Privacy Policy

abbiamo cura della tua privacy

This Privacy Policy is made pursuant to art. 13 of European Regulation No. 679/2016 and applies exclusively to all Data collected through the website www.roelmire.com. This document is subject to periodic review in order to make any updates and, with the cookie policy (link alla cookie policy),establishes the basis on which your Personal Data will be processed.

Data Controller

The Data Controller on this Website is Roelmire S.r.l., legal office in Origgio (VA), Via Celeste Milani, 24/26, 21040 CAP 21040

How Personal Data Is Being Processed

The Personal Data provided or acquired will be subject to processing based on the principles of correctness, lawfulness, transparency and protection of confidentiality in accordance with current regulations. The Data Controller processes your Personal Data by taking appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of Personal Data. The Processing is carried out through IT and /or telematic tools, with organizational methods and with logics closely related to the indicated purposes.

Purposes of the Processing of Personal Data and lawfullness

The data controller, in relation to his purpose, may collect user data spontaneously provided (ex. contact forms) or through automated tools (cookie); after processing, the data will be deleted immediately or, in case of persistent cookies, after the period necessary for their operation.

The purposes (Below):
User data will be processed:

a) to follow up the specific requests addressed to the Data Controller by the User for communications of an informative nature related to the Services of the same Data Controller, through e-mails. This processing is optional and based on your consent, however failure to communicate one or more Data will make it impossible to respond to the request for information and to use the services offered by the Data Controller;
b) to carry out statistical analysis on aggregated and anonymous data to analyze the User's behaviors to improve the products and services provided by the Data Controller as well as to meet the expectations of the User;
c) for other finalizations linked to those indicated above and in any case included in the activities of the Website;

Categories of Data processing

In this website there are different data processing, in particular related to: Email, surname e name, IP address. Personal Data may be provided voluntarily by the User when using the Website, by completing the contact form. The optional, explicit and voluntary sending of e-mails via the Contact Form or by means of the addresses indicated on this Website, entails the subsequent acquisition of the sender's address, necessary to respond to requests. The consent to the provision of data by the User is necessary to be involved in the Data Controller's database and for the purposes of establishing and properly carrying out what it offers to its Users, as well as to third parties, for the fulfillment of the individual activity requested. Failure to provide consent, therefore, prevents registration in the Data Controller's databases, the completion of any contracts, as well as the execution of the same and any other possible activity of this website.
In addition to the Data Controller, in some cases, may have access to the Data:
a) categories of specially persons involved in the organization of the website (administrative, commercial, legal, system administrators)
b) external subjects (such as third party technical service providers, hosting providers, IT companies, communication agencies) also appointed as Data Processors by the Data Controller pursuant to art. 28 GDPR. The updated list of Data Processor, if appointed, can always be requested from the Data Controller;
c) public or private subjects who can access the Data in compliance with legal obligations;

Retention period of personal data

As expressly provided for by the art. 5, co. 1, lett. e) of the GDPR, the Data are kept for the time necessary to process them in relation to the performance of the service requested by the User, or required by the Purposes described in this document and in particular:
a) The data collected for purposes related to the legitimate interest of the Controller will be retained until this interest is satisfied;
b) The Data collected on the basis of the User's Consent may be kept until this Consent will be revoked;
c) The data collected for fiscal / administrative obligations or contractual obligations will be kept for the time necessary to carry out the purposes and in accordance with the provisions of the law, for a period not exceeding the dispositions of civil law and in any case for a period not exceeding 10 (ten) years;
d) The User can always request the interruption of the processing or the cancellation of the data.

Cookie

This website uses cookies. Cookies are small text files that can be used by websites to improve user experience and to personalize content and ads, provide social network functions and analyze the traffic. Cookie Policy

Transfer of personal data outside the EU.

The data is processed in the structures in which the Data Controller operates.

In cases of data transfer within non-EU countries, the Controller will ensure that valid contractual protection is put in place in order to safeguard user data.

