of cantinalavagnoli.it
This Application collects some Personal Data of its Users.
Users may be subject to different levels of protection. Some Users are therefore afforded greater protection. Additional information regarding the protection criteria can be found in the applicability section.
This document can be printed using the print command found in the settings of any browser.
Data Controller
Il titolare del trattamento è SOCIETÀ AGRICOLA FAMIGLIA LAVAGNOLI S.S.
, Via Squaranto, 29 c, 37141 Verona VR, Italia.
Types of Personal Data Collected
Among the Personal Data collected by this Application, either independently or through third parties, are: Tracker; Usage Data. 1
Text
• Tracking tools (cookies, technical logs, etc.)
• Usage Data (e.g., IP address, browsing data, preferences).
• Any personal data provided voluntarily by the User (e.g., via a contact form or email).
Text
Complete details on each type of data collected are provided in the dedicated sections of this privacy policy or through specific information texts displayed before the data are collected.
Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically when using this Application.
Unless otherwise specified, all Data requested by this Application is mandatory. If the User refuses to communicate them, it may be impossible for this Application to provide the Service. In the cases in which this Application indicates some Data as optional, Users are free to refrain from communicating such Data, without this having any consequence on the availability of the Service or its operation.
Users who are unsure of what Data is mandatory are encouraged to contact the Data Controller.
Any use of Cookies – or other tracking tools – by this Application or by the owners of third party services used by this Application, unless otherwise specified, is for the purpose of providing the Service requested by the User, in addition to the further purposes described in this document and in the Cookie Policy, if available.
The User assumes responsibility for the Personal Data of third parties obtained, published or shared through this Application and guarantees that he/she has the right to communicate or disseminate them, releasing the Owner from any liability towards third parties.
Method and place of processing of collected Data.
Treatment modes
The Data Controller takes appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of Personal Data.
Processing is carried out using computer and/or electronic means, following organizational methods and logic strictly related to the purposes indicated. In addition to the Data Controller, in some cases, other subjects involved in the organization of this Application (administrative, commercial, marketing, legal, system administrators) or external subjects (such as third party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) also appointed, if necessary, as Data Processors by the Data Controller, may have access to the Data. Translated with www.DeepL.com/Translator (free version) The updated list of Data Processors can always be requested from the Data Controller.
Legal basis of the treatment
The Data Controller processes Personal Data relating to the User if one of the following conditions exists:
- the User has given consent for one or more specific purposes; Note: in some jurisdictions, the Data Controller may be authorized to process Personal Data without the User’s consent or another of the legal bases specified below, until the User objects (“opts out”) of such processing. However, this does not apply if the processing of Personal Data is governed by European Personal Data protection legislation;
- the processing is necessary for the execution of a contract with the User and/or the execution of pre-contractual measures;
- the processing is necessary to comply with a legal obligation to which the Controller is subject;
- the processing is necessary for the performance of a task carried out in the public interest or in the exercise of public authority vested in the Data Controller;
- the processing is necessary for the pursuit of the legitimate interest of the Owner or third parties.
However, it is always possible to ask the Controller to clarify the concrete legal basis of each processing operation and in particular to specify whether the processing is based on law, required by a contract or necessary to conclude a contract.+
Location
The Data are processed at the operational headquarters of the Data Controller and in any other place where the parties involved in the processing are located. For further information, please contact the Data Controller.
The User’s Personal Data may be transferred to a country other than their own. To obtain further information on the location of the processing, the User may refer to the section on details of the processing of Personal Data.
In case of higher protection, the User has the right to obtain information about the legal basis for the transfer of Data outside the European Union or to an international organization under public international law or formed by two or more countries, such as the UN, as well as about the security measures adopted by the Data Controller to protect the Data.
In the event that one of the transfers just described takes place, the User may refer to the respective sections of this document or request information from the Controller by contacting him at the contact details given at the beginning.
Storage Period
Data is processed and stored for the time required by the purposes for which it was collected.
Therefore:
- Personal Data collected for purposes related to the performance of a contract between the Controller and the User will be retained until the performance of such contract is completed.
- Personal Data collected for purposes related to the legitimate interest of the Data Controller will be retained until such interest is satisfied. The User may obtain further information regarding the legitimate interest pursued by the Controller in the relevant sections of this document or by contacting the Controller.
When processing is based on the User’s consent, the Data Controller may retain the Personal Data longer until such consent is revoked. In addition, the Controller may be required to retain Personal Data for a longer period in compliance with a legal obligation or by order of an authority.
At the end of the retention period, the Personal Data will be deleted. Therefore, at the expiry of this term, the right of access, cancellation, rectification and the right to data portability can no longer be exercised.
Purposes of Data Processing
The User’s Data are collected to allow the Data Controller to provide the Service, comply with legal obligations, respond to requests or enforcement actions, protect its rights and interests (or those of Users or third parties), identify any malicious or fraudulent activities, as well as for the following purposes: Platform and hosting services, Displaying content from external platforms and Interaction with social networks and external platforms. Translated with www.DeepL.com/Translator (free version)
• Provide the services requested by the User.
• Comply with legal obligations.
• Communicate with the User.
• Improve navigation and user experience on the site.
• Ensure site security.
• Legitimate marketing activities and informational communications.
