DATA PROTECTION INFORMATION

Controller and Data Processors

The Data Controller is Freschi e Schiavoni s.r.l. with registered office at via Monzese 34, Vignate (MI), represented by its legal representative. The updated list of Data Processors is kept at the company’s headquarters.

Rights of the Data Subject

According to the regulations mentioned, the Data Subject has the right to obtain from the Data Controller the information contained in this document, such as the category of data processed, purposes and legal bases of the processing, recipients of the data, processing methods, data location, and guarantees in case of data transfer to another country. Furthermore, the Data Subject is granted the exercise of the rights provided in Articles 15 to 22 of the GDPR, including but not limited to:

To whom can the Data Subject lodge a complaint?

Without prejudice to any other administrative or judicial remedy, the Data Subject may lodge a complaint with the competent supervisory authority in Italy (Italian Data Protection Authority, www.garanteprivacy.it) or with the authority exercising its tasks and powers in the Member State where the violation of the GDPR occurred.

Methods of Data Processing

Only data strictly necessary for the purposes of processing are collected. In no case are personal data used for undisclosed purposes. The Data Controller adopts adequate security measures to protect the integrity, confidentiality, and availability of the Data Subject’s personal data, preventing unauthorized access, disclosure, alteration, or unauthorized destruction of data. These measures include the use of computer tools (e.g., protection against unauthorized access and malware) and organizational measures (access control). The Data Controller also imposes on Third Parties and Data Processors the compliance with similar security measures.

The Data Controller will promptly inform the Data Subjects if there is a particular risk of a breach of their rights, as provided for in Article 33 of the GDPR concerning notifications of personal data breaches.

Where we process Your data

The Data Subject’s personal data is stored in paper, electronic, and telematic archives located at the Company’s headquarters or at secondary offices with appointed Data Processors, situated in Italy or in countries where the GDPR is applicable (EU countries). The Data Controller, if necessary, may have the right to transfer data to the European Union and/or non-EU countries. In such cases, the Data Controller ensures in advance that the transfer of data outside the EU will comply with applicable legal provisions by entering into agreements that guarantee an adequate level of protection and/or adopting standard contractual clauses provided by the European Commission and/or binding corporate rules.

Communication and Disclosure

In addition to specific provisions for categories of data, data may be communicated, if required, to the Judicial Authority, Tax Police bodies, Public Security bodies, supervisory and control authorities, and, in general, to all subjects to whom access to such data is granted under regulatory provisions, for defense or public safety purposes, prevention, detection, or prosecution of crimes.

Personal data may be disclosed to individuals, acting as Data Processors and/or persons authorized by the Data Controller, employees, and collaborators of the Data Controller specifically authorized within the scope of their duties and the purposes mentioned above, or external entities (such as third-party technical service providers, postal couriers, hosting providers, IT companies, communication agencies).

The collected data is not intended for dissemination.

Data retention period

Your personal data is kept for a limited and specific period for each category of data. The data retention beyond the natural term may be extended to ascertain, exercise, or defend a right in court.

Types of processed data

Traffic data

The computer system responsible for the operation of the Site acquires information whose transmission is implicit in the use of Internet communication protocols and which contains personal data, such as the IP address or domain names of the terminals used by users, the addresses in URI (Uniform Resource Identifier) notation of the requested resources, times, and duration of use of online services, the web page of origin of the visitor (referral) and exit, the outcome of requests, and the size of the files obtained in response.

Purpose of processing

This data is used:

Data retention period

Traffic data is usually kept for one week, except in cases of investigations into anomalous traffic.

Communication and dissemination

This data can be provided for investigations, in an anonymous form, to specialists appointed by the data controller or the Data Protection Officer.

Data voluntarily provided by the data subject

The website allows visitors and potential customers to send messages and voluntarily provide their contact details, such as email address, phone numbers, name and surname, social media identifiers, for the purpose of receiving information or commercial offers. These data may include email addresses, phone numbers, names and surnames, social media identifiers, as well as any other personal data included in the communications. In sections of the Site where we collect your personal data, specific information pursuant to Article 13 of the GDPR is published for your necessary review before providing the requested data. If the visitor provides personal data of third parties while using the Site, they guarantee – assuming all related responsibility – that this specific processing is based on an appropriate legal basis (e.g., the consent of the data subject) pursuant to Article 6 of the Regulation that legitimizes the processing of the information in question. The data may be used for promotional or informational activities related to products or services concerning or related to those addressed in the messages.

Purpose of the processing

The data are processed by the Data Controller for the purpose of acquiring new customers, promoting its business, and informing potential customers about initiatives, events, and news.

