In compliance with the obligations deriving from the national (Privacy Code) and community (European General Regulation No. 679/2016) regarding the protection of personal data, Hypertec Solutions S.r.l. respects and protects the privacy of visitors and users.
This privacy statement applies both to the collection of information from the website and other channels.
1 – LEGAL BASIS OF THE PROCESSING
By using or consulting this site, visitors and users explicitly approve this privacy statement and consent to processing their data in relation to the methods and purposes described below, including any disclosure to third parties if necessary to provide a service.
The provision of data and, therefore, consent to collecting and processing data is optional. The User can deny consent and can revoke a consent already provided at any time. However, denying consent may make it impossible to provide some services, and the browsing experience on the site would be compromised.
The registered customers’ data are processed based on the relationships in progress with Hypertec Solution s.r.l when the contract was concluded.
2 – PURPOSE OF THE TREATMENT
The processing of personal data means registration, storage, organization, consultation, selection, extraction, comparison, processing, use, modification, interconnection, blocking, communication, cancellation, and destruction, transfer or dissemination, or the combination of two or more of such operations.
The processing of the data collected by the site, in addition to the purposes connected, instrumental, and necessary for the provision of the service, is aimed at the following purposes:
2.1 – STATISTICS
Collection data and information in an exclusively aggregated and anonymous form to verify the site’s correct functioning and improve the online store and the platform.
None of this information is related to the natural person-User of the site. It does not allow identification in any way.
2.2 – SAFETY
Collection of data and information to protect the security of the site and users (spam filters, firewalls, virus detection) and to prevent or unmask fraud or abuse to the detriment of the website.
The data are recorded automatically and may also include personal data (IP address) following the laws in force on the subject that could be used to block attempts to damage the site itself or cause damage to other users, or in any case, harmful activities – or constituting a crime. These data are never used for the identification or profiling of the User and are periodically deleted.
2.3 – MARKETING / ADVERTISING
Collection of data and information in general and in particular on the User’s orientations and preferences; send information and advertising material, including from third parties; send commercial communications, including interactive; carry out direct sales or placement of products or services; process studies and statistical research on sales, customers and other information, and possibly communicate the same to third parties; transfer to third parties the data collected and processed for commercial purposes including for sale or attempted sale, or for all those legitimate commercial and/or statistical purposes, publish reviews of our services.
Such data, possibly including the IP and other identification data, allow third parties to send advertisements relevant to the User’s interests through this site to the User’s browser and measure the effectiveness of advertising messages. These advertisements can also be presented in other areas of the advertising circuit (remarketing or retargeting).
The advertisements published on the site are provided based on agreements with third-party companies, which use data collected by them directly. For this collection, our site acts as a mere intermediary. These data do not include the name, address, email address, or telephone number. They are used to provide personalized advertisements on products and services. For more information on these services, please read the information provided by third-party companies, which also indicate the options to disable the collection of information by these companies possibly.
Further information on the following web pages:
- Google advertising circuit: https://www.google.com/policies/technologies/ads/
- Facebook advertising circuit: https://www.facebook.com/about/privacy/
2.4 – SHOPPING / SUPPLY OF SERVICES
Collection of data to manage orders, provide products and services, process payments, communicate with users about orders, products, services, and promotional offers, update registers and, in general, manage user accounts, show content such as lists customer wishes and reviews and recommend products and services that may be of interest to users.
2.5 – ACCESSORY ACTIVITIES
Communicate the data to third parties who perform functions necessary or instrumental to the operation of the service and allow third parties to carry out technical, logistical, and other activities on our behalf.
This site uses suppliers to carry out certain activities, such as fulfilling orders, delivering packages, sending traditional mail, analyzing data, providing marketing assistance, making payments with credit cards, and providing services to customers.
Suppliers have access only to personal data necessary to carry out their duties and undertake not to use the data for other purposes. They are required to process personal data following current regulations.
This category of data is kept only for the period of time necessary to provide the service.
3 – DATA COLLECTED
This site collects user data in two ways.
3.1 – DATA COLLECTED IN AN AUTOMATED MANNER
While users are browsing, the following information can be collected and stored in the site log files:
- Internet protocol (IP) address;
- Browser type;
- Parameters of the device used to connect to the site;
- Name of the internet service provider (ISP);
- Date and time of visit;
- The web page of origin of the visitor (referral) and of exit;
- Possibly the number of clicks.
These data are used to analyze user trends, collect data in aggregate form, and administer and ensure security. They are in no way attributable to the identity of the User.
