Privacy Policy

Information on the processing of personal data pursuant to EU Regulation No. 679/2016 (GDPR) and other applicable regulations

The protection of your privacy and personal data is an important matter that we take into consideration in all our business relationships and in all the services we offer. We respect the confidentiality of your personal data and always act in accordance with data protection laws and this Privacy Policy.

Introduction

This page is intended to inform the Data Subject/User about how FIP ARTICOLI TECNICI SRL uses the personal data collected from the website www.fipitaly.it and related online applications, regardless of the purpose of the connection. This information does not apply to any websites accessed by the user via links.

The methods of data collection and processing are described by identifying: type of data, legal basis, data recipients (including foreign ones if applicable), retention period, data subject’s rights, any obligation to provide the data and consequences of refusal, the presence of automated decision-making processes (including profiling), and categories of data processed.

Following consultation of this website, data relating to identified or identifiable persons may be processed pursuant to Articles 4 and 24 of EU Reg. 2016/679 – GDPR. Such information is collected, evaluated, and subsequently used exclusively for authorized and permitted purposes and is not shared with third parties unless expressly authorized or specified for the intended purposes.

This information is provided in accordance with Articles 12, 13, and 14 of EU Reg. 2016/679 – GDPR.

1) Data Controller

The Data Controller is FIP ARTICOLI TECNICI SRL, Viale Regione Veneto 9, 35127 Padova, Italy, reachable at info@fipitaly.com. Data processing operations will be carried out by persons appointed by the Data Controller, who operate under its direct authority and in accordance with the instructions received.

2) Personal Data Collected and Processed

Browsing data

The IT systems and software procedures used to operate this website acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols. Among the data collected are access information, such as IP addresses and domain names of computers used by users who connect to the site, as well as other parameters related to the user's IT environment (such as: the Internet browser used, the operating system, the domain name of the website last visited before accessing our site, the number of visits, time spent on our website, and pages accessed). These data are used solely to obtain anonymous statistical information on the use of the site and to check its correct functioning. These data, collected automatically, are not associated with data from other sources, thereby preventing identification of the Data Subjects. However, we reserve the right to retrospectively verify and associate such data if concrete indications of unlawful use come to our attention.

Data voluntarily provided by the user

Some personal data (e.g.: name, surname, email address) are requested from the User for registration or to use the online services offered on our website. In this case, personal data are collected, as far as possible, on a voluntary basis and for each service provided on our website, a dedicated privacy notice is available to enable the User to understand exactly how their data is processed. We believe that this is the best way to ensure fairness, transparency, and clarity of the information provided to the User. If the User decides to voluntarily and freely send emails or letters to the addresses indicated on this website, this will result in the subsequent acquisition of the sender’s email or mailing address, necessary to respond to requests, as well as any other personal data included in the communication.

The personal data collected in this case relate solely to:

- Identifying data (e.g.: name, surname, address, phone number, fax, email, etc.).
- Tax data (if required by law – e.g. tax code, VAT number, etc.).

Personal data of a different nature or unrelated to those specified above (such as sensitive or judicial data) that are sent to us will be processed in accordance with EU Regulation 2016/679 and relevant legislation only with the explicit consent of the Data Subject and only if necessary to pursue the requested purposes. Otherwise, they will be ignored and not processed or destroyed, except for those required for the fulfillment of contractual obligations or legal compliance.

Cookies

This website uses various cookies to improve and facilitate navigation. For full information on cookies and this website's Cookie Policy, please visit: Cookie policy.

3) Lawfulness, Purpose, and Method of Processing

The personal data provided by the Data Subject through interaction with this website will be processed in accordance with the conditions of lawfulness under Article 6 of EU Reg. 2016/679 (explicit consent to processing, performance of a contract or pre-contractual measures, fulfillment of legal obligations, pursuit of the legitimate interest of the Data Controller) and will be processed and used, to the minimum extent necessary, exclusively for the following purposes:

- Operation and improvement of navigation within this website.

- Provision, improvement, and support of our online services.

- Response to requests submitted via the contact form (specific notice provided at the time of use).

- Provision of services and functionalities of the Reserved Area (specific notice provided at the time of any registration).

- Legitimate interest of the Data Controller.

