INFORMATION ON THE PROCESSING OF PERSONAL DATA PURSUANT TO
OF EUROPEAN REGULATION 2016/679 (Art. 13)
AND NATIONAL LAWS IN FORCE
We would like to inform you that the personal data you provide will be processed by PANATEX Spa which, in its capacity as Data Controller, has put in place appropriate technical and organisational measures to ensure their protection. Personal data is information concerning an identified or identifiable natural person ("data subject"). The "processing" consists of operations carried out with computerised tools or on paper media to (by way of example but not limited to) collect, organise and store personal data.
What personal data we process, why we do it (legal basis and purpose) and how long we store it for
We process non-particular personal data (name, surname, telephone number and email address) to enable you to take advantage of the services offered by the website https://www.panatex.net/ ("site"), i.e:
to contact the data controller: to receive replies to requests for information, suggestions, criticism, assistance on the site's services; the provision of the data is optional but, in the absence thereof, it will be impossible for the data controller to handle the message pursuant to and for the purposes of Art. 6, par. 1, lett. b (processing necessary for the execution of pre-contractual measures taken at the request of the data subject).
The data will only be kept for the purpose of managing the message for which they were entered and will be deleted within 15 years.
During Users' navigation, the following information (so-called navigation data) may be collected and stored in the site's server (hosting) log files
- internet protocol (IP) address
- browser type;
- parameters of the device used to connect to the site;
- name of the internet service provider (ISP);
- date and time of visit;
- the visitor's web page of origin (referral) and exit;
This data is used for statistical and analysis purposes, in aggregate form only.
The IP address is used solely for security purposes and is not cross-referenced with any other data.
Data collected by the site during its operation is kept for the time strictly necessary to carry out the specified activities: data (IP address) used for site security purposes (e.g. blocking attempts to damage the site) is kept for 30 days.
Data for analytics purposes (statistics) are kept in aggregate form for 24 months.
Who will know your data?
Personal data may be communicated to Public Authorities that make a justified request, if such communication is required by law. The data may be disclosed to Data Processors (appointed pursuant to art. 28 EU Reg 2016/679) or authorised or designated internal staff (art. 29 EU Reg - art. 2 quaterdecies Legislative Decree 101/2018), adequately instructed and trained for this purpose by the Data Controller. The updated list of Data Processors can be requested from the Data Controller.
Where are your data processed?
The processing will be carried out on the premises of the Data Controller or its Managers, on servers located in the territory of the European Union, using manual and computerised procedures, in compliance with all the precautions necessary to guarantee the security and confidentiality of the information taken. Should the data be transferred to a third country or international organisation, the limits and guarantees provided for in Chapter V of the GDPR will be observed.
What are your rights and who should you contact to exercise them?
In relation to the aforesaid processing operations, the data subject may exercise all the rights referred to in Articles 15-22 of European Regulation 2016/679 (including: access, rectification, cancellation, restriction, objection, portability where this does not conflict with legal provisions or contractual obligations and is technically possible), by contacting the Data Controller by sending an email to firstname.lastname@example.org or by written communication addressed to the head office (via Caduti sul Lavoro 5/9 59013 Montemurlo - Prato).
It is also always possible to lodge a complaint with the supervisory authority www.garanteprivacy.it.
With regard to the processing of one's own data based on consent, the data subject has the right to withdraw this consent at any time without prejudice to the lawfulness of the processing based on the consent given before the withdrawal.
The full texts of EU Reg. 2016/679 and the applicable national data protection laws are available at www.garanteprivacy.it.
Last revision: 24/11/2022