Unigrà complies with Privacy rights and the relative standards which regulate data collected online.
To this end, we inform you that, pursuant to Italian Legislative Decree no. 196/2003 (personal data protection code), the data spontaneously provided shall be processed in accordance with the principles of fairness, lawfulness, and protection of your privacy and in accordance with suitable security measures, with or without the aid of electronic tools and every possible software, and saved in every format (including electronic and magnetic), to provide its services to Clients, for direct marketing activities by sending newsletters, as well as for commercial, promotional and marketing purposes, for market research, for internal statistics, and diffusion of information on products, services and company activity.
Personal information such as names, surnames, company name, city, province, country, post code, date of birth, email account, telephone and fax number, profession, areas of interest, business sector, VAT number, tax code, various types of data which may be inserted in the notes, cookies and usage data are requested and collected, autonomously or via third parties, for the sole uses identified here.
For requirements linked to functioning and maintenance, this site and any third-party service providers used by the site may collect the system log – files which register the interactions on the site and which may also contain personal data, such as the user’s IP address.
Consent for the processing of data for the purposes set out here is entirely optional. Any partial or total refusal to give consent will render it partially or totally impossible to achieve the aims set forth above.
All the information will be contained in a strictly “confidential” file. Other than the Data Controller, categories of appointees involved in the organisation of the website (administrative, commercial, marketing, legal, system administration staff) or limited external subjects (such as third-party technical service providers, mail couriers, hosting providers, IT companies, communication agencies) also nominated, where required, Data Processors by the Controller. The updated list of Processors can always be requested from the Data Controller.
The data collected by Unigrà may be shared with its partners and subsidiary or affiliated companies to allow them to communicate offers and promotions.
Unigrà will not divulge information relative to its users and clients to third parties and will not provide any personal information to other companies or individuals without having been granted permission. Personal data can be provided to persons employed by Unigrà for the sending of catalogues and/or promotional material.
The user, by entering his/her contact details, agrees to his/her data being used to respond to requests for information, provide quotes, or of any other nature indicated by completing the form.
You are aware that article 7 of Italian Legislative Decree 196/2003 recognises your right to obtain confirmation, at any time, of whether or not your details are being held by the Data Controller, to access your data, to verify its correctness or request data to be added, amended, updated, deleted, rendered anonymous, if incomplete, erroneous or collected in violation of the law, and to oppose the data being processed for legitimate reasons. These rights can be exercised by making a request to the Data Controller.
The Data Controller is the CEO of Unigrà S.r.l., whom you may contact, at the legal office at 48017 Conselice (RA), via Gardizza 9/B, tel. +39 0545/989511, fax. +39 0545/85061, e-mail: firstname.lastname@example.org
The data is processed at the operating sites of the Controller and in other places in which the parties involved in the processing are located. For more information, contact the Controller.
The data is processed for the time necessary to carry out the service required by the User, or required for the purposes described in this document, and the User may ask for the processing to be suspended or for the data to be deleted at any time.
Google Analytics (Google Inc.): Google Analytics is a web analysis service supplied by Google Inc. (“Google”). Google uses the personal data collected (cookies and usage data) in order to track and examine the use of this site, compile reports and share them with the other services developed by Google. Google may use the personal data to contextualise and personalise the adverts of its publicity network.
Personal data from the User may be used by the Controller for defence purposes in legal proceedings or in the preliminary phases of its establishment, from abuses in the use of the same or of services connected by the User.
The User declares that he/she is aware that the Controller may be required to reveal data upon demand by the public authorities.
The User assumes responsibility for the personal data of third parties it publishes or shares through this site and guarantees that he/she has the right to communicate or circulate the data, freeing the Data Controller from any responsibility towards third parties.
Information not contained in this policy: more information in relation to the processing of your personal data can be requested at any time from the Data Controller using the contact details provided.
You declare to have read this policy on data processing under the terms of art. 13 of Italian Legislative Decree no. 196/2003 and, by acceptance in electronic format, express your consent to the processing of your personal data by Unigrà S.r.l., within the limits and for the purposes set forth in this document.
Art. 13 (Policy)
1. The Data Subject or the person from whom the personal data is collected has previously been informed, orally or in writing, about:
a) the purposes and methods according to which his/her data will be processed;
b) the mandatory or optional nature of providing the data;
c) the consequences of any refusal to respond;
d) the subjects and categories of subjects to which the personal data may be communicated or which may become aware of it as processors or appointees, and the scope of distribution of the data;
e) the rights pursuant to article 7;
f) the information identifying the Controller and, if appointed, the representative of the state territory pursuant to article 5 and the processor. When the Controller appoints more than one processor, at least one of them is indicated, indicating the site of the communications network or the ways in which the updated list of processors can be reached. When one person is appointed responsible for responding to the data subject in case of exercise of the rights pursuant to article 7, that person is identified.
