Back to Home

 

LEGAL NOTES AND PRIVACY POLICY (EU GDPR: GENERAL DATA PROTECTION REGULATION COMPLIANT) Updated to 25th May 2018 (vers. 1.0)

With this document we would like to inform you about how we collect and manage your personal data as a result of browsing the pages of this website. We will try to be clear and simple in the exposition of information that may concern you directly. For this reason, please give us a few seconds of your time reading carefully what you will find below. For any need for clarification, please contact us.

 

GENERAL CONTACT DATA

PREVARIN SRL
Zona Industriale – Localita’ Pantani – PORTO SALVO
89811 VIBO VALENTIA (ITALY)
Tel. +39.0963 567692
Fax +39.0963 567692
E-mail: info@autogruprevarin.it

 

OWNER AND / OR RESPONSIBLE FOR DATA MANAGEMENT. CONTACTS FOR THE REQUEST FOR UPDATING OR REMOVING DATA

Mr. Adriano Prevarin
Zona Industriale – Localita’ Pantani – PORTO SALVO
89811 VIBO VALENTIA (ITALY)
Tel. +39.0963 567692
Fax +39.0963 567692
E-mail: info@autogruprevarin.it

 

LEGAL BASIS OF DATA PROCESSING BY THE HOLDER

The Data Controller processes your personal data if one of the following conditions exists:

– You have given consent for one or more specific purposes

– The processing of your data is necessary for the execution of a contract and / or the execution of pre-contractual measures with your person

– The processing of your data is necessary to fulfill a legal / administrative-tax obligation to which the Data Controller is subject

– The processing of your data is necessary for the performance of a task of public interest or for the exercise of public authority to which the Holder is invested

– The processing of your data is necessary for the pursuit of the legitimate interest of the owner or third parties.

Remember: it is always possible to ask the Owner to clarify the concrete legal basis of each treatment and in particular to specify whether the treatment is based on the law, provided by a contract or necessary to conclude a contract

 

TYPE OF DATA COLLECTED

These are the data we collect from this site:

email address, name, surname, telephone number

Your personal data may be freely provided by you or, in the case of usage data, collected automatically while browsing this site.

Unless otherwise specified, all the data requested on this site are intended as mandatory for the fulfillment of the procedure requested. If you wish to refuse to communicate to us, it may be impossible for us to provide you with the service you wish and that you wish to request. In cases where this site contains some data indicated as optional, you are free to refrain from communicating such data, without this having any consequence on the availability of our service or on its operation.

In case you have doubts about which data are mandatory or not, please contact our Data Controller.

 

METHOD OF TREATMENT OF DATA COLLECTED

The processing of your data is done by computer and / or telematic tools, with organizational methods and with a logic strictly related to the purposes indicated. The Controller takes appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of your personal data.

In addition to the Data Controller, in some cases, other subjects involved in the organization of work may have access to your data (for example administrative, commercial, marketing, legal, system administrators, etc.) or external subjects (such as third-party service providers) technicians such as couriers, hosting providers, IT companies  etc.) also appointed, if necessary, as Data Processors by the Data Controller.

Remember: you can always request an updated list of the Managers and to our Data Controller.

 

PLACE OF DATA PROCESSING

Your data is processed at the operational headquarters of the Owner and in any other place where the parties involved in the processing are located, such as the data center where the server hosting this site is physically located.

 

WHICH SERVICES PRESENT IN THIS SITE CAN COLLECT YOUR PERSONAL DATA?

Contact form

The contact form on this site (also called Form) allows you to send us your communication by quickly filling in the fields (mandatory or not) that include, for example, your name, surname, telephone number, email address. These data, necessary for the management of your request sent through the form itself, are delivered to our service email and managed from here to respond to your request. The transmitted data are not stored within the site (database) or external server.

Remember: at any time you can request the modification or deletion of your data by sending a request to our Data Controller.

 

 

Cookies, what are they and how can they collect your personal data?

Cookies are small text files that the sites visited by the user send and record on his personal computer and / or mobile device to be then re-transmitted to the same sites at the next visit. Thanks to cookies, a site can “remember” your actions and preferences (such as, for example, your login data, the browsing language you have chosen, etc.) so that they do not have to be shown again on your next visit to said site or while browsing from one page to another of this. Some operations could not be performed by you without the use of cookies; in some cases they are therefore technically necessary for the same functioning of the site in which you are browsing.

