PRIVACY POLICY
Our website offers informative content.
During the navigation, personal data of the User may be collected; they will also be acquired in the event that the User contacts us at the telephone or ordinary e-mail addresses indicated in the footer.
In this section you will receive information relating to the processing of personal data that we carry out through the website www.cafissi.it and those relating to commercial relations with suppliers and customers.
If you want to know the conditions of use of the site and our cookie policy you can consult the dedicated pages, which can be found at the following links Click here
THE REASON FOR THIS SECTION
In compliance with EU Regulation 2016/679 (hereinafter GDPR), containing rules relating to the protection of natural persons with regard to the processing of personal data as well as the free movement of the same, we wish to make available to you all the elements necessary to make you understand how and what personal data we process through our website, anticipating from now on that in acting we will observe the principles of correctness, lawfulness, transparency and protection of your confidentiality and your rights.
WHO WE ARE
We are the company Cafissi s.p.a. in the person of the legal representative pro tempore (p.iva 00243730975 n. REA 244446), with registered office in Prato (PO), via della Fattoria n.4, and we are the owners of this website and the processing of personal data carried out through it.
HOW TO CONTACT US
For any doubts, need to receive information, clarifications and / or to formulate questions, in relation to what is described below, you can contact us by writing to the e-mail address info@cafissi.it or by calling: 0574/66591.
HYPERLINKS
We inform you that what you will read applies only to this site, not also to other sites, pages or online services that can be reached through the hyperlinks to Instagram and LinkedIn that you can find by browsing our website. With regard to the aforementioned third parties, we invite you to consult the respective privacy policies, of which we indicate the links below: Instagram Click here and LinkedIn Click here.
THE DETAILS ABOUT THE TREATMENTS
We will be able to carry out the following processing on your data:
I. Navigation data
The computer systems and software procedures responsible for the operation of the site acquire, in the course of their normal operation, certain personal data the transmission of which is implicit in the use of Internet communication protocols. This is information that is not collected to be associated with identified data subjects, but which by its very nature could, through processing and association with data held by third parties, make it possible to identify users. This category of data includes the IP addresses or domain names of the computers used by the Users who connect to the site, the addresses in URI (Uniform Resource Identifier) notation of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (good time, error, etc.) and other parameters related to the operating system and the User's computer environment. This data is used for the sole purpose of obtaining anonymous statistical information about the use of the site and to check its correct functioning, to identify anomalies and/or abuse, and is deleted immediately after processing. The data could be used for the determination of responsibility in case of hypothetical computer crimes against the site or third parties: except for this eventuality, the data on web contacts do not persist for more than seven days.
II. Data voluntarily provided by the User: request for contacts and information received by sending communications to our contact details
Type of data
Identification and contact data, as well as any additional data contained in the communications you will send to our contact details.Identifying and contact data, as well as any additional data contained in the communications you send to our contact details.
Purposes of the processing and legal basis
We will process this data to provide feedback to the requests you have made and to provide the services you have requested. The legal assumption that allows us to act in this way is art.6, par.1, lett. B) of the GDPR (contractual purpose and/or execution of pre-contractual measures requested by you).
Contribution scheme
You are not obliged to provide the data indicated here, however, failure to provide them may make it impossible for us to comply with your requests.
Storage times
We retain your data for the time strictly necessary to process the requests received.
Receiver
Subjects within the organization expressly appointed and any external managers, whose list can be requested by writing to info@cafissi.it.
III. Data relating to customers and suppliers with whom we have contractual or pre-contractual relationships
Type of data
Identification and contact data, company name, VAT number, e-mail address, product sector, billing and accounting data.
Purposes of the processing and legal basis
We will process this data to provide feedback on requests for quotes or to issue invoices or to make payments. The legal assumptions that allow us to act are art.6, par.1, lett. B of the GDPR (contractual purpose and/or execution of pre-contractual measures requested by you) and lett. C (fulfillment of legal obligations) with exclusive regard to the data necessary for administrative/accounting management.
Contribution scheme
You are not obliged to provide the data indicated here, however, failure to provide it may prevent us from performing the contract to which you are a party.
Storage times
We will keep your data for 10 years for contractual purposes and 5 years for administrative/accounting purposes, or for the period that becomes necessary if we have to protect a right in court.
Receiver
Subjects within the organization expressly appointed and any external managers, whose list can be requested by writing to info@cafissi.it.
IV. Cookie
For the description of the cookies on this site you can consult the appropriate information, which complements this, and can be found at the following link Click here
METHOD OF TREATMENT
We protect your personal data by adopting security measures and respecting the principles of the GDPR. The personal data collected are processed with or without the aid of electronic tools and automated systems. Your data will not be transferred outside the European Economic Area and will not in any way be disseminated or disclosed to undetermined subjects.
NON-EU TRANSFERS
We will not transfer your data to a third country or international organization outside the European Union. However, we will be able to use cloud services, in which case, the providers will be selected from those who provide the appropriate guarantees, as provided for in Article 46 of the Regulation.
THE RIGHTS THAT ARE RECOGNIZED TO YOU AND THE MODALITIES OF EXERCISE
The Regulation provides for and regulates a list of rights that you can exercise at any time by sending us a communication. In particular: Art. 15 – Right of access: request confirmation of the existence of processing of personal data in place and obtain access to it. Art.16 – Right of rectification: request and obtain rectification if the interested party considers that the data processed are inaccurate, in the presence of the legal conditions. Art.17 – Right to erasure (right to be forgotten): request the erasure of the data, without unjustified delay if they are no longer necessary with regard to the purposes of the processing, if the data subject has revoked the consent, if he has objected to the processing, or in the case of unlawful processing or, again if the data must be deleted in order to comply with a legal obligation. Art.18 – Right to restriction of processing: in the event that the data subject disputes the accuracy of the data, where the processing is unlawful or, although the controller no longer needs it for the purposes of the processing, the data are necessary for the data subject to ascertain, exercise or defend a legal claim. Art.20 – Right to portability: the right to receive data concerning a data subject that he has provided to the controller, in a structured, commonly used, machine-readable format, or the right to request the owner that the data be transferred directly to another owner. Art.21 – Right to object: right to object to the processing at any time, for reasons related to the particular situation of the data subject, based on Article 6, paragraph 1(e) and (f).
COMPETENT SUPERVISORY AUTHORITY
Finally, you have the right to lodge a complaint with the Guarantor for the protection of personal data if you believe that the processing carried out by us violates your rights. For more information you can consult the following web page: https://www.garanteprivacy.it/home/docweb/-/docweb-display/docweb/4535524.
This policy may be subject to change and/or revision. The updated version will be published in this section and will contain the date of its last update.
May 2024 version