Corradi

CONTACTS - PRIVACY POLICY PURSUANT TO ARTICLE 13 OF EU REGULATION 2016/679

This privacy policy (“Privacy Policy”) is provided in accordance with Art. 13 of EU Regulation 2016/679 (“GDPR”), to describe how your personal data are processed, as a user who browses the website https://www.corradi.eu/ (“Website”) and uses the services available therein for direct communication with Corradi S.r.l.
Contents
  1. Data controller
  2. Type of personal data processed
  3. Purpose and method of data processing
  4. Legal basis of the processing
  5. Data collection and consequences of failure to provide data
  6. Withdrawal of consent
  7. Recipients/Categories of recipients of the personal data
  8. Data retention period
  9. Data subject’s rights
  10. Complaint with the Data Protection Authority
  11. Updates and modifications
  1. Data Controller
The Data Controller is Corradi S.r.l. (“Corradi” or “Data Controller”), Via M. Serenati, 20, 40013, Castel Maggiore (BO), Tel.: +39 051 41884111, E-mail: hello@corradi.eu, PEC (certified email address): Corradi2015@legalmail.it .
  1. Type of personal data processed
For the purposes of this Privacy Policy, personal data are intended to be the personal identification and contact data such as name, surname, e-mail address, address, telephone number, business category (“Personal Data” or just “Data”).
  1. Purpose and method of data processing
The Personal Data you voluntarily provide by filling in the on-line forms are collected and processed for the following purposes:
  1. to be contacted by the Data Controller, in order to receive specific information regarding the products marketed by Corradi through the Website;
  2. in the case of requests sent by magazines and/or newspapers, to be contacted by the Data Controller and receive, if requested, the “Media Kit”;
  3. for the purpose of direct marketing by the Data Controller and, in particular, for sending communications and commercial information, promotional and advertising materials (e.g. brochures, catalogues, etc.).
The processing of Personal Data will be carried out by the Data Controller, the Data Processors and the subjects in charge of the processing, in compliance with every measure suitable to guarantee data security and confidentiality, through paper supports and with the help of information technology tools, according to the principles of law, protecting the confidentiality of the data subject and their rights by adopting the appropriate technical and organisational measures to ensure a level of security adequate for the risk, pursuant to and in compliance with the provisions of Art. 32 GDPR.
  1. Legal basis of the processing
The legal basis of the processing for the purposes referred to in point 3, letters A) and (B) is the implementation of pre-contractual and contractual measures, pursuant to Article 6, par. 1, letter b) GDPR.
The legal basis of the processing for the purpose referred to in point 3, letter C) is express and free consent pursuant to Article 6, par. 1, letter a) GDPR.
  1. Data collection and consequences of failure to provide data
The provision of your Personal Data marked with an asterisk (*) in the “General Info”, “Press Info” and “Are you interested? Contact us for more information” forms present on the Website is optional but necessary for the purposes indicated in point 3, letters A) and B). The failure to provide them will have no other consequence except the impossibility to be contacted by the Data Controller and/or receive a reply to your message.
  1. Withdrawal of consent
It is your right to withdraw at any time the consent previously expressed for the purposes referred to in point 3, letter C), relating to the marketing activity, without, however, prejudicing the lawfulness of the processing carried out on the basis of the consent given before the revocation.
In order to withdraw your consent to the processing, it will be sufficient to send your request for withdrawal to the Data Controller by registered letter, fax or e-mail to the addresses indicated in point 1 of this Privacy Policy.
  1. Recipients/Categories of recipients of the personal data
Your Personal Data may be communicated, exclusively for the purposes mentioned above, to the categories of subjects indicated below:
  • persons, companies, associations or professional firms providing services and activities of assistance and advice to our Company, with particular but not exclusive reference to accounting, administrative, legal, fiscal and financial matters, Internet Service Providers, providers of cloud and IT services, Website operators, who need to access the Data for purposes auxiliary your request to be contacted by Corradi and any related marketing activity, within the limits strictly necessary to carry out their duties;
