PRIVACY POLICY

Privacy policy

PRIVACY POLICY AND INFORMATION ART. 13 GDPR 679/2016

This Privacy Policy is intended to illustrate the methods and purposes of the processing of personal data carried out by Sipol S.p.a. as data controller and governor of the www.sipol.com site and all services connected to it.

Sipol S.p.a. is committed to respecting the privacy of every User visiting the Website and uses its Services.

The Policy does not apply to third party sites which may grant active or passive access through links on the website of the owner.

The processing of personal data of Users is in full compliance with (EU) Regulations 2016/679.

  1. Identity and contact details of the Data Controller

Data Controlling is governed by Sipol S.p.a. - Via Leonardo da Vinci, 5 - 27036 Mortara (PV) - VAT number 01842120188 C.F. 01669490037 - email: privacy@sipol.com.

  1. Categories of personal data processed

The Data Controller may process the following categories of Users personal data:

  • Data communicated by the User: identification and contact data (mainly name, surname, company, telephone contacts and e-mail address) entered voluntarily by the User in case of completion of a data request form; the optional, explicit and voluntary supply of messages to the owner's contact addresses, as well as the completion and submission of any forms on the site, entail the acquisition of the sender's contact details, which will need answering, as well as any personal data included in the communications; if necessary, specific information will be published on web pages prepared for the provision of different services and different purposes.
  • Browsing data: during normal operation the computer systems and software procedures used to operate this site acquire some personal data which may be transmitted during the use of Internet communication protocols.

This category includes IP addresses or domain names of User’s computers and terminals, addresses in URI / URL notation (Uniform Resource Identifier / Locator) of the requested resources, time of request, method used to submit the request to the server, file size obtained in response, numerical code indicating the status of the response given by the server (success, error, etc.) and other parameters related to the operating system and the User's computer environment.

This data, which is necessary when using web services, is also processed for the purpose of:

  • obtaining statistical information on the use of services (most visited pages, number of visitors per hour or day, geographical areas of origin, etc.);
  • check the correct functioning of the services offered.
  • Cookies and other tracking systems: cookies will not be used- only technical cookies will be installed.
  1. Purposes and legal bases for the processing of personal data

The Owner processes User data to allow browsing the site and to respond to any request o9n behalf of the User.

Any further processing will only take place only on the basis of obligations established by law and on the basis of legitimate interest. For any other processing purpose, explicit consent is given by the User to the Data Controller.

SIPOL S.P.A. will only collect and processes personal data of Users for the following purposes:

  1. a)purposes strictly connected and instrumental to administrative and accounting management;
  2. b)purposes related to legal and fiscal obligations under laws, regulations, community regulations, as well as provisions issued by Authorities and by supervisory and governing bodies;
  3. c)allow the Users to browse the site;
  4. d)respond to requests from Users sent via site;
  5. e)allow Users to use the services on site;
  6. f)improve the presentation, features and functionality of the Website;
  7. g)Contact the Users by email offering them non-commercial and commercial offers and promotions, including regular newsletters with prior consent;

For the purposes referred to in letters (a) to (f), SIPOL S.P.A. will process Users' personal data on the basis of the requests presented by them and of their interest.

For the purposes referred to in letter (g) Sipol S.p.a. will process User’s personal data only at their consent.

  1. Data storage times

Any personal data processed by SIPOL S.P.A. on the basis of the User's consent, will be stored for the time strictly necessary to achieve the purposes for which it was originally collected and, in any case, will no longer be processed as a result of revocation of given consent.

If any personal data processing should instead, take place in fulfilment of legal, fiscal or judicial obligations, such data may be stored up to a maximum of ten (10) years.

Browsing data will not persist for more than seven days (except for any need to ascertain criminal offense by judicial authorities).

  1. Conferment and treatment method

Any personal data will be processed through the aid of paper and computerized tools.

The Data Controller will take all necessary technical and organizational measures to guarantee high level security in order to minimize the risk of destruction or loss, even accidental, of any data, unauthorized access or non-processing- whether permitted or not in accordance with the purposes indicated in this document, according to articles 24, 25 and 32 of the GDPR.

However, since it is not possible to guarantee that the measures taken for the security of the Site and the transmission of data is such as to exclude any risk of unauthorized access or loss of data, we urge the User to make sure that his computer be equipped with updated antiviruses software for data network protection and that your Internet service provider has in turn taken appropriate measures for the security of data transmission.

  1. Recipients of personal data - Communication and disclosure of personal data

Personal data processed will be communicated to well-defined individuals. On the basis of the roles and tasks performed, internal and external personnel is entitled to treatment within the limits of their powers and in accordance with the instructions given to them by the Owner. Such data can be communicated to legitimate subjects such as:

IT equipment maintenance companies, professional firms / companies providing accounting, tax offices, free-lance / occasional workers, agents and individuals whose law provisions or EU regulations recognize the right to access data.

  1. Transfer of personal data abroad

The Data Controller will not transfer any data outside national territory.

  1. Processing of personal data of those under age.

The use of the Site and the Services is reserved only for Users over 18 years of age. Sipol S.p.a. it does not process personal data of those under age.

  1. Rights of an interested party

The Data Controller is freely contacted for any request related to this Policy by writing to privacy@sipol.com.

The User may, at any time, exercise the rights referred to in Articles 15/16/17/18/20/21/22 of the GDPR 679/16.
The aforementioned rights may be exercised by sending a specific request to the Data Controller through the contact channels indicated in this document.

  1. Links to third-party sites

Sipol S.p.a. will under no any circumstances be held responsible for processing carried out through or in relation to such third-party sites.

Users are therefore invited to pay the utmost attention on the conditions of use and privacy and cookie policies published on the portals visited.

  1. Changes and updates

This Policy is updated and applicable as from 25/05/2018.

Any further modification will be communicated to Users with the means and time deemed most appropriate by the Owner, in particular through the publication on the Site.