HOLDER OF THE TREATMENT
Wood Company srl with registered office in via Zatti 21/A – 42122 Reggio Emilia (RE), VAT and C.F. IT02873800359 (hereinafter, “Owner”), as data controller, informs you pursuant to art. 13 EU Regulation no. 2016/679 (hereinafter “GDPR”) that your data will be processed in the manner and for the following purposes:
Object of the treatment
The Data Controller processes personal, identifying and non-sensitive data (for example, but not limited to, name, surname, company name, address, telephone, e-mail – hereinafter, “personal data” or even “data”) communicated by you on the occasion of registration on the owner’s website www.woodcompany.it (hereinafter “Site”), participation in opinion and satisfaction surveys, the compilation of registration forms via the Site for events organized by the owner, the online request for clarifications or support requests and the sending of newsletters.
Purpose of the treatment
Your personal data are processed: A) without your express consent to art. 6 lett. b), e) GDPR), for the following Service Purposes: manage and maintain the Site; allow you to use the services you may request; participate through the Site in initiatives organized by the Owner (for example, events); process a contact request; fulfill the obligations established by law, by a regulation, by community legislation or by an order of the Authority; prevent or discover fraudulent activities or abuses harmful to the Site; exercise the rights of the owner, for example the right to exercise a right in court. B) Only with your specific and distinct consent (art.7 GDPR), for the following Other Purposes: send you opinion and satisfaction surveys, newsletters and / or invitations to events by e-mail or register for events to which the Owner is a party or which organizes.
Legal basis
The provision of data is mandatory for all that is required by legal and contractual obligations and therefore any refusal to provide them in whole or in part may give rise to the inability to provide the requested services. The company processes optional user data on the basis of consent, i.e. through the explicit approval of this privacy policy and in relation to the methods and purposes described above.
Processing methods
The processing of your personal data is carried out by means of the operations indicated in art. 4 no. 2) GDPR and precisely: collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and destruction of data. Your personal data are subjected to both paper and electronic and / or automated processing, through the use of a website hosted on servers managed by Register.it. Security The Owner has adopted a wide variety of security measures to protect your data against the risk of loss, abuse or alteration. In particular: it has adopted the measures referred to in art. 32 GDPR; uses the data encryption technology established by the AES Standards (BCrypt) and the protected data transmission protocols known as HL7 and HTTPS; complies with ISO / IEC 27000, WG3 AND WG4 standards.
Access to data
Your data may be made accessible for the purposes referred to in art. 2.A) and 2.B): to employees and collaborators of the Data Controller, in their capacity as persons in charge and / or internal managers of the treatment and / or system administrators; to third-party companies or other subjects that carry out outsourcing activities on behalf of the Data Controller, in their capacity as Data Processors.
Disclosure of data
Without your express consent (art. 6 letter b) and c) GDPR), the Data Controller may communicate your data for the purposes referred to in art. 2.A) to Supervisory Bodies, Judicial Authorities as well as to all other subjects to whom the communication is mandatory by law for the accomplishment of said purposes. Your data will not be disclosed.
Data transfer
The management and storage of personal data will take place in Europe, on servers located in Italy of the Data Controller and / or third-party companies appointed and duly appointed as Data Processors.
Nature of data provision and consequences of refusing to answer
The provision of data for the purposes referred to in art. 2.A) is mandatory. In their absence, we will not be able to guarantee you registration on the Site or the Services of art. 2.A). The provision of data for the purposes referred to in art. 2.B) is optional. You can therefore decide not to provide any data or to subsequently deny the possibility of processing data already provided: in this case, you will not be able to receive e-mail invitations to events, newsletters and opinion and satisfaction surveys. In any case, you will continue to be entitled to the services referred to in art. 2.A).
Rights of the interested party
Pursuant to European Regulation 679/2016 (GDPR) and national legislation, the interested party can, according to the interested party, can exercise the rights referred to in art. 16 (Right to rectification), 17 (Right to erasure), 18 (Right to limitation of processing), 19 (Right to obtain notification from the data controller in cases of rectification or cancellation of personal data or cancellation of the same), 20 (Right to portability), 21 (right of opposition) and 22 (right to refuse the automated process) of European regulation 679/16. We inform you that the exercise of the rights of the interested party referred to in the aforementioned articles, such as the right of cancellation or opposition, meets the limits imposed by tax legislation. To exercise the rights provided by the articles from 15 to 22 of EU Reg. 679/16 the interested party must send a specific written request addressed to Wood Company srl, with registered office in via Zatti 21/A – 42122 Reggio Emilia (RE), or by sending an e-mail to the address woodcompanysrl@legalmail.com
Minors
This website and the owner’s services are not intended for minors under the age of 18 and the owner does not intentionally collect personal information relating to minors. In the event that information on minors were unintentionally registered, the Data Controller will delete them in a timely manner, at the request of the users.
Owner, manager and agents
The Data Controller is Wood Company srl, with registered office in via Zatti 21/A – 42122 Reggio Emilia (RE). The updated list of data processors and appointees is kept at the headquarters of the Data Controller.
Changes to this Policy
This information may change. We therefore recommend that you regularly check this Notice and refer to the most updated version.
Links to other sites
Our site may contain links to other sites which are not managed by us. If you click on a third party link, you will be directed to third party sites. We strongly advise you to view the privacy policy of each site.
Log Data
Like many other websites, www.woodcompany.it collects information that your browser sends each time our site is opened (“Log Data”). This log may include information such as your computer’s IP, browser type, browser version, pages of our site visited, date and time of the visit, the time spent on our pages and other statistics.
* This Privacy Policy was updated on September 22, 2019