Privacy Policy
INFORMATION ON THE PROCESSING OF PERSONAL DATA
of users who consult the website of Pastificio Di Bari Tarall’Oro Srl pursuant to and for the purposes of Regulation (EU) 2016/679
WHY THIS INFORMATION
This information is provided pursuant to and for the purposes of Article 13 of EU Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 ” concerning the protection of individuals with regard to the processing of personal data, as well as the free circulation of such data and repealing Directive 95/46 / EC “.
In particular, this information describes the management methods of the Pastificio Di Bari Tarall’Oro Srl website in relation to the processing of the personal data of users who consult it and of those who interact with web services accessible electronically starting from the address :
http://www.taralloro.it
This information, therefore, is only valid for the Pastificio Di Bari Tarall’Oro Srl website and not for other websites that may be consulted by the user via links.
We therefore invite the User to read it and check it periodically carefully in order to check for any updates or revisions that may become necessary.
IDENTITY AND CONTACT DETAILS OF THE HOLDER OF THE PROCESSING OF PERSONAL DATA
The owner of the processing of personal data is PASTIFICIO DI BARI TARALL’ORO SRL, with registered office in Sammichele di Bari (BA), SS 100 Km 33 Zona PIP, Lotto 13/15 – zip code 70010, (e-mail address: taralloro @ taralloro.it, certified e-mail address: pastificiotaralloro@pec.it, Tel. +39 080 8916362).
CONTACT DETAILS OF THE PERSONAL DATA PROTECTION OFFICER
The Personal Data Protection Officer (RPD / DPO) designated by Pastificio Di Bari Tarall’Oro Srl pursuant to and for the purposes of Article 37 of the Regulation can be contacted at the following email address: dpo@taralloro.it or by registered mail ar addressed to: Personal Data Protection Manager c / o Pastificio Di Bari Tarall’Oro Srl, SS 100 Km 33 Zona PIP, Lotto 13/15 – zip code 70010 Sammichele di Bari (BA).
PURPOSE OF THE TREATMENT, LEGAL BASIS AND STORAGE PERIOD
TYPE OF DATA | PURPOSE | DESCRIPTION OF THE PURPOSES | LEGAL BASIS | STORAGE PERIOD |
Navigation data
IP addresses or domain names of the computers or terminals used by users, the addresses in URI / URL notation of the requested resources and other parameters relating to the operating system and the IT environment of the User | Use of web services | Obtain anonymous statistical information on the use of services (number of visitors by time or day, geographical areas of origin, etc.)
To ascertain responsibility in case of any computer crimes against the site Protect the rights of the Data Controller
Check the correct functioning of the website | The processing is necessary for the pursuit of the legitimate interest of the Data Controller which is substantiated in the protection and / or defense of their rights (Article 6, paragraph 1, letter f) of the Regulation) | The navigation data does not persist for more than 7 days (except for any need to ascertain crimes by the Judicial Authority) or are deleted immediately after processing as there is no logical archiving system for the same. |
Data provided voluntarily by the user in the “CONTACT US” section
(name, surname, e-mail address, telephone number, any other data included in the message) The processing of sensitive or judicial data is EXCLUDED and, if provided, they are deleted | To process the requests for information made by the User | Manage user requests through e-mails and / or telephone calls | The processing is necessary for the execution of a contract of which the interested party is a party or for the execution of pre-contractual measures adopted at the request of the same (Article 6, paragraph 1, letter b) of the Regulation) | The data provided voluntarily in this section are kept for the time strictly necessary to process requests for information from the User (and in any case no later than 24 months from the date of receipt of the request) |
Data provided voluntarily by the User / new customer for registration on the website ( e-mail address and password) | To manage the User’s registration and subsequently allow access to the reserved area of the website | To identify and authorize the User who decides to register on the website of the Owner | The processing is necessary for the execution of a contract of which the interested party is a party or for the execution of pre-contractual measures adopted at the request of the same (Article 6, paragraph 1, letter b) of the Regulation) | The data provided voluntarily in this section are kept for the time strictly necessary to achieve the purpose and in any case for the period necessary for the performance of the requested services. |
Newsletter | Sending newsletters to Users who request it | Sending electronic communications to those who explicitly request them, by filling out the appropriate form on the site and authorizing the Data Controller to process their data for the specific purpose | The interested party has given his consent to the processing of his personal data for the specific purpose when he has completed and sent the newsletter subscription form (Article 6, paragraph 1, letter a) of the Regulation) | The data provided for subscription to the newsletter are kept for the period in which the service is active (maximum 24 months). The User can deactivate the service at any time by clicking on the unsubscribe link. |
Online shopping
