INFORMATION ON PERSONAL DATA PROCESSING RELATING TO BROWSING AND USE OF COOKIES

Data Controller identity and contacts

Friulana Accessori s.r.l., hereafter also “Friulana Accessori” or “Data Controller”, with registered office in Via Colloredo, 120-124 – 33037 – Pasian di Prato (UD), can be contacted by email at info@friulanaaccessori.it, by PEC certified email at friulana@pec.it or by phone +39 0432 690623.

Purpose and legal basis

A. To check that services are functioning and allow browsing: the IT systems and software processes required for this website function acquire some personal data during normal operation. Transmission of this data is implicit in the use of Internet communication protocols. This data category includes IP addresses or domain names of computers and terminals used by users, URI/URL (Uniform Resource Identifier/Locator) addresses of requested resources, time of request, method used to submit request to the server, response file size, server response status code (successful, error, etc.) and other parameters relating to the user’s operating system and IT environment.
B. Statistical: information is acquired to understand how the visitor interacts with the site for the purpose of obtaining statistics.
C. Profiling: visitor tracking information is acquired to create a profile based on interests shown while browsing and then offer advertising aligned with revealed preferences.
D. Responding to communications sent via published contact data: when the visitor contacts the Data Controller via the contact details published on the website, the information transmitted spontaneously is collected so that the request can be processed and fulfilled.
E. Defensive purposes: the Data Controller may need to process personal data to manage disputes settled in and out of court.

Purpose

Legal basis (common data)

A.

Execution of contract

B.

Consent

C. 

Consent

D.

Implementation of pre-contractual measures;
Legitimate interest of the Data Controller to respond to enquiries received.

E.

Legitimate interest of the Data Controller to verify, exercise or defend one of its rights.

 

Cookies

Some of the purposes listed above may be pursued using temporary markers (cookies). The visitor can consult the table below for further information:

Retention period

Purpose

Length of retention period

A.

Refer to the Cookie section

B.

Refer to the Cookie section

C.

Refer to the Cookie section

D.

The period necessary to fulfill requests received and subsequent communications.

E.

10 years from definitive resolution of a dispute.

 

Nature of provision and consequences of refusal

Purpose

Nature

Consequences

A.

Necessary

Impossible to access and use the website.

 

B.

Optional

Impossible for the Data Controller to process information for statistical purposes.

 

C.

Optional

Impossible for the Data Controller to perform analytical processing to understand visitor preferences and for the visitor to thus receive advertising aligned with demonstrated interests.

 

D.

Necessary

Impossible to receive requested information.

 

E.

Necessary

Impossible to manage dispute.

 

 

Scope of communication

All data collected and processed may be communicated to internal staff authorized to process data as part of their respective tasks, and also the following categories of external subjects, in relation to the different purposes of processing:

Purpose

Categories of external recipients

A.

Subjects other than the Data Controller indicated in the Cookie section

B.

Subjects other than the Data Controller indicated in the Cookie section

C.

Subjects other than the Data Controller indicated in the Cookie section

D.

Companies within the same business group, agents, commercial consultants.

E.

Law firms; Judicial authorities.

 

Since data is also processed with IT tools, it may also be visible to individuals who provide assistance/maintenance to those systems.

Data transfer to a third country and/or international organization
The Data Controller does not transfer personal data outside of the European Economic Area.

Rights of Data Subjects Diritti degli interessati
The Data Subject has the following rights:

Access: it is possible to find out if personal data is being processed and if so, obtain access to the data and request a copy.
Rectification: it is possible to request that personal data is updated, corrected (if inaccurate) and completed if data is incomplete.
Erasure: it is possible to have personal data erased subject to certain conditions (contact the Data Controller for further information).
Restriction of processing: it is possible to request that data is marked as restricted, in order to limit future processing, subject to certain conditions (contact the Data Controller for further information).
Objection: it is possible to object to processing of personal data, on grounds connected to a particular situation, where data processing is based on legitimate interest or is necessary for performance of a task carried out in the public interest or the exercise of an official authority vested in the Data Controller.
Data portability: it is possible to receive personal data supplied to the Data Controller in a structured format and transmit it to another data controller if the processing is based on consent or contract and is performed by automated means.
Withdrawal of consent: it is possible to withdraw consent for the purposes that required it, without affecting the lawfulness of processing performed up until that moment.

Rights that are firmly exercisable with respect to the data processing performed are:

Purpose

Exercisable right

 

Access

Rectification

Erasure

Restriction of processing

Objection

Data portability

Withdrawal of consent

A.

X

X

X

X

 

X

 

B.

X

X

X

X

 

X

X

C.

X

X

X

X

 

X

X

D.

X

X

X

X

X

 

 

E.

X

X

X

X

X

 

 

 

To exercise the rights shown above, use the form available at the link https://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/1089924 and send it to this address: privacy@friulanaaccessori.it. The Data Subject may also contact the same address to request further details on the above information (eg. legitimate interest balancing test or the list of processing managers).

A complaint can be registered with a Data Protection Authority: for Italy this is the Italian Data Protection Authority (www.garanteprivacy.it).