To obtain detailed information on the purposes of the processing and the Personal Data processed for each purpose, the User may refer to the “Personal Data Processing Details” section.
User Rights
Users may exercise certain rights with respect to the Data processed by the Data Controller.
In the event of superior protection, the User may exercise all of the rights set forth below. In any other case, the User may contact the owner to find out what rights are applicable in his case and how to exercise them.
In particular, the User has the right to:
- revoke the fee at any time. The User may revoke the consent to the processing of their Personal Data previously expressed.
- You may object to the processing of your Data when it is done on a legal basis other than consent. Further details on the right to object are provided in the section below.
- access their Data. The User has the right to obtain information on the Data processed by the Data Controller, on certain aspects of the processing and to receive a copy of the Data processed.
- verify and request rectification. The User may verify the accuracy of its Data and request that it be updated or corrected.
- obtain the restriction of processing. When certain conditions are met, the User may request the restriction of the processing of their Data. In this case, the Data Controller will not process the Data for any purpose other than its storage.
- obtain the deletion or removal of their Personal Data. When certain conditions are met, the User may request the deletion of their Data by the Data Controller.
- receive their Data or have it transferred to another controller. The User has the right to receive their Data in a structured, commonly used and machine-readable format and, where technically feasible, to have it transferred without hindrance to another controller. This provision is applicable when the Data is processed by automated means and the processing is based on the User’s consent, a contract to which the User is a party or contractual measures related thereto.
- You may lodge a complaint with the relevant data protection supervisory authority or take legal action.
Details of the right to object
When Personal Data is processed in the public interest, in the exercise of public powers vested in the Data Controller or to pursue a legitimate interest of the Data Controller, Users have the right to object to the processing for reasons related to their particular situation.
Users are reminded that if their Data is processed for direct marketing purposes, they may object to the processing without providing any reasons. To find out whether the Data Controller processes data for direct marketing purposes, Users may refer to the respective sections of this document.
Method and location of processing
Text
• Processing is carried out using electronic and IT tools.
• Access to the data is permitted only to authorized personnel and any external processors.
• Appropriate technical and organizational security measures are implemented.
Giuridic base of processing
• User consent (when required).
• Performance of a contract or pre-contractual obligations.
• Legal obligations of the Data Controller.
• Legitimate interest of the Data Controller.
Processing is carried out using electronic and IT tools.
• Access to the data is permitted only to authorized personnel and any external processors.
Appropriate technical and organizational security measures are implemented.
How to exercise your rights
In order to exercise the User’s rights, Users may address a request to the contact details of the Controller indicated in this document. Requests are filed free of charge and processed by the Owner as soon as possible, in any case within one month.
Data Retention
-
Data is retained for the time necessary for the purposes indicated.
-
In the case of consent, until its revocation.
-
Further retention may occur in compliance with legal obligations.
Rights of the Data Subject
The User may exercise the following rights at any time:
-
Withdraw consent.
-
Object to processing.
-
Access their data.
-
Request rectification or updating.
-
Restrict processing.
-
Request erasure (“right to be forgotten”).
-
Request data portability.
-
File a complaint with a supervisory authority.
-
Applicability of the higher level of protection
While most of the provisions of this document apply to all Users, some are expressly subject to the applicability of a higher level of protection to the processing of Personal Data.
This higher level of protection is always provided when processing:
- is performed by a Data Controller based in the EU; or
- concerns Personal Data of Users located in the EU and is functional to the offer of goods or services against payment or free of charge to such Users; or
- concerns Personal Data of Users located in the EU and allows the Controller to monitor the behavior of such Users to the extent that such behavior takes place within the EU.
International Transfers
Personal data may be transferred outside the European Union, adopting appropriate security measures compliant with the GDPR.
Logs and Legal Defense
-
The site may collect system logs for security purposes.
-
The data may be used in court or to respond to requests from competent authorities.
More information about the treatment
Defense in court
The User’s Personal Data may be used by the Data Controller in court or in the preparatory stages leading to possible legal action for the defense against improper use of this Application or related Services by the User.
The User declares to be aware that the Data Controller may be required to disclose the Data by order of public authorities.
Specific disclosures
At the request of the User, in addition to the information contained in this privacy policy, this Application may provide the User with additional and contextual information regarding specific Services, or the collection and processing of Personal Data.
System logs and maintenance
For operational and maintenance purposes, this Application and any third party services used by it may collect system logs, i.e. files that record interactions and may also contain Personal Data, such as the User’s IP address.
Information not contained in this policy
Further information in relation to the processing of Personal Data may be requested at any time from the Data Controller using the contact details.
Response to “Do Not Track” requests
This Application does not support “Do Not Track” requests.
To find out whether any third party services used support them, the User is invited to consult their respective privacy policies.
Changes to this privacy policy
The Data Controller reserves the right to make changes to this privacy policy at any time by notifying Users on this page and, if possible, on this Application as well as, if technically and legally feasible, by sending a notification to Users through one of the contact details in its possession. Therefore, please check this page frequently, referring to the last modification date indicated at the bottom.
The Data Controller reserves the right to modify this policy at any time. Changes will be published on this page.
If the changes affect consent, the User will be asked again.
If the changes affect processing operations based on consent, the Data Controller will obtain the User’s consent again, if necessary. Processing is carried out using electronic and IT tools. Access to the data is permitted to authorized personnel and any external data processors.
