Privacy
New Privacy GDPR In accordance with art. 13 of Regulation EU 2016/679
The protection of your Privacy is one of our main goals.
Grifo enological machines Snc di Marchetti Giordano C. settled in Via Mantova, 1, Piadena Drizzona (Cr) CAP 26034 is constantly committed to protect the online privacy of its customers, relying on Mygladix SRL registered in via Enrico Fermi 5 Manerbio (BS) CAP 25025. This document will allow you to know our privacy policy, adapted to the new law called GDPR (General Data Protection Regulation), to understand how your personal information is handled when using our services and to allow you, if necessary, to give a consent to the processing of your personal data expressed and aware in the sections of the site where you are required to provide the data Personal. We remind you that in the various sections of the websites grifomarchetti.it (hereinafter “Site”) where we collect your personal data are published informative specifications within the meaning of art. 13 of Regulation EU 2016/679 (hereinafter ‘Regulation”) for its necessary vision before the supply of the requested data. The informations and data provided by you or otherwise acquired as part of the registration to the various services of Grifo Marchetti, (such as: Registration of domain names, provision of email accounts, provision of certified email accounts (PEC), provision of web space, provision of hosting services, provision of other ancillary services, hereinafter, altogether, “Services”) shall be treated in accordance with the provisions of the regulation and the confidentiality obligations which inspire the activity of Grifo Marchetti.
Mygladix platform means all platforms of all customers managed by Mygladix.
According to the rules of the regulation, the treatments carried out by Grifo Marchetti. They will be governed by the principles of lawfulness, correctness, transparency, limitation of purpose and preservation, minimization of data, accuracy, integration and confidentiality.
1. Owner and Data Protection Officer
The owner of the treatment done through the site is Grifo Marchetti Snc, the responsible is also Mygladix Srl, which undertakes not to make any use other than that provided for the fulfilment of the contract. In particular, by subscribing to this Agreement, pursuant to article 28 of the Privacy Regulation, Grifo Marchetti, having deemed Mygladix a suitable and reliable subject, appoints Mygladix responsible for the processing of personal data. Mygladix accepts this nomination at the same to its subscription, confirming the direct and thorough knowledge of the obligations with it assumed and guaranteeing to possess capacity, experience and competences, also techniques for Play that role. In particular, Mygladix is committed to treating personal data in the following instructions:
1. Do not give them up or make them available to third parties, in a partial or total;
2. Do not use them for any purpose, except for statistical purposes and improvement of the MYGLADIX ® platform;
3. To treat them adequately, relevant and in accordance with the principle of data minimization, and in a lawful, fair and transparent manner, in accordance with the provisions of existing legislation on the processing of personal data;
4. Ensure confidentiality, integrity and availability, including the safety profile as governed by art. 32 of the Privacy policy, excluding the Responsibility in the head of Mygladix of the contents of the databases and of the personal data and of the use of the same by the customer;
5. Ensure Adequate protection of the rights of the person concerned, supporting the customer in order to fulfil his obligation to comply with the requests of the interested parties for the exercise of their rights, even if such requests are received by Mygladix who must give timely written communication to the customer;
6. To use its organizational structure, identifying and designating the persons authorized to carry out operations of processing of the personal data and of the customer’s databases, identifying the authorization scope, providing the necessary instructions on Methods of treatment and providing for their training of interested parties;
7. To manage all the obligations related to the appointment to the system administrator of its personnel in the management and maintenance of the platform managed by Mygladix, in accordance with the provisions of the guarantor for the personal data of the 27 November 2008;
8. By virtue of the general authorization conferred by the customer with this agreement, make use of its own sub-managers appointed in writing, by imposing, by means of a contract or other legal act, the same data protection obligations contained in this agreement, providing in particular sufficient guarantees of the implementation of appropriate technical and organizational measures to meet the requirements of the Privacy regulation, but remaining wholly responsible Mygladix towards the customer of the fulfilment of the obligations of its sub-managers;
9. By written request, make available to the customer the list of the sub-managers optionally appointed and inform the customer of any modifications concerning the addition or replacement of the subjects for this purpose identified, thus giving the customer the opportunity to oppose such changes.