(Identification data such as name and surname, tax code, VAT number; contact data such as email address, telephone number, delivery address; transaction data such as payment methods, card details) | Conclusion, execution and fulfillment of the online product purchase contract | Management of requests for information on product availability and reservations
Payment management
Billing
Shipment
Activation of mechanisms to check and avoid scams during purchase operations
Contact the buyer for information communications relating to the products purchased
| The processing is necessary for the execution of a contract of which the interested party is a party or for the execution of pre-contractual measures adopted at the request of the same (Article 6, paragraph 1, letter b) of the Regulation)
The processing is necessary for the pursuit of the legitimate interest of the owner which consists in carrying out checks aimed at preventing fraudulent activities through the use of credit cards (Article 6, paragraph 1, letter f) of the Regulation)
The processing is necessary to fulfill a legal obligation to which the Data Controller is subject (Article 6, paragraph 1, letter c) of the Regulation) | For the management of pre-contractual activities: until the end of the pre-contractual activities
For the management of contractual activities: 10 years from the purchase or from the end of the contractual and / or commercial relationship
For the fulfillment of a legal obligation: 10 years from the end of the contractual and / or commercial relationship
For carrying out checks aimed at preventing fraudulent activities through the use of credit cards: 24 months from the purchase or from the signing of the stipulated contract |
Cookie | See extended information | See extended information | See extended information | See extended information |
METHOD OF TREATMENT
The treatments referred to the categories of data connected to the web services of this site take place at the registered office of Pastificio Di Bari Tarall’Oro Srl or in offices defined by the same company and are processed only by authorized employees, duly instructed and trained.
Specific physical, logical and organizational security measures are observed to prevent the loss of data, illicit or incorrect use, unauthorized access, such as, by way of example and not limited to, being in continuous evolution and updating:
- Identification of trained and trained personnel authorized to process users’ personal data;
- Controlled access to the premises where the data is contained;
- Use of personal and secret credentials by those authorized to digitally process data;
- Adoption of central and peripheral logical security systems, such as updated firewalls and antivirus;
- Adoption of backup procedures.
NATURE OF DATA PROVISION
The provision of navigation data is automatic and implicit in the Internet transmission protocols; the provision of data relating to the “contact us” section is voluntary and optional: failure to provide it makes it impossible to process the requests made by the user; the provision of personal data for “registration” to the website is voluntary and optional: failure to provide it makes it impossible to register; the provision of personal data for the “newsletter” is voluntary and optional: failure to provide data and the manifestation of consent for the specific purpose makes it impossible to receive the service; the provision of personal data for the “online purchase” of the Controller’s products is a necessary requirement for the conclusion of the purchase contract:
RECIPIENTS OF THE DATA
Third party service providers
The personal data of users may be shared, on behalf of the Data Controller, with third party service providers who act as data processors in order to make it possible to use the Site. By way of example, these third parties may include professionals, even in associated form. , which deal with the management or maintenance of the IT infrastructure on which the Site is based.
Third parties in compliance with a legal obligation or to protect the rights of the Company
The communication of personal data of users can take place towards institutions, law enforcement agencies, judicial or public security authorities, in the context of a legal procedure, to fulfill a legal obligation or protect a right.
TRANSFER OF DATA TO A THIRD COUNTRY
The data processed by the Data Controller are not disclosed and / or transferred to a third country.
RIGHTS OF THE INTERESTED PARTIES
Interested parties, at any time, have the right to obtain from the Data Controller:
- confirmation of the existence or otherwise of the data and to know its content and origin;
- verification of accuracy;
- the request for integration, updating, rectification;
- cancellation;
- the limitation of the processing;
- data portability.
Furthermore, the interested party has the right to oppose the processing, at any time, for the reasons connected to his particular situation.
To exercise the rights referred to above, the interested party may submit a specific request to the Data Controller by e-mail to the address: taralloro@taralloro.it, pec address: pastificiotaralloro@pec.it, or by registered letter with return receipt to be delivered to : Pastificio Di Bari Tarall’Oro Srl, SS 100 Km 33 PIP Area, Lot 13/15 – 70010 Sammichele di Bari (BA). The appropriate application can also be presented to the Personal Data Protection Officer at the following e-mail address: dpo@taralloro.it or by registered letter with return receipt to: Personal Data Protection Officer, at Pastificio Di Bari Tarall ‘ Oro, SS 100 Km 33 Zona PIP, Lot 13/15 – zip code 70010 Sammichele di Bari (BA).
