This privacy policy is provided to inform you about the processing of your personal data.
The purpose of the privacy policy is to provide maximum transparency regarding the information that the site collects and how it is used. In compliance with the obligations deriving from the European legislation (European Regulation for the protection of personal data No. 679/2016, GDPR), this site respects and protects the privacy of visitors and users, making every possible effort to avoid violating the users’ rights.
1. Identity and contact details of the Data Controller
2. Contact details of the Data Processor
3. Purposes and legal basis for the processing
4. Recipients of the personal data
5. Data transfer to third countries
6. Data storage period
7. User’s rights
The Data Controller is Rotostar Srl having its registered office in Lonate Pozzolo (VA), Via Magenta n. 45; e-mail: rotostar@rotostar.it.
The Data Processor appointed by Rotostar Srl, who shall represent the contact point for the data subjects, can be reached through the following contact channels:
- e-mail: rotostar@rotostar.it;
- tel.: +39 0331 661626;
- fax: +39 0331 667140.
The User’s personal data shall be processed only to fulfill specific, explicit and legitimate purposes; in particular, such purposes are linked to the achievement of the company specialization, that is, the manufacture of thermoplastic articles according to rotational moulding technology.
It should be noted that no direct and/or indirect marketing activities are carried out and data is not used to process studies, researches, market statistics, to send advertising and information material, to perform direct sales activities or carry out the placement of products or services, to send sales information or make interactive sales communications.
Within the aforementioned purposes, the user's data may be communicated to companies and professional operators providing electronic data processing and consultancy services for software and IT as well as management of information services relating to the foregoing.
For the aforementioned subjects, only the recipient category is indicated, as it is subject to frequent updates and revisions. Therefore, the parties concerned may request an updated list of recipients by contacting the Data Controller through the channels set out in this privacy policy.
The Data Controller may transfer the user’s data to third parties indicated in art. 4 of this privacy policy, established in countries outside the European Union, in compliance with the principles set out in articles 45 and 46 of the GDPR regarding the existence of an adequacy decision taken by the European Commission or adequate guarantees.
Personal data shall be stored for the period of time strictly necessary for the pursuit of the specific purposes of the processing and for the specific compliance of the company in the field in which it is specialized.
The user may exercise, at any time, the rights indicated below.
a) Access to personal data: to obtain confirmation as to whether or not personal data concerning the user are being processed and, in this case, access to the following information: the purposes, the categories of data, the recipients, the storage period, the right to lodge a complaint with a supervisory authority, the right to request the rectification or erasure or restriction of processing or to object to the processing itself as well as the existence of an automated decision-making process;
b) Request for rectification or cancellation of the personal data or restriction of the processing that concerns the user; "restriction" refers to the marking of the stored data with the aim of limiting its processing in the future;
c) Objection to the data processing: to object, for reasons related to the user’s particular situation, to the data processing to execute a task of public interest or for the pursuit of a legitimate interest of the Controller;
d) Data portability: in the case of automated processing carried out on the basis of consent or in execution of a contract, to receive in a structured, commonly used and device-readable format, the data concerning the user; in particular, the data shall be provided by the Data Controller in .xml format, or similar;
e) Right to withdraw the consent to the data processing for marketing purposes, both direct and indirect, market research and profiling; nevertheless, this shall not affect the lawfulness of the processing done before the consent was withdrawn;
f) Right to complaint pursuant to art. 77 GDPR to the competent supervisory authority according to his or her habitual residence, work place or place of violation of his or her rights; for Italy, the Guarantor for the protection of personal data is competent, who can be contacted through the contact details indicated in the website https://www.garanteprivacy.it.
The aforementioned rights may be exercised by sending a specific request to the Data Controller through the contact channels indicated in this privacy policy.
Requests relating to the exercise of the user’s rights shall be processed without undue delay and, in any case, within one month from the request; only in cases of particular complexity and according to the number of requests, such term can be extended by further 2 (two) months.