 

There are two types of cookies

(A) main cookies (first-party cookies)

(B) third-party cookies (third-party cookies)

(A) Main cookies. These are mainly transmitted by the site you are visiting and managed directly by its publisher / manager / owner. These can be distinguished in the following two types:

  1. Main technical cookies. They allow you to comfortably manage the technical features on the site such as login, what’s in the shopping cart, the navigation language, etc. These do not require your explicit consent, in particular because they expire after the conclusion of your procedure on the site (e.g. Logout).
  2. Main profiling cookies. They are used to create user profiles and are used in order to allow access and use to services related to your activated profile. They can also be used to send or transmit advertising messages in line with the preferences expressed by the same user when browsing the site. These need your prior clear and explicit consent.

 

(B) Third-party cookies. They are those transmitted to the navigator through the site in which you are browsing. In reality they come from third parties external to the same site and therefore not controlled directly by the publisher / manager / owner of this. These may relate to content and data present / displayed on the navigation site but managed (in reality) directly by external parties, such as in the case of streaming data services (eg Youtube videos, Vimeo and others), maps, social sharing buttons (e.g. Google Maps, Facebook, Twitter etc.).

To have a better awareness about the mode and use of your personal data collected by these third parties with respect to this site (third parties) we suggest you refer to the respective Privacy Policy documents that you will find here to follow for a your most complete, quick and free consultation.

 

What types of cookies are used on this site?

We do not use cookies in this site for either technical pourposes or third pary cookies.

 

General statistics of an anonymous type relating to the Hosting service.
The server on which this site is hosted processes anonymous data for purposes of general statistical analysis, e.g. IP browser, browser used, nationality, most visited pages, exit pages, operating system used etc. The collected data – even on a historical level – do not reproduce individual information. These are aggregate data of a generic nature, through which it is not possible to obtain strictly confidential personal information (Awstats latest version).

Traffic data relating to the Hosting service. Register LOG. The Register of Connections (LOG) exists and is normally and necessarily operational, in which the data relating to electronic traffic are kept in the terms and according to the timescales envisaged by the law. After the period of preservation required by law, and unless otherwise specified by the Authority by administrative or judicial provision, the above data are destroyed without the possibility of recovery.

 

WHAT PURPOSES DO WE COLLECT YOUR DATA?

In this site your data are collected by us for:

  1. respond to your general information requests received through the contact forms
  2. to fulfill any support requests

 

WHO SHARE YOUR DATA?

We do not share the data we collect or receive from the form in this site.

 

HOW LONG DO WE STORE YOUR DATA?

Your Personal Data is processed and stored for the necessary time required by the purposes for which it was collected. In particular, your personal data are processed for a period of time equal to the minimum necessary, as indicated by the art. 39 of the Regulations, i.e. up to your opposition to the processing and / or revocation of consent where required.

Therefore:

Personal Data collected for purposes related to the execution of a contract between the Owner and the User will be retained until the execution of the contract is completed.

 

 

WHAT RIGHTS DO YOU HAVE ON YOUR DATA?

Please remember, at any time you can ask us to exercise the following rights, as required by Article 15 of the Regulations:

Right of access. You can obtain confirmation of the existence of personal data concerning you and the related access. You can therefore ask for the origin, the copy, verify the accuracy of the data, ask for the correction, the update or integration or the total or partial cancellation, the block for those treated in violation of the law or you can oppose their use for legitimate reasons to be highlighted in the request.

Right to limit the processing. You will be able to obtain the treatment limitation, in accordance with article 18 of the Regulations, if one of the following hypotheses occurs:

  1. a) you have contested the accuracy of your Personal Data (the limitation will continue for the period necessary to the Data Controller to verify the accuracy of such Personal Data)
  2. b) the processing is illegal but you are opposed to the cancellation of your personal data, asking instead that its use is limited
  3. c) although the Data Controller no longer needs it for the purposes of processing, your personal data are used for the assessment, exercise or defense of a right in court;
  4. d) you are opposed to the processing pursuant to Article 21, paragraph 1, of the Regulations and you are awaiting the verification of the possible prevalence of the legitimate reasons of the Data Controller with respect to yours.

In case of limitation of treatment, your personal data will be treated, except for storage, only with your consent or for the assessment, the exercise or defense of a right in court or to protect the rights of another natural or legal person or for reasons of significant public interest. We will inform you, in any case, before this limitation is revoked.

Right to the portability of your data. You may request the transmission of your data to another Data Processing Controller. In this case, you will need to provide us with all the exact details of the new Data Controller to which you intend to transfer your personal data, subject to written authorization.

Opposition right. Pursuant to Article 21, paragraph 2 of the Regulations, you may object, at any time, to the processing of your personal data if these are processed for direct marketing purposes. You can also exercise this right in part, for example by objecting only to sending promotional messages via automated methods. These rights may be exercised by contacting the Data Controller at any time.

Right to lodge a complaint with the supervisory authority. Without prejudice to your right to appeal to any other administrative or jurisdictional office, if you believe that the processing of your personal data is in violation of the Regulations, you can at any time propose a complaint to the competent authority for the protection of personal data.

Right to request data copy in readable format. If you have an account on this site, you have left comments, sent communications, etc. you can request to receive a file exported from the site with the personal data we have about you, including the data you have provided, this in accordance with article 20, paragraph 1 of the Regulations. The file provided will be in a structured format, in common use, however readable by you.

 

Warning: you cannot request the cancellation of the data that we are obliged to keep for administrative, legal or security purposes, of which you can know its consistency.

 

DO YOU WANT TO REVOKE THE INFORMED CONSENT? HOW?

The procedures for withdrawing consent, whether total or partial, are very simple and intuitive, just contact the Data Controller.

 

YOUR DATA ARE PROTECTED IN A SAFE WAY, PERMANENTLY

The management of the security and confidentiality of your data falls into three specific areas: the website (or application), the server where this site is hosted, the custody (in local) of your data by the Manager. These are the procedures against data breaches in place.

Data protection within this site (application)

There are active protection systems against possible external malicious actions, in particular:

  • protection with SSL encryption protocol on the whole site. We encrypt personal data that are provided to us via web forms using updated standards to prevent third parties from intercepting information in transit
  • password authentication systems
  • anti-intrusion plugins are active, supported by systems that send alerts to the security manager
  • Firewall protections with automatic IP / user blocking are active, supported by an international black list
  • automatic verification and update devices for the site core and installed plugins are active
  • file check systems are active to check for possible malicious intrusion on the files that make up the core of the site and the plugins in use with related data. All file changes are automatically reported to the security manager
  • a data protection backup system is active for immediate restore in the event of a physical or technical incident

 

Data protection within servers (Hosting Service)

The Hosting Service manager on which this site is hosted guarantees the maximum reliability of the hardware and software systems for the protection of our and your data present on this site (web application).

To guarantee the highest level of security, the entire infrastructure is built with enterprise products and certified technology.

In particular, guarded intrusion detection systems H24 are present; Firewalls and specific protections related to software and hardware systems are active with automatic updates enabled and manned (H24) by system engineers. Anti-malware and brute force attack systems normally provided by the various software packages in use for the normal functioning of a server are normally active.

The Hosting Service manager has the following security certifications:

– ISO 9001-2008

– ISO 27001-2013

– Guarantee Mark issued by CISPE, (Cloud Infrastructure Services Providers in Europe), the new International Code of Conduct that promotes the harmonization of regulations on the security and protection of archived data.

 

Protection of data processed by the Data Controller / Manager

The processing of your data is carried out not only through computer systems such as the site, but also through our computers locally. To this end, specific security measures are observed to prevent the loss of data, illicit or incorrect use and unauthorized access to the same on the computer systems in use by the Data Controller / Manager and any internal or external agents necessarily involved in the procedures.

In short, we protect our systems using numerous levels of security:

– we use physical protection measures to guarantee the security of IT equipment

– We use a combination of software and devices to protect devices and networks from potential intruders.

– the rooms where the data are hosted are protected by intruder alarm systems with alert sending

 

 

HOSTING AND INFRASTRUCTURE SERVICES BACKEND

This type of service has the function of hosting data and files that allow this site to work, allow visibility on the Internet and provide a ready-to-use infrastructure to provide specific features essential for the proper and complete operation of this site (or application).

This site is hosted at the web servers of this hosting provider:

POWERIZE

Via Gioacchino da Fiore, 9
Catanzaro (Italy) – privacy policy
Web: www.powerize.it
Email: info@powerize.it
PEC: powerize@pec.aruba.it
Tel. 0961.777863

 

Your data are on an active server located in Italy, subject to European data processing legislation (GDPR)