Privacy data on websites - information - updated: Reg UE 2016/679

(European regulation on the protection of personal data)

1. Introduction

Stagnoli tg srl takes the user's privacy seriously and is committed to respect it. This privacy policy ("Privacy Policy") describes the processing of personal data carried out by Stagnoli tg srl through the website www.Stagnoli.com and related commitments undertaken by the Company. Stagnoli tg srl may process the personal data of the user when he visits the Website and uses the services and functionalities of the Website. On the website pages where the user’s personal data are collected, the user is usually made aware about it through specific a note published on the aforementioned pages, according to the art. 13/15 of the EU Reg. 2016/679. If required by the EU Reg. 2016/679 the user's consent will be required before proceeding to the processing of his/her personal data. If the user provides personal data of third parties, he/she must ensure that the communication of the data to Stagnoli tg srl and the subsequent processing for the purposes specified in the applicable privacy information complies with EU Reg. 2016/679 and the applicable legislation.

2. Identification of the data controller and manager

The data controller is the company Stagnoli tg srl and the person in charge is Lara Albiero.

3. Type of data processed

The consultation of the website does not usually involve the collection and processing of the user’s personal data, with the exception of data regarding traffic on the website ("web navigation data") and cookies, as specified below. In addition to the so-called "web navigation data", personal data voluntarily provided by the user may be processed when the latter interacts with the functionality of the website or requests to use the services offered on the website. In compliance with the Privacy Code, Stagnoli tg srl could also collect personal data of the user from third parties.

4. Storage of personal data

Personal data are stored and processed through computer systems owned by Stagnoli tg srl and managed by Stagnoli tg srl or by third parties managing Stagnoli tg srl’s technical services. For more details, please refer to the "Scope of accessibility of personal data" section below. The data is processed exclusively by authorized personnel, including personnel assigned to implement extraordinary maintenance operations.

5. Purposes and methods of data processing

Stagnoli tg srl can process the user’s common and sensitive personal data for the following purposes: users’ access to the website services and functionalities, management of users’ requests, newsletters, etc.

Furthermore, if the user allows the analysis of further personal data, Stagnoli tg srl may process the user’s personal data for marketing purposes, e.g. to send the user promotional material related to the Company's services either through traditional methods (such as paper mail, telephone calls, etc.) or automated (such as e-mail, text messages, applications for mobile devices, via social networks, etc.).

Personal data are processed both on paper and in electronic form and entered into the company information system in full compliance with EU Reg. 2016/679, including security and confidentiality profiles and based on principles of correctness and lawfulness of processing. In accordance with EU Reg. 2016/679 data are kept and stored for 10 years.

6. Security and quality of personal data

Stagnoli tg srl is committed to protect the security of the user's personal data and complies with the security provisions of the applicable law in order to avoid data loss, illegitimate or illegal use of data and unauthorized access to the users’ data. Furthermore, information systems and computer programs used by Stagnoli tg srl are configured in such a way as to minimize the use of personal and identifying data; these data are only processed for specific purposes pursued from time to time. Stagnoli tg srl uses multiple advanced security technologies and procedures to promote the protection of users' personal data; for example, personal data is stored on secure servers located in places with secure and controlled access. Users can help Stagnoli tg srl to update their personal data by communicating any changes related to their address, contact information, etc.

7.  Scope of communication and access to data

Your personal data may be shared with:

• everyone to whom the right of access to such data is recognized by virtue of regulatory provisions;
• to our collaborators, employees, as part of their duties;
• to all those natural and / or legal persons, public and / or private, when the communication is necessary or functional to the performance of our activity for the purposes illustrated above.

8.  Nature of provision of personal data

The provision of some personal data by the user is mandatory to allow the Company to manage communications, users’ requests or to contact the user himself in order to reply to his/her request. This type of data is marked with an asterisk symbol [*] and - in this case - the conferment is mandatory to allow the Company to process the request. On the contrary, the collection of other data not marked with an asterisk is optional: failure to provide these data will not entail any consequences for the user.

