Privacy Policy – Eurotubi Europa

Privacy notice for the website pressfitting.it pursuant to European Privacy Regulation No. 679/2016 GDPR: purposes and methods for processing personal data, provided by the user, through the aforementioned website.

This notice is also valid pursuant to Italian Legislative Decree 196 dated 30 June 2003.

Your privacy is important to Eurotubi Europa; therefore, we ask you to read this notice thoroughly.

 

1. Data Controller (holder)


The Data Controllers are:

Eurotubi Europa s.r.l. via Croce Rossa Italiana 12, 20834 Nova Milanese (MB), Italia – Telefono: (+39) 0362.365068.
Vimoter S.p.a. via De Gasperi, 22, 20834 Nova Milanese (MB), Italia – Telefono: (+39) 0362. 364011.

Email address: [email protected]

The updated list of those responsible for processing is kept at the Data Controllers’ registered offices.

 

2. Type of data collected and purposes in processing it


The data you enter are collected and processed by us to fulfil your information, commercial, and technical requests.

Identifying and contact data: first and last name, company name, email address, telephone number, physical address, etc.

Purpose for processing your data:

  • To provide the information and/or services you requested;
  • Establishment and execution of the contractual or pre-contractual relationship;
  • Fulfilment of obligations set forth in the applicable regulations and standards;
  • If necessary, to ascertain, exercise, or defend the rights of the Data Controller in or out of court.

Requirement to provide the data

For the purposes listed above, the consent of the interested party is considered to be expressed implicitly since it is an integral part of the pre-contractual conditions adopted upon their request.

Consent to receive Newsletters and Direct Marketing

Purely optional, and revocable at any time, the user can express consent to the processing of their data, by the Controller, for marketing purposes such as: sending technical, commercial and promotional communications through automated methods of contact (e.g., email, SMS, or MMS) and traditional ones (e.g., phone calls with operator and traditional mail) regarding its products and services; reporting of company events; customer satisfaction surveys; as well as market surveys and analysis statistics.

 

3. Data Processing Methods


Your data are processed through computerized and telematic tools and through paper archiving. The Data Controller uses the appropriate methods to prevent unauthorized access, modification, and disclosure of your personal data.

Legal basis of the processing

The applicable legal bases identified by the GDPR include:

  • Execution of a contract in which you are a party;
  • Need to fulfil legal obligations;
  • Legitimate interests of the Controller.

Optional consent, that is revocable at any time without prejudice to you and also regarding processing based on the consent given prior to the revocation.

Processing location

The data will be processed at the Controller’s premises and in any other location in which the parties involved in the processing are located.

The data may be transferred abroad, to countries outside of the European Union, subject to the presence of one of the exemptions set forth in Art. 49 of the GDPR (e.g., consent, transfer necessary for contractual or pre-contractual purposes in relation to a contract stipulated with the interested party or in his favour, assessment, exercise or defence of a right in court, etc.).

A copy of the data may be obtained by sending an email to the controller.

Data retention period

Based on the GDPR standard and the characteristics of the product/service, the data will be stored for the following periods:

  • 10 years after termination of the contract;
  • In the event of a dispute, for the duration of the dispute and for the appeal term;
  • For marketing purposes: 24 months from the time recorded.

Once the aforementioned retention term has elapsed, the data will be destroyed, deleted, or made anonymous, consistent with state-of-the art techniques.

Subjects authorized for processing

The data may be processed by the workers who have been expressly authorized and adequately instructed and in relation to their duties.

Third party data recipients

The data may be transmitted to subjects other than the Controller.

The data may also be transmitted to subjects that process them for the Company as Data Handlers, based on a legal and binding agreement to protect the data.

Some possible recipients are:

  • IT providers (e.g., data backup, electronic mail, WEB/cloud computing, hosting, network monitoring, email sending, website maintenance, etc.);
  • consultants (e.g., payroll, company physician, workplace safety, professionals, etc.);
  • authorities and supervisory boards, public or private subjects that have the right to request the data;
  • the list of Handlers is continuously updated and available at the Controller’s office.

Rights of the interested party and possible complaints to the supervisory authority

The interested parties have the following rights:

