The Data Controller on this Website is NUTRATECH SRL, via Ponte Bucci snc 87036 Rende (CS), Italy, email: firstname.lastname@example.org.
How Personal Data Is Being Processed
The Personal Data provided or acquired will be subject to processing based on the principles of correctness, lawfulness, transparency and protection of confidentiality in accordance with current regulations. The Data Controller processes your Personal Data by taking appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of Personal Data. The Processing is carried out through IT and /or telematic tools, with organizational methods and with logics closely related to the indicated purposes.
Purposes of the Processing of Personal Data and law fullness
The data controller, in relation to his purpose, may collect user data spontaneously provided (ex. contact forms) or through automated tools (cookie); after processing, the data will be deleted immediately or, in case of persistent cookies, after the period necessary for their operation.
The purposes (Below)
User data will be processed:
a) to follow up the specific requests addressed to the Data Controller by the User for communications of an informative nature related to the Services of the same Data Controller, through e-mails. This processing is optional and based on your consent, however failure to communicate one or more Data will make it impossible to respond to the request for information and to use the services offered by the Data Controller;
b) To provide a quote if you request it;
c) To collect the join of voluntary users if they want to collaborate with the company;
d) to carry out statistical analysis on aggregated and anonymous data to analyze the User’s behaviors to improve the products and services provided by the Data Controller as well as to meet the expectations of the User;
e) for other finalizations linked to those indicated above and in any case included in the activities of the Website;
Lawfullness of processing:
1) Consent to answer to requests for general information;
2) pre-contract to answer to requests of quote;
3) Consent, pre contract, to collect data relating to volunteers.
Categories of Data processing
In this website there are different data processing, in particular related to: Email, surname e name, telephon number, address, IP address. Personal Data may be provided voluntarily by the User when using the Website, by completing the contact form. The optional, explicit and voluntary sending of e-mails via the Contact Form or by means of the addresses indicated on this Website, entails the subsequent acquisition of the sender’s address, necessary to respond to requests, formalize a quote and collect spontaneous applications for the position of volunteer. The consent to the provision of data by the User is necessary to be involved in the Data Controller’s database and for the purposes of establishing and properly carrying out what it offers to its Users, as well as to third parties, for the fulfillment of the individual activity requested. Failure to provide consent, therefore, prevents registration in the Data Controller’s databases, the completion of any contracts, as well as the execution of the same and any other possible activity of this website.
Categories of recipients to whom the personal data are disclosed
In addition to the Data Controller, in some cases, may have access to the Data:
a) categories of specially persons involved in the organization of the website (administrative, commercial, marketing, legal, system administrators)
b) external subjects (such as third party technical service providers, hosting providers, IT companies, communication agencies) also appointed as Data Processors by the Data Controller pursuant to art. 28 GDPR. The updated list of Data Processor, if appointed, can always be requested from the Data Controller;
c) public or private subjects who can access the Data in compliance with legal obligations;
Retention period of personal data
As expressly provided for by the art. 5, co. 1, lett. e) of the GDPR, the Data are kept for the time necessary to process them in relation to the performance of the service requested by the User, or required by the Purposes described in this document and in particular:
a) The data collected for purposes related to the legitimate interest of the Controller will be retained until this interest is satisfied;
b) The Data collected on the basis of the User’s Consent may be kept until this Consent will be revoked;
c) The data collected for fiscal / administrative obligations or contractual obligations will be kept for the time necessary to carry out the purposes and in accordance with the provisions of the law, for a period not exceeding the dispositions of civil law and in any case for a period not exceeding 10 (ten) years;
d) The User can always request the interruption of the processing or the cancellation of the data.
Transfer of personal data outside the EU.
The data is processed in the structures in which the Data Controller operates.
In cases of data transfer within non-EU countries, the Controller will ensure that valid contractual protection is put in place in order to safeguard user data.