Untitled design (16)

Privacy Policy

Art. 13-14 Reg. UE 2016/679

Providing information regarding our Privacy Policy is a general obligation to be fulfilled before, or at the latest, upon the direct collection of personal data. As far as personal data not collected directly from the interested party is concerned, the information must be provided within a reasonable time, or at the time of communication (not of recording) of data (to the interested party or to third parties). In accordance with the General Data Protection Regulation (GDPR – Reg. (UE) 2016/769), this organization, the data controller, provides the following information:

SOURCES AND CATEGORIES OF PERSONAL DATA

The personal data our organization stores are collected directly from the interested parties. This website does not collect sensitive data, which includes information that would reveal the subject’s racial or ethnic origin, religious and philosophical beliefs, political affiliations, membership to syndicates, associations or organizations of a religious, philosophical or political nature, health conditions and sex life.

Browsing Data

The computer systems and software procedures used to operate the website acquire, during their normal functioning, some personal information that is implicitly transmitted in the use of Internet communication protocols. Such information is not collected to be associated with identified interested parties, but they could, because of their very nature, allow users to be identified through processing and association with data stored by third parties. This category of data includes IP addresses or domain names of the computers used by users accessing the website, addresses in the Uniform Resource Identifier (URI) notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (success, error, etc.) and other parameters relating to the operating system and the user's computer environment. These data are used for the sole purpose of obtaining anonymous statistical information on the website’s use, and to check its correct functioning, and are deleted immediately after processing. The data could be used to ascertain liability in the event of hypothetical computer crimes against the website.

Profiling Data

Profiling data on the consumer's habits or consumption choices are not directly acquired. However, it is possible for such information to be acquired from autonomous or separate subjects through links or embedding elements from third parties. See the section of third-party cookies for more information.

Cookies

Like others, this website saves cookies on the user’s browser of choice for the transmission of personal information and to enhance the experience. In fact, cookies are small text files that the websites visited by the user send to their terminal (usually to the browser), where they are stored, sometimes even with characteristics of wide temporal persistence, to be then retransmitted to the same websites on the following visit.

As explained below, it is possible to choose whether cookies are accepted or not and, if so, which cookies to accept, bearing in mind that refusing their use may affect the ability to perform certain transactions on the website, the accuracy and adequacy of some customizable content presented, and the ability to recognize the user from one visit to the following one. If no choice is made in this regard, the default settings will be applied, and all cookies will be activated. However, the user may communicate their decisions or make any changes in this regard at any time.

Technical Cookies

Session cookies, which are not stored permanently on the user's computer and disappear when the browser is closed, are used in particular. Their use is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to allow the safe and efficient browsing of the website, which avoid the use of other technologies that could compromise the privacy of the user's browsing, and do not allow the acquisition of personal identification data. Cookie analytics are also used, which help to understand how visitors interact with the website’s contents, collecting information (geographic and web origin, technology used, language, sites of entry and exit, browsing time, etc.) and generating website usage statistics without personal identification of individual visitors. All these are to be considered technical cookies for which, as it is not necessary to give consent, the opt-out mechanism is in force. Technical cookies are not disclosed to third parties as either necessary or useful for website’s functioning; therefore, they are processed only by system administrators or by qualified individuals responsible for data processing.

Third-party Cookies

Finally, the site incorporates cookies and other elements (tags, pixels, etc.) from third parties (autonomous and for which the controller is not liable) that also perform profiling activities. For further information, the user may refer to their respective websites:

  • there are no third-party cookies 

Data provided voluntarily by the user

The optional, explicit and voluntary sending of electronic mail to the addresses indicated on the website entails the subsequent acquisition of the sender's e-mail address, necessary to respond to inquiries, as well as any other personal data included in the e-mail. The explicit and voluntary sending of the forms that can be filled in on the website containing the user’s data also entails processing to comply with the pre-contractual obligations and the fulfillment of the services provided by sending the forms. Such information in the forms may concern personal data, contact details, telephone numbers, e-mail addresses of the interested parties, and those of identified and identifiable third parties. Nevertheless, specific summary information prepared for on-request services will be progressively reported or displayed on the website.

PURPOSE AND LEGAL BASIS FOR DATA PROCESSING

Personal data are used (art. 6(b) of the GDPR):

a) to allow website browsing and 
b) if necessary, to provide the service or performance requested related to the organization’s regular activity (NACE 28.4 Manufacture of machines for metal forming and other machine tools).

Furthermore, all personal data can be processed:

c) for purposes related to obligations established by law, as well as by provisions issued by authorities legitimized by law (see articles 6 (c) and 9 (b, g, h) of the GDPR);
d) for the assessment, exercise or defense of a right in court and out-of-court (legitimate interest) of the organization (see articles 6 (f) and 9 (f) of the GDPR);
e) for direct marketing purposes according to the legitimate interests of the controller, in particular: cookies; advertising ID’s used to display advertisements and ads; e-mail addresses for the sending of newsletters; browsing and usage logs to protect the website and service from cyber-attacks; in these cases, the interested party may always refuse consent so that the data controller will abstain from processing these data (see Article 6 (f) of the GDPR);
f) for purposes functional to activities for which the interested party has the right to express or deny consent, such as the subscription to the newsletter to receive informational and promotional messages for products and services, the measurement of user satisfaction, and the transmission of data to third parties to receive informational, promotional, and marketing communication (GDPR art.6 (a))

CONSEQUENCES OF REFUSAL TO CONFER DATA

The provision of data collected from the interested party is optional, yet essential for their processing for the aforementioned purposes expressed in letters a) and b). In the event that the interested parties do not provide indispensable data, it will not be possible to proceed with the fulfillment and implementation of the proposed services and to follow the undertaken contractual obligations, with consequent prejudice for the compliance of regulations pertaining to accounting, fiscal, and administrative obligations, etc.