RIGHT OF COMPLAINT
Interested parties who believe that the processing of personal data referring to them carried out through this Site is in violation of the provisions of the Regulations have the right to lodge a complaint with the Guarantor, as required by art. 77 of the Regulation itself, or to take appropriate judicial offices (Article 79 of the Regulation).
Newsletter subscription – Information on data processing
pursuant to article 13 of Regulation (EU) 2016/679
The Newsletter of Pastificio Di Bari Tarall’Oro srl is published on the Company’s website and distributed via e-mail – automatically and free of charge – to those who request to receive it by filling out the form on this page.
The data provided will be used with IT and telematic tools for the sole purpose of providing the requested service and, for this reason, will be kept exclusively for the period in which it will be active.
The legal basis of this processing is to be found in the consent expressed by the interested party, in a free, voluntary and univocal manner, for the specific purpose (Article 6, paragraph 1, letter a) of the EU Regulation).
The data controller is the PASTIFICIO DI BARI TARALL’ORO SRL, with registered office in Sammichele di Bari (BA), SS 100 Km 33 Zona PIP, Lotto 13/15 – cap 70010, (e-mail address: taralloro @ taralloro. it, certified e-mail address: pastificiotaralloro@pec.it, Tel. +39 080 8916362).
The Personal Data Protection Officer (RPD / DPO) designated by Pastificio Di Bari Tarall’Oro Srl pursuant to and for the purposes of Article 37 of the Regulation can be contacted at the following email address: dpo@taralloro.it or by registered mail ar addressed to: Personal Data Protection Manager c / o Pastificio Di Bari Tarall’Oro Srl, SS 100 Km 33 Zona PIP, Lotto 13/15 – zip code 70010 Sammichele di Bari (BA).
The data will be processed exclusively by the employees of the Data Controller, authorized and duly instructed, as well as by freelancers and / or companies expressly appointed as data processors (eg for technological maintenance needs of the site).
Interested parties have the right to obtain from the Data Controller, in the cases provided for, access to personal data and the correction or cancellation of the same or the limitation of the processing that concerns them or to oppose the processing (articles 15 et seq. Of the Regulation ). The specific application is presented to the Data Controller by e-mail to the address: taralloro@taralloro.it, pec at the address: pastificiotaralloro@pec.it or by registered letter with return receipt to: PASTIFICIO DI BARI TARALL’ORO SRL, SS 100 Km 33 PIP area, Lot 13/15 – zip code 70010 Sammichele di Bari (BA). The appropriate application is also presented to the Personal Data Protection Officer by email to the address: dpo@taralloro.itor by registered letter with return receipt to: Personal data protection manager at Pastificio Di Bari Tarall’Oro srl, SS 100 Km 33 Zona PIP, Lotto 13/15 – cap 70010 Sammichele di Bari (BA).
Interested parties who believe that the processing of their personal data carried out through this service is in violation of the provisions of the Regulation have the right to lodge a complaint with the Guarantor, as provided for by art. 77 of the Regulation itself, or to take appropriate judicial offices (Article 79 of the Regulation).
CANCELLATION OF THE SERVICE
To stop receiving the newsletter, enter your e-mail address in the form on this page and click on the “Unsubscribe” button.
Cookies Policy
INFORMATION MADE PURSUANT TO ART. 13 OF THE 2016/679 EU REGULATION
WHY THIS INFORMATION
The website www.taralloro.it uses cookies and similar technologies to ensure the proper functioning of the procedures and improve the experience of using online applications. This document provides detailed information on the use of cookies (and similar technologies), on how they are used by www.taralloro.it and on how to manage them in accordance with the provisions of:
EU Regulation 2016/679 concerning the protection of individuals with regard to the processing of personal data, as well as the free circulation of such data;
· Provision of the Guarantor for the Protection of Personal Data of 8 May 2014, n.229 on “Identification of simplified procedures for the information and the acquisition of consent for the use of cookies” (Published in the Official Gazette no. 126 of 3 June 2014 ) .
HOLDER OF THE PROCESSING OF PERSONAL DATA
The owner of the processing of personal data is the PASTIFICIO DI BARI TARALL’ORO SRL, with registered office in Sammichele di Bari (BA), Zona PIP SS 100 Km 33 Lot 13/15 – zip code 70010, (e-mail address: taralloro @ taralloro.it, certified e-mail address: pastificiotaralloro@pec.it, Tel. +39 080 8916362).
