provided pursuant to art. 13, Regulation (EU) 2016/679 (“GDPR”)
Data Controller and Data Protection Officer (DPO)
The Data Controller is Emilceramica S.r.l. a Socio Unico with registered office at Via Ghiarola Nuova 29, 41042 Fiorano Modenese (Modena) Italy, in the person of its current legal representative (“Data Controller”or “Emilceramica”).
Transfer of personal data outside the EU
The personal data of the User collected using cookies (e.g. third-party cookies) may be transferred to non-EU countries: such transfers are lawful as they are covered by adequacy decisions issued by the European Commission and/or by the prior signing of Standard Contractual Clauses
adopted on the basis of the models established by the European Commission pursuant to art. 46, 2, letters c) and d) of the GDPR.
Recipients of personal data
The personal data of the User may come to the knowledge of employees, contract staff and associates of the Data Controller assigned to pursue the aforementioned goals, who shall work in the capacity of authorised data users having received suitable operating instructions.
In addition, to pursue the purposes referred to in paragraph 3 above, the User’s personal data may be processed by third parties belonging, for example, to the following categories:
- providers of technical assistance services for the management and maintenance of the Website;
- advertising agencies;
- providers of statistical processing services on the use of the Website;
- companies that carry out management and maintenance services on the Data Controller’s computer systems;
- business partners;
- companies that own social media websites;
- companies that provide email delivery services or other suppliers of external digital communications platforms;
- supervisory and controlling authorities and bodies and, in general, public or private bodies with a public interest function that may justifiably request such data in accordance with national and European legislation;
companies, associations or professional practices that perform assistance and consultancy activities.
The entities in the aforesaid categories operate in some cases as Data Processors specifically designated by the Data Controller in accordance with article 28 of the GDPR, and in other cases fully independently as separate Data Controllers, in which case your personal data will only be disclosed to the said independent data controllers where legitimately established as per paragraph 3 above.
The data collected using cookies will not be disseminated.
Rights of the data subject
- right of access: right to obtain confirmation of whether or not personal data concerning you are being processed and, if this is the case, to obtain access to your personal data – including a copy of them – and communication, amongst other things, of the information outlined in art. 15 of the GDPR;
- right to rectification: right to obtain, without undue delay, the rectification of inaccurate personal data concerning you and/or the completion of incomplete personal data pursuant to art. 16 of the GDPR;
- right to erasure (right to be forgotten): the right to obtain, without undue delay, the erasure of personal data concerning you, in the cases indicated in art. 17 of the GDPR; the right to erasure does not apply to the extent to which the processing is necessary for compliance with a legal obligation or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller, or for the establishment, exercise or defence of legal claims;
- right to restriction of processing: right to obtain restriction of the processing, in the cases indicated in art. 18 of the GDPR;
- right to data portability: right to receive the personal data concerning you, which you have provided to the Data Controller, in a structured, commonly used and machine-readable format and the right to transmit those data to another controller without hindrance, if the processing is based on consent and is carried out by automated means, as indicated in art. 20 of the GDPR. In addition, the right to have your personal data transmitted directly by the Data Controller to the other controller, where technically feasible;
- right to object: right to object to the processing of personal data concerning, you, unless there are legitimate grounds for the Data Controller to continue the processing, pursuant to art. 21 of the GDPR;
- the right to withdraw consent at any time without prejudice to the lawfulness of the processing based on the consent given prior to the withdrawal;
- right to lodge a complaintwith a supervisory authority in the Member State of your habitual residence, place of work or place of the alleged infringement.
The above rights may be exercised in relation to the Data Controller using the contacts provided in paragraph 1 above. The Data Controller shall examine your request and provide you, without undue delay and in all cases within no more than one month of receiving said request, with information concerning the action taken with regard to your request.
The exercising of your rights as data subject is free of charge in accordance with art. 12 of the GDPR. However, in the event of requests which are manifestly unfounded or excessive, in particular because of their repetitive character, the Data Controller may charge you a reasonable fee taking into account the administrative costs of dealing with your request, or refuse to act on the request.
Please also note that the Data Controller may request further information necessary to confirm the identity of the data subject.
How to manage preferences and provide or withdraw consent
There are various ways to manage Tracker related preferences and to provide and withdraw consent, where relevant:
Users can manage preferences related to Trackers from directly within their own device settings, for example, by preventing the use or storage of Trackers.
Additionally, whenever the use of Trackers is based on consent, Users can provide or withdraw such consent by setting their preferences within the cookie notice or by updating such preferences accordingly via the relevant consent-preferences widget, if available.
It is also possible, via relevant browser or device features, to delete previously stored Trackers, including those used to remember the User’s initial consent.
Other Trackers in the browser’s local memory may be cleared by deleting the browsing history.
Locating Tracker Settings
Users can, for example, find information about how to manage Cookies in the most commonly used browsers at the following addresses:
Users may also manage certain categories of Trackers used on mobile apps by opting out through relevant device settings such as the device advertising settings for mobile devices, or tracking settings in general (Users may open the device settings and look for the relevant setting).
Since the use of third-party Trackers through this Application cannot be fully controlled by the Owner, any specific references to third-party Trackers are to be considered indicative. In order to obtain complete information, Users are kindly requested to consult the privacy policies of the respective third-party services listed in this document.
Given the objective complexity surrounding tracking technologies, Users are encouraged to contact the Owner should they wish to receive any further information on the use of such technologies by this Application.
Definitions and legal references
Personal Data (or Data)
Any information that directly, indirectly, or in connection with other information — including a personal identification number — allows for the identification or identifiability of a natural person.
Information collected automatically through this Application (or third-party services employed in this Application), which can include: the IP addresses or domain names of the computers utilized by the Users who use this Application, the URI addresses (Uniform Resource Identifier), the time of the request, the method utilized to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server’s answer (successful outcome, error, etc.), the country of origin, the features of the browser and the operating system utilized by the User, the various time details per visit (e.g., the time spent on each page within the Application) and the details about the path followed within the Application with special reference to the sequence of pages visited, and other parameters about the device operating system and/or the User’s IT environment.
The individual using this Application who, unless otherwise specified, coincides with the Data Subject.
The natural person to whom the Personal Data refers.
Data Processor (or Data Supervisor)
Data Controller (or Owner)
The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of Personal Data, including the security measures concerning the operation and use of this Application. The Data Controller, unless otherwise specified, is the Owner of this Application.
The means by which the Personal Data of the User is collected and processed.
The service provided by this Application as described in the relative terms (if available) and on this site/application.
European Union (or EU)
Unless otherwise specified, all references made within this document to the European Union include all current member states to the European Union and the European Economic Area.
Cookies are Trackers consisting of small sets of data stored in the User’s browser.
Tracker indicates any technology – e.g Cookies, unique identifiers, web beacons, embedded scripts, e-tags and fingerprinting – that enables the tracking of Users, for example by accessing or storing information on the User’s device.
This privacy statement has been prepared based on provisions of multiple legislations, including Art. 13/14 of Regulation (EU) 2016/679 (General Data Protection Regulation).