PRIVACY AND COOKIE POLICY

DATA PROCESSING NOTICE

This Privacy Notice defines which data are collected and how they are used, disclosed, transferred and/or stored by the company.

This notice is provided pursuant to Articles 13-14 of Regulation (EU) 2016/679 – hereinafter, GDPR – to those who interact with the web services accessible electronically from the address: www.sata-group.com

This notice is subject to updates, which will be promptly published on the Website.

DATA CONTROLLER

The data controller of the Data collected through this site is SATA S.p.A., with registered office in Via Torino, 54 10082 Cuorgnè (TO), VAT No. 01736180017, email: sata@sata-group.com

METHODS OF PROCESSING PERSONAL DATA

The Personal Data provided or acquired will be processed in accordance with the principles of fairness, lawfulness, transparency and protection of confidentiality pursuant to the applicable regulations.

The Controller processes Users’ Personal Data by adopting appropriate security measures aimed at preventing unauthorized access, disclosure, modification or destruction of Personal Data.

The processing is carried out by means of IT and/or telematic tools, with organizational methods and logic strictly related to the purposes indicated. Among the Personal Data collected by this Website, independently or through third parties, there are: Cookies, Usage Data, Email and Name. Additional Personal Data collected may be indicated in other sections of this Privacy Policy or through information notices displayed at the same time as the Data are collected. Personal Data may be voluntarily entered by the User, or collected automatically during the use of this Website.

1. COMMUNICATION AND DISCLOSURE OF DATA

In addition to the Controller, in some cases, the following may have access to the Data:

a) categories of persons in charge, specifically trained for this purpose, involved in the organization of the Website (administrative, commercial, marketing, legal staff, system administrators);
b) external parties (such as third-party technical service providers, hosting providers, IT companies, communication agencies) also appointed as Data Processors by the Controller pursuant to art. 28 GDPR. The updated list of Processors, if appointed, may always be requested from the Data Controller;
c) public or private entities that may access the Data in compliance with legal obligations;
d) entities performing ancillary and instrumental tasks with respect to the Controller’s activity;
e) external entities such as partners in the organization of initiatives and events promoted and/or sponsored by the Controller, to whom communication of the Data is necessary for organizational reasons;
f) subject to the data subject’s consent, the entities indicated in point no. 5) letter g) of this Privacy Policy.

2. DATA VOLUNTARILY PROVIDED BY THE USER

The optional, explicit and voluntary sending of emails, including through the Contact Form or through the addresses indicated on this Website, entails the subsequent acquisition of the sender’s address, necessary in order to respond to requests, as well as any other Personal Data included in the email. The User’s consent to the provision of Data is necessary for inclusion in the Controller’s databases and for the establishment and proper performance of what is offered by the Controller to its Users, as well as to third parties for the performance of the single requested activity. Failure to provide such Data therefore prevents registration in the Controller’s databases, the completion of any contracts, as well as their execution and any other possible activity. Therefore, failure by the User to provide certain Personal Data may prevent this Website from providing its services. The User assumes responsibility for the Personal Data of third parties published or shared through this Website and guarantees that they have the right to communicate or disclose them, releasing the Controller from any liability towards third parties.

3. PLACE OF PROCESSING

The Data are processed at the Controller’s operating office. For further information, you may contact the Data Controller.

4. DATA RETENTION PERIODS

As expressly provided by art. 5, para. 1, letter e) of the GDPR, the Data are stored for the time necessary for their Processing in relation to the performance of the service requested by the User, or required by the Purposes described in this document.

In particular:

– Personal Data collected for purposes related to the performance of a contract between the Controller and the User will be retained until the performance of such contract has been completed;
– Data collected for Purposes attributable to the Controller’s legitimate interest will be retained until such interest is satisfied. The User may obtain further information regarding the legitimate interest pursued by the Controller in the relevant sections of this document or by contacting the Controller;
– Data collected on the basis of the User’s Consent may be retained until such Consent is withdrawn;
– Data collected for tax/administrative obligations will be retained for the time necessary to fulfill the aforementioned purposes and as required by law, and in any case for no longer than the period established by civil law regulations;
– The Data may be retained by the Controller for a longer period in compliance with legal obligations or by order of an authority;

The User may always request the interruption of the Processing or the deletion of Data not connected with the performance of the contract.

At the end of the retention period, the Personal Data will be deleted. Therefore, once this period has expired, the right of access, deletion, rectification and the right to data portability may no longer be exercised.

