Privacy

Dear User,

We inform you that the processing of your personal data carried out through this site will comply with the current legislation on personal data protection and will be based on the principles of fairness, legality, transparency, and data protection. In compliance with EU Regulation 2016/679, below are the general information regarding the processing of your personal data, which you will provide using the services of the website.

This information applies only to the data provided by consulting or using the services offered by the website https://www.mansutti.it and does not extend to other websites or social networks that may be accessed by the user via any links on the site.

1)   IDENTIFYING DETAILS OF THE CONTROLLER AND DPO

Data Controller of your data is the company Mansutti Srl (Tax Code and VAT number 13393470961), headquartered at Via Aurelio Saffi, 9 - 20123 Milan, Tel. +39 02 85571, PEC: mansuttisrl@registerpec.it; email: infomansuttisrl@mansutti.it, represented by its legal representative pro tempore.

Data Protection Officer (DPO)
Data Protection Officer (D.P.O.) appointed by the Controller pursuant to Articles 37 et seq. of the GDPR. The D.P.O. can be contacted at the following email address: dpomansuttisrl@mansutti.it PEC: leonardosrl@interfreepec.it or at the Controller’s registered office.

2)   LEGAL BASIS FOR PROCESSING

Personal data are processed by Mansutti Srl with your consent, which will be requested on specific pages of the site or via cookies (see the dedicated cookie policy section). In this case, the provision of data is entirely voluntary, and without your consent, the data will not be collected or used. If you have provided consent, you can revoke it at any time, and from the moment of revocation, the data will no longer be processed.

3)   PURPOSE OF PROCESSING

The data you provide will be processed for the following purposes:
   •   allow access to the services offered by the Mansutti Srl website
   •   enable navigation on the website itself;
   •   respond to requests for information from website visitors;
   •   address any reports or complaints.

4)   Data Processing Location

The data related to the provision of the web service will be processed at the web farm of the service provider. No data deriving from the web service is communicated or disclosed. Normally, the user's data will not be transferred outside the European Union. Should this become necessary, we ensure that the recipient, acting as the data processor, complies with the provisions of the GDPR, including the rules specifically established for the transfer of personal data to third countries, ensuring that such transfers are based on an adequacy decision or the signing of standard contractual clauses for data protection approved by the European Commission.

5)   Types of Data Processed

These are personal data, the transmission of which is implicit in the use of Internet communication protocols that computer systems and software procedures acquire automatically during their normal operation. This category of data includes, for example, IP addresses or domain names of computers used to connect to the site, the time of the request, and other parameters related to the user's operating system and IT environment.

This information, although not collected to be associated with identified users, could, through processing and association with data held by third parties, allow the identification of users.

6)   Cookies

Cookies are small text files that websites send to users' devices, where they are stored to be transmitted back to the same sites during subsequent visits. For more information, see the cookie-policy.

7)   Nature of Data Provision

For browsing data, the provision of some personal data by the user is mandatory to allow the Company to manage communications and requests received from the user and those required in each section to fulfill, for example, contractual obligations, etc.

These types of data are marked with an asterisk [*], and in this case, the provision is mandatory to allow the Company to fulfill its obligations or the user's request, which, if not provided, cannot be fulfilled. In contrast, the collection of other data not marked with an asterisk is optional: failure to provide them will not have any consequence for the user. The provision of personal data by the user for marketing purposes is optional, and refusal to provide them will not have any consequence. The consent given for marketing purposes extends to the sending of communications through both automated and non-automated contact methods as specified below.

8)   Purpose and Legal Basis of Processing

The user's personal data will be processed based on a legitimate interest of the Data Controller or the explicit consent expressed by the user.
The COMPANY may process the user's personal data for purposes such as:
   •   use by users of services and features present in various sections of the site (e.g., contacts)
   •   management of requests and reports from its users
   •   prospecting activities, and with the user's additional and specific optional consent, the company may process personal data for marketing purposes, that is, to send promotional material and/or commercial communications related to the Company's services, via the indicated contacts, using both traditional (e.g., postal mail, operator calls, etc.) and automated (e.g., email, social network, devices, SMS, etc.) means.

9)   Retention of Personal Data

Personal data provided during browsing and cookies (which are at the user's disposal and can be deleted independently) are stored for seven days, after which they are automatically deleted.
This does not preclude the need to retain them for a longer period as a result of requests from competent authorities concerning crime prevention and prosecution or to assert or defend a right in court.

10)   Scope of Data Communication and/or Disclosure

Personal data are generally not disclosed and will be communicated to:
   •   all subjects with the right of access as required to fulfill contractual and legal obligations;
   •   natural and/or legal persons, public and/or private, when the communication is necessary or functional for the performance of activities subject to processing, and as described above, in compliance with legal and contractual regulations;
   •   data processors and authorized personnel within their duties;
   •   external providers, such as couriers, shipping services, etc.;
   •   counterparties, authorities, etc.: during legal and/or administrative proceedings.
All processing related to the site's web services is handled exclusively by formally appointed processors and authorized personnel.

11)   Rights of Data Subjects

We inform you that in accordance with Chapter III, Section I of the GDPR, the data subject may exercise the rights therein, particularly: the right to obtain from the data controller access to the data concerning them, rectification if inaccurate, updating, limitation of processing to what is necessary or deletion (right to be forgotten), objection to processing for legitimate reasons or withdrawal of consent, and the right to data portability. Personal data provided will not be processed for automated decision-making or profiling purposes.

The data subject may lodge a complaint with the Data Protection Authority at Piazza di Montecitorio n. 121, 00186, Rome (RM). The exercise of the data subject’s rights is free of charge, in accordance with Article 12 of the GDPR.