Pursuant to Article 13 of Regulation (EU) 2016/679
WHY THIS NOTICE
Following consultation of the site listed above, data relating to identified or identifiable natural/legal persons may be processed.
This page describes how the site is managed with regard to the processing of personal data of users who consult it. This information is provided in accordance with Regulation (EU) 2016/679 – to those who interact with our web services for the protection of personal data, accessible electronically and not on the domain: https://glgdoors.com and its sub-domain/sub-folder applications or other applications related to GLG PORTE INDUSTRIALI S.R.L.
Both the controller and the data controller are always:
GLG PORTE INDUSTRIALI S.R.L. in Viale Italia, 15 – 28010 Caltignaga (Novara)
+39 0321 437 913
LEGAL BASIS OF THE PROCESSING
The personal data indicated on this page are processed by the Data Controller in the performance of its tasks or in any case related to the exercise of its activity, including the task of promoting awareness and promoting public understanding of risks, the rules, guarantees and rights in relation to processing and, furthermore, to promote awareness of the controllers and processors of the obligations imposed on them by the Regulation (Art. 57, par. 1, lett. b and d, of the Regulation).
The data processors sign the agreement and assignment form and are appointed by our company within the management of the requested service and the planned marketing activities may become aware of all the data provided. The representatives confirm that they have received appropriate behavioural training for the correct management of the data and assume full responsibility for their use.
RIGHTS OF DATA SUBJECTS
In relation to the processing of your personal data carried out through this site, at any time, as a data subject you may exercise the rights provided for by the GDPR. In particular, it could:
access your personal data, obtaining evidence of the purposes pursued by the Data Controller, the categories of data involved, the recipients to whom they may be communicated, the applicable retention period, the existence of automated decision-making processes, including profiling, and, at least in such cases, significant information on the logic used, as well as the importance and possible consequences for the data subject, unless already indicated in the text of this Policy;
obtain without delay the rectification of inaccurate personal data concerning you;
obtain, in the cases provided for by law, the cancellation of your data;
obtain the limitation of the processing or to oppose it, when allowed on the basis of the legal provisions applicable to the specific case;
in the cases provided for by law require the portability of the data that you have provided to the Data Controller, that is, to receive them in a structured format, commonly used and machine-readable, and also request to transmit such data to another holder, if technically feasible;
where it considers it appropriate, lodge a complaint with the supervisory authority.
PURPOSE OF THE PROCESSING
The personal data provided will be processed in order to:
to carry out the strictly necessary operations and to proceed with the provision of the services requested by you, including your navigation between the pages of the site;
consult, formulate and process the response or the sending of Contracts and subsequent offers a request for information or proposals for services and products;
comply with legal obligations of a physical, accounting and administrative nature;
to fulfill operational and managerial needs within the company and related to the service provided.
The data automatically acquired by the computer system will be used for the sole purpose of:
obtain anonymous statistical information on the use of the site;
verify the correct functioning of the computer system.
The computer systems and software procedures responsible for the operation of the GLG PORTE INDUSTRIALI S.R.L. applications may acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols. This is information that is not collected to be associated with identified data subjects, but by its very nature could, through processing and association with data held by third parties, allow you to identify users. This category of data includes the IP addresses or domain names of the computers used by users connecting to the site, the addresses in URI (Uniform Resource Identifier) notation of the requested resources, the time of the request, the method used to submit the request to the server and other parameters related to the operating system and the computer environment of the user. This data is used only for the purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and are deleted immediately after processing. The data may be used to ascertain liability in case of hypothetical computer crimes against the site: save this eventuality, the data do not persist for more than seven days.
RECIPIENTS OF THE DATA
The data collected will be processed exclusively within the scope of the aforementioned purposes. In compliance with the appropriate security measures put in place by the Data Controller, the data of third parties may also be communicated to public security bodies and other public and private entities for the fulfilment of obligations provided for by law also of a fiscal nature, administrative, financial and similar. In no case will the data be disseminated.
METHODS OF PROCESSING
The data will be processed both manually and with the help of computer and telematic means by ordinary or electronic mail. The data will be stored both in paper archives and in electronic archives for the time strictly necessary to achieve the purposes for which they were collected.