The provision of personal data by the user for marketing purposes, as specified in the section "Purposes and methods of processing" is optional and the refusal to provide them will have no consequence. The consent granted for marketing purposes is intended to be extended to the sending of communications carried out through automated and traditional methods and/or contact means, as above mentioned.

9.  Rights of the interested party

12.1 Article 15 (right of access) and Article 16 (right of rectification) of EU Reg. 2016/679

The interested party has the right to receive confirmation from the data controller about whether or not the processing of his/her personal data is being implemented; when the data processing is concerning him/her, the interested party has the right to obtain access to the personal data and to the following information:

1. a) the purposes of the processing;
2. b) the categories of personal data in question;
3. c) the recipients or categories of recipients to whom the personal data have been or will be communicated, in particular if they are international recipients or organizations;
4. d) the retention period of the personal data provided or, if not possible, the criteria used to determine this period;
5. e) the right of the interested party to request the data controller to rectify or delete personal data, or to limit the processing of personal data concerning him or to oppose their treatment;
6. f) the right to lodge a complaint with a supervisory authority;
7. h) the existence of an automated decision-making process, including profiling and significant information on the logic used, as well as the importance of such processing for the data subject and related expected consequences.

According to 12.2 Art. 17 (the so-called “right to be forgotten”, "diritto all’oblio" in Italian) - EU Reg. 2016/679, the user has the right to obtain from the data controller the deletion of personal data concerning him/her, and the data controller is obliged to cancel the personal data with no undue delay if one of the following reasons exists:

1. a) personal data are no longer necessary for the purposes for which they were collected or processed;
2. b) the user revokes the consent regarding the milestones on which the data processing is based, in accordance with Article 6,1,a or Article 9,2,a and if there is no other legal basis for the data processing;
3. c) the user opposes the data processing in according to Article 21,1 and there is no legitimate reason to proceed with the data processing; the user opposes the data processing in according to Article 21,2;
4. d) personal data have been processed illicitly;
5. e) personal data must be deleted to fulfill a legal obligation under the union or the country where the controller is subject to legal obligations;
6. f) personal data have been collected in relation to the information society service offer referred to in Article 8, paragraph 1, EU Reg. 2016/679

12.3 Article 18 (right of processing limitation), EU Reg. 2016/679

The interested party has the right to obtain from the data controller a limitation of data processing when one of the following hypotheses occurs:

1. a) the interested party disputes the accuracy of personal data for the period necessary for the data controller to verify the accuracy of such personal data;
2. b) the processing is illegal and the interested party opposes the cancellation of personal data and asks instead that its use is limited;
3. c) although the data controller no longer needs it for processing purposes, personal data are necessary for the data subject to verify, exercise or defend a right in court;
4. d) the interested party has opposed the treatment in according to article 21, paragraph 1, Reg EU 2016/679, pending the verification of the possible prevalence of legitimate reasons of the data controller with respect to those of the interested party.

12.4 Article 20 (right to data portability), EU Reg. 2016/679

The user has the right to receive, in a structured, commonly used and automatically readable form, the personal data concerning him / her provided to a data controller and has the right to transmit such data to another data controller without impediments by the former.

12.5 Withdrawal of consent to treatment

The user has the right to withdraw his/her consent regarding the processing of his/her personal data by sending an e-mail to the following address: marketing@stagnoli.com followed by a copy of your identity document, with the following text: << revocation of consent to the processing of all my personal data >>. At the end of this operation your personal data will be removed from the archives as soon as possible.

If you would like to gain additional information on the processing of your personal data, or exercise the rights referred to in paragraph 8 abovementioned, you can send an e-mail to the following address: marketing@stagnoli.com. Before we can provide any information, we may need to verify your identity. An answer will be provided as soon as possible.