INFORMATION NOTICE REGARDING THE PROCESSING OF ONLINE CUSTOMER’S PERSONAL DATA IN COMPLIANCE WITH THE 2016/679 EU REGULATION (“GDPR”)

Data Controller

Cavagna Group S.p.A.
Via Statale 11/13, Ponte San Marco di Calcinato (BS) – Italy
Tel.: +39 030 9663111
E-mail address: privacy@cavagnagroup.com
(“Company” or “Data Controller”).

Personal Data proceed

Biographical data. Contact data. Navigation data (“Data”). For Navigation Data please refer also to the Cookie Policy.

Purposes of the processing

Legal basis for the processing

Data retention period

Allowing the correct functioning of the web browsing service on the following website: https://www.cavagnagroup.com

Legitimate interest pursued by the Data Controller (i.e. website management).

See Cookie Policy.

Obtaining anonymous statistical information regarding the website usage.

Legitimate interest pursued by the Data Controller (i.e. website management).

See Cookie Policy.

Answering the user’s requests (for example request for sending information material; request for information, etc.).

Performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.

Until the fulfilment of the request or 10 years starting from the expiry of the contractual relationship.

When the data retention period expires, the Data will be destroyed, erased or anonymized.

data

Provision of personal data

It is required to process the Navigation Data in order to grant the navigation service on the website. The communication of biographical data and contact data in order to request information and/or services is completely at user’s discretion. The refusal to provide such data implies the Data Controller’s impossibility to satisfy the user’s requests.

Recipients of personal data

The Data may be processed by external subjects operating as autonomous data controllers such as, by way of example, other companies belonging to Cavagna Group S.p.A., authorities and control/supervisory bodies and Cavagna Group’s consultants. The data may be processed as well by third parties operating as autonomous data controllers through the installation of analytical cookies. For any further information see the Cookie Policy.

Personnel authorized to process personal data

In order to pursue the above-mentioned purposes, the data may be processed by the employees of the deputed corporate functions, who have been expressly authorized to process the data and who have received adequate operating instructions.

data

Data transfer to extra EU countries

Part of the navigation data may be transferred outside the EU (see Cookie Policy). Furthermore, some Data may be transferred to WP Engine, Inc., a hosting company, based in the USA, that has certified its terms of use through the Privacy Shield Framework, a deal that guarantees the protection of the European citizen’s data that happen to be transferred to the USA. For any additional information, please visit the following website: https://www.privacyshield.gov

The data subject can obtain a copy of the data by writing an e-mail to the following e-mail address: legal@wpengine.com

Rights of the data subject – complaint with the supervisory authority

By contacting Cavagna Group’s Legal Department via e-mail at the following address: privacy@cavagnagroup.com, the data subjects have the right to access the Data processed by the Data Controller; furthermore they have the right to rectification and or integration of incomplete data, to erasure and also to restriction of processing in cases envisaged by art. 18 of GDPR. The data subjects can also exercise the right to oppose the processing on ground relating to his or her particular situation.

If the processing is based on consent or on a contract and is carried out by automated means, the data subjects have the right to receive the personal data concerning them, which they provided to a controller, in a structured, commonly used and machine-readable format. The data subjects shall also have the right to transmit the data to another controller without hindrance, if this is technically feasible.

The data subjects have the right to lodge a complaint with the competent supervisory authority in the Member State of their habitual residence place of work or place of the alleged infringement.