INFORMATION ON THE PROCESSING OF PERSONAL DATA RELATED TO BROWSING AND THE USE OF COOKIES
Identity and contact details of the Data Controller
Tognana Porcellane S.p.A., hereinafter also “Tognana” or the “Data Controller”, with registered office at via Capitello, 22 – 31030 – Casier (TV), Italy, can be contacted at the email address info@tognana.com, the PEC address tognanaporcellane@legalmail.it, or by phone at +39 0422 6721.
Contact details of the Data Protection Officer
The Data Protection Officer can be contacted at the following address: dpo@tognanaporcellane.it.
Purposes and legal bases
A. Ensuring the proper functioning of services and enabling browsing: the computer systems and software procedures used to operate this website acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols. This category of data includes IP addresses or domain names of the computers and devices used by users, URI/URL (Uniform Resource Identifier/Locator) addresses of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful outcome, error, etc.), and other parameters related to the user’s operating system and IT environment.
B. Statistics: information is collected to understand how visitors interact with the website in order to generate statistical data.
C. Profiling: tracking information is collected to create a profile of the visitor based on interests shown during browsing and, consequently, to display advertisements consistent with previously detected preferences.
D. Responding to communications sent through published contact details: when a visitor contacts the Data Controller using one of the contact details published on the website, the information voluntarily provided is collected in order to process and respond to the request.
E. Defensive purposes: the Data Controller may need to process personal data for the management of disputes and out-of-court or judicial litigation.
| Purpose | Legal basis (common data) |
|---|---|
| A. | Performance of a contract |
| B. | Consent |
| C. | Consent |
| D. | Performance of pre-contractual measures; Legitimate interest of the Data Controller in responding to received requests. |
| E. | Legitimate interest of the Data Controller in establishing, exercising, or defending a legal claim. |
Cookies
Some of the purposes listed above may be pursued through the use of temporary identifiers (cookies). For more information, visitors may consult the dedicated section: “Cookie Policy” at the following link https://www.af1760.com/en/cookie-policy/.
Data retention period
| Purpose | Retention period |
|---|---|
| A. | As specified in the Cookie section |
| B. | As specified in the Cookie section |
| C. | As specified in the Cookie section |
| D. | For the time necessary to process the received requests and any subsequent communications. |
| E. | 10 years from the final resolution of the dispute. |
Nature of data provision and consequences of refusal
| Purpose | Nature | Consequences |
|---|---|---|
| A. | Mandatory | Inability to access and use the website. |
| B. | Optional | Inability for the Data Controller to perform statistical analysis. |
| C. | Optional | Inability for the Data Controller to perform analytical processing to understand visitor preferences and for the visitor to receive ads consistent with demonstrated interests. |
| D. | Mandatory | Inability to receive the requested information. |
| E. | Mandatory | Inability to manage disputes. |
Scope of data communication
All collected and processed data may be communicated to internal personnel authorized to process the data based on their respective duties, as well as to the following categories of external parties, depending on the specific processing purposes:
| Purpose | Categories of external recipients |
|---|---|
| A. | Entities other than the Data Controller indicated in the “Cookie” section |
| B. | Entities other than the Data Controller indicated in the “Cookie” section |
| C. | Entities other than the Data Controller indicated in the “Cookie” section |
| D. | Agents, commercial consultants. |
| E. | Law firms; judicial/administrative authorities. |
Since data are also processed using IT tools, they may also be visible to parties providing assistance and maintenance services for such systems.
Transfer of data to a third country or an international organization
The Data Controller does not transfer personal data outside the European Economic Area.
Rights of data subjects
The data subject is granted the following rights:
Access: the right to know whether personal data concerning them are being processed and, if so, to obtain access to such data and request a copy.
Rectification: the right to request the updating of personal data, their correction if inaccurate, and the completion of incomplete data.
Erasure: the right to obtain the deletion of personal data under certain conditions (for more information, contact the Data Controller).
Restriction: the right to request that personal data be marked in order to limit their processing in the future, under certain conditions (for more information, contact the Data Controller).
Objection: the right to object to the processing of personal data for reasons related to the data subject’s particular situation, where processing is based on legitimate interest or is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Data Controller.
Data portability: the right to receive personal data provided to the Data Controller in a structured format and to transmit them to another data controller where processing is based on consent or a contract and carried out by automated means.
Withdrawal of consent: the right to withdraw consent for the purposes that required it, without affecting the lawfulness of processing carried out prior to withdrawal.
The rights actually exercisable in relation to the processing activities carried out are:
| Purpose | Access | Rectification | Erasure | Restriction | Objection | Portability | Withdrawal of consent |
|---|---|---|---|---|---|---|---|
| A. | X | X | X | X | X | ||
| B. | X | X | X | X | X | X | |
| C. | X | X | X | X | X | X | |
| D. | X | X | X | X | X | ||
| E. | X | X | X | X | X |
To exercise the above rights, the data subject may use the form available at https://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/1089924 and send it to the following address: privacy@tognanaporcellane.it. The data subject may request further details at the same address regarding the information provided above (e.g. legitimate interest balancing test or the list of data processors).
It is possible to lodge a complaint with a supervisory authority: for Italy, the Italian Data Protection Authority (www.garanteprivacy.it).