PRIVACY POLICY

Index

1. Identity and Contact Details of the Data Controller
2. Types of Data Processed and Purposes
3. Recipients of Personal Data
4. Transfer of Data to Third Countries
5. Data Processing Methods and Retention Period
6. Rights of the Data Subject
7. Data Communication and Provision
8. Updating and Modification of the Privacy Policy

Introduction

This Privacy Policy aims to describe the management methods of the website currently available at www.mandelli.net with reference to the processing of personal data of users/visitors who consult it.

This information is also provided pursuant to Article 13 of Regulation (EU) 2016/679 (hereinafter also “General Data Protection Regulation” or “GDPR”) to those who access the aforementioned site.

The aforementioned site is owned by Mandelli srl.

The information is provided by Mandelli srl exclusively for the aforementioned site.

Users/visitors are invited to read this Privacy Policy carefully.

1. Identity and Contact Details of the Data Controller

The Data Controller of personal data relating to the site www.mandelli.net is Mandelli srl, with registered office at Via Tommaso Grossi, 5 – 20841
Carate Brianza (MB) Italy, (hereinafter “Mandelli srl“), pursuant to Articles 4 and 28 of Legislative Decree 30 June 2003, No. 196 – Privacy Code (hereinafter “Code”) and Articles 4, No. 7) and 24 of Regulation EU 2016/679 of 27 April 2016.

2. Types of Data Processed and Purposes

The computer systems and software procedures used to operate this site acquire, during their normal operation, some personal data that is implicitly transmitted in the use of Internet communication protocols.

This information could, by its nature and through associations and processing with data held by third parties, allow users/visitors to be identified (e.g., IP address, domain names of the computers used by users/visitors connecting to the site, etc.). These data are used solely to obtain anonymous statistical information and to check the correct functioning of the site.

3. Recipients of Personal Data

No data derived from the web service will be communicated or disseminated to third parties, except to comply with obligations provided by laws, regulations, or EU norms. The personal data expressly provided by users/visitors will be communicated to third parties only if the communication is necessary to fulfill the requests of the users/visitors themselves.

4. Transfer of Data to Third Countries

In relation to the purposes indicated in Article 2 della presente Informativa i Suoi dati personali non verranno comunicati/trasferiti a soggetti terzi stabiliti in Paesi non appartenenti all’Unione europea, fatto eventualmente salvo quanto previsto per l’utilizzo dei Cookies in relazione al quale si rimanda alla relativa sezione “Cookie Policy”.

5. Data Processing Methods and Retention Period

Personal data will be processed using computer tools and/or manually for the time necessary to achieve the purposes for which they were collected. Additionally, it should be noted that your personal data will not be subjected to profiling, nor to any fully automated decision-making process. Personal data will be kept for the time strictly necessary to pursue the specific processing purposes and, in particular, for the data indicated in Article 2, for the time necessary to carry out the specified activities, except for any ascertainment of computer crimes against the site.

6. Rights of the Data Subject

The user may, at any time, exercise the following rights:

A. Access to personal data:

obtain confirmation as to whether or not data concerning you is being processed and, if so, access the following information:

the purposes, the categories of data, the recipients, the retention period, the right to lodge a complaint with a supervisory authority, the right to request rectification or erasure or restriction of processing or to object to such processing, and the existence of an automated decision-making process;

B. Request rectification or erasure of the data or restriction of processing; “restriction” means marking the stored data with the aim of limiting its processing in the future;

C. Object to the processing: object, on grounds relating to your particular situation, to the processing of data for the performance of a task carried out in the public interest or in the exercise of official authority or for the pursuit of a legitimate interest of the Data Controller;

D. Data portability: in the case of automated processing carried out on the basis of consent or in the performance of a contract, receive in a structured, commonly used, and machine-readable format the data concerning you;

E. Lodge a complaint pursuant to Article 77 GDPR with the competent supervisory authority based on your habitual residence, place of work, or place of infringement of your rights; for Italy, the competent authority is the Garante per la protezione dei dati personali, contactable via the contact details on the website http://www.garanteprivacy.it. These rights may be exercised by sending a specific request through the contact channels indicated in Article 1 of this notice.

7. Data Communication and Provision

The provision of data by the user is aimed solely at the correct and complete execution of the purposes referred to in Article 2 (browsing data, the failure of which coincides with the lack of browsing of the website).

8. Updating and Modification of the Privacy Policy

The current Privacy Policy may be subject to changes over time – also due to the coming into effect of new sector regulations, updates or supply of new intents aka implemented technological innovations – for which the user/guest is invited to consult periodically this page.