5. PURPOSES OF THE PROCESSING OF COLLECTED DATA

The User’s Data are collected to allow the Website to provide its services, as well as for the following Purposes: Contacting the User, Managing addresses and sending email messages, interaction with external platforms and statistics. In particular:

a) to fulfill any type of obligation contemplated and required by applicable laws, regulations and provisions related to business practices, in particular in tax/fiscal matters;
b) to follow up on specific requests addressed to the Controller by the User through the Website and its communication tools (contact forms, information request forms and similar);
c) for informational communications relating to the services of the same Controller, following the request for information through email messages or completion of the contact form and other communication tools;
d) for other ancillary or related purposes to those indicated above and in any case falling within the scope of the Website’s activities;
e) for sending promotional and commercial information and offers;
f) for profiling activities for marketing purposes;
g) for transferring Data to companies and/or third parties with whom the Controller collaborates or has entered into agreements, who may use the Data of the Data Subject to send communications and/or informational material relating to events organized by them or services provided by them;

The types of Personal Data used for each purpose are indicated in the specific sections of this document.

For the purposes referred to in point a), processing is necessary for the performance of a contract to which the data subject is party, for the implementation of pre-contractual measures or to comply with a legal obligation to which the Data Controller is subject.

For the purposes referred to in points b), c), d), processing is optional; however, failure to provide one or more data items will make it impossible to respond to your request for information and to use the services offered by the Controller.

For the purposes referred to in points e), f), g), processing is based on the freely given consent of the data subject.

FURTHER INFORMATION ON PROCESSING

LEGAL DEFENSE

The User’s Personal Data may be used by the Controller for defense in court or in the stages leading to its possible establishment, against abuses in the use of the Website or related services by the User. The User declares to be aware that the Controller may be required to disclose the Data upon request by public authorities.

NATURE OF THE PROCESSED DATA AND CONSEQUENCES OF ANY REFUSAL

The provision of data relating to Users’ browsing, for the above purposes, depends on the degree of privacy that the User has enabled or disabled through their browser. In some cases, disabling such data may affect browsing on this Website. For certain forms on this Website, the provision of browsing data and/or the use of technical cookies is mandatory for the proper functioning of the site itself. The provision of certain personal data is in any case necessary for the structure of the Website and its procedures. In particular, by way of example:

• for sending messages through the contact form, the minimum data required therein are in any case mandatory;

Failing this, the procedure itself cannot be completed.

Any request for other optional Data will instead be preceded by a specific approval checkbox. The provision of all other Data is optional, in accordance with the type of information that the User wishes to provide to the Website.

EXERCISE OF THE DATA SUBJECT’S RIGHTS

The data subject has the right to exercise the rights provided for in Articles 7, 15-22 of European Regulation 679/2016.

In particular, they have the right to withdraw their consent at any time and, upon simple request to the Data Controller, may ask for access to Personal Data, receive the personal Data provided to the Controller and, where possible, transmit them to another Data Controller without hindrance (so-called portability), obtain the updating, restriction of processing, rectification of Data and the deletion of those processed in breach of the regulations in force. They have the right, for legitimate reasons, to object to the Processing of Personal Data concerning them and to Processing for the purposes of sending advertising material, direct sales and carrying out market research. They also have the right to lodge a complaint with the Privacy Authority as the supervisory authority on the protection of Personal Data. The data subject may exercise their rights by contacting the Controller by email at: sata@sata-group.com

CHANGES TO THIS PRIVACY POLICY

The Data Controller reserves the right to make changes to this Privacy Policy at any time by notifying Users on this page. Please therefore consult this page frequently, taking as reference the date of the latest modification indicated at the bottom. In the event of non-acceptance of the changes made to this Privacy Policy, the User must cease using this Website and may request the Data Controller to remove their Personal Data. Unless otherwise specified, the previous Privacy Policy will continue to apply to the Personal Data collected up to that time.

The Data Controller is responsible for this Privacy Policy.

Privacy Notice updated in January 2023

COOKIE POLICY

This cookie policy, or extended notice regarding cookies and other tracking tools, concerns the use of Cookies by the website www.sata-group.com

The data controller of the Data collected through this site is SATA S.p.A., with registered office in Via Torino, 54 10082 Cuorgnè (TO), VAT No. 01736180017, email: sata@sata-group.com

Cookies are small text files used by websites to make the browsing experience more efficient for the User and which are sent to the user’s browser, where they are stored and then reused by the same Website on the next visit.

