This new info memo drafted in accordance with Article 13 of Legislative Decree no. 196/2003 – Privacy Code – is issued following the amendments introduced by Law Decree no. 201 of 6 December 2011, which has made significant changes to some regulatory definitions.
This new info memo, therefore, up-dates any earlier versions issued up to now.
Now, therefore, the following is pointed out:
1) by effect of the establishment of business relations and during the course thereof, our company will acquire and process your personal data;
2) for clarity’s sake, we must specify here and now the following definitions contained in Legislative Decree no. 196/2003:
Processing: any activity, even carried on without the aid of electronic instruments, concerning the acquisition, recording, storage, consultation, development, modification, selection, extraction, comparison, use, interconnection, blocking, notification, erasure and/or destruction of data; Personal datum: any information concerning an individual who is identified or identifiable, also indirectly, by references to any other information, including a Personal Identification Number.
In accordance with Article 13 of Legislative Decree no. 196/2003 – Privacy Code, therefore, we wish to advise you that the acquisition and processing of your personal data will be carried out by the undersigned company as follows:
a) aims: The data will be processed for the purpose of accomplishing correctly the accounting, tax-related, commercial and technical fulfilments and for all the company’s activities in general relating to its relations with you;
b) advertising aims: The data may be used, subject to your explicit prior consent, also for sending advertising material/communications by ordinary mail, e-mail, text messages and similar means; after expressing your consent, you will in any case be entitled to oppose at any time processing of your data for this purpose, and at no expense for you;
c) procedure: the data will be processed using both hardcopy and electronic/IT/telematic tools, complying in full with the applicable provisions of law, according to principles of lawfulness and correctness and in such a way as to protect your privacy;
d) the optional nature of the provision of data: Providing the data is optional, not compulsory;
e) consequences of a possible refusal: Refusal to provide the data or to enable any processing thereof may in any case make it impossible to continue the business or any other type of relations between you and our company; refusal to allow the data to be used for sending advertising material/communications will, on the other hand, have no consequences for our present and future relations;
f) parties or categories of parties to whom the data may be notified or circulated: The data may be notified to third parties only in order to comply with legal contractual obligations. In no case will the data be circulated;
g) persons in charge of and entrusted with processing care of the company: The data will be processed solely by the persons in charge of and entrusted with such tasks in the company’s administrative and sales areas;
h) rights of the party concerned: The party concerned enjoys all the rights according to Article 7 of which the full text is provided at foot of this info memo and which is an inseparable part hereof;
i) Controller: The “controller” of the processing is GranitiFiandre S.p.A., registered address at no. 112 of Via Radici Nord in Castellarano (province of Reggio Emilia), in the person of their pro-tempore legal representative.
This info memo may be supplemented, either verbally or in writing, with further information and indications, in order to meet any need you may have in terms of your knowledge regarding privacy and in order to meet regulatory changes.
Art. 7 of Legislative Decree no. 196/2003 (Right to access personal data and other rights).
1. The party concerned is entitled to obtain confirmation of the existence or otherwise of the data concerning him/her, even if not yet recorded, and notification thereof in an intelligible form.
2. The party concerned is entitled to obtain the following information: a) the origin of the personal data processed; b) the aims of the processing and the manner in which it is carried out; c) the rationale applied in the event of processing carried out with the help of electronic tools; d) details of the identity of the controller, of the persons in charge and of the designated representative in accordance with Article 5, sub-section 2; e) the parties or categories of parties to whom the personal data may be notified or to whose knowledge they may come in their capacity the designated representative in Italy, as persons in charge of or entrusted with the processing.
3. The party concerned is entitled to require: a) that the data be up-dated, corrected or, if he/she so wishes, supplemented; b) that any data processed in breach of the law be cancelled, converted into an anonymous form or blocked, including any data of which storage is not necessary in connection with the purposes for which the data were acquired or subsequently processed; c) a statement according to which the activities referred to under points a) and b) have been brought to the knowledge of the parties to whom the data were notified or circulated, also with regard to their contents. The above except in those cases in which this is found to be impossible or that it would entail the use of means clearly out of proportion with the right being protected.
4. The party concerned is entitled to oppose, in full or in part: a) for legitimate reasons, processing of the personal data concerning him/her, even if pertinent to the purpose for which they were acquired; b) processing of personal data concerning him/her for the purpose of sending advertising or direct sales material or for carrying out market research or commercial communications.
