Privacy Policy

Privacy Policy

Data Controller

Metallurgica Valchiese s.r.l.
Via del Bosco, 10
IT – 25076 Odolo (BS)
Tel. +39 0365 826521
Fax +39 0365 826523
Data Controller’s email address: mail@metallurgicavalchiese.com

Types of Data Collected

Among the Personal Data collected by this Application, either independently or through third parties, are: Cookies, Usage Data, first name, last name, telephone number, and email address.

Complete details on each type of data collected are provided in the dedicated sections of this privacy policy or through specific information notices displayed prior to data collection.

Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically while using this Application.

Unless otherwise specified, all Data requested by this Application are mandatory. If the User refuses to provide them, it may be impossible for this Application to provide the Service. In cases where this Application indicates certain Data as optional, Users are free to refrain from providing such Data without any consequences on the availability or operation of the Service.

Users who have doubts about which Data are mandatory are encouraged to contact the Data Controller.

Any use of Cookies—or other tracking tools—by this Application or by the owners of third-party services used by this Application, unless otherwise specified, is intended to provide the Service requested by the User, in addition to the other purposes described in this document and in the Cookie Policy, if available.

The User assumes responsibility for the Personal Data of third parties obtained, published, or shared through this Application and guarantees that they have the right to communicate or disseminate such Data, releasing the Controller from any liability towards third parties.

Methods and Place of Data Processing

Processing Methods

The Data Controller adopts appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of Personal Data.

Data processing is carried out using IT and/or telematic tools, with organizational methods and logic strictly related to the stated purposes. In addition to the Data Controller, in some cases, other parties involved in the organization of this Application (administrative, commercial, marketing, legal staff, system administrators) or external parties (such as third-party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) may have access to the Data. These parties may be appointed, if necessary, as Data Processors by the Controller. The updated list of Data Processors may be requested from the Controller at any time.

Legal Basis of Processing

The Data Controller processes Personal Data relating to the User if one of the following conditions applies:

  • The User has given consent for one or more specific purposes.
    Note: In some jurisdictions, the Controller may be allowed to process Personal Data without the User’s consent or another legal basis listed below until the User objects (“opt-out”). This does not apply where the processing of Personal Data is governed by European data protection law;
  • Processing is necessary for the performance of a contract with the User and/or for pre-contractual measures;
  • Processing is necessary to comply with a legal obligation to which the Controller is subject;
  • Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Controller;
  • Processing is necessary for the purposes of the legitimate interests pursued by the Controller or by third parties.

The User may always request the Controller to clarify the specific legal basis of each processing activity, in particular whether the processing is based on law, required by a contract, or necessary to enter into a contract.

Place

Data are processed at the Controller’s operating offices and in any other place where the parties involved in the processing are located. For further information, please contact the Controller.

The User’s Personal Data may be transferred to a country other than the one in which the User is located. To obtain further information about the place of processing, the User may refer to the section on details of Personal Data processing.

The User has the right to obtain information regarding the legal basis for the transfer of Data outside the European Union or to an international organization, as well as regarding the security measures adopted by the Controller to protect the Data.

The User may verify whether such transfers take place by consulting the relevant section of this document or by contacting the Controller using the details provided above.

Retention Period

Data are processed and stored for the time required by the purposes for which they were collected.

Specifically:

  • Personal Data collected for purposes related to the performance of a contract between the Controller and the User will be retained until such contract has been fully performed.
  • Personal Data collected for purposes related to the legitimate interest of the Controller will be retained until such interest is satisfied. The User may obtain further information regarding the legitimate interest pursued by the Controller in the relevant sections of this document or by contacting the Controller.

Where processing is based on the User’s consent, the Controller may retain Personal Data longer until such consent is withdrawn. Additionally, the Controller may be required to retain Personal Data for a longer period in compliance with legal obligations or by order of an authority.