The provision of personal data in the forms sent through the form by the interested party is optional: in the absence of the complete compilation of the data marked with the asterisk as “mandatory”, the requested service cannot be provided. Failure to provide the remaining data not marked as “mandatory” will still allow the obtaining of the Service. Your personal data may be disclosed to third parties to comply with legal obligations, or to comply with orders from public authorities or to exercise a right in court. Your personal data will not be disseminated.
TYPES OF DATA WE MAY PROCESS
Personal information such as:
name, surname, date of birth, e-mail or other data entered directly by the user;
login credentials, such as: username and password;
media data processed on behalf of the data subject, such as: photos, pdf, drawings or images;
data derived from cookies;
also non-personal data, such as: language, profession, telephone number, postal code, etc.
HOW WE USE INFORMATION
We may process your personal data for the following reasons:
We may collect your data in order to keep you updated on news, communications and updates about our services and events. If you do not wish to be on our mailing list, you can unsubscribe at any time.
We may also use your personal data to create, develop, use, provide and improve our services, content and advertising materials, and to prevent loss and fraud.
We may use your personal data to send you important notices, such as communications regarding changes to our terms, conditions and policies. These data are important for the interaction with GLG PORTE INDUSTRIALI S.R.L. and therefore you may not request not to receive these communications.
In addition, we may use personal data for internal purposes, such as verification, data analysis and research to improve our services and communications.
ORIGIN OF PERSONAL DATA COLLECTED FROM OTHER SOURCES
We may also receive your personal data indirectly from other persons through a gift voucher or products that have been sent to you through an invitation to participate in GLG PORTE INDUSTRIALI S.R.L.
If you have not directly provided us with your personal data, we may provide you with information about the source who communicated it to us. Once we collect this data, we do so in accordance with applicable laws in the jurisdiction. During the use of such data for research and development, no attempt is made to identify the persons to whom the data belongs.
DISSEMINATION TO THIRD PARTIES
It may be that GLG PORTE INDUSTRIALI S.R.L. provides some personal data in order to offer or improve its services, even for a request for support to customers. In these cases, the operation will be managed in accordance with the relevant laws by third parties. Personal data will not be disclosed to third parties for their own marketing purposes.
Service providers: GLG PORTE INDUSTRIALI S.R.L. reserves the right to share personal data of users with companies that provide services such as data processing, granting of credits, management and improvement of customer data, customer support, assessment of interest in our services and market research or user satisfaction surveys. These companies are obliged to protect your data.
Others: If necessary, for reasons of national security, or other issues of public importance, we may also disclose your data in accordance with the law. This action may include the communication of data to public or government authorities. In the event of a reorganisation, merger or sale, we may also transfer all personal data collected by us and not collected by us to third parties affected by such operations.
HOW MUCH DATA IS STORED
PERSONAL DATA PROTECTION
For us at GLG PORTE INDUSTRIALI S.R.L. the security of your personal data is extremely important. GLG PORTE INDUSTRIALI S.R.L. services are all equipped with double authentication factor during access and applications are protected by encryption technologies, such as the security protocol (SSL), in order to protect your personal data during transmission. For added security, all access data is stored on databases in encrypted hash form, even when we use third-party storage solutions.
THIRD PARTY PROCESSOR, IF AND WHEN
By virtue of a Contract concluded between a Customer and GLG PORTE INDUSTRIALI S.R.L. or an effective maintenance of the services provided by the Data Controller of the activity (Customer) will have the opportunity to use GLG PORTE INDUSTRIALI S.R.L. as Data Controller. The Data Controller may request the performance of marketing services to GLG PORTE INDUSTRIALI S.R.L. with consequent responsibility for the processing of personal data in case they were really processed.
The Controller has the requirements of experience, ability and reliability to implement appropriate technical and organizational measures and to play the role of external data controller on behalf of the Controller.
GLG PORTE INDUSTRIALI S.R.L. remains responsible for the processing of Customers’ data and never, in any case, Data Controller, for a limited period and exclusively when interacting directly on the Customer’s data and by means of only express request for action of the same.