On this page, the way in which the reference site is managed is described with regard to processing of the personal data of users consulting the site.
This refers to the information provided in accordance with Article 13 of Legislative Decree no. 196/2003 - Privacy Code - to people interacting with the company web services, accessible at:http://www.irisfmg.com
which corresponds to the home page of the official site.
The information in question is provided for this site only, not for any other sites that might by consulted by users via links.
The information is also based on Recommendation no. 2/2001 adopted on 17 May 2001 by the European Authorities for the protection of personal data, as members of the Working Party set up under Article 29 of Directive no. 95/46/EC, in order to identify several minimum requisites for the on-line acquisition of personal data and, specifically, the timing and the nature of the information that the controllers of the processing must supply to users when they link up with web pages, regardless of the purposes of the link.
THE DATA CONTROLLER
The data referred to identified or identifiable persons may be processed following consultation of this site.
The "controller" of the processing is GranitiFiandre S.p.A., in the person of their pro-tempore legal representative. PLACE OF PROCESSING OF THE DATA
The processing connected with the web services of this site take place at the company’s registered address and is taken care of solely by the technical personnel of the department in charge of such processing, or by persons who may be entrusted with occasional maintenance activities.
No data resulting from the web service are either notified or circulated.
The personal data provided by users who submit requests for information material (brochures, CD-ROMs, catalogues, price-lists, answers to queries, miscellaneous documents, etc.) to be sent to them are used solely for the purpose of carrying out the requested service or activity.
TYPES OF DATA PROCESSED
During their normal operation,the IT systems and software procedures for running this web site acquire certain personal data, the transmission of which is implicit in the use of Internet communication protocols.
This information is not acquired in order to be associated with identified interested parties, but they could enable users to be identified by means of processing and associating them with data held by third parties.
This category of data includes the IP addresses or domain names of the computers used by the users linking up with the site, the URI (Uniform Resource Identifier) addresses of the resources requested, the time of day of the request, the method used to submit the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the reply provided by the server (successful, error, etc.) and other parameters concerning the user’s operating system and IT environment.
These data are used for the sole purpose of obtaining anonymous statistical information concerning use of the site and for monitoring its correct operation. They are erased immediately after processing. The data could be used in order to ascertain liability in the event of any IT offences to the detriment of the site. Apart from such cases, if any, as things stand the data concerning web contacts persist for no longer than seven days.
Data provided voluntarily by the user
The optional, explicit and voluntary submission of e-mail messages to the addresses indicated at this site entails the subsequent acquisition of the address of the sender, which is necessary in order to meet any requests, and of any other personal data contained in the message.
Specific summary information memos will be reported or shown progressively on the pages of the site provided for specific services.
No personal data of users is acquired by the site in this respect.
Cookies are not used to transmit information of a personal nature, nor are so-called persistent cookies of any type, i.e. systems for tracing users, employed.
The use of session cookies (which are not stored permanently in the user’s computer and disappear as soon as the browser is closed) is strictly limited to the transmission of session ID’s (consisting of random numbers generated by the server), necessary for enabling the site to be explored safely and efficiently.
The so-called session cookies used on this site do not resort to other IT techniques that could potentially prejudice confidential navigation by users and do not allow acquisition of personal data identifying the user.
OPTIONAL NATURE OF THE PROVISION OF DATA
Except as specified for navigation data, the user may choose freely whether or not to provide his/her personal data. Failure to provide them may make it impossible to provide whatever is requested.
The personal data are processed with automated tools for the time strictly necessary to achieve the aim for which they were acquired.
Specific safety measures are implemented in order to prevent the loss of data, their unlawful or incorrect use or unauthorised access.
RIGHTS OF THE PARTIES CONCERNED
The parties to whom the personal data refer are entitled to obtain at all times confirmation of the existence or otherwise of the data concerned, and to be made aware of their contents and origin, to check the exactness and to require that they be completed or up-dated, or their correction (for a complete illustration see Article 7 of Legislative Decree no, 196/2003).
In accordance with the same article, they are entitled to request cancellation of the data, their conversion into an anonymous form or cancellation of data processed in breach of the law and, for legitimate reasons, to oppose processing thereof.
These requests must be addressed to the Controller of the processing.
For further information please contact FMGContact Us