RESPONSIBLE FOR THE PROTECTION OF PERSONAL DATA
Pastificio Di Bari Tarall’Oro Srl has designated its Data Protection Officer (RPD / DPO) who can be contacted at the following email address: dpo@taralloro.it.
WHAT COOKIES ARE
Cookies are small text strings that the sites visited by the user send to their terminal (usually the browser), where they are stored before being re-transmitted to the same sites at the next visit by the same user. While browsing a site, the user can also receive cookies on his terminal that are sent from different sites or web servers (so-called “third parties”), on which some elements may reside (such as, for example, images, maps, sounds, specific links to pages of other domains) present on the site that the same is visiting.
Cookies can remain in the system for the duration of a session (i.e. until the browser used for web browsing is closed ) or for long periods and may contain a unique identification code.
HOW MANY TYPES OF COOKIES ARE THERE?
There are two basic macro-categories, with different characteristics: technical cookies and profiling cookies.
A) Technical cookies
Technical cookies are generally necessary for the website to function properly and to allow navigation; without them the User may not be able to view the pages correctly or to use some services. For example, a technical cookie is essential to keep the user connected throughout the visit to a website, or to memorize the settings of the language, display, and so on.
The technical cookies used on this site can be further divided into:
Necessary cookies
These cookies are necessary for the functioning of the site, with particular reference to normal navigation and use of the same, and cannot be deactivated in our systems. They are usually only set in response to actions made by the User that constitute a request for services, such as setting privacy preferences, logging in or filling out forms. These cookies do not store personal information.
Analytical cookies
These cookies allow us to count visits and traffic sources so that we can evaluate and improve site performance. They allow you to know which pages are the most and least popular and see how visitors navigate the site. All information collected by cookies is aggregated and therefore anonymous. If you do not authorize these cookies, we will not be able to evaluate the navigation and collective behavior of our users and consequently improve the performance of the site.
Functionality cookies
These cookies allow the site to provide advanced features and customization, which allow navigation according to a series of selected criteria (for example, the language, the products selected for purchases) in order to improve the service rendered.
B) Profiling cookies
Profiling cookies have the task of profiling the user and are used in order to send advertising messages in line with the preferences expressed by the user while browsing. Profiling cookies can be used, even by third-party companies, to build a profile relating to the interests of users and show or send them relevant advertisements on this and other sites. These cookies can be set, through the website of the owner, only by advertising partners and therefore they are third-party cookies. These cookies are based solely on the identification of the User’s browser and internet device. If these cookies are not authorized, no advertisements will be shown or sent, nor will profiles related to the User’s interests be created.The use of these cookies requires the prior acquisition of the free consent of the user which the Site acquires in accordance with the Provision of the Guarantor of 8 May 2014 and ss. mm. ii. Refusal or revocation of consent to the use of one or several profiling cookies will not interfere with the ability to access or browse the Site.
Cookies can, again, be classified as:
- first-part cookies (first-part cookies) i.e. cookies generated and managed directly by the manager of the website on which the user is browsing.
- third- party cookies (third-part cookies), which are generated and managed by parties other than the operator of the website on which the user is browsing (by virtue, as a rule, of a contract between the website owner and Part Three).
DURATION OF COOKIES
Cookies have a duration dictated by the expiration date (or by a specific action such as closing the browser) set at the time of installation.
Cookies can be:
- temporary or session (session cookies): they are used to store temporary information, allow you to connect the actions performed during a specific session and are removed from the computer when the browser is closed;
- permanent (persistent cookies): they are used to store information, such as the login name and password, in order to avoid the user having to type them again each time they visit a specific site. These remain stored on the computer even after closing the browser.
Below is the list of individual cookies on the website www.taralloro.it :
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
LEGAL BASIS
The processing is necessary for the pursuit of the legitimate interest of the data controller which is substantiated in the technical purpose linked to the functionality of the website, to ensure its regular functioning and to ensure the safety of navigation (Article 6, paragraph 1, letter f) of the EU Regulation).
As for profiling cookies, the legal basis consists in the consent of the interested party expressed for the specific purpose (Article 6, paragraph 1, letter a) of the EU Regulation).
OBLIGATORY TO PROVIDE DATA
Personal data processed by installing technical cookies are necessary to ensure correct navigation within the site.