2. The policy as per paragraph 1 also contains the elements set out by specific provisions of this code and may fail to contain the elements already known to the person who provides the data or knowledge of which could concretely impede the fulfilment, on the part of a public entity, of inspection or control functions carried out for the purposes of defence or security of the state or prevention, ascertainment or repression of crimes.
3. The Data Protection Supervisor may identify, with its own means, simplified procedures for the policy supplied, in particular by telephone support services and information to the public.
4. If the personal data is not collected from the data subject, the policy as per paragraph 1, including the categories of data processed, is given to the data subject at the point of registration of the data, or, where communication of the same is required, no later than when the data is first disclosed.
5. The provision as per paragraph 4 does not apply when:
a) the data is processed based on an obligation set out by law, regulation or European regulation;
b) the data is processed for the purpose of conducting defensive investigations in accordance with law no. 397 of 7 December 2000, or, in any case, to enforce or defend a right in legal proceedings, provided that the data is processed exclusively for such purposes and for the period of time strictly necessary
c) the provision of information to the data subject involves an effort that is declared by the Data Protection Supervisor to be manifestly disproportionate compared with the protected right, or if it proves impossible in the opinion of the Data Protection Supervisor, establishing eventual appropriate measures.
5-bis. The information as per paragraph 1 is not required in the case of receipt of CVs spontaneously sent by data subjects for the purpose of developing a work relationship. At the point of first contact following the sending of the CV, the Controller must provide the subject with brief information, even spoken, containing at least the elements provided for in paragraph 1, letters a), d) and f).
Art. 7 (Right of access to personal data and other rights)
1. The data subject has the right to obtain confirmation of the existence or otherwise of personal data which relates to them, even if they are not yet registered, and for it to be disclosed in intelligible form.
2. The data subject has the right to obtain indication:
a) of the origin of their personal data;
b) of the purposes and methods of processing;
c) of the logic applied in case of processing carried out with the aid of electronic tools;
d) of the information identifying the Controller, the processors and the representative appointed in accordance with article 5, paragraph 2;
e) the subjects and categories of subjects to which the personal data may be communicated or which may become aware of it as representative of the state territory, processor or appointee.
3. The data subject has the right to obtain:
a) the updating, correction or, if they are the subject, additions to the data;
b) the cancellation, transformation into anonymous form, or blocking of data processed in violation of law, including the data that need not be retained for the purposes for which it was collected or subsequently processed;
c) certification that the parties to which the data has been transferred or disseminated have been notified of the operations specified in points a) and b), also regarding their content, except for the case where notification proves impossible or requires the use of means clearly disproportionate to the right being protected.
4. The data subject has the right to oppose, entirely or in part:
a) for legitimate reasons, the processing of the personal information regarding him/her even if it is pertinent to the purpose of its collection;
b) the processing of personal data which pertains to him/her for the purpose of sending advertising materials or direct sales materials, or for the completion of market research or for commercial communication.
Personal Data (or data): any information relative to a natural person, whether they can be identified or not, constitutes personal data, also indirectly, through reference to any other information, including a personal identification number.
Usage data: this is the personal data collected automatically by the site (or by third-party applications that this site uses), including: IP addresses or domain names of the computers used by the User connecting to the Application, URI (Uniform Resource Identifier) addresses, the time of the request, the method used to make the request from the server, the size of the file received as a response, the numerical code indicating the status of the server’s response (ok, error etc.), the country the request comes from, the characteristics of the browser and operating system used by the visitor, the various time frames relating to the visit (for example time spent on each page), and details concerning the path followed inside the site, with particular reference to the sequence of pages viewed, parameters concerning the User’s operating system and IT environment.
User: the individual who uses this website, which must be the same as the Data Subject or be authorised by the same and whose personal data is being processed.
The data subject: the natural or legal entity which the personal data refers to.
Data Controller (or Controller): The natural or legal entity, public administration and any other entity, association or body which involves, also together with another Controller, the decisions regarding the purposes, methods of processing personal data and the tools used, including the security profile, in relation to the functioning and use of this site. The Data Controller is the owner of this site, unless otherwise specified.