- Legal and regulatory obligations.

In any case, personal data will be processed electronically, telematically, and on paper and included in relevant databases accessible only by the Data Controller and its appointed staff. Regarding the data processed in all their forms, please note that all appropriate security measures have been adopted to protect the rights, freedoms, and legitimate interests of the Data Subject. Additionally, specific security measures are in place to prevent data loss, unlawful or improper use, and unauthorized access. This website is delivered over a secure HTTPS connection.

4) Mandatory Nature of Data Provision

Some personal data transmitted through the implicit use of Internet communication protocols, as previously specified, are automatically provided and necessary for browsing the website. Regarding the online services offered on this website, providing the data marked as mandatory in the respective form fields is necessary to obtain the requested services, proceed with the service, and/or fulfill any professional or employment-related agreements. Aside from what is specified above, the User is free to provide any other personal data while browsing this website and when filling out the forms of online services.

5) Place of Data Processing

The data processing related to the web services of this site takes place at the aforementioned headquarters of the Data Controller and is handled only by authorized personnel, or by parties appointed for occasional maintenance operations. The acquired data are saved on web servers housed in dedicated server farms located in Italy and the EU.

6) Potential Data Recipients

Data are never shared with third parties except where necessary and/or involved in achieving the purposes and/or providing the service and/or executing orders or contracts.

Additionally, we may be required to disclose personal data to fulfill legal obligations and/or meet legal requirements and/or enforce rights and agreements.

Transfer of data to third parties: personal data are not shared with third parties except in the case of executing a specific request or fulfilling a contract or service.

Transfer of data abroad: we do not transfer data to foreign entities.

Compliance with laws and similar obligations: only when necessary, we will transmit the user's personal data in order to:
- apply or comply with a law, regulation, order issued by a public authority, or mandatory measures;

- detect and prevent security threats, fraud, or other harmful activities;

- protect and/or enforce the rights and property of FIP ARTICOLI TECNICI SRL or third parties;

- protect the rights and personal safety of our employees and third parties.

In relation to the purposes indicated above, the data may also be disclosed to the following individuals or categories of individuals, who are duly authorized to process such data in full compliance with current regulations:

- Certified accounting firms when communication is required by law, or is in the interest of the subject (individual or legal entity);

- Certified law firms when communication is required by law, or is in the interest of the subject (individual or legal entity);

- Technical and/or Commercial Consultants to fulfill requests or services.

7) Data Retention Period

At the end of the service or provision of the service, or in cases not otherwise specified in the specific Information Notices accepted by the Data Subject, personal data will be retained solely for historical or statistical purposes or for any obligations, in accordance with the law, regulations, EU legislation, and codes of conduct and ethics signed pursuant to Art. 40 of EU Regulation 2016/679, for a period as defined by applicable law (usually 10 years), or, if not subject to any law, for a period not exceeding 5 years. After this period, personal data will be stored in anonymous form or destroyed.

8) Absence of Automated Decision-Making

This website does not use automated decision-making processes and, in particular, does not implement profiling systems.

9) Data Subjects' Rights

The Data Subject has the right to:

- obtain confirmation of the existence or non-existence of personal data concerning them, even if not yet recorded, and their communication in an intelligible form without delay;

- request, in writing, information on their personal data stored by us (e.g.: origin, purpose, methods, categories, logic applied, retention period, rights, identifying details of the Data Controller, recipients or categories to whom the data may be disclosed);

- withdraw consent to data processing; request data deletion;

- request the transformation and/or restriction or blocking of data processed unlawfully;

- request the updating, rectification, or integration of data;

- obtain their personal data, provided to the Data Controller, in order to transmit them to another Data Controller;

- request certification that the above operations have been brought to the attention of those to whom the data were communicated, except where this proves impossible or involves a disproportionate use of resources compared to the protected right;

- object, in whole or in part, on legitimate grounds, to the processing of personal data concerning them, even if relevant to the purpose of collection;

- lodge a complaint with the Data Protection Authority (garanteprivacy.it).

For more information about privacy laws and rights, the Data Subject can visit the website of the Data Protection Authority at: www.garanteprivacy.it.

Data Subjects wishing to exercise their rights must use the contact details of the Data Controller.