On the contrary, it is optional to give consent to the installation of analytical cookies and profiling cookies. Your personal data will be processed by these cookies only with your consent.
SUBJECTS AUTHORIZED FOR THE PROCESSING
The data may be processed by employees of the corporate functions responsible for pursuing the aforementioned purposes, who have been expressly authorized to process them and who have received adequate operating instructions.
RECIPIENTS OF THE DATA
The data may be processed by external parties operating as owners such as, by way of example, supervisory and control authorities and bodies and in general by subjects, including private individuals, entitled to request data, Public Authorities who expressly request them for purposes administrative or institutional, in accordance with the provisions of current national and European legislation, as well as persons, companies, associations or professional firms that provide assistance and consultancy.
The data may also be processed, on behalf of the Data Controller, by external parties designated as managers, who are given adequate operating instructions. These subjects are essentially included in the following categories:
a) companies that offer e-mail sending services;
b) companies that offer website and information systems maintenance services;
c) companies that carry out management and maintenance services of the Data Controller’s database.
TRANSFER OF PERSONAL DATA TO THIRD COUNTRIES
The data collected using cookies may be transferred outside the European Union, and in particular to the United States (by way of example but not limited to, Google, Hubspot, Social Network) whose data protection level has been deemed adequate by the European Commission. pursuant to art. 45 of the GDPR.
The data collected using all other cookies will not be disclosed further.
NOTICE CONCERNING MINORS UNDER 14 YEARS
Children under the age of 14 cannot provide personal data. Pastificio Di Bari Tarall’Oro srl will not be in any way responsible for any collection of personal data, as well as false statements, provided by the minor, and in any case, if it is used, it will facilitate the right of access and cancellation forwarded by the legal guardian or whoever exercises parental responsibility.
EXERCISE OF THE DATA SUBJECT’S RIGHTS
The interested party, in relation to the personal data covered by this information, has the right to exercise the rights provided for by the EU Regulation listed below:
- Right of access by the interested party [art. 15 of the EU Regulation] : the interested party has the right to obtain from the owner confirmation that their personal data is being processed or not and, in this case, access to the information expressly provided for by the aforementioned article, including by way the purposes of the processing, the categories of data and recipients, the retention period, the existence of the right of cancellation, rectification or limitation, the right to lodge a complaint, all available information on the origin of the data, ” possible existence of an automated decision-making process pursuant to art. 22 of the Regulations, as well as a copy of their personal data.
- Right of rectification [art. 16 of the EU Regulation] : the interested party has the right to obtain from the data controller the correction and / or integration of inaccurate personal data concerning him, without undue delay;
- Right to cancellation (“right to be forgotten”) [art. 17 of the EU Regulation] : the interested party has the right to have their personal data deleted without unjustified delay, if there is one of the reasons expressly provided for by the aforementioned article, including by way of example and not limited to the loss of the need for processing with respect to purposes, the revocation of the consent on which the treatment is based, opposition to the treatment in the event that it is based on legitimate interest that does not prevail, unlawful processing of data, cancellation due to legal obligations, data of minors processed in the absence of the conditions of applicability provided from art. 8 of the Regulations;
- Right to limitation of treatment [art. 18 of the EU Regulation] : in the cases provided for by art. 18, including the unlawful processing, the contestation of the accuracy of the data, the opposition of the interested party and the lack of the need for processing by the owner, the data of the interested party must be processed only for storage unless the consent of the itself and the other cases expressly provided for by the aforementioned article;
- Right to data portability [art. 20 of the EU Regulation] : the interested party, in cases where the processing is based on consent and on the contract and is carried out by automated means, may request to receive their personal data in a structured format, commonly used and readable by an automatic device , and has the right to transmit them to another holder;
- Right to object [art. 21 of the EU Regulation] : the interested party has the right to object to the processing of their personal data, in the event that the processing is based on a non-prevalent legitimate interest or is carried out for direct marketing purposes;
- Right not to be subjected to automated decision-making processes [art. 22 of the EU Regulation] : the interested party has the right not to be subjected to a decision, including profiling, based solely on automated processing (for example carried out exclusively through electronic tools or computer programs).
RIGHT TO PROPOSE A COMPLAINT
If the interested party considers that his rights have been compromised, he has the right to lodge a complaint with the Guarantor Authority for the protection of personal data, according to the methods indicated by the same Authority at the following internet address:
http://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/4535524 or by sending written communication to the Authority for the Protection of Personal Data, Piazza Montecitorio n.121, 00186 Rome .
Last updated: November 2020