Inflooendo S.r.l. with its registered office at Viale Lombardia 4, Lodi, 26900, VAT ID 10323420967 (hereinafter referred to as the “Data Controllerowner of the website www.Inflooendo.com (hereinafter referred to as the “Site”), as the controller of the personal data of the users of the Site (hereinafter referred to as the “Users”), provides the following privacy notice pursuant to Article 13 of Legislative Decree 196/2003 (hereinafter referred to as the “Privacy Code”) and pursuant to Article 13 of EU Regulation 2016/679 of April 27, 2016 (hereinafter referred to as the “Regulation”; the Regulation and the Privacy Code are collectively referred to as the “Applicable Legislation”).
This Site and any services offered through the Site are reserved for individuals who have reached the age of eighteen. Therefore, the Data Controller does not collect personal data relating to persons under the age of 18. At the request of the Users, the Data Controller will promptly delete all personal data inadvertently collected concerning individuals under the age of 18.
The Data Controller highly values the right to privacy and the protection of the personal data of its Users. For any information related to this privacy policy, Users can contact the Data Controller at any time using the following methods:
- Sending a registered letter with acknowledgment of receipt to the legal headquarters of the Data Controller: Viale Lombardia, 4 – 26900 Lodi (LO)
- Sending an email to info@Inflooendo.com
The Data Controller has not appointed a Data Protection Officer (DPO), as it is not subject to the obligation of designation provided by Article 37 of the Regulation.
- Purposes of Processing
The personal data of the Users will be lawfully processed by the Data Controller pursuant to Article Article 6 of the Regulation for the following processing purposes:
a) Fulfilling the User’s request: the personal data of the Users are collected and processed by the Data Controller solely for the purpose of fulfilling their request. The User data collected by the Data Controller for this purpose include: name, surname, email, telephone number, as well as all personal information of the User possibly and voluntarily published in the “Subject,” “Message” sections, and through the “Attach file” function. No other processing will be carried out by the Data Controller in relation to the personal data of the Users. Except as provided elsewhere in this privacy policy, under no circumstances will the Data Controller make accessible to other Users and/or third parties the personal data of the Users.
b) Administrative and accounting purposes, namely to carry out organizational, administrative, financial and accounting activities such as internal organizational activities and activities functional to the fulfillment of contractual and pre-contractual obligations;
c) Legal obligations, namely to fulfill obligations imposed by law, an authority, a regulation, or European legislation.
The provision of personal data for the processing purposes mentioned above is optional but necessary, as failure to provide them will result in the impossibility for the User to make a request to the Data Controller.
The personal data necessary for the pursuit of the processing purposes described in this paragraph 1 are indicated with an asterisk within the request form.
- Methods of Processing and Data Retention Time
The Data Controller will process the personal data of the Users using manual and electronic tools, with logic strictly related to the purposes themselves and, in any case, in order to ensure the security and confidentiality of the data. The personal data of the Users of the Site will be kept for the time strictly necessary to fulfill the primary purposes described in the previous paragraph 1, or however as necessary for the protection in civil matters of the interests of both the Users and the Data Controller.
- Scope of Communication and Dissemination of Data
Employees and/or collaborators of the Data Controller in charge of managing the Site and User requests may become aware of the personal data of the Users. These individuals, who have been thus instructed by the Data Controller pursuant to Article 29 of the Regulation, will process the User data exclusively for the purposes indicated in this notice and in compliance with the provisions of the Applicable Legislation.
Moreover, third parties who may process personal data on behalf of the Data Controller as “External Data Processing Managers”, such as, for example, providers of computer and logistic services functional to the operation of the Site, providers of outsourcing or cloud computing services, professionals and advisors, may also come to know the personal data of the Users.
Users have the right to obtain a list of any data processors appointed by the Data Controller, making a request to the Data Controller in the manner specified in the following paragraph 4.
- Rights of the Data Subjects
Users may exercise the rights guaranteed to them by the Applicable Legislation by contacting the Data Controller in the following ways:
- Sending a registered letter with acknowledgment of receipt to the legal headquarters of the Data Controller: Viale Lombardia, 4 – 26900 Lodi (LO)
- Sending an email to info@Inflooendo.com
In accordance with the Applicable Legislation, the Data Controller informs that Users have the right to obtain an indication
(i) of the source of the personal data;
(ii) of the purposes and methods of processing;
(iii) of the logic applied in case of processing carried out with the aid of electronic tools;
(iv) of the identification details of the data controller and the data processors;
(v) of the subjects or categories of subjects to whom the personal data may be communicated or who may become aware of it in their capacity as data processors or persons in charge of processing.
Moreover, Users have the right to obtain:
a) access, updating, rectification or, when interested, integration of the data;
b) the cancellation, transformation into anonymous form or blocking of data processed unlawfully, including data whose retention is unnecessary for the purposes for which the data was collected or subsequently processed;
c) the attestation that the operations as per letters a) and b) have been notified, also regarding their contents, to those to whom the data were communicated or disseminated, except in the case where such fulfillment proves impossible or involves a use of means clearly disproportionate to the protected right.
Moreover, Users have:
a) the right to withdraw consent at any time, if the processing is based on their consent;
b) the right to data portability (the right to receive all the personal data concerning them in a structured, commonly used and machine-readable format), the right to restrict the processing of personal data and the right to data deletion (“right to be forgotten”);
c) the right to object:
i) in whole or in part, for legitimate reasons to the processing of personal data concerning them, even if it is relevant to the purpose of the collection.
d) if they believe that the processing that concerns them violates the Regulation, the right to lodge a complaint with a Supervisory Authority (in the Member State where they reside habitually, in the Member State where they work or in the Member State where the alleged violation occurred). The Italian Supervisory Authority is the Garante per la protezione dei dati personali, located in Piazza di Monte Citorio n. 121, 00186 – Rome (http://www.garanteprivacy.it/).
The Data Controller is not responsible for updating all the links that can be viewed in this Policy, therefore whenever a link is not functioning and/or updated, Users recognize and accept that they will always have to refer to the document and/or section of the websites referred to by such link.