10. Use computer and/or telematics tools with CPUs allocated in the territory of the European Union in order to avoid cross-border transfer of personal data, adopting logic strictly related to the purpose of the performance that Mygladix is obliged to make the customer and in strict compliance with the existing provisions in this field, also in relation to data security;
11. Do not carry out any transfer of personal data and databases outside the EU and to countries which do not guarantee an adequate level of protection in the absence of the customer’s written authorization, being understood that if the customer authorizing such transfer, Mygladix shall ensure the conformity of the treatment with the standard contractual clauses approved by the European Commission;
12. Ensure a risk-appropriate level of safety by adopting appropriate technical and organizational security measures in line with the provisions of the Privacy regulation;
13. Where necessary, cooperate with the supervisory authority and make available to it the documentation which may be required during checks and/or accesses of the authority, and shall also inform the customer thereof;
14. Establish and maintain the register of treatment activities within the meaning of art. 30 of the Privacy policy;
15. Make available to the customer the name and contact information of their responsible for the protection of data eventually designated pursuant to art. 37 and SS. of the Privacy policy;
16. For aspects of its competence, provide technical support to the customer in relation to the obligations inherent in: (i) Treatment safety, (ii) notification of a breach of personal data to the supervisory authority pursuant to art. 33 of the Privacy Policy, (iii) communication of a Violation of personal data to the person concerned pursuant to art. 34 of the Privacy Policy, (iv) Impact assessment on data protection pursuant to art. 35 of the Privacy Policy, (v) prior consultation pursuant to art. 36 of the Privacy policy;
17. In the event of an accidental or unlawful breach of the client’s Database, which entails the destruction, loss, alteration, unauthorized disclosure or access to the personal data transmitted, stored or otherwise processed, proceed to:
a. Inform the customer, as soon as possible and in any case within 48 hours of knowledge;
b. Provide the customer with appropriate informations about the nature of the violation, the categories and approximate number of data and interested parties involved, as well as the likely consequences of the infringement and the measures taken or proposed to be adopted to put Remedy the infringement or mitigate its injurious effects;
c. If it is not possible to provide the above specific information within the prescribed period, please indicate to the customer the reasons for the delay, providing initial information regarding the breach found and useful to the customer for the purposes of Notification.
18. Provide the customer with all the information relating to the technical, organizational and safety measures adopted, which are actually necessary for the normative compliance and which should be formally requested in writing by the customer for the fulfilment of Legal obligations and to demonstrate the adoption of appropriate technical and organizational measures. Mygladix will also contribute to the inspection and audit activities that the customer intends to carry out, either directly or through another person from this appointee-whose costs are borne entirely by the customer-it being understood that such activities may not be carried out by the customer with a frequency exceeding 2 (two) times for each year of the contract duration and must be agreed with Mygladix at least 15 days notice, while safeguarding the normal operation of Mygladix;
19. Should it be noted that an instruction given by the customer violates the applicable legal provisions, promptly inform the customer thereof;
20. Ensure that the treatment to which it is provided is in compliance with the obligations laid down in article 32 of the Privacy policy and the guarantor’s measures;
21. Ensure that the personal data will be kept and checked, also in relation to the knowledge acquired on the basis of technical progress, the nature of the data and the specific characteristics of the treatment, so as to minimize the risks of destruction or Loss, even accidental, of the data itself, unauthorized access or treatment not permitted or not in conformity with the purpose of the collection, by adopting appropriate and preventive security measures;
22. Take measures to avoid unauthorized physical access, damage and interference to personal data processed in the course of its assignment, as well as an adequate and safe operation of data processing facilities, through the adoption of physical security measures and environment as well as suitable protection tools against malware and data loss;
23. Adopt procedures for testing, verifying and assessing regularly the effectiveness of technical and organizational measures in order to ensure the safety of treatment.
