Notice on personal data processing
Articles 13 and 14 Regulation (EU) 2016/679

In compliance with articles 13 (for data collected from the data subject) and 14 (for data not collected from the data subject) of Regulation (EU) 2016/679 (GDPR), the following information, which refers to the Users of this Website exclusively to the processing carried out through said Website and not through other websites potentially visited through links from the present, for which it is suggested to read the related notice given by the respective Data Controllers.
SUBJECT OF INFORMATION SHORT INFORMATION (+)EXTENDED INFORMATION
CONTROLLER RINO MASTROTTO GROUP S.P.A

email: info@rinomastrottogroup.com
rmgprivacy@rinomastrottogroup.com
RINO MASTROTTO GROUP S.P.A., with headquarters in Via dell’Artigianato no. 100, 36070 – Trissino (VI), in the person of its pro tempore legal representative, Mr. Rino Mastrotto, email: info@rinomastrottogroup.com rmgprivacy@rinomastrottogroup.com

The Controller reserves the right to appoint as the Processor of the personal data managed for the purposes of technical assistance, maintenance, technical management and the like of this Website a web agency, whose contacts may be communicated following a request to the addresses indicated above.

The Controller and the Processor process the Users' data also thanks to the Internal persons acting under their own authority and authorised, who have been specifically designated and provided with instructions for the correct processing of their personal data, even in oral form.
DATA PROTECTION OFFICER (DPO) Gianluigi Muscas

email: gianluigi.muscas@gmail.com
rmgprivacy@rinomastrottogroup.com
Gianluigi Muscas – Via S. Nazaro 34, 37129
– Verona (VR), email
gianluigi.muscas@gmail.com -
rmgprivacy@rinomastrottogroup.com
TYPE OF DATA PROCESSED AND SOURCES • Navigation (browsing) data
• Data provided voluntarily by the User, among which: Common data (identification, personal data, invoicing and similar data)

Sources: browsing, other sites, cookies and the like; public sources
We reserve the right to process navigation (browsing) data, as well as cookies, for which we invite you to read our dedicated Notice.

We may also process data provided voluntarily by the User, for example through the contact form or by sending an email, including common personal data (identifiers, personal data, invoices, and the like).

Data may also be voluntarily provided by the User or by subjects related to it. Other data may come from public sources, such as data processed in the frame of researches and data from company registration reports, public databases and the like
PURPOSE OF THE PROCESSING • Providing Users with the web services offered by the Web site Website Users’ data, as described above, will be processed as ruled by the GDPR, for the performance of the functions of the Website, with particular - but not exclusive - reference to the procedures described therein, data collection, contact form, possible registration / access to the reserved area, newsletter subscription (for which please, refer to the specific privacy notice), and the like.

In particular, the personal data provided to the Controller will be processed for the pursuit of the following purposes:
- to follow up the specific requests addressed to the Controller by the User through the Website and its communication tools (contact forms, information request forms and the like);
- for communications of informational purposes relating to the services of the same Controller, following the request for information via emails or by completing the contact form and other communication tools;
- for other accessory purposes or connected to those indicated above and, in any case, falling within the scope of the Website's activities
LEGALBASIS OF PROCESSING • consent
• fulfilment of a contractual or social contact obligation
• information
The processing of personal data is based on the right to information, on the fulfillment of contractual obligations or social contact, or where necessary on consent through the free and conscious compilation of the appropriate information fields in the dedicated form.
LEGITIMATE INTEREST OF THE CONTROLLER • Exercise of the rights of the information society
• Execution of the service by the Controller
The processing of personal data is also based on the legitimate interest of the Controller, such as the exercise of the rights in the context of the information society, the performance of the contractual service and the implementation of direct marketing operations.
MANDATORY NATURE OF DATA PROVISION • Some data are mandatory, others are optional, depending on the purpose of the processing that will be specifically indicated each time. The provision of data relating to the browsing by Users, for the purposes set out above, depends on the degree of privacy that the User has enabled or disabled through its browser. In some cases, disabling may impair browsing on this Website. For certain forms of this Website, the provision of browsing data and / or the use of technical cookies is mandatory for the proper functioning of the Website.

The provision of some personal data is in any case necessary for the structure of the Website and its procedures.

Any request for other optional data will be preceded by a special approval check.

The provision of all other data is optional, in accordance with the type of information that the User wishes to give to the Website.
CONSEQUENCES OF FAILURE TO PROVIDE • Failure to comply with the User’s requests submitted through the Website Failure to provide personal data prevents the Controller from complying with the User’s requests submitted through the Website.
POTENTIAL RECIPIENTS OF PERSONAL DATA • Communication: YES
• Recipients: persons authorized to process personal data, Processors, partner companies and consultants of the Controller
• Intra EU transfer: YES
• Extra UE transfer: YES (under Privacy Shield)
The data may be communicated to persons authorized to process personal data, Data Processors, companies connected to or controlled by the Data Controller, as well as to consultants, or also to third parties who operate, also in the name and account of the Controller, for the execution of the services related to the purposes indicated in this Privacy Notice. intra-EU and non-EU (in the latter case, it will only be subjects belonging to the Privacy Shield protocol).
STORAGE PERIOD • Until withdrawal
• Until the achievement of the purposes of data collection
The data provided by the Data Subject will be stored until the express withdrawal by the Data Subject, also through action on their browser, cleaning of cookies, express or otherwise expressed request.
The browsing data will be stored for the technical period necessary for the achievement of the purposes for which they were collected.
RIGHTS OF THE DATA SUBJECT Rights (articles 15 – 22 GDPR):
• access
• rectification
• erasure
• restriction
• portability
Forms and terms of operation: article 12 GDPR
By email:
rmgprivacy@rinomastrottogroup.com
Each Data Subject has the right of access, rectification, erasure (right to be forgotten), restriction, receiving notification in the event of rectification, erasure or restriction, portability, objection and not be subject to an automated individual decision, including the profiling, pursuant to articles from 15 to 22 of the GDPR.
These rights may be exercised in the forms and terms set forth in art. 12 GDPR, by written communication sent to the Controller via email to rmgprivacy@rinomastrottogroup.com.
The Controller will respond as soon as possible and in any case within 1 month from receipt of the request.
RIGHT OF WITHDRAWAL OF CONSENT • by email: rmgprivacy@rinomastrottogroup.com
• at the headquarters of the Controller
You may withdraw the consent at any time:
• sending an email to the address of the Controller rmgprivacy@rinomastrottogroup.com;
• sending an express request to the headquarters of the Controller.
COMPLAINTS Complaint (art. 77 GDPR):
• to the Data Protection Authority
Each Data Subject has the right to lodge a complaint pursuant to articles 77 and ff. of the GDPR to a supervisory authority, that is, for Italy, the Italian Data Protection Authority.
The forms, methods and terms for proposing complaints are foreseen and governed by the national legislation in force.
The claim is without prejudice to administrative and jurisdictional actions, which for the Italian State may alternatively propose to the same Italian Data Protection Authority or the competent Court.

RINO MASTROTTO GROUP S.p.A.
VIA DELL'ARTIGIANATO 100 - 36070 TRISSINO (VI) - P.IVA


close