Dolomites Milk Srl/GmbH with registered office in Via Gasterer 3, 39054 Auna di Sotto/Renon, Italy, VAT no. 02982020212 (hereinafter, “Controller”), owner of the websites:
(hereinafter, the “Sites”), as controller of the processing of personal data of users who navigate and are registered to the Sites (hereinafter, “Users”) provides here below the privacy disclosure pursuant to art. 13 of EU Regulation 2016/679 of 27 April 2016 (hereinafter “Regulation”).
The personal data provided by the Users of the Sites will be used to allow:
a) the operation of the “contact us” service, and therefore to authorize the Controller to contact the User directly, following the User’s online completion and transmission of the relative form.
The personal data of Users may be communicated to third parties to fulfill legal obligations, or to comply with orders from public authorities, or to exercise a right in court.
The contents of the above listed websites and any services offered are reserved to subjects who have reached eighteen years of age. The Controller, therefore, does not collect personal data of minors under 18 years of age. Upon request of the Users, the Controller shall immediately cancel all personal data involuntarily collected relating to minors under 18 years of age.
1. Purpose of data processing and legal basis
The Users’ personal data will be lawfully processed by the Controller, pursuant to art. 6 of the Regulation for the following purposes:
a) navigation of the Sites, in relation to the possibility of acquiring User data, necessary at a technical level, such as the IP address, during navigation of the Sites;
b) administrative-accounting purposes, namely to perform activities of an organizational, administrative, financial or accounting nature, such as internal organizational activities and activities functional to the fulfillment of contractual and pre-contractual obligations;
c) response to contact requests by the websites visitors;
d) legal obligations, namely to comply with obligations provided by law, from an authority, by regulation or by European legislation;
The provision of personal data for the purposes of the data processing indicated above is voluntary but necessary, since the lack of providing of data will make it impossible for the User to navigate on the Sites, subscribe to Sites where provided and use the services offered by the controller of the data processing. With reference to the purposes in points (1/a and 1/c), the legal basis of the data processing is, in fact, the execution of the services provided through the Sites and requested by the User (pursuant to article 6, paragraph 1, letter b of the Regulation); with reference to the purposes in points (1/b, 1/d) of the previous paragraph, the legal basis of the data processing is to fulfill the legal obligation which the controller of the data processing is subject to (pursuant to article 6, paragraph 1, letter c of the Regulation).
2. Data processing method and data storage period
The Controller will process the personal data of Users utilizing manual and computer instruments, with logic strictly related to the same purposes and, in a way that guarantees the security and privacy of the data.
The personal data of the Users of the Sites will be held for the time strictly necessary to fulfill the primary purposes illustrated in paragraph 1, or as necessary for the protection in civil law of the interests of both the Users and the Controller.
3. Scope of communication and dissemination of data
Employees and/or collaborators of the Controller, responsible for the management of the Sites, may become acquainted with the personal User data. These subjects, who are authorized by the Controller, will process the User data exclusively for the purposes indicated in the present disclosure and in compliance with the previsions of the Regulation.
Third parties who may process the personal data on behalf of the Controller may also become acquainted with the personal User data as “External Data Processors”, such as, for example, suppliers of computer and logistics services for the operation of the Sites, providers of outsourcing and cloud computing services, professionals and consultants.
Users have the right to obtain a list of any parties responsible for data processing appointed by the Controller by making a request using the method indicated in paragraph 4 below.
4. Users’ rights
Users may exercise the rights guaranteed to them by the Regulation by contacting the Controller in the following ways:
· return receipt certified mail to the head offices of the Controller;
· email to address firstname.lastname@example.org.
Website users, as parties to the data processing, have the right to:
a) Obtain access, update, correction or, if they wish, integration of the data;
b) request and obtain the cancellation, transformation into anonymous form or the block of the data processed in violation of law, including data for which retention is not necessary relative to the purposes for which the data was collected and processed;
c) obtain certification that the operations referred to in letters a) and b) have been brought to the attention, even with regard to their content, of those to whom the data has been communicated or disseminated, unless this requirement proves impossible or involves a manifestly disproportionate effort compared with the right that is to be protected;
d) revoke consent at any time, when the data processing is based on their consent;
e) data portability (right to receive all the personal data pertaining to them in a structured, commonly used and machine-readable format), the right to restriction of processing of the personal data and the right to erasure (“right to be forgotten");
i. in full or in part, for legitimate reasons, to the processing of personal data pertaining to them, although relevant to the purpose of its collection;
ii. in full or in part, to the processing of personal data pertaining to them for the purpose of sending advertising materials or direct sales, or the execution of market research or commercial communications;
iii. at any time, when the personal data is processed for purposes of direct marketing, to the processing of their data for that purpose, including profiling, to the extent that it is connected to that direct marketing.
g) lodge a complaint with a Supervisory Authority (in the member country in which they usually live, work or in the member country where the alleged violation has taken place) when they believe that the processing pertaining to them violates the Regulation. The Italian data protection authority is the Garante Privacy, with office in Piazza Venezia no. 11, 00187 - Rome (http://www.garanteprivacy.it/).
Cookies On Our Website
Our website uses the following cookies:
_gat, Source: Google. This cookie name is associated with Google Universal Analytics, according to documentation it is used to throttle the request rate - limiting the collection of data on high traffic sites. It expires after 10 minutes.Valid for 10 minutes.
_gid, Source: Google. Registers a unique ID that is used to generate statistical data on how the visitor uses the website.Valid for 1 day.
_ga, Source: Google. This cookie is used to distinguish unique users by assigning a randomly generated number as a client identifier. It is included in each page request in a site and used to calculate visitor, session and campaign data for the sites analytics reports.Valid for 2 years.