Mygladix will retain the personal data in a form that permits the identification of the interested parties for a period not exceeding that necessary for the attainment of the purposes referred to in this agreement and in any case respecting the principle of Limitation of conservation, subject to compliance with the regulations in force for fiscal, accounting and legal documents. The designation a manager of Mygladix has duration equal to the duration of this agreement and will be deemed revoked upon termination of the contract, for any cause that happens and The personal data of the customer, as well as copies of the same as may be held by Mygladix, will be definitively eliminated by the Mygladix information system (including any paper archives), with the exception of further legal obligations, as Foreseen in the following art. 2.7 of this agreement.
The owner’s structure is provided with a Data protection officer (or “Dpo”). The DPO is available for any information inherent the Processing of personal data of Grifo Marchetti, including the list of managers who deal with data. You can contact the DPO by writing to: Dpo@grifomarchetti.com.
2. The personal data covered by the treatment
For the processing of personal data we mean any transaction or set of transactions, carried out with or without the aid of automated processes and applied to personal data or personal data sets, such as collection, registration, organization, Structuring, storing, adapting or modifying, extracting, consulting, using, communicating through transmission, dissemination or any other form of making available, comparison or interconnection, limitation, the cancellation or destruction.
Personal data processed will be made up–even depending on your decisions on how to use the services–by an identifier such as the name and tax code and other data suitable to make it identified or identifiable, depending on the type of services requested (hereinafter only “Personal information”). In particular, the personal data processed through the site are as follows:
A. Navigation data
The computer systems and software procedures used to operate the site acquire, during their normal exercise, some personal data whose transmission is implied in the use of Internet communication protocols. It is information that is not collected to be associated with identified stakeholders, but which by their very nature could, through elaboration and association with data held by third parties, allow to identify users. This category of data includes the IP addresses or domain names of the computers used by users connecting to the site, the addresses in Uniform resource identifiers (URI) notation of the requested resources, the time of the request, the method used When submitting the request to the server, the file size obtained in response, the numerical code indicating the status of the response given by the server (good end, error, etc.) and other parameters related to the operating system and the computer environment of the user. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and the sites of our customers and to control its correct functioning, to identify anomalies and/or abuses, and are erased immediately after Processing. The data could be used for the assessment of liability in the case of hypothetical computer crimes against the site or third parties: Save this eventuality, the data on the Web contacts do not persist for more than fourteen days, unless any user requests (e.g. access to user’s personal pages within Grifo Marchetti that summarize the services, the information published, etc.).
Cookie
Definitions, characteristics and application of the legislation
Cookies are small text files that the sites visited by the user send and register on their computer or mobile device, to be retransmitted to the same sites the next time they visit. Thanks to the Cookie a site remembers the user’s actions and preferences so that they do not have to be re-indicated when the user returns to visit the site or navigate from one page to another of it. Cookies, therefore, are used to perform computer authentication, monitoring sessions and storing information about the activities of users who access a site and can also contain a unique identification code that allows you to Keep track of the user’s browsing within the site for statistical or advertising purposes. During the navigation on a site, the user can receive on his computer or mobile device also cookies of sites or Web servers other than the one he is visiting (so-called “third party” cookies). Some operations could not be accomplished without the use of cookies, which in some cases are therefore technically necessary for the same operation of the site.
There are various types of cookies, depending on their features and functions, and these can remain in the user’s computer or mobile device for different time periods: so-called session cookies, which is automatically deleted when the browser closes; So-called persistent cookies, which persist on the user’s equipment up to a predetermined deadline.
According to the regulations in force in Italy, an express consent of the user is not always required for the use of cookies. In particular, they do not require such consent the “technical cookies”, i.e. those used in the sole purpose of transmitting a communication on an electronic communication network, or to the extent strictly necessary to deliver a service Explicitly requested by the user. In other words, cookies are essential for the operation of the site or necessary to perform tasks requested by the user.
Among the technical cookies, which do not require an express consent for their use, the guarantor for the protection of personal data Italian (cf. Measure identification of simplified modalities for the disclosure and acquisition of the consent for the use of the cookies of 8 May 2014, hereinafter only “measure”) also includes:
• “Cookie Analytics” where used directly by the site manager to collect information, in aggregate form, on the number of users and how they visit the site,
• The navigation or session cookies (to authenticate),
• The functionality cookies, which allow the user to navigate according to a set of selected criteria (for example, the language, the products selected for purchase) in order to improve the service rendered to the same.