Legal bases for the processing

 • The freely given consent of the data subject;
 • The legitimate interest of the data controller.

Data retention period

The data will be retained for a maximum period of three years from the last communication.

Communication and disclosure

The collected data are not intended to be communicated outside the organization of the Data Controller, particularly for the purpose of direct marketing by subjects other than the Data Controller.

Right to object (Article 21 GDPR)

You can object to the processing of your personal data or revoke your consent to the processing by sending the request to the address of the Data Controller or via e-mail to the address [email protected].

Cookies and other tracking systems

This website uses cookies, small text files stored by the program used for navigation (browser) on the user’s computer or other device. These cookies allow the storage of information related to the use of the site and/or the preferences of the visitors. Some functions of cookies can also be performed by other technologies; therefore, in the context of this information, the term "cookie" refers to cookies and all similar technologies.

Technical cookies are essential for the functionality of the site. These are primarily session cookies, which last only for the current session, i.e., until the browser is closed. They are managed directly by the site the user is visiting (first-party cookies). They serve to validate the browsing session and distinguish between connected users, as well as for security purposes to prevent cyber attacks on the site. Consent is not required for these cookies.

Cookies intended to remain on the user’s terminal, available even in successive visits to the site, are called permanent cookies. Their duration is determined by the server at the time of their creation, usually not exceeding 6 months.

Some functional cookies belong to this category. These are first-party cookies designed to personalize the user interface and browsing experience by tracking the preferences expressed by the user. Consent is not required for these cookies as well.

Technical cookies also include analytical/performance cookies, which are aimed at monitoring the site to assess its functioning, detect abnormal traffic, and generate statistics on the number of visitors and their interactions with the site. These cookies are generally third-party cookies, such as Google Analytics. They only collect anonymous information; for example, IP addresses are anonymized by masking the last bytes. Consent is not required for these cookies either (users can disable them if they wish).

Analytical profiling cookies collect information about the characteristics and preferences of users. Generally third-party cookies, they are used to create user profiles and customize the provision of a service. Typically managed by commercial organizations (such as Google, etc.), these cookies allow servers to assign a profile to specific statistical patterns and determine the likely interests or areas of interest of users. The purpose of third-party profiling cookies is purely commercial.

These cookies are linked to elements (such as images, maps, sounds, specific links to web pages of other domains). The use of these cookies is governed by the rules and processing conditions set by third parties and is therefore potentially subject to specific consent from these parties. Please refer to the information provided by them through their respective privacy policies.

As these cookies involve the processing of personal data or user profiling, consent is required.

Interaction with social networks

This site also incorporates plugins and/or buttons for sharing content on social networks.

•        Youtube For the most part, videos on the site do not transmit cookies upon accessing the page, as the "advanced privacy (no cookies)" option has been set, ensuring that YouTube does not store information about visitors unless they voluntarily play the video.

•        Social Network and APP Plugins (additional software components) The plugins are programmed not to set any cookies upon accessing the page. Cookies may be set, if required by social networks, only when the user actively and voluntarily uses the plugin.

If the user uses such services provided by other entities, there may be the processing of personal data by these third parties. Regarding the processing of personal data carried out by the operators of the Social Media platforms used by the Site, please refer to the information provided by them through their respective privacy policies.

Links to external sites may also involve processing by these sites, and for them, too, please refer to the information provided by them through their respective privacy policies.

Objection and withdrawal towards third parties

 In the case of third-party profiling cookies, the right to object must be exercised against the third parties performing the processing. The revocation of consent can always be freely exercised through the privacy preferences settings of the Site.

For further information on different types of cookies, you can refer to Wikipedia: HTTP cookie – Wikipedia

How to control or delete cookies:

Every browser is automatically set to accept cookies. However, users can always decide whether to accept cookies or not by using their browser settings. The usability of the content is still possible by completely disabling cookies, and disabling third-party cookies does not affect the navigability of the site in any way. It is important to note that disabling all cookies, including technical ones, may prevent the correct use of some functions on the site.

The settings to manage or disable cookies may vary depending on the browser used. The setting can be defined specifically for different websites and web applications. Moreover, some browsers allow defining different settings for various types of cookies.

The following links provide explanations on how to manage or disable cookies for the most popular browsers:

It is also worth noting the possibility of using specific tools for managing privacy regarding advertising cookies, such as Your Online Choices, limited to advertising networks participating in the initiative. For further information, visit http://www.edaa.eu.

For a detailed description of the use of cookies on the website, please refer to the specific information at the following link: https://freschieschiavoni.eu/privacy-cookies/

You can review Google’s privacy information on the following web pages: