messaging services, delivery services, payment management, credit checks, address verification, etc. These operators are allowed to access only to the personal data they need for their specific services. Service providers and data processors have a contractual obligation to process this information in the most confidential manner. The contract prohibits them from using the collected data for purposes other than those specified in the contract itself. Foscarin Group has put in place what is necessary to ensure that each service provider and data processor working for our Company protects the confidentiality of your data.

The user’s personal data may also be disclosed to any judicial, administrative or other public entity entitled to request them, or as specified by law.

The above mentioned data may also be transferred and communicated to the following categories of subjects: companies operating in the transport sector, our suppliers, our affiliates, our Sponsors, Poste Italiane and other postal service providers / delivery companies, banks and credit institutions, debt collection agencies, law firms, insurance companies, professional firms and / or companies and / or business and entrepreneurial associations who provide us with accounting and / or tax services, social security institutions etc.

 _

6. Transfer of Data

Your personal data are stored on servers located in Castelfranco Veneto (TV), within the European Union. At any rate, it is understood that the Data Controller, if necessary, will have the right to move the servers outside the EU. In this case, the Data Controller hereby ensures that the transfer of data outside the EU will be conducted in accordance with the applicable provisions of law, subject to the stipulation of the standard contract terms provided by the European Commission.

_

7. Rights of the Interested Party

The user of the website, in his capacity as interested party, has the rights set forth in art. 7 of the Privacy Code and art. 15 GDPR and precisely:

1. the right to obtain confirmation of the existence (or otherwise) of personal data concerning the user, even if not yet registered, and their communication in an intelligible form;

2. the right to obtain information concerning:

1. the origin of the personal data;
2. the purposes of data processing and its methods, the way in which data is handled;
3. the logic applied in case of data processing performed with the use of electronic instruments;
4. the identity of the data controller, of the data processors and of any appointed representative according to art. 5, paragraph 2 of the Privacy Code and art. 3, paragraph 1 GDPR;
5. the subjects / entities or the categories of subjects / entities to whom the personal data may be communicated or who may become aware of the data as appointed representative(s) in the territory of the State, data processor(s) or person(s) in charge;

3. the right to obtain:

1. the update, the rectification or, if interested, the integration of data;
2. the cancellation, anonymization form or the blocking of data processed in violation of the law, including those data whose retention is not necessary for the purposes of the data collection or of the subsequent data processing;
3. the attestation that the operations listed in letters (a) and (b) have been made known, including their content, to those to whom the data have been communicated or disclosed, except in case such fulfillment is impossible or involves the use of means manifestly disproportionate to the protected right;

4. finally, the person concerned has the right to object, in whole or in part:

1. on legitimate grounds to the processing of personal data concerning him, even though pertinent to the purpose of collection;
2. to the processing of personal data concerning him for the purpose of sending advertising material or direct selling or for the purpose of market research or commercial communication, through the use of automated call systems without the intervention of an operator by e-mail and / or through traditional marketing methods by telephone and / or paper mail.

It should be noted that the right to objection of the interested party for direct marketing purposes through automated methods, set out in point b) above, is extended also to traditional methods and that in any case does not affect the right of the data subject to object even only partially. The interested party may therefore decide whether to receive communications using only traditional methods, or only automated communications, or neither of the two types of communication.

Furthermore, where applicable, the interested party has also the rights referred to in articles 16-21 GDPR (Right of rectification, right to be forgotten, right to restriction of processing, right to data portability, right of opposition), as well as the right to complain to the Data Protection Authority / Guarantor.

_

8. Procedure for the exercise of your rights

Eventually, each user can at any time exercise his rights by sending:

1. a registered letter to FOSCARIN GROUP S.P.A., Via del Lavoro n. 8 – 31033 Castelfranco Veneto (TV) Italia;
2. an e-mail addressed to privacy@foscaringroup.com;
3. a fax to the following nr. +39 0423 497961

_