3.2 – DATA PROVIDED VOLUNTARILY
The site may collect other data in the event of voluntary use of services by users, such as commenting, communication (chat, contact forms, and email sending), purchase (cart) services:
- name and surname;
- date of birth;
- email address;
- physical residence address;
- VAT number and / or tax code;
- credit card and / or current account and / or IBAN number;
- company and headquarters;
- image (avatar);
- social profiles;
- geographical location.
These data are provided voluntarily by the User when requesting the service or entering the comment and will be used exclusively to provide the requested service and processed only for the time necessary to provide the service.
The email address is also used to send promotional material to users who are already customers, therefore in the context of an existing business relationship. The customer can always oppose the sending of such communications. For users who are not yet customers, the sending of promotional material is subject to the collection of consent, which can be revoked later.
Tax data are necessary to use the services provided for fee and billing purposes.
The data collected by the site is not provided to third parties unless it is a legitimate request by the judicial authority and only in the cases provided for by law. However, the data may be provided to third parties to provide a specific service requested by the User for tax purposes, security checks, or site optimization.
4 – DATA RETENTION PERIOD
The collected data are processed for the time necessary for the purposes they were collected, and in any case, no later than the time prescribed by law.
The data necessary for tax purposes are kept until the assessments relating to the corresponding tax period are defined, therefore for at least ten years and more if the related annuity is not yet prescribed for tax purposes.
Upon expiry, the data will be deleted or anonymized unless other purposes for conserving the same (e.g., guarantee supply obligations, tax obligations).
5 – TRANSFER OF THE COLLECTED DATA TO THIRD PARTIES AND NON-EU COUNTRIES
The personal data of users/customers is an essential component of our work. However, this site, in carrying out its activities and performing the services requested by users, may have to transfer some data to third parties who perform specific instrumental tasks connected to those of the site, including order fulfillment, mail delivery, data analysis, marketing assistance, credit card payments, etc. The transfer to third parties is not part of our activities. Suppliers have access only to the data necessary for the performance of their specific task. They are required to treat them in accordance with this Notice.
In the case of a company or production unit transfer, the customers’ data are part of the company assets that are transferred but remain subject to the commitments provided for in this Notice, except for requests for new consent.
If the data is transferred to companies located outside the European Union (for example, Google, Facebook, and Microsoft
for LinkedIn and Skype), we make sure that they are transferred in compliance with the regulations on the subject and the rules set out in the General Regulations to protect personal data. The transfer is authorized on the basis of specific decisions of the European Union and the Guarantor for the protection of personal data http://www.garanteprivacy.it/home/provvedimenti-normativa/normativa/normativa-comunitaria-e-intenazionale/trasferimento- of-data-to-third-countries, in particular the decision 1250/2016 (Privacy Shield http://eur-lex.europa.eu/legal-content/IT/TXT/?uri=CELEX%3A32016D1250 – here the page information from the Italian Guarantor http://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/5306161), for which no further consent is required.
With the activation of the contract, the User expressly agrees to the transfer of data in the hypotheses indicated above.
6 – COOKIES
This site uses the following categories of cookies:
Cookies in this category include both persistent cookies and session cookies; they distinguish between connected users avoiding that a service is provided to the wrong User and therefore are the consequence of an express request from the User and are also used for security of the site the users themselves. In the absence of these cookies, the site or some portions of it may not work correctly. Cookies in this category are always sent from our domain, and no consent is required for them.
Cookies in this category are used to collect information on the correct use of the site and user behavior for statistical analysis purposes, improve the site, and simplify its use. This type of cookie collects anonymous information on user activity, how they arrived at the site, and the pages visited. Cookies in this category are sent from the site itself or third-party domains.
This site also acts as an intermediary for third-party cookies, used to provide additional services and features to visitors and improve the site’s use, such as buttons for social media. Some of these cookies are profiling, i.e., used by third parties to collect information on user behavior and interests to provide personalized advertising.
6.2 – REFUSAL OR REVOCATION OF CONSENT TO COOKIES
DISABLING COOKIES COULD PREVENT THE CORRECT USE OF SOME FUNCTIONS OF THE SITE, in particular, the services provided by third parties may not be accessible, and therefore may not be viewable:
- YouTube videos or other video sharing services
- the social buttons of social networks
- Google maps
Instructions for disabling cookies via browser and for the eventual elimination of cookies already present on the User’s device can be found on the following web pages:
- Mozilla Firefox https://support.mozilla.org/it/kb/Attivare%20e%20disattivare%20i%20cookie
- Windows Internet Explorer https://support.microsoft.com/en-us/help/278835/how-to-delete-cookie-files-in-internet-explorer
- Google Chrome https://support.google.com/chrome/answer/95647?hl=it
- Opera http://help.opera.com/Windows/10.00/it/cookies.html
- Apple Safari https://support.apple.com/it-it/HT201265
You can find more information about cookies and how to manage them by consulting the website www.aboutcookies.org.