At the end of the retention period, Personal Data will be deleted. Therefore, once this period has expired, the rights of access, deletion, rectification, and data portability can no longer be exercised.

Purposes of Data Processing

User Data are collected to allow the Controller to provide its Services, as well as for the following purposes: Statistics, Display of content from external platforms, and Contacting the User.

For more detailed information on the purposes of processing and the Personal Data relevant to each purpose, the User may refer to the relevant sections of this document.

Details on the Processing of Personal Data

Personal Data are collected for the following purposes and using the following services:

  • Contacting the User
  • Statistics
  • Display of content from external platforms

User Rights

Users may exercise certain rights regarding their Data processed by the Controller.

In particular, Users have the right to:

  • Withdraw consent at any time.
  • Object to the processing of their Data, where processing is based on a legal ground other than consent.
  • Access their Data and obtain information about processing activities and a copy of the Data.
  • Verify and request rectification of inaccurate or outdated Data.
  • Obtain restriction of processing, where certain conditions apply.
  • Obtain erasure of Personal Data, where certain conditions apply.
  • Receive their Data or have them transferred to another controller, in a structured, commonly used, and machine-readable format, where technically feasible.
  • Lodge a complaint with the competent data protection authority or take legal action.

Details on the Right to Object

Where Personal Data are processed in the public interest, in the exercise of official authority, or for legitimate interests pursued by the Controller, Users have the right to object on grounds relating to their particular situation.

Where Personal Data are processed for direct marketing purposes, Users may object at any time without providing any justification.

How to Exercise Rights

To exercise their rights, Users may send a request to the Controller using the contact details provided in this document. Requests are submitted free of charge and will be processed by the Controller as soon as possible, in any case within one month.

Additional Information on Data Processing

Legal Defense

The User’s Personal Data may be used by the Controller in legal proceedings or in preparation thereof for the defense against misuse of this Application or related Services.

The User acknowledges that the Controller may be required to disclose Personal Data by order of public authorities.

Specific Information Notices

Upon request, this Application may provide the User with additional and contextual information notices regarding specific Services or the collection and processing of Personal Data.

System Logs and Maintenance

For operational and maintenance purposes, this Application and any third-party services it uses may collect system logs, which may contain Personal Data such as the User’s IP address.

Information Not Contained in This Policy

Further information concerning the processing of Personal Data may be requested at any time from the Controller using the provided contact details.

“Do Not Track” Requests

This Application does not support “Do Not Track” requests.
To determine whether third-party services used support such requests, Users are encouraged to consult their respective privacy policies.

Changes to This Privacy Policy

The Controller reserves the right to make changes to this privacy policy at any time by notifying Users on this page and, where technically and legally feasible, within this Application and/or by contacting Users through available contact details.

Users are therefore encouraged to consult this page regularly, referring to the date of the last modification indicated at the bottom.

If changes affect processing activities based on consent, the Controller will collect new consent from the User where required.

Definitions

Personal Data (or Data):
Any information that directly or indirectly identifies or makes identifiable a natural person.

Usage Data:
Information collected automatically through this Application, including IP addresses, URI addresses, request time, request method, response status code, country of origin, browser and operating system details, visit duration, navigation paths, and other technical details.

User:
The individual using this Application, unless otherwise specified.

Data Subject:
The natural person to whom the Personal Data refer.

Data Processor:
Any entity that processes Personal Data on behalf of the Controller.

Data Controller:
The entity that determines the purposes and means of processing Personal Data.

This Application:
The hardware or software tool through which Users’ Personal Data are collected and processed.

Service:
The service provided by this Application as defined in the relevant terms.

European Union (EU):
Includes all current EU and EEA member states, unless otherwise specified.

Cookie:
A small piece of data stored on the User’s device.

Legal References

This privacy policy is drafted in accordance with multiple legislative frameworks, including Articles 13 and 14 of Regulation (EU) 2016/679 (GDPR).
Unless otherwise specified, this privacy policy applies exclusively to this Application.