Privacy Policy

Pursuant to and for the purposes of article 13 of Regulation (EU) 2016/679 of 27 April 2016 “relating to the protection of individuals with regard to the processing of personal data, as well as to the free movement of such data and which repeals Directive 95 / 46 / EC” (“General Data Protection Regulation” or “GDPR”), Ondulit Italiana SpA (hereinafter also referred as the Company) is required to provide you with some information regarding the methods and purposes of the processing of your personal data.

Pursuant to and for the purposes of article 13 of Regulation (EU) 2016/679 of 27 April 2016 “relating to the protection of individuals with regard to the processing of personal data, as well as to the free movement of such data and which repeals Directive 95 / 46 / EC” (“General Data Protection Regulation” or “GDPR”), Ondulit Italiana SpA (hereinafter also referred as the Company) is required to provide you with some information regarding the methods and purposes of the processing of your personal data.

This information is provided only for sites relating to the pierluiginervi.org domain and not for other websites that may be already consulted or that will be consulted by the user through links on the site. The information is intended for all subjects who interact with the website’s pages and, in particular, both for those who use the site without making any registration and for those who use the site and intend to register on it.


SOURCE OF PERSONAL DATA AND
LEGAL BASIS FOR PROCESSING

The personal data held by the Company are collected directly by the interested parties who access the site or who intend to register on it. In any case, all the data acquired will be treated in compliance with the GDPR, as well as according to the confidentiality rules, inherent to the performance of the activity, which the Company has always been inspired by.

The personal data held by the Company are collected directly by the interested parties who access the site or who intend to register on it. In any case, all the data acquired will be treated in compliance with the GDPR, as well as according to the confidentiality rules, inherent to the performance of the activity, which the Company has always been inspired by.

PURPOSE OF THE TREATMENTS
The user’s personal data will be processed for the following purposes:

a) purposes aimed and instrumental to the management of pre-contractual relationships with customers (e.g. requests for information on products, services and related guarantees and certifications, request for technical assistance);

b) purposes aimed and instrumental to the management of pre-contractual relationships with customers (e.g. requests for information on products, services and related guarantees and certifications, request for technical assistance);

The provision by the interested party of the data necessary for the pursuit of the purposes referred to in points a) and b) above, although not mandatory, is essential and indispensable for the management, total or partial, of relations with customers also for the inclusion in the software for the management of the Company’s customers (so-called “CRM – Customer Relationship Management”); therefore, any refusal to provide such data would de facto make it impossible for the Company to execute the aforementioned activities.

If the Company intends to use the personal data collected for any other purpose incompatible with the purposes for which it was originally collected or authorized, the Company will inform the interested party in advance, who may deny or withdraw consent to their use.

DATA PROCESSING METHODS
In relation to the aforementioned purposes, the processing of personal data takes place using manual, IT and telematic tools designed to store, manage and transmit the data, solely for the purpose of pursuing the purposes for which they were collected and, in any case, in such a way as to guarantee its security and confidentiality.

In carrying out the processing activities, the Company undertakes to:

a) In carrying out the processing activities, the Company undertakes to:

b) Notify the interested party, in the times and in the cases provided for by the binding legislation, of any violations of personal data;

c) ensure the compliance of the processing operations with the applicable legal provisions.

The Company also processes personal data acquired in full compliance with the principle of correctness, lawfulness and transparency. In compliance with the GDPR, the Company configures or, in any case, undertakes to configure the information systems and computer programs by minimizing the use of personal data, so as to exclude their processing if the purposes pursued can be achieved through, respectively, anonymous data or appropriate methods that allow identification of the interested party only in case of need.

Exclusively for statistical/analytical purposes and in order to improve the use of the contents of promotional activities, the website collects and uses the so-called. “Navigation cookies” and provides you with an information note by means of the banner on the home page of the site. The use of cookies for the pursuit of the aforementioned purposes does not require your prior and explicit consent. However, any disablement or cancellation of the same could compromise optimal navigation on this Site

For more information on the use of navigation cookies, please read the specific information on the use of cookies on this site (Cookie use information).

CATEGORIES OF SUBJECTS TO WHOM THE DATA MAY BE DISCLOSED
Your personal data may be made available to the Judicial Authority and/or the Police Forces, upon their specific request, to comply with legal or regulatory provisions or for the purpose of identifying the perpetrators of any illegal acts committed to the detriment of the Company.

The data provided by the user are not subject to any other form of communication and/or diffusion.

POLICY REGARDING THE RETENTION OF PERSONAL DATA
The Company keeps the personal data acquired in its systems in a form that allows the identification of the interested parties for a period of time not exceeding the achievement of the purposes for which they are processed or to comply with specific regulatory or contractual obligations.

RIGHTS OF THE INTERESTED PARTY
We inform you that, pursuant to articles 15-22 of the GDPR, the interested party may exercise specific rights, including:

a) Right of access: the right to obtain confirmation from the Data Controller that personal data is being processed and in this case, to obtain access to personal data and further information on the origin, purpose, category of data processed, recipients of communication and/or data transfer, etc.

b) Right of rectification: the right to obtain from the Data Controller the correction of inaccurate personal data without undue delay, as well as the integration of incomplete personal data, also by providing an additional declaration.

c) Right to erasure: the right to obtain from the Data Controller the erasure of personal data without undue delay in the event that:

▪ personal data are no longer necessary for the purposes of the processing;

▪ the consent on which the treatment is based is revoked and there is no other legal basis for the treatment;

▪ personal data have been unlawfully processed;

▪ personal data must be deleted to fulfil a legal obligation.

d) Right to object to processing: the right to object at any time to the processing of personal data which have a legitimate interest of the Data Controller as a legal basis.

e) Right to limitation of treatment: the right to obtain the limitation of treatment from the Data Controller, in cases where the accuracy of personal data is contested (for the period necessary for the data controller to verify the accuracy of such personal data) if the treatment is unlawful and/or the interested party has opposed the treatment.

f) Right to data portability: the right to receive personal data in a structured format, commonly used and readable by an automatic device and to transmit such data to another data controller, only for cases where the treatment is based on consent and only for data processed by electronic means.

g) Right to lodge a complaint with a supervisory authority: without prejudice to any other administrative or judicial appeal, the interested party who believes that the processing that concerns him violates the Privacy Law has the right to lodge a complaint with the state supervisory authority member in which he resides or habitually works, or of the State in which the alleged violation occurred.

In the event that the treatment is based on consent, the interested party can revoke any consent given at any time, without prejudice to the lawfulness of the treatment performed before the revocation.

If the interested party wishes to receive further information on the processing of his personal data or to exercise the rights indicated above, he can contact the registered office of Pier Luigi Nervi Research and Knowledge Management Project asbl
Rue de Vrière 9
1020 Bruxelles
Belgium

Further information can also be requested at the e-mail address: info@pierluiginervi.org