For “Profiling cookies”, in other words, those aimed at creating profiles related to the user and used in order to send advertisements in line with the preferences expressed by the same in the field of network browsing, a quotation is required consent of the user.
For “Profiling cookies”, in other words, those aimed at creating profiles related to the user and used in order to send advertisements in line with the preferences expressed by the same in the field of network browsing, a quotation is required consent of the user.
Types of cookies used by the site and possibility of (DE-) selection (cookies-or links to third party information that send cookies-followed by an asterisk are related to the site www.simply.com).
The site uses the following cookies which may be de-selected, except for third-party cookies for which you must refer directly to the relevant selection and de-selection methods of the respective cookies, indicated by means of links:
• Technical cookies-navigation or session and strictly necessary for the operation of the site or to allow the user to take advantage of the contents and Dand services from these required.
• Cookie Analytics, which helps you understand how the site is used by users. These cookies do not collect information about the user’s identity or any personal data. The information is treated in aggregate and anonymous form.
• feature cookies, i.e. used to enable specific site features and a set of selected criteria (for example, language, products selected for purchase) in order to improve the service rendered.
• Profiling cookies used in order to send advertisements in line with the preferences expressed by the user in the field of network browsing.
Attention: By disabling technical and/or feature cookies, the site may be unsearchable, or some services or certain features of the site may be unavailable or not functioning properly and you may be forced to modify or Enter some information or preferences manually each time you visit the site.
• Third party cookies, i.e. site or cookies from other servers different from that of Grifo Marchetti, which are used for the purposes of such third parties, including profiling cookies. It should be noted that these third parties, hereinafter listed with the related links to the privacy policies, are autonomous holders of the processing of the data collected through the cookies they serve; Therefore, you must refer to their policies of processing personal data, information and consent forms (selection and de-selection of the respective cookies), as specified in the above-mentioned measure. It is also clear that the Grifo Marchetti It does the best to be able to track cookies on your site. These are updated on a regular basis in the table below, where we give transparency on cookies directly sent by Grifo Marchetti and their purpose. With regard to third parties who send cookies through our website, we provide the following links to their respective privacy notices: to such third parties we state, as already stated, the responsibility to provide the information and to collect the consent of Users, as provided by the measure. This responsibility is to refer not only to the cookies that the third parties send directly, but also to any additional cookies that are sent via Our website by virtue of the use of services of which the third parties themselves benefit. In relation to such cookies, sent by service providers of the above mentioned third parties, Grifo Marchetti It does not have the possibility to exercise any control and knows neither its characteristics nor its purpose.
1. Cookie settings
Following is possible for you to make a choice with reference to the reception of profiling cookies. Failure to authorize the cookies indicated (profiling) will not affect the operation of the site. You may block or delete (in whole or in part) technical and feature cookies through the specific functions of your navigation browser. We inform you, however, that not authorize the technical cookies may result in the inability to use the site, view its contents and use the related services. Inhibiting feature cookies may result in certain services or certain features of the site not being available or malfunctioning, and you may be forced to edit or manually enter certain information or preferences Time you will visit the site.
The choices made in reference to the cookies of the site will in turn be registered in a special cookie. Such a cookie may, however, in some circumstances not work properly: in such cases, we recommend that you delete unwelcome cookies and also inhibit your use through the capabilities of your navigation browsers.
Your preferences in reference to cookies will be reset if you use different devices or browsers to access the site.
2. Cookies profiling
They are sent in order to send advertisements in line with the preferences expressed by the user in the field of network browsing.
Enabled
Disabled
3. Purpose of the treatment
The treatment we intend to carry out, at its specific consent where necessary, has the following objectives:
A. Allow the provision of the services requested by you and the subsequent and autonomous management of your control panel, which you will access by registering and creating your user profile when providing services, including collection, Preservation and processing of data for the purposes of the establishment and subsequent operational, technical and administrative management of the relationship related to the provision of services and the carrying out of communications relating to the conduct of the report established.