Cookies have different functions. There are Cookies intended to improve the functionality and browsing of this Website (so-called technical or necessary Cookies). There are also Cookies that are used to monitor users while browsing, record information and reveal their interests by analyzing their reading habits and hobbies, in order to personalize the advertising shown to them when they open email, browse a social network or other web pages (so-called profiling Cookies). Cookies are used to personalize content, provide social media features and analyze traffic.

In their browser, the user can set Privacy preferences so as not to store Cookies, delete them after each visit or each time the browser is closed, or even accept only Cookies from www.sata-group.com and not those from third parties.

Depending on how long cookies remain in the browser, they are divided into:

Session cookies: temporary cookies that remain on the device until the User leaves the site.

Persistent cookies: cookies that remain on the device for a longer period until they are deleted.

This site uses various types of Cookies

Technical Cookies

Technical cookies are those whose use does not require the User’s consent. These are Cookies used solely for the purpose of carrying out the transmission of a communication on an electronic communications network or to the extent strictly necessary for the provider of an information society service explicitly requested. On this Website, technical Cookies are used to store the User’s decision regarding the use of Cookies on the Website itself. The retention period of technical cookies corresponds to the duration of the browsing session on the site.

Third-Party Cookies

These Cookies are used to collect information anonymously on Users’ use of the Website such as: pages visited, time spent, origin of incoming traffic, geographical origin, age, gender and interests for statistical purposes and marketing campaigns. These Cookies are sent from third-party domains external to the website.

DELETE OR DISABLE COOKIES

Except for technical cookies strictly necessary for normal browsing, the provision of Data is left to the will of the User, who decides to browse the site after having read the short notice contained in the appropriate banner and to use third-party services involving the installation of cookies. The User may therefore avoid the installation of Cookies by keeping the banner open (thus refraining from closing it by clicking the “OK” button), removing the check mark from some or all of the cookie categories used by the Site, as well as through the specific functions available in their browser.

The user may manage preferences relating to Cookies directly within their browser and prevent third parties from installing them.

It is important for the User to know that by disabling all Cookies, the functioning of this Site may be impaired. Each browser has different procedures for managing settings.

To disable third-party cookies, it is also possible to use Your Online Choices, http://www.youronlinechoices.com/it/le-tue-scelte, a web service managed by the non-profit association European Interactive Digital Advertising Alliance (EDAA), which provides information on behavioral advertising based on profiling cookies and allows users to easily object (opt-out) to their installation. By deleting all cookies from your browser or removing them through services such as Your Online Choices, these, if third-party cookies, will be generically blocked, not only within the scope of this site.

FURTHER INFORMATION ON PROCESSING

Specific notices

Upon the User’s request, in addition to the information contained in this Cookie Policy, this Site may provide additional and contextual notices regarding specific services, or the collection and processing of Personal Data.

System logs and maintenance

For needs related to the operation and maintenance of this Site and any third-party services used by it, system logs may be collected, i.e. files that record interactions and may also contain Personal Data, such as the User’s IP address.

Information not contained in this Cookie Policy

Further information in relation to the processing of Personal Data may be requested at any time from the Data Controller using the contact information.

EXERCISE OF THE DATA SUBJECT’S RIGHTS

Pursuant to Articles 15-22 of European Regulation No. 679/2016, the data subject has the right to obtain confirmation as to whether or not personal data concerning them exist, even if not yet recorded, and their communication in intelligible form.

The data subject therefore has the right to obtain information on:

a) the origin of the personal data;
b) the purposes and methods of processing;
c) the logic applied in the event of processing carried out with the aid of electronic instruments;
d) the identification details of the Controller and of the Data Processors;
e) the entities or categories of entities to whom the Personal Data may be communicated or who may become aware of them in their capacity as designated representative in the State territory, processors or persons in charge.

The data subject has the right to obtain:

a) the updating, rectification or, where interested therein, integration of the Data;
b) the deletion, anonymization or blocking of data processed in violation of the law, including data whose retention is not necessary in relation to the purposes for which the data were collected or subsequently processed.

The data subject has the right to object, in whole or in part:

a) for legitimate reasons, to the Processing of Personal Data concerning them, even though relevant to the purpose of collection;
b) to the Processing of Personal Data concerning them for the purpose of sending advertising material or direct sales or for carrying out market research or commercial communication.

WARNING: The Controller is not responsible for updating all links included in this Cookie Policy that refer to third-party websites. Therefore, should a link not work or not be updated, Users acknowledge and accept that they must always refer to the document and/or section of the websites referred to by that link.