Privacy Policy
INFORMATION ON THE PROCESSING OF PERSONAL DATA

of users consulting this website pursuant to Article 13 of Regulation (EU) 2016/679 (GDPR)

This page describes, in accordance with Regulation (EU) 2016/679, the methods for processing users' Personal Data collected when browsing this Website www.vema.it or provided directly by the data subject by filling in forms and contact addresses.

This information does not concern other sites, pages or online services that can be reached through hypertext links that may be published on the site but which refer to resources outside this site.

1. Data Controller

The Data Controller is Vema S.r.l., with registered office in Via Novara, 7/9/11 - 20814 - Varedo (MB), P.IVA 09651850969- Email info@vema.it

2. Types of data collected - Purposes - Legal basis

a. MODULE "CONTACTS - DEALERS /" "CONTACTS - INSTALLERS" - Data provided directly by the person concerned through the completion and sending of contact forms. The explicit and voluntary sending of messages to the contact addresses, as well as the filling in and forwarding of the forms present on the site, entail the acquisition of the sender's contact data, as well as all the personal data included in the communications.

These data are processed for the following purposes and in accordance with the relevant legal bases for processing, for a storage period not exceeding that necessary for the purposes for which they were collected and processed.

Purpose: to respond to requests sent by the data subject.

Legal Basis: legitimate interest, processing is necessary to respond to requests; for the execution of pre-contractual measures taken at the request of the data subject.

Purpose: to send promotional information aimed at carrying out marketing activities. Such communications may be made through e-mail (such as the sending of newsletters) or through other channels such as telephone calls, ordinary mail, fax, SMS and social networks.

Legal basis: consent of the interested party.

b. NEWSLETTER" FORM - Data provided directly by the data subject by filling in and sending the newsletter subscription form. The optional, explicit and voluntary subscription to the newsletter on this site involves the acquisition of the sender's contact data (e-mail address) and name.

These data are processed for the following purposes and in compliance with the relevant legal basis for processing, for a storage period not exceeding that necessary for the purposes for which they were collected and processed.

Purpose: to send promotional information aimed at carrying out marketing activities.

Legal basis: consent of the data subject - Opt out: Possibility to revoke consent in each newsletter communication.

For the management of the newsletter is used MailUp platform, the data are transferred to the manager of the service for the provision of the service itself, the treatment takes place in the manner specified by the privacy policy of the service:

https://www.mailup.it/informativa-privacy/

c. E-COMMERCE" FORM - Data provided directly by the interested party through the completion and sending of registration forms or authentication for the purchase of goods and/or services offered by the website. The explicit and voluntary compilation of the registration form or the sending of the form for authentication for the purchase of goods and/or services, involves the acquisition of the sender's contact data and identification of the same, in order to allow him/her to make the desired purchases, as well as data for the payment selected, information on orders placed, to pre-fill the checkout information, for shipping and invoicing.

This data is processed for the following purposes and in accordance with the relevant legal basis for processing, for a storage period not exceeding that necessary for the purposes for which it was collected and processed.

Purpose: to provide the service of purchasing the goods and/or services offered on the website.

Legal basis: the execution of a contract.

d. Website navigation data

In order to operate correctly, this site acquires certain personal data during normal browsing, including IP addresses or domain names of the computers used by users who connect to the site, the URI (Uniform Resource Identifier) addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user's operating system and computer environment. Browsing data are acquired not for the purpose of identifying users, but for the sole purpose of collecting, in an anonymous form, statistical information on the use of the site and its services.

e. Cookies

Cookies are small text strings that the sites visited by the user send to his/her terminal (usually to the browser), where they are stored and then transmitted to the same sites the next time the same user visits. While browsing a site, the user may also receive cookies on his/her terminal which are sent by different sites or web servers (so-called "third parties"), on which some elements (such as, for example, images, maps, sounds, specific links to pages of other domains) present on the site he/she is visiting may reside. Cookies, which are usually present in a very high number in the users' browsers and sometimes also with characteristics of wide temporal persistence, are used for different purposes: execution of computer authentication, session monitoring, storage of information on specific configurations concerning users accessing the server, etc.. In this regard, and for the purposes of this provision, two macro-categories are therefore identified: "technical" cookies and "profiling" cookies. For further details, please refer to the Cookie Policy.

3. Categories of recipients of personal data

The following categories of subjects may become aware of your data: The Data Controller and persons authorised to process data, appointed in writing by the undersigned company, such as partners, accounting and invoicing staff, sales staff, as well as consultants, in their capacity as external managers, to the extent necessary to carry out their duties in our organisation, subject to a letter of appointment and/or stipulation of a contract imposing a duty of confidentiality and security, as well as persons who need access to the data for legal advice, for purposes ancillary to the relationship between the parties, such as the execution of contracts in place, to the extent strictly necessary to carry out the ancillary tasks entrusted to them.

In addition to the Data Controller, in some cases, other subjects involved in the organisation of this Website (administrative, commercial, marketing, legal, system administrators) or external subjects (such as third party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) also appointed, if necessary, as Data Processors by the Data Controller, may have access to the Data. An updated list of the Data Processors can always be requested from the Data Controller.

4. Processing methods

Data processing is carried out through the use of instruments and procedures suitable to guarantee security and confidentiality and may be carried out both on paper and with the aid of automated computerised means to store, manage and transmit the data.

The Data shall be processed by the Data Controller at its operating headquarters or within the territory of the European Union and the European Economic Area. Should it be necessary, for technical, organisational and/or operational reasons, to make use of subjects (among those indicated in the above list) located outside the European Union or the European Economic Area, please note that the Company will ensure that the processing of data by these subjects takes place in compliance with the applicable regulations. Therefore, transfers will be carried out by means of appropriate safeguards, such as adequacy decisions, standard contractual clauses approved by the European Commission or other safeguards deemed appropriate. The data subject may request further information by writing to the following e-mail address: info@vema.it.

5. Communication and dissemination

The data will not be disclosed to unspecified subjects by making them available or consulting them.

The data may be communicated, as far as their respective and specific competence is concerned, to Bodies and in general to any public or private subject with respect to whom there is an obligation (or a faculty recognised by legal norms or secondary or community regulations) or a need for communication.

6. Rights of the interested parties

Articles 15 to 22 of the GDPR EU 2016/679 confer specific rights on data subjects. In particular, the right to obtain confirmation as to whether or not personal data exists, access to and rectification or erasure of personal data or restriction of processing concerning him or her or to object to its processing, as well as the right to data portability, communication of such data and the purposes on which the processing is based. In addition, data subjects have the right to obtain the withdrawal of consent at any time without prejudice to the lawfulness of the processing based on consent given before the withdrawal, the transformation into an anonymous form or the blocking of data processed in breach of the law, as well as the updating or, where there is an interest therein, the integration of data. Data subjects have the right to oppose, for legitimate reasons, the processing of their data.

Notifications of any changes in personal data must be sent promptly to the Data Processor in order to comply with Article 16 of the aforementioned legislation, which requires that the data collected be accurate and, therefore, updated.

Interested parties who believe that the processing of their personal data carried out through this website is in breach of the provisions of the Regulations have the right to lodge a complaint with a supervisory authority (in Italy: Garante per la protezione dei dati personali www.garanteprivacy.it), as provided for by article 77 of the Regulations, or to take legal action (article 79 of the Regulations).