top of page

PRIVACY POLICY

Notice pursuant to Article 13 of Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR)

A. Data Controller and Contact Details

The Data Controller is GUSMINI S. LANIFICIO FELTRIFICIO S.R.L., with registered office at Via Ulisse Bellora, 91 – 24020 Cene (BG), Italy.

 

B. Categories of Personal Data Processed

While browsing the Website or using the Services, the following categories of personal data may be processed:

 

1. Browsing Data

Information systems and software procedures used to operate the Website acquire, in the normal course of operation, certain personal data whose transmission is implicit in the use of Internet communication protocols.This category includes, by way of example, IP addresses, domain names of the devices used by users, URI (Uniform Resource Identifier) addresses of requested resources, time and method of requests, size of files obtained in response, and other parameters relating to the user’s operating system and IT environment. Such data are processed for the following purposes:

  • To obtain anonymous statistical information on the use of the Website;

  • To monitor the proper functioning of the Website;

  • To detect anomalies and/or abuse.

Browsing data are deleted immediately after processing, unless their retention is necessary for the establishment, exercise, or defence of legal claims or for the investigation of cybercrimes.

 

2. Data Voluntarily Provided by the User

Personal data voluntarily provided by users through the contact forms or other sections of the Website in order to request information or access specific services (“Services”).

If users provide personal data relating to third parties, they warrant that such data have been lawfully obtained and that the processing complies with applicable data protection legislation, assuming full responsibility in this regard.

 

C. Purposes and Legal Bases for Processing

 

Personal data are processed for the following purposes and on the following legal bases:

 

1. Provision of Requested Services

  • Purpose: To allow users to access and use the Website and related Services;

  • Legal basis: Performance of a contract or pre-contractual measures at the data subject’s request (Article 6(1)(b) GDPR).

 

2. Compliance with Legal Obligations

  • Purpose: To comply with applicable laws, regulations, and orders from competent authorities;

  • Legal basis: Compliance with a legal obligation (Article 6(1)(c) GDPR).

 

3. Statistical Analysis and Service Improvement

  • Purpose: To carry out anonymous statistical analyses to monitor and improve the Website and Services;

  • Legal basis: Legitimate interest of the Data Controller (Article 6(1)(f) GDPR).

 

The provision of personal data is optional; however, failure to provide such data may result in the inability to provide the requested Services.

 

D. Data Retention Period

Personal data will be retained for the time strictly necessary to achieve the purposes described above and, in any event, no longer than the periods indicated in the Cookie Policy or as required by applicable law. Upon expiry of the retention period, personal data will be permanently deleted or anonymised.

 

E. Recipients of Personal Data

Personal data may be disclosed to: Authorised personnel: Employees and collaborators acting under the authority of the Data Controller and subject to confidentiality obligations; Data Processors: Third-party service providers carrying out technical and organisational activities on behalf of the Data Controller (the updated list is available upon request); Public authorities or bodies: Where required by law or upon lawful request.

 

F. Transfers of Personal Data Outside the EEA

No transfers of personal data outside the European Union are currently envisaged. Should such transfers become necessary, they will take place in compliance with the GDPR, by adopting appropriate safeguards such as Standard Contractual Clauses approved by the European Commission or relying on an adequacy decision issued by the European Commission.

 

G. Data Subject Rights

Data subjects have the right to: Obtain confirmation as to whether or not personal data concerning them are being processed and access such data (Article 15 GDPR); Request rectification (Article 16 GDPR) or erasure (Article 17 GDPR) of their personal data; Request restriction of processing (Article 18 GDPR) or object to processing (Article 21 GDPR); Receive their personal data in a structured, commonly used and machine-readable format and transmit those data to another controller (Article 20 GDPR – data portability); Lodge a complaint with the competent supervisory authority, in particular in the Member State of their habitual residence, place of work, or place of the alleged infringement (Article 77 GDPR). In Italy, the competent authority is the Garante per la Protezione dei Dati Personali.

To exercise the above rights, data subjects may contact the Data Controller at: info@gusmini.com

 

H. Amendments to this Privacy Policy

Any amendments to this Privacy Policy will be published on the Website and will become effective upon publication. Users are encouraged to review this section periodically to remain informed of any updates.

bottom of page