6.3 – THIRD-PART COOKIES
Generally, the tracking of users does not involve identification of the same, unless the User is already registered for the service and is not already logged in, in which case it is understood that the User has already expressed his consent directly to the third party to the when registering for the relevant service (e.g., Facebook).
6.3.1 – GOOGLE INC.
– Google Analytics: web analysis tool used to examine the use of the site by users, compile reports on-site activity and user behavior, check how often users visit the site, how the site is tracked, and which pages are visited most frequently. Google combines the information with information collected from other sites to create a comparative picture of the use of the site compared to other sites in the same category.
Collected data: browser ID, date and time of interaction with the site, page of origin, IP.
Place of data processing: USA.
The data collected do not allow the personal identification of users. They are treated in aggregate and anonymized form (truncated to the last octet). They are not crossed with other information relating to the same person. According to a specific agreement, Google Inc. is prohibited from crossing such data with those obtained from other services.
– DoubleClick: subsidiary of Google Inc. that provides online advertising services tailored to the behavior and interests of users. Cookies (DART cookies) are set when accessing a site that contains DoubleClick advertising (AdSense). They are used to publish advertisements tailored to the User’s interests on this site and prevent the advertisements from being repeated.
Collected data: user behavior, starting and landing pages on the site, exit pages, IP address, browser data, device data, operating system, provider, date and time,
Place of data processing: USA.
DoubleClick cookies do not contain information that allows the personal identification of users. Sometimes the cookie contains an additional identifier used only to identify an advertising campaign to which a User has been exposed previously.
– Google Maps: Google service that offers street maps and localization for urban businesses. Set cookies on map pages.
Collected data: number and behavior of map users, information relating to the page viewed, display preferences (zoom level, etc.).
Place of data processing: USA.
– Youtube: platform, owned by Google, for sharing videos. Cookies are set when the page containing the embed is accessed and when the video is started and do not allow the User’s identification unless he is already logged into the Google profile, in which case it is intended that the User has already given consent directly to Google.
For some videos on the site, the “advanced privacy https://support.google.com/youtube/answer/171780?expand=PrivacyEnhancedMode#privacy (no cookie)” option has been activated, which does not provide for the storage of visitor information unless they voluntarily play the video.
7 – SECURITY MEASURES
The Data Controller processes visitor/user data lawfully and correctly, adopting the appropriate security measures aimed at preventing unauthorized access, disclosure, modification, or unauthorized destruction of data, as well as illicit use of data. The processing is carried out using IT and/or telematic tools, with organizational methods and with logic strictly related to the purposes indicated. The data are stored and stored in secure structures with limitations on access and verification of personnel. Access to information is strictly limited to authorized personnel.
The website is constantly monitored to check for any security breaches and to ensure that the information is safe.
In addition to the Data Controller, in some cases, categories of employees involved in the organization of the site (administrative, commercial, marketing, legal, system administrators) or external subjects (such as suppliers of third party technical services, postal couriers) may have access to the data. Hosting providers, IT companies, communication agencies).
It is important that you adopt suitable protections against unauthorized access to your password and to your computer. Always make sure you are logged out when using a computer shared with other users.
8 – USER RIGHTS
Pursuant to art. 7 of Legislative Decree June 30, 2003, n. 196 http://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/1311248 and the General Regulations for the protection of personal data, the User can, according to the methods and within limits provided by current legislation:
Object in whole or in part, for legitimate reasons, to the processing of personal data concerning him for the purpose of sending advertising or direct sales material or for carrying out market research or commercial communication;
Request confirmation of the existence of personal data concerning him;
Know its origin;
Receive intelligible communication;
Have information about the logic, methods, and purposes of the processing;
request the updating, rectification, integration, cancellation, transformation into anonymous form, blocking of data processed in violation of the law, including those no longer necessary for the pursuit of the purposes for which they were collected;
in cases of consent-based processing, receive only the cost of any support, its data provided to the owner, in a structured and readable form by a data processor and in a format commonly used by an electronic device
the right to lodge a complaint with the Supervisory Authority (Privacy Guarantor – link to the Guarantor’s page http://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/4535524);
As well as, more generally, exercise all the rights that are recognized by the current provisions of the law.
Requests should be addressed to the Data Controller.
9 – SUBJECTS OF THE TREATMENT
The data controller pursuant to the laws in force is Hypertec Solution s.r.l., with a registered office in Via Venezia 52 – 47521 Cesena (FC), which can be contacted at the email firstname.lastname@example.org or at the specified address.
The data processor pursuant to the laws in force is Hypertec Solution s.r.l., who can be contacted at the email email@example.com or at the specified address for any questions or doubt.
10 – UPDATES