  • companies of the Renson Group, of which Corradi is a member, established within the European Union, will process your personal data in accordance with the GDPR;
  • subjects whose right to access your Data is recognised by law and secondary legislation;
  • public or private entities managing the ordinary and commercial mail delivery service;
  • your Personal Data may be disclosed to other subjects, such as our employees who are assigned the tasks necessary to fulfil your contact requests.
These subjects act as Authorised, Independent data controllers or Data processors pursuant to Art. 28 GDPR, their services are used by Corradi to carry out its activities and they offer a suitable guarantee of compliance with the regulations on the processing of Personal Data.
Your Data may also be communicated to categories of recipients located in a country outside the European Union if this is necessary for the performance of the contract concluded between you and the Data Controller or for the execution of pre-contractual measures adopted upon your request.
Your Personal Data will not be circulated in any case.
  1. Data retention period
Your Personal Data will be kept for a specified period and, therefore: (i) until the completion of the activities related to your contact request for the purposes set out in point 3, letters A) and B); (ii) for a maximum retention period of 24 months for marketing activities with the purposes referred to in point 3, letter C), with the possibility of withdrawing your consent, in which case Corradi will erase your Personal Data without delay.
  1. Data subject’s rights
At any time you may exercise your rights towards the Data Controller in accordance with Articles 15 et seq. GDPR that, for your convenience, we quote here:
  • Right of access and rectification (Articles 15 and 16 GDPR): You have the right to obtain the confirmation as to whether or not your Personal Data are being processed, and, where that is the case, access to them. You also have the right to obtain the rectification of inaccurate data and the completion of incomplete data. You can exercise these rights by directly writing to hello@corradi.eu. If you wish, we will provide you with a copy of your data in our possession.
  • Right to erasure (Art. 17 GDPR): in the cases provided by the law in force (e.g. personal data are no longer necessary with respect to the purposes for which they have been collected or otherwise processed, withdrawal of consent, unlawful processing, etc.) you have the right to obtain the erasure of your Personal Data without undue delay by Corradi.
  • Right to restriction of processing (Art. 18 GDPR): in the cases provided for by the law in force (inaccuracy of personal data, unlawful processing of data, etc.) you have the right to obtain a restriction on the processing of your Personal Data.
  • Right to data portability (Art. 20 GDPR): You have the right to receive your Personal Data in a structured, commonly used and machine-readable format in order to transmit them to another controller or, if requested, we will directly transmit your Data to another controller.
  • Right to object (Art. 21 GDPR): You have the right to object at any time, for reasons connected with your particular situation, to the processing of your Personal Data pursuant to Article 6, par. 1, letters e) or f) of the Regulation (legitimate interest of the Data Controller).
In general, to exercise these rights, it will be sufficient to contact the Data Controller by registered letter, fax or e-mail at the addresses indicated in point 1, using, if necessary, the form made available on the website of the Authority for the Protection of Personal Data (www.garanteprivacy.it).
Corradi will take all the necessary actions within one month of receiving your request. During this period, despite the exercise of your rights, you may receive further automated communications that were scheduled to be sent before your request.
The period of one month can be extended by two months in the case of a complex request or numerous requests.
  1. Complaint with the Data Protection Authority
Should you believe that there has been a breach of your right to personal data protection, it is your right to complain to the Data Protection Authority in the manner and in compliance with the terms stated on the Website of the Data Protection Authority (http://www.garanteprivacy.it). 
  1. Updates and modifications
The Data Controller may modify, supplement or simply update, in whole or in part, this Privacy Policy also in view of legislative changes or the entry into force of new regulations in the sector.
Updates and changes will be communicated through publication on the Website. Please access this section regularly to verify that the latest and most current Privacy Policy is published.
 

Keep in touch

Register to our newsletter to receive the latest news from Corradi