Apart from what was specified for browsing data, the user is free to provide personal data for cookies and specific requests via forms, e.g. on products and/or services. Failure to provide such data may make it impossible to satisfy the request. For all non-essential data, conferment is optional. In the absence of consent, or incomplete or incorrect conferment of certain data, including those of sensitive nature, the fulfillment of obligations may be so incomplete as to cause prejudice either in terms of penalties or loss of benefits, due to either the impossibility of ensuring the adequacy of the processing itself in accordance with the obligations for which it is performed, or to the possible mismatch of the results of the processing itself with the obligations imposed by the law that requires them, exonerating our organization from any and all liability for any possible sanctions or punitive measures.

METHODS OF DATA PROCESSING

Processing related to the website’s services are processed with tools automated for the time strictly necessary to achieve the purposes for which they were collected. Data processing takes place at the US server (Godaddy.com) and is only handled by technical personnel in charge of processing, or by any individuals responsible for maintenance and administration. Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access, and loss of confidentiality. The structure is equipped with anti-intrusion devices, firewalls, logs and disaster recovery. Specific mechanisms of encryption and segregation of data, and authentication and authorization of users, are implemented.

Data processing refers to the collection, recording, organization, storage, processing, modification, cancellation and destruction of data, or the combination of two or more of these operations. In relation to the aforementioned purposes, personal data is processed using printed, computerized and telematic tools, including automated ones, to store and manage data, with logic strictly related to the purposes themselves and, in any case, to ensure security and confidentiality. Personal data will therefore be processed in compliance with the methods indicated in art. 5 EU Reg. 2016/679, which provides, inter alia, that the data are processed lawfully and fairly, collected and recorded for explicit and legitimate, exact, and if necessary updated, relevant, complete and not excessive purposes in relation to their processing, respecting the fundamental rights and freedoms, as well as the dignity of the interested party, with particular reference to privacy and personal identity, through measures of protection and security. Our organization has developed and will further improve the security system for accessing and storing data.

There is no automated decision-making process (e.g. profiling).

TRANSFER OF DATA OUTSIDE THE EU

Processing takes place in non-EU and non-EEA countries when access to the website comes from these countries (upon the request of the interested party located there). In addition, processing also takes place in non-EU and non-EEA countries where the website's servers reside as it is considered functional to the efficient fulfillment of the pursued purposes in compliance with the guarantees in favor of the interested parties. Below is a list of non-EU locations where data is transferred:

  • North America
  • Mexico
  • India
  • China

RETENTION PERIOD

Personal data will be stored, in general, for as long as the purposes for data processing continues according to the category to which the processed data belongs.

Personal data (only those of indispensable nature) are disclosed:

  • to those in charge of processing, both internal to the organization of the controller, and external to it, who perform specific tasks and operations (website administration, analysis of browsing, traffic and profiling data, management of e-mails and forms sent voluntarily by the user, processing of ecommerce requests and orders, etc.)
  • in cases and to subjects provided by law

CATEGORIES OF RECIPIENTS OF PERSONAL DATA

Data will not be subject to disclosure unless otherwise required by law, or rather, prior to anonymization. Except as specified for cookies and third-party elements, without the prior general consent of the interested party for disclosure to third parties, it will be possible to provide services that do not require such disclosure, exclusively. In necessary cases, specific and precise consent will be requested, and the recipients of the data will use them as autonomous controllers.

In some cases (not subject to the website’s regular management) the Data Protection Authority may request news and information, for the purpose of monitoring the processing of personal data. In these cases, compliance is mandatory under penalty of administrative sanction.

RIGHTS OF THE DATA SUBJECT

The interested party may at any time: exercise their rights (access, rectification, cancellation, limitation, portability, opposition, or absence of automated decision-making processes) against the data controller, in accordance with art. 15 to 22 of the GDPR (shown below); present a complaint to the Data Protection Authority (www.garanteprivacy.it); if the processing is based on consent, revoke the consent given, taking into account that the withdrawal of consent does not affect the lawfulness of the processing based on consent before its revocation.

Disabling Cookies

In order to respect user preferences, almost all browsers offer the possibility to manage and disable cookies. In some browsers, it is possible to set rules to manage cookies from website to website, an option that offers a more precise control on the user's privacy. Incognito mode is another available function on some browsers, which causes all cookies stored in this mode to be deleted after its closing.

Consult the following instructions for managing cookies in the respective browsers:

  • Chrome
  • Firefox
  • Edge
  • Safari

Find below our privacy policy for customers and suppliers:

Information for customers and suppliers
Informativa per clienti fornitori

CONTACT INFORMATION

The data controller is Vigel S.p.A., in the person of its pro tempore legal representative.
The headquarters are in Via Mappano 15 / A, 10071, Borgaro Torinese.
The contact details are:

The complete list of those acting as data controllers is available upon request.