PRIVACY POLICY

SUBJECT: PRIVACY POLICY ACCORDING TO ART. 13 OF GDPR 679/16 FOR THE TREATMENT OF PERSONAL DATA (European regulation on the protection of personal data)

 

Customer treatment information
In compliance with the new European Regulation 679/16 (GDPR), we provide you with the necessary information regarding the processing of personal data provided by you.
This is an information note in according to Art. 13 of the European Regulation on the protection of personal data.

"TREATMENT HOLDER"
pursuant to Art. 4 paragraph 7 of the GDPR, is Biquadro Srl with Registered office in Via Montesi, 5 - 35025 CARTURA (PD); VAT number 04150550285, Phone +39 049 9535360 - Fax +39 049 9539343.
The treatment will be carried out with manual and telematic instruments, in observance of the laws in force and in compliance with the principles of correctness, lawfulness, transparency, pertinence, completeness, non-excess, precision, organization and elaboration strictly related to the purposes pursued and in any case in order to guarantee the security, integrity and confidentiality of the data processed, in compliance with the organizational, physical and logical measures provided for by the provisions in force.
These measures will from time to time be implemented and increased also in relation to technological development to ensure confidentiality, availability and integrity of the processed  data.
For the purposes expressed in this statement, personal data and particular categories of data will be processed pursuant to art. 4 and 9 of the GDPR.

1. Purpose of the treatment
a) Execution of the contract of the customer
The data processed are synthetically :
- Identifications data of natural persons: name, surname, fiscal code, date of birth, residence, phone number and mail address, minors data, VAT, banking data etc.
- Legal data: pigeon holes.

  1. The provided data will be treated for the purposes concerning the execution of the agreement, in particular:
    1) Active invoicing
    2) Technical management of the orders
    3) Management of informatic systems
    4) Secretarial activity
    5) Promotional, informational, formative communications regarding the provided services
  2. The data of points 1,2,3,4 are absolutely necessary in order to provide services and all the connected activities and also to observe the in force laws (e.g fiscal law). The missed, incomplete or incorrect conferment of the data, will cause the impossibility to fulfil the normative obligations and therefore to perform the tasks expected by the agreement. The legal basis of the treatments of point 1,2,3,4, can be identified according to the article 6. Let. b,c GDPR in:
    - contractual obligations
    - tax legislation
  3. The treatment of point 5 is optional, the legal basis is the consent.
  4. Maintenance period: The data, provided for the purposes of points 1,2,3,4,5, will be maintained for 5 years for tax purposes and for 10 years for civil law purposes from the end of contractual relationship.

b) Activities of communication and updating of the services proposed by the data controller with his specific consent
The provided data with particular reference to: email, phone number, address may be used by the data controller to send you information material relating to activities, informative circulars, invitations, provided by the owner himself.
These communications could be sent per email, phone or advertising material at your residence.
For this purpose your approval according to the art. 6 lett. a) Gdpr is necessary.
The consequence of the missed conferment and approval is the impossibility to to carry out the advertising activity.
The provided data for the above mentioned purposes will be maintained for maximum 3 years and anyway until the revocation of your approval, which can be communicated for all the contact methods, or only for some of them per email to the mail address This email address is being protected from spambots. You need JavaScript enabled to view it..

c) The provided data could be used for the lawful interests of the holder, like the defence. The principle of non-excess (art. 6 lett. f) will be applied in this case too; the data will be maintained for 10 years according to the civil law terms.
To summarize:
The approval of the interested party isn’t necessary for the purposes of points A and C, but it’s necessary for the purpose of point B, which is revocable at any time.

2. Diffusion, possible receivers, category of data receivers

Diffusion: data won’t be diffused.

Receivers: the provided data will be used only by people authorized to the treatment and properly trained and by responsible of the treatment connected with the holder by a specific agreement like:
- Financial adviser
- Legal adviser
- Other experts (natural or legal persons) who supply goods or services and work for the holder. (responsible or people in charge)
- Banks
It is understood that the processed data will be exclusively those necessary to achieve the specific purpose, it follows that the data managed through third parties will be limited to the specific purpose.
However, the data will not be transferred outside the EU territory.
The data may also be disclosed to Public Bodies, Police Forces or other Public and Private Subjects, but exclusively for the purpose of fulfilling the obligations of the law, regulation or legislation of the European Union.

The updated list with the identification details of all the Data Processors, may be requested by you at any time to the Data Controller, who will immediately make it available to you.