The Manager will be obliged to:
process the data in compliance with the principles of data processing provided for in the GDPR and only for the purposes indicated in the Contract or, better, in relation to the specific intervention operated on behalf of the Customer;
process the data according to the indications received by the Data Controller;
ensure that the authorised persons of their personal data processing structure have formally committed themselves to confidentiality or have an adequate legal obligation of confidentiality and have received the necessary training in data protection personal;
taking into account the state of the art and the costs of implementation, as well as the nature, subject matter, context and purpose of the processing, as well as the risk of varying probability and severity for the rights and freedoms of natural persons, to put in place appropriate technical and organisational measures to ensure a level of security appropriate to the risk, in particular against:
destruction, loss, modification, unauthorized disclosure, in an accidental or illegal way, of personal data transmitted, stored and otherwise processed;
data processing not allowed and not in accordance with the purposes of the processing operations;
inform and involve the Data Controller in a timely manner in all matters concerning the processing of personal data and, in particular, in the case of requests for information, controls, inspections and access by the supervisory authority;
taking into account the nature of the processing, assist the data controller with appropriate physical, technical and organisational measures, to the extent possible, in order to comply with the Data Controller’s obligation to comply with requests for the exercise of the data subject’s rights;
immediately inform the Data Controller if its instructions violate, in its opinion, the GDPR, taking into account the nature of the processing and the information available to the Controller, and in particular cooperate in the communication of personal data breaches, the implementation of the impact assessment and prior consultations.
The Data Controller, if it deems it appropriate, may have recourse to a sub-processor.
In any case, GLG PORTE INDUSTRIALI S.R.L. will never be held responsible if for negligence on the part of the Customer, as a result of official information mail or application of system www.glgdoors.com concerning the security, there will be no feedback and/ or acceptance of related technical intervention by the Customer, all, in order to compensate for any flaws that may occur in his system, computer or not. For example, if a communication is made to advise the installation of a costly SSL protocol for your website and the Customer ignores this dedicated information, GLG PORTE INDUSTRIALI S.R.L. will not be held responsible for any data loss or damage.
AUTOMATED DECISION-MAKING PROCEDURES
GLG PORTE INDUSTRIALI S.R.L. never makes any decision regarding the use of algorithms or profiling that can individually and significantly affect a user.
ACCESS TO PERSONAL DATA
You can manage your preferences and contact information by making an express request for change by mail pec from mail pec. If any data is not available online, we will grant you access to the other personal data we hold and provide a copy of it so that you can perform any operation you wish, For example, ask us to correct the data if inaccurate or delete it if we are not obliged to keep it under the terms of law or for legitimate commercial purposes. We may refuse to comply with similar requests if they are assessed to be detrimental to the privacy of others, are extremely difficult to comply with, or where access to the data is not otherwise mentioned as legal by local law. We may sometimes refuse to comply with requests for deletion or access to data if we believe that fulfilling such a request is contrary to the legitimate use of the data for anti-fraud purposes and to ensure security, as described above. The online tools for data exchange may vary depending on the country or its regulation.
CHILDREN OR PERSONS PREVENTED FROM WORK, DISABLED PERSONS OR RECIPIENTS OF A SUPPORT ADMINISTRATION
The discharge of liability shall apply to the weakest parties in all cases of impossibility of application of the above standard legislation due to age limits or in any case where the support of other support figures is required, all in order to never encroach on privacy fraudulently.
SERVICES BASED ON LOCATION
GLG PORTE INDUSTRIALI S.R.L. may provide some services based on geographical location alone for commercial reasons or technical impossibility, for all this we feel obliged to treat the location data with extreme care in order to provide a correct sales information. Some location-based services may require your personal data to function properly.
THIRD PARTY SITES AND SERVICES
The websites, services, applications and services in general of GLG PORTE INDUSTRIALI S.R.L. may contain links to websites, products and services of third parties. Our products and services may also offer or use third party products and services.
Data collected by third parties, which may include location or contact information, is governed by their respective privacy policies. The privacy regulations of these third parties associated with our main domain always refer to the same policy.
QUESTION ABOUT PRIVACY