Hereinafter the terms “company” and “data controller” will be used to identify Azienda Agricola Monte del Frà s.s., based in Strada Custoza, 35 – Sommacampagna 37066 (VR) Italy.
This document describes:
(1) how the Website is managed with reference to the processing of personal data of users who consult it.
This is the information provided pursuant to art. 13 of EU Reg. 679/2016 to those who interact with the company’s web services, accessible electronically from the following addresses:
https://www.montedelfra.it (Website) home page of the official company site.
The information is provided only for the Website and not for other websites that may be consulted by the user through links or content from other addresses.
(2) the data processing regarding suppliers and customers of the data controller.
THE DATA CONTROLLER
Following consultation of the Website and/or the conclusion of a contract to which the data subject is party and/or the request of the data subject prior to entering into a contract, data relating to identified or identifiable persons may be processed. The data controller is Azienda Agricola Monte del Frà s.s., better identified in the introduction.
TYPES OF DATA PROCESSED
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. These data are not collected to be associated with identified data subjects, but which by their very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users who connect to the Website, the addresses in the Uniform Resource Identifier (URI) notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user’s computer environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the Website and to check its correct functioning and are deleted about a month after processing.
Data provided voluntarily by the user
The optional, explicit and voluntary sending of e-mails to the addresses indicated on this site entails the subsequent acquisition of the sender’s address, necessary to respond to the same requests, as well as any other personal data included in the message.
The personal data provided by users who submit requests to send information are used for the sole purpose of performing the service or provision requested.
Subscription to the Wine Club services involves the acquisition of the personal data indicated in the registration form, as well as any additional data that may later be provided voluntarily by the user.
The personal data provided by users who submit a request for registration to the Wine Club services are used for the sole purpose of allowing the execution of the services indicated on the dedicated page of the Website: https://www.montedelfra.it/wine-club/
Specific summary information will be progressively reported or displayed on the pages of the site set up for particular services on request.
Whatsapp Toggle data
When using the Whatsapp Toogle (which connects the user’s device to Whatsapp (iOS / Android) or to Whatsapp Web) involves the acquisition of the user’s telephone number (number associated with the device he is using) if he decides to interact with the data controller through the tool.
|Personal details and fiscal data|
PURPOSE OF THE PROCESSING
The processing is aimed at the correct and complete performance of the requests of the data subject prior to entering into a contract, as well as, where required, the sending of commercial and informative communications. The basis of the processing are (i) the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract, (ii) the compliance with legal obligations to which the controller is subject, (iii) the legitimate interest pursued by the controller to provide information / service updates to data subjects, (iv) the consent of the data subject with reference to the sending of commercial communications.
TERMS OF DATA PROCESSING
|The Data Controller will process personal data for the time necessary to fulfill the aforementioned purposes and in any case for no more than 2 years from the acquisition of the data for the purposes of the processing.
With reference to registration with the Wine Club services, it is always possible for the recipient to terminate the processing in the manner indicated at the bottom of each information communication sent or by sending an email to email@example.com.
|The Data Controller will process personal data for ten years after the fulfillment of the contract. This period could be longer if there are reasons connected to the exercise or defense of a right in court or to protect the rights of another natural or legal person, or if there is (or is introduced) a legal obligation of any nature that imposes a retention period longer than that indicated above
With reference to the information communications sent on the basis of the legitimate interest of the Data Controller, it is always possible, for the data subject, to end the processing in the manner indicated at the bottom of each information communication sent or by sending an email to firstname.lastname@example.org.
OPTIONAL SUBMITTAL OF DATA
|Apart from what is specified for browsing data, the user is free to provide or not personal data. Failure to provide them may make it impossible to obtain the service requested.
|The provision of personal data not pertaining to special categories is strictly necessary for the purpose of carrying out the contractual relationship with the data controller.
Any refusal by the data subject to provide personal data could make it impossible to carry out / fulfill the contractual relationship.
METHODS OF PROCESSING
Personal data are processed, by means of electronic tools and paper archives, by the data controller and by duly appointed data processors for the correct fulfillment of the purposes indicated, as well as with the use of security measures to guarantee the confidentiality of personal data and to avoid undue access to subjects unauthorized. The data controller does not automated decision-making, including profiling, to achieve the purposes set out in this document.
PLACE OF DATA PROCESSING
The processing related to the web services of this Website takes place at the server farm chosen by the data controller within the European Union and is only handled by technical staff of the office in charge of processing. No personal data deriving from the web service is communicated or disseminated.
RIGHTS OF THE DATA SUBJECT
Pursuant to art. 15 – 22 GDPR, the data subject has the right to access to his personal data or the rectification or erasure of the same or the restriction of the processing concerning him/her, he/she has the right to object to data processing, in addition the right to data portability. The request can be made by email (email@example.com) or by registered mail with the subject: “request for access to data by the data subject”, specifying in the request the right that the data subject wishes to exercise (erasure, rectification, portability), together with a valid email address to which the reply can be delivered. The data controller or anyone appointed by the same, will proceed to satisfy the request within 30 days from the date of receipt. If the response is complex, the time could be extended by a further 30 days, upon timely communication to the interested party.
If he/she deems it appropriate to assert his/her rights, the data subject has the right to lodge a complaint with the competent supervisory authority, Autorità Garante per la Protezione dei Dati Personali based in Palazzo Monte Citorio 121, Rome (http://www.garanteprivacy.it).
Azienda Agricola Monte del Frà may interact with customers, suppliers and third parties also through social networks.
In this regard, the user is reminded that the personal data he or she personally entered on these social networks are found on pages / IT environments managed by the social network itself and that therefore there are other Data Controllers who do not act under the responsibility of Azienda Agricola Monte del Frà.
With regard to Facebook, the user is referred to the conditions of use (https://www.facebook.com/legal/terms?locale=en_EN).
The data personally entered by the users on the social networks in which Azienda Agricola Monte del Frà operates and / or on the connected messaging services will be processed only for the purposes related to the sharing of events and activities carried out by our company and / or to respond to requests made by the users.
The data will be processed in paper and / or electronic mode only by duly appointed personnel or by subjects appointed as data processors.
The data will be disclosed to third parties only if necessary to fulfill the aforementioned purposes. The data could be transferred (also to third countries) as provided in the Conditions and in the Data Regulation of the single social network used. The data will be processed for the time necessary to achieve the aforementioned purposes.