3. Rights of the interested party Articles 15, 16, 17, 18, 20 and 21 of the GDPR

  1. We inform you of the existence of the right to access personal data, rectification, cancellation "right to be forgotten", limitation of treatment, opposition to the processing and portability of personal data concerning you.
    The request addressed to the Data Controller may be sent by registered letter to the "Owner of the Service" at Biquadro Srl, Via Montesi, 5 - 35025 CARTURA (PD) or by e-mail to the following address: This email address is being protected from spambots. You need JavaScript enabled to view it.. The communication should report as object “Communication addressed to the Owner of the Service”. After the receipt of the request the holder must reply within a 30-day deadline, extendable for two months if necessary, giving reasons.
    In particular:

    • Right of access: the right of the interested party to obtain confirmation from the owner that the processing of personal data concerning him or her is in progress and, in this case, to obtain access;
    • Right of rectification and cancellation: right of the interested party to obtain the correction of inaccurate personal data concerning him and the deletion of data concerning him (data no longer necessary for processing, in case of revocation consent, in case of opposition to treatment, the unlawfulness of the processing, to comply with a legal obligation, data collected in relation to the offer of information society services pursuant to article 8.1 GDPR;
    • Right to limit processing: the right of the data subject to obtain limitation of processing in the case in which data accuracy is contested, the processing is illegal, in case of need for exercise or defense law in court, in case of automated decision making (art 21 GDPR);
    • Right to portability: lthe subject has the right to receive his personal data in a common format which is readable through an automatic device and he has the right to obtain data transfer without impediment from the data controller to another data controller.
    It is understood that, where the request for access is presented by electronic means, the information will be provided in an electronic format in common use, after identification of the interested party.
    For further information regarding your privacy rights, please visit the website of the Authority for the Protection of Personal Data, at www.garanteprivacy.it.

  2. We also inform you that you have the right to withdraw your consent to the processing of your data at any time, without prejudice to the lawfulness of the processing based on the consent given before the revocation (Article 7, paragraph 3 of the GDPR).

  3. Pursuant to art. 77 of the Rules of Procedure, you are granted the right to lodge a complaint with a supervisory authority, particularly in the Member State in which you normally live, work or in the place where the alleged violation has occurred.

It is understood that, where the request for access is presented by electronic means, the information will be provided in an electronic format in common use, after identification of the interested party.

-----------------------------------------------------------------------------------------------

Privacy policy about operation of cookies - Art. 13 Privacy Code

Last updated: 29 May 2015

Information in fulfillment of the obligations for Art. 10 of the Directive n. 95/46 / EC, Directive 2002/58 / EC, as updated by Directive 2009/136 / CE, Article 13 of Legislative Decree June 30, 2003, number 196, and the general measure (doc. Web n. 3118884) the Authority for the Protection of Personal Data, published in the Official Gazette no. 126 of June 3, 2014, record of the action n. 229 of 8 May 2014 regarding Cookies, entitled "Identification of simplified procedures for the information and the acquisition of consent for the use of cookies"

Here below we inform you about the operation on our site.

Browsing our site, you agree to the use of the browser cookie in accordance with this Cookies Policy.
Therefore we recommend taking a few minutes to read this information.

Cookies are small files sent by the visited sites to the browser used by the user during navigation, which automatically stores them and then send them back to the server each time the user returns to the same website.

In general, cookies can be of various types:

- Technical or profiling, depending on the function for which they are used
- Of the first party or third parties, depending on who installs them
- Of session or persistent, depending on the length

A) Technical Cookies can be grouped into three types:
1. Cookie navigation or session, which guarantee the normal navigation and use of the website.
2. Analytics Cookies, similar to technical cookies when used directly by the site operator or anonymous third party.
Analytics Cookies are used to obtain anonymous statistics and aggregate, useful for optimizing sites and services. They are in any case information that does not identify users personally.
3. Operation Cookies which allow the user browsing in function of a number of selected criteria.

Explanation and details of Technical cookies
Our site uses cookies of first parts both during browsing session and does not store any personal information, but anonymizes all sessions.
Our site uses third party cookies (Google Analytics) of session without storing any personal information, but anonymizes all sessions. In this regard check https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage

B) Cookie Profiling
Our site does not use any cookie profiling.

To disable, remove or block cookies by browser you can use the browser settings.
For more information see the pages of "Help" of your browser.