  1. Access in order to:
    • know if data is being processed, for which purposes, and on which data; be aware of the recipients, or categories of recipients to whom the personal data have been or will be communicated; when possible, know the retention period of the personal data provided or, if not possible, the criteria used to determine this period; to know the rights of the interested party; get information on their origin; know if an automated decision making process is in place, including profiling (at least in those cases with significant information on the logic used and the importance and consequences of this process); know what are the guarantees if the data is transferred to another country.
    • Obtain a copy of the personal data subject to processing without affecting the rights and freedom of others.
  2. Correction of erroneous data and additions, taking into account the purpose of the processing.
  3. Deletion in the following cases:
    a) the personal data are no longer necessary for the purposes for which they were collected and processed;
    b) the interested party withdraws consent, if there are no other legal bases for processing;
    c) the interested party is opposed to processing in the absence of contrary prevailing rights or obligations;
    d) the personal data were processed illegally;
    e) the Controller is legally obligated in that sense;
    f) the personal data were collected related to an offer of services on the internet.
  4. Limitation to the processing for disputing the accuracy of the data; unlawful processing due to it being excessive; the assessment, exercise or defence of a right in court (even if the controller no longer needs the data), and in case of opposition (pending verification of the concrete existence of this right);
  5. opposition (in the event of processing necessary for the execution of a task in the public interest or for legitimate interest of the Controller, including profiling) for reasons related to the particular situation of the interested party, except for the prevalence of other public interest rights or legal obligations;
  6. opposition to the receipt of commercial communications using automated methods (email, etc.) for processing for direct marketing purposes, including profiling;
  7. data portability in a common and interoperable electronic format, even directly to another Operator if technically possible, in the event of processing using automated tools;
  8. in the cases referred to in points II), III) and IV) the data controller communicates any corrections or cancellations, or limitations of the processing performed to each of the recipients to whom the personal data have been transmitted, unless this proves impossible or implies a disproportionate effort;
  9. for further information, please refer to the company policy regarding the processing of personal data in the workplace, available from the Data Controller.

To exercise their rights, interested parties may contact: [email protected]

Interested parties have the right to lodge a complaint with the supervisory authority having jurisdiction in the member state in which they habitually reside or work or the state in which the alleged violation occurred.

 

4. Offers of Employment: Notice regarding the processing of candidates’ personal data


Type of data collected and purposes in processing it

Collection and processing will be performed on the following types of data:

  • identification and contact data: first and last name, date of birth, tax ID code, telephone number, email, address, etc.
  • public data collected on social networks regarding the candidate to the extent that such collection is necessary and pertinent to execute the intended job;
  • particular data categories (sensitive data): data that reveals race or ethnicity, political opinions, religious or philosophical beliefs, union membership, genetic data, data related to health or sexual practice or sexual orientation.

For the following purposes:

  • establishment and execution of the contractual relationship;
  • if necessary, to ascertain, exercise, or defend the rights of the Data Controller in or out of court.

Legal bases and processing methods

The applicable legal bases identified by the GDPR include:

  • Pre-contractual and contractual purposes;
  • Need to fulfil legal obligations;
  • Legitimate interests of the Controller.

The data will be processed with paper, computer, or telematic means.
Processing will be performed by authorized and trained subjects, adopting technical and organizational means that are suitable for protecting the data.

In any case, the personal data will be:

  • processed legally and correctly;
  • collected and recorded for definite, explicit, and legitimate purposes;
  • exact and, if necessary, updated;
  • pertinent, complete, and not excessive in relation to the purposes of processing.

Data retention period

The data collected during the hiring process will be deleted as soon as it becomes evident that no job offer will be made, or the offer will not be accepted by the candidate.
In any case, it will be deleted within 12 months.
If the employer wishes to retain the data for a future job opportunity, the interested party must be informed of the consequences and have the possibility to oppose further processing.

Once the aforementioned retention term has elapsed, the data will be destroyed, deleted, or made anonymous, consistent with state-of-the art techniques.

Requirement to provide the data

Providing data for the purposes indicated is mandatory, as it is strictly necessary to be able to carry out contractual and legal obligations.
If not provided, the Data Controller will not be able to establish or maintain a contractual/collaboration relationship with the candidate, as it is impossible to comply with the related legal and/or contractual obligations.

Third party data recipients

The data may be transmitted to subjects other than the Data Controller (e.g., authorities and supervisory and control bodies, public or private subjects who have the right to request data).
The data may also be transmitted to subjects that process them for the Company as Data Handlers, based on a legal and binding agreement to protect the data.

Some recipients are:

  1. IT providers (e.g., data backup, electronic mail, WEB/cloud computing, hosting, network monitoring, email sending, website maintenance, etc.);
  2. consultants (e.g., labour consultant, accountant and other professionals, pension or other funds and assistance, even integrative and private, the company physician, workplace safety consultants, banking institutions, union organizations where applicable, etc.);
  3. public Organizations (INPS (National Social Welfare), INAIL (National Workers’ Compensation), Provincial Labour Management, Tax Offices, etc.);
  4. judicial authorities and other subjects for legal obligations.

The list of Handlers is continuously updated and available at the Controller’s office.

Subjects authorized for processing

The data may be processed by the workers who have been expressly authorized and adequately instructed and in relation to their duties.

Rights of the interested party and possible complaints to the supervisory authority

Refer to the same general information session, point 3.

 

5. Information not contained in this Web Privacy Policy


For further information related to the processing of personal data you can write to [email protected].

 

6. Data related to website navigation and the Cookie Policy


For this information you can consult the web page cookie policy

Last date of change of this Web Privacy Policy: 05/12/2018