ITALY: LGS 30 GIUGNO 2003 n. 196 (Codice Privacy) – Art. 13
EU REGULATION n. 679/2016 (GDPR) – Art. 13
in compliance with the obligations arising from national and Community legislation, we want to assure you that this website respects and protects the privacy of its visitors and users, putting in place every possible and commensurate effort to avoid affecting their rights. This section contains all the information concerning the processing of data collected on hidrax.eu.
The Data Controller for hidrax.eu is FOSCARIN GROUP S.P.A. with registered office in Castelfranco Veneto (TV), Via del Lavoro 8, in the person of the Chairman of the Board of Directors and pro tempore legal representative (hereinafter, «Controller»). Within the Company itself the collected personal data are processed by employees who act as «internal Processors», following the specific instructions and recommendations given to them by the Data Controller.
The data collected and processed through the website Hidrax.eu can be divided as follows:
* Note: some data that are automatically collected may also include personal data such as the IP address, which could be used, in accordance with applicable laws, in order to block attempts to damage the site itself or to harm other users, or other harmful or criminal activities. Such data are never used for the identification or for the profiling of the user, but only for the purposes of protection of the website and of its users (in particular, from May, the 25th 2018 onwards, such information will be treated according to the legitimate interests of the owner).
Your personal data may be accessible for the purposes provided for in Art. 2: – to employees and partners of the Owner or of the Group companies, in Italy and abroad, in their capacity as persons in charge and / or internal managers of the processing and / or system administrators; – to third party companies or other subjects (e.g. consultants and such like) who carry out outsourcing activities on behalf of the Owner, in their capacity as external data controllers.
The personal data collected will be kept for the time necessary to fulfill the aforementioned purposes and in any case for no longer than 2 years from the collection of data for Marketing Purposes.
We have adopted appropriate technical and organizational measures to protect personal data from accidental or illicit events that could cause its destruction, loss, alteration, and unauthorized use, disclosure or access, especially where the processing involves the transmission of data through a network, as well as against any other form of unlawful processing and abuse.
You can find a full description of the topic online, in the Google Analytics privacy and data protection policy.
The retention of Google Analytics cookies is based on Article 6, paragraph 1, letter f) GDPR. The website operator has a legitimate interest in analyzing user behavior in order to optimize both its website and its marketing.
One of our fundamental principles is our commitment to treat your data with care, integrity and confidentiality. We will never sell your data to third parties. Your data may be disclosed to third parties only in the event that it is imposed, and on condition that it is permitted, by the laws in force.
We may use service providers and contract data processor to work on orders from Foscarin Group. These third parties are operators who provide hosting and maintenance services, analysis services, e-mail messaging services, delivery services, payment management, credit checks, address verification, etc. These operators are allowed to access only to the personal data they need for their specific services. Service providers and data processors have a contractual obligation to process this information in the most confidential manner. The contract prohibits them from using the collected data for purposes other than those specified in the contract itself. Foscarin Group has put in place what is necessary to ensure that each service provider and data processor working for our Company protects the confidentiality of your data.
The user’s personal data may also be disclosed to any judicial, administrative or other public entity entitled to request them, or as specified by law.
The above mentioned data may also be transferred and communicated to the following categories of subjects: companies operating in the transport sector, our suppliers, our affiliates, our Sponsors, Poste Italiane and other postal service providers / delivery companies, banks and credit institutions, debt collection agencies, law firms, insurance companies, professional firms and / or companies and / or business and entrepreneurial associations who provide us with accounting and / or tax services, social security institutions etc.
Your personal data are stored on servers located in Castelfranco Veneto (TV), within the European Union. At any rate, it is understood that the Data Controller, if necessary, will have the right to move the servers outside the EU. In this case, the Data Controller hereby ensures that the transfer of data outside the EU will be conducted in accordance with the applicable provisions of law, subject to the stipulation of the standard contract terms provided by the European Commission.
The user of the website, in his capacity as interested party, has the rights set forth in art. 7 of the Privacy Code and art. 15 GDPR and precisely:
1. the right to obtain confirmation of the existence (or otherwise) of personal data concerning the user, even if not yet registered, and their communication in an intelligible form;
2. the right to obtain information concerning:
3. the right to obtain:
4. finally, the person concerned has the right to object, in whole or in part:
It should be noted that the right to objection of the interested party for direct marketing purposes through automated methods, set out in point b) above, is extended also to traditional methods and that in any case does not affect the right of the data subject to object even only partially. The interested party may therefore decide whether to receive communications using only traditional methods, or only automated communications, or neither of the two types of communication.
Furthermore, where applicable, the interested party has also the rights referred to in articles 16-21 GDPR (Right of rectification, right to be forgotten, right to restriction of processing, right to data portability, right of opposition), as well as the right to complain to the Data Protection Authority / Guarantor.
Eventually, each user can at any time exercise his rights by sending: