PRIVACY DISCLOSURE IN ACCORDANCE WITH ART. 13 OF EUROPEAN REGULATION 2016/679

Protecting the security and confidentiality of your personal data is important to our company, IVELA SPA con socio unico (VAT no. 10889890157), with headquarters at Via Bruno Buozzi 15, Liscate (MI) (hereafter the “Data Controller”).

We trust that the information set out below will help you understand what data we usually gather through the website www.ivela.it (hereafter the “Website”), for what purposes we process them, how we save them, and with whom we share them.

In accordance with Art. 13 of European Regulation 2016/679 (GDPR), we also want to inform you that your personal data will be processed in a fair, lawful and transparent manner, protecting your confidentiality and your rights and in compliance with current law on personal data security and protection.

In particular, please be informed of the following:

a. WEBSITE-USE DATA

The information systems and computer programs used for Website functioning gather certain personal data whose transmission is implicit in the internet communication protocols used (such as IP addresses or domain names of the computers of the users who connect to the Website, the URI [Uniform Resource Identifier] addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code for the status of the response from the server [successful, error, etc.], and other parameters related to the user’s operating system and IT environment). Although this information is not gathered for purposes of associating it with identified data subjects, due to its nature it could be elaborated and associated with data held by third parties, making it possible to identify users.

These data are used for the sole purpose of obtaining statistical information (not associated with any of the user’s identifying data) regarding use of the site and to check its proper functioning, and are deleted immediately after processing. The data could be used to determine liability in case of hypothetical cybercrimes against the Website.

b. PERSONAL DATA PROCESSED AND SOURCE OF DATA

Note that personal data processing means any operation or group of operations, performed with or without the assistance of automated processes, on personal data or groups of personal data. This includes collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure through transmission, dissemination or otherwise making available, comparison or interconnection, restriction, deletion or destruction.

The personal data that we gather through the Website essentially regard:

  • Identifying data (first and last name), contact data (email address), data regarding professional qualifications or the user as private individual, as well as city (optional field) and country (data requested in order to give the User a response that is pertinent, adequate and accurate in technical and commercial terms as well), and any other data you provide in text fields. The data collected are what you provide when you request information about our products/services by completing special forms on the Website;
  • Identifying data (name) and contact data (email address) that you provide when you sign up for our Newsletter service by completing the special forms on the Website.

All personal data will be processed in compliance with European Regulation 2016/679 and the obligations of confidentiality that have always inspired the Data Controller’s activity.

We ask you not to use the forms on the Website or any other communication to Iveka to provide special categories of personal data, i.e. data that could potentially be used to determine racial or ethnic origin, religious beliefs, political opinions, membership in parties, trade unions, associations and organizations of a religious, philosophical, political or trade union nature, or information on your state of health or sexual orientation. Any special data will in all cases be immediately deleted.

Please refer to the Website’s Cookie Policy regarding personal data collected through Cookies.

c. LEGAL BASIS AND PURPOSES OF PROCESSING

We will process your data for the following purposes:

c.1) Managing your requests
By processing the data you provide, we will be able to respond to your requests for information and technical-commercial-project support or to be re-contacted.
The legal basis for the processing described here is to execute the pre-contractual measures you request.

c.2) Sending our Newsletter
After receiving your express consent, by processing the data you provide, we can send you a periodic email Newsletter containing technical information about our products and services, news and information on new developments in the sector, events we organize or in which we participate, and relevant project case histories.
After your request to register for the Newsletter, you will receive an email at the address you indicate, with a link to confirm your registration.
Remember that you can revoke your consent at any time by sending a request to the Data Controller as instructed in point 1 below, and you can also easily cancel any further Newsletter mailings, including by exercising your opt-out right, as instructed in any transmission method used to send these Newsletters.
Subsequently, you will receive an email confirmation of your cancellation. For technical and operating reasons (for example, if a contact list was already created shortly before the Data Controller received the opt-out notice), it is possible that you will continue to receive a few additional Newsletters after your cancellation. If this occurs, please notify the Data Controller using the contact information in point 1 below.
Please also note that statistical tracking systems may be used for the Newsletter emails (which are currently sent through the MailUp® platform), to show whether the message has been opened and the links (hypertext connections in the email) clicked, in particular identifying their quantity and date according to the technical specifications based on said platform’s Privacy Disclosure (https://www.mailup.it/informativa-privacy/).
The legal basis for the processing described herein is your consent expressed by checking the special box in the forms on the Website.

d. METHODS OF PROCESSING

The data will be processed manually and/or electronically in a way that guarantees their security as concerns the purposes for which they were provided and collected, prevents unauthorized access by third parties, and complies with national and European Union laws.

The Data Controller may use the assistance of third parties (at present the MailUp® platform) in order to send the Newsletters.

e. NATURE OF DATA PROVISION AND CONSEQUENCES OF REFUSAL

Providing data for the purposes set out in point c.1) is necessary in order to respond to your requests; if you fail to provide the data, the result will be that you cannot receive a response to your requests, although you will in no way be prevented from or limited in browsing the Website.

Providing data for the purposes set out in point c.2) is optional, but is necessary if you want to receive the Newsletter; if you fail to provide the data, the only consequence will be that you will not be able to receive the Newsletter, although you will in no way be prevented from or limited in browsing the Website or contacting the Data Controller through the contact forms on the Website.

f. DATA RETENTION PERIOD

The data you provide will be retained:

– for purposes of c.1), for the time required to respond to your request for information or contact, and subsequently for a period of 12 months. Your data would be retained longer if a contractual relationship were created between the parties, and processing would be governed in that manner;

– for purposes of c.2), for 24 months after the date consent was given when subscribing to the Newsletter service (the Data Subject may nevertheless cancel at any time using the link included in all emails).

g. DATA PROCESSORS AND COMMUNICATION OF DATA

Your personal data may be disclosed to employees and/or assistants of the Data Controller assigned to perform activities for it that are necessary to achieve the purposes of the processing under paragraphs c.1) and c.2) above.

They may also be disclosed to providers of the IT and logistical services required to keep the Website operational, outside service providers, professionals and consultants, and companies responsible for emailing the Newsletters (at present the MailUp® platform), if you have consented to this.

These parties, which the Data Controller has formally designated as Data Processors, will process your data in accordance with and exclusively for the purposes indicated in this disclosure, based on the Data Controller’s instructions.

Your data may also be disclosed to outside suppliers, for example carriers and/or agents and/or distributors, who will process them as either Data Processors appointed by the Data Controller or, if applicable, as independent Data Controllers, exclusively for purposes of shipping products and/or promotional samples and/or to be able to contact you to respond to your requests.

A complete and updated list of parties to whom your data may be disclosed may be requested from the Data Controller, whom you may contact in writing at the e-mail address in point l.

h. DISSEMINATION OF DATA

Personal data will not be disseminated except in an aggregated, anonymous and unintelligible form. No data will be subject to any entirely automated decision-making process, including profiling.

i. TRANSFER OF DATA TO OTHER COUNTRIES

Any transfer of data outside the EU/EEA will comply with legal principles and conditions.

l. RIGHTS OF THE DATA SUBJECT

In accordance with applicable data protection legislation and its limits and conditions, the Data Subject may exercise the following rights in relation to processing personal data:

  1. to obtain confirmation of whether or not data regarding them exists;
  2. to obtain access to the data;
  3. to obtain information on the content and origin of the data, the logic used if processing is assisted by electronic instruments, the purposes of the processing, the personal and special data categories in question, the recipients or categories of recipients who have received or will receive personal and sensitive/special data, the retention period or the criteria used to determine the period, the identifying details of the data controller, processors, designated parties and the DPO if designated;
  4. to restrict processing, ensure data portability, delete, transform into anonymous form, or block data processed in violation of the law, and to update, rectify and supplement said data;
  5. to oppose the processing of said data;
  6. to revoke consent, if given, subject to the lawfulness of the processing performed up to that moment based on consent given prior to the revocation;
  7. to file a complaint with the supervisory authority (Italian Personal Data Protection Authority);

If you decide to exercise your rights, you may contact IVELA SPA con socio unico, with headquarters at Via Bruno Buozzi 15, Liscate (MI), email address infoprivacy@ivela.it.

m. CHANGES TO OUR PRIVACY DISCLOSURE

The Website’s Privacy Disclosure was most recently updated on September 27, 2021.

The Data Controller reserves the right to make changes to this disclosure at any time without notice. We recommend that all users and visitors to this site occasionally review this page to learn about any changes or become familiar with any new information. In any case, personal data will not be processed for purposes other than those indicated in the disclosure in effect at the time the data were provided and to which the user/visitor consented.