B.To allow the navigation and consultation of the websites of Grifo Marchetti;
C. To answer to requests for assistance or information, which we will receive via e-mail, telephone or chat via the “Contact Us” page of our site, or through the “Privacy reports” form accessible from the “Contact Us” page of the site. With particular reference to responses to requests for Assistance to be Grifo Marchetti Through the phone, we inform you that the calls can be recorded so that Grifo Marchetti Can prove that they have successfully evaded requests.
D. Fulfil statutory, accounting and fiscal obligations;
E. Conducting direct marketing via email for analog services to those you subscribed to, unless you have opposed such treatment initially or in subsequent communications, for the pursuit of legitimate interest in Grifo Marchetti To promote products or services to which you may reasonably be interested;
F. Develop studies, researches, market statistics; Send them advertising, informative, commercial information or surveys to improve the service (“Customer Satisfaction”) by e-mail or SMS, and/or through the use of the telephone with operator and/or through the official pages of Grifo Marchetti on social networks;
G. Only with reference to certain services, the data may be processed for third party communication purposes for their third party marketing purposes, i.e. to provide you with information and/or bid on products, services or initiatives offered or promoted by other companies making part of Grifo Marchetti and/or its subsidiaries and/or subsidiaries, and/or other trading partners and outsourcers acting as self-employed holders;
H. Make customized commercial proposals on the basis of the products or services you have purchased, or that you are interested in browsing our website, or on the basis of the group of clients you belong to (profiling). This means, for example, that you are a reseller will receive commercial offers for retailers; If you have navigated to our site to search for information on certain services, you will receive offers relating to these services; Finally, if you are using a service, depending on your use of the service, you will receive targeted communications from Grifo Marchetti (for example, if the capacity of the service is reaching the limit, it will be advised and invited to increase the capacity of the service; or, you will be offered complementary services and/or compatible with the one you purchased). This type of analysis is typically carried out on purchasing data pertaining both to natural persons and to legal persons and the relevant decisions are not based on a purely automated treatment. Such treatment is necessary for the pursuit of the legitimate interest of the data controller to personalize its commercial proposals. You can always oppose this treatment through the form “Privacy reports”;
I. For exclusive safety purposes and prevention of fraudulent conduct, the holder shall set up an automatic control system involving the detection and analysis of user behavior on the site associated with the processing of personal data including The IP address. The consequences of such treatment are that if a person attempts to impose fraudulent conduct on the site of Grifo Marchetti, for example to benefit several times of the same promotion without being entitled to it, Grifo Marchetti reserves the right to exclude such a person from the promotion or to take any other appropriate measures for his own protection.
4. Legal basis and mandatory or optional nature of treatment
The legal basis for the processing of personal data for the purposes set out in section 3 (A-B-c) is art. 6 (1) (b) of the regulation since the treatments are necessary at the delivery of products Contracted. The conferral of personal data for these purposes is optional, but the eventual failure to provide would result in the impossibility of activating the requested services.
The purpose of section 3 (d) is a legitimate treatment of personal data within the meaning of art. 6 (1) (c) of the Rules of Procedure. Once the personal data has been conferred, the treatment may be necessary in order to fulfil the legal obligations to which Grifo Marchetti is subject.
The treatments performed for marketing purposes described in section 3 (f) and for communication to third parties described in section 3 (g) are based on the release of its consent under art. 6 (1) (a) of Regulation. The conferral of your personal data for these purposes is completely optional and not pre-Judge the enjoyment of the products. The treatments referred to in section 3 (e), carried out for the purposes of e-mail Marketing on Products Similar to those purchased by you, it finds its legal basis, in accordance with art. 6.1. F of the regulation, in the legitimate interest of Grifo Marchetti at their products in a context in which the person concerned can reasonably expect this type of treatment, which can also be objected to at any time. In fact, if you wish to oppose the processing of your data for marketing purposes, as referred to in sections 3 (E) and 3 (f), you may at any time do so through your panel of control or again through the mechanism proposed in the footer of commercial emails. The profiling treatment referred to in section 3 (h), to which you may oppose at any time, shall be based on the legitimate interest of the holder, in accordance with article 6.1 F. of the regulation, to personalize its commercial communications. The treatment referred to in section 3 (i) is also based on the owner’s legitimate interest in detecting fraud and scams in its own detriment, in accordance with art. 6.1. F of the Rules of Procedure.