Tools used for the processing of personal data

Mailing list and management

These services can manage a database of email contacts to communicate with users. These services may allow access to the data relating to the data and the time the messages are displayed by the User, as well as the User's interaction with them, such as information on clicks on links inserted in messages. The site does not use a newsletter service; consequently the data accessed through the form will be retained for the sole purpose of accomplish the user's request. If the user is already a customer, on the basis of legitimate interest, communications may be sent by e-mail but no later than a period of 24 months if the user has no commercial relations with the company during this time.

Security of data processing

This website has an SSL certificate and uses the HTTPS protocol to make sure the moment in which Personal Data is entered. With the use of this protocol, transactions and data that are transmitted on websites take place with maximum security and the content of the communication is not read or manipulated in any way by third parties.

Statistic

The statistical service allows the Data Controller to monitor and analyze traffic data and are used to keep track of User behavior. This website uses the following services:

Google Analytics

Google Analytics is an analytics service provided by Google Ireland Limited. Google uses the Personal Data collected for the purpose of tracking and examining the use of this Website, compiling reports and sharing them with other services developed by Google. Google may use the Personal Data to share contents in its advertising network. Google may also transfer this information to third parties where this is required by law or where such third parties process the information on account of Google. The IP address anonymization function is active on this site. The IP address transmitted by the browser for purposes related to Google Analytics will not be incorporated into other data already held by Google. The following link (https://support.google.com/analytics/answer/181881?hl=it)the browser add-on for the deactivation of Google Analytics is made available by Google. Personal Data collected: Cookie and Usage data. Place of processing: https://policies.google.com/privacy?hl=en-US.

Changes to this Privacy Policy

The Data Controller reserves the right to make changes to this Privacy Policy at any time by giving notice to Users on this page. Therefore, consult this page often, referring to the date of the last modification indicated at the bottom. In the event of non-acceptance of the changes made to this Privacy Policy, the User is required to cease using this Website and may request the Data Controller to remove their Personal Data. Unless otherwise specified, the previous Privacy Policy will continue to apply to the Personal Data collected up to that time. The Owner is not responsible for updating all the links that can be viewed in this Privacy Policy (except for the link regarding the cookie policy), therefore whenever a link is not functional and / or updated, Users acknowledge and accept that they must always reference to the document and / or section of the websites referred to by this link.

Exercising the personal data access right and other rights

The data controller will provide to ensure that the requests of data subjects relating to the exercise of their rights are dealt within 30 days (if the conditions exist). After this period, the data subject may lodge a complaint with the authority.

Right of access (ex art 15 GDPR))

Users will be able to request a copy of their data from the Controller and be informed on the duration and criteria used for their conservation.

Right to rectification (art. 16 GDPR)

The data subject has the right to obtain from the data controller the correction of inaccurate personal data concerning him without undue delay.

Right to erasure (‘right to be forgotten’) (ex art 17 GDPR))

Users can request the deletion of their data. The Controller, for his part, will have to communicate to other subjects (controllers, processors, etc.) involved in the processing of the data, the manifest request of the user to erase processing data.

Right to restriction of processing (art. 18 GDPR)

If one of the following situations exist:

  • data subjects disputes the accuracy of personal data;
  • the processing is unlawful and the data subjects opposes the cancellation of personal data;
  • the data are necessary for the data subject to ascertain, exercise or defend a right in court, while the data controller no longer serves the purposes of the processing
  • the data subject opposed the processing and are awaiting the necessary checks to determine whether the legitimate reasons of the data controller prevail over those of the data subject

Right to data portability (art.20 GDPR)

If the conditions exist, the data subject has the right to receive in a structured format, commonly used and legible, the information relating his personal data provided to a Controller and transmit them to a second Controller without hindrance.

Methods of exercising rights

Users can exercise the rights:
mail to: ROELMI RE S.r.l. via Celeste Milani, 26 24/26, 21040, Origgio, Varese
email to: info[@]roelmire.com

Document reviewed: November 26 2020