5. Recipients of personal data
Your personal data may be shared, for the purposes set out in section 3 above, with:
A. Persons acting in the same capacity as those responsible for the treatment, i.e.: (i) people, companies or professional firms providing assistance and consultancy activities to Grifo Marchetti accounting, administrative, legal, tax, financial and debt collection related to Product Delivery Agency; (ii) subjects with whom is necessary to interact for the supply of the products iii) or persons delegated to carry out technical maintenance activities (including maintenance of network equipment and electron communication networks); IV) Company Grifo Marchetti, Italian or foreign, for administrative or statistical purposes (collectively “addressees”);
B. Entities, entities or authorities to which it is mandatory to communicate its personal data by virtue of legal provisions or orders of the authorities (for example, in the course of investigations of a criminal nature Grifo Marchetti may receive requests from the judicial authority to provide logs of telematics traffic);
C. Persons authorized by Grifo Marchetti the processing of personal data necessary to carry out activities strictly related to the provision of services, which are committed to confidentiality or have an adequate legal obligation of confidentiality, such as employees of Grifo Marchetti;
D. Business partners for their own purposes, autonomous and separate, only in case you have given a specific consent.
6. Transfers of personal data
Some of your personal information is shared with recipients that you might find outside the European Economic Area. Grifo Marchetti ensure that your personal data is processed by these recipients in accordance with the regulations. Indeed, transfers can be based on an adequacy decision or on the standards Contractual Clauses approved by the European Commission. More information is available from the owner.
7. Data Retention
The personal data processed for the purposes referred to in section 3 (A-B-c) will be kept for the time strictly necessary to achieve those same purposes. In any case, being treatments carried out for the provision of services, Grifo Marchetti It will treat personal data until the time allowed by Italian law to protect its interests (Art. 2946 C.C. and SS.).
The personal data processed for the purposes referred to in section 3 (d) will be kept until the expected time By the specific obligation or rule of law applicable. As an example, as already specified, traffic data will be retained for the purposes of justice for six years from their generation; Otherwise, they will be kept for six months.
For the purposes set out in section 3 (e) (f), your personal data will be processed until you withdraw your consent or until three years after you have ceased to be a customer of Grifo Marchetti, or simply registered on the site, and did not make any purchases of products or services. It is made safe in any case the possibility for Grifo Marchetti to retain its personal data until the time allowed by the Italian law to protect its interests (Art. 2947 (1) (3) C.C.). More information on the data retention period and the criteria used to determine this period may be requested by writing to the title holder or DPO.
8. Rights of the parties concerned
You have the right to ask Grifo Marchetti, at any time, access to your personal data, rectification or cancellation thereof or to oppose their treatment in the cases provided for in article 20 of the Regulation, you have the right to request the limitation of treatment in the cases provided for by art. 18 of the Rules of Procedure, and to obtain in a structured format, of common use and self-readable data relating to it (portability), in the cases provided for by art. 20 of the Rules of Procedure.
Requests must be made in writing From here.
It should be noted that, in the presence of requests from interested parties relating to the reporting of abuse in the use of the services or spamming activities-activities already prohibited by contract as specified in par. 8 of the general terms and conditions of service-carried out By a customer of Grifo Marchetti (It is specified that the client typically acts as the holder of the treatment under the Regulation), and in the presence of any further request for the exercise of the rights ex art. 15 and SS. of the regulation, Grifo Marchetti, without entering into the merits of the request, on the one hand inform the customer/owner promptly, and on the other will provide to the stakeholders the details of the customer/owner.
In any case you always have the right to complain to the competent supervisory authority (guarantor for the protection of personal data), pursuant to art. 77 of the Regulation, if it considers that the processing of its data is contrary to the legislation in force.
9. Modifications
The present Privacy policy has been in force since 25 May 2018. Grifo Marchetti reserves the same to modify or simply update its contents, partly or completely, also due to changes in the applicable legislation. Where changes to this Policy concern substantial changes in treatment or may still have a significant impact on those concerned, Grifo Marchetti will care to notify you them accordingly.