In compliance with the stipulations in the Regulation, processing we perform will follow the principles of lawfulness, correctness, transparency, limited purposes and retention, minimisation of data, accuracy, integrity and privacy.
Information is supplied solely for use of the Site and not even for other web sites that the user may consult via links, with regard to which our company may in no way be considered responsible, as it can in no way influence their content or their processing of personal data.
1. The Data Controller
The Data Controller for data processed through the Site is NC MARMI S.R.L., as named above.
For any information concerning the handling of personal data by ncmarmi.com, including the list of data processing personnel, you may write to the following address firstname.lastname@example.org
2. Types of data processed
2.1 Navigation Data
The IT systems and software processes responsible for operating the Site acquire, in the course of their normal operations, some Personal Data the transmission of which is implicit in the use of internet communications protocols.
This is information which is not collected to be linked to identifiable subjects but which, by its very nature, could allow Users to be identified.
This category includes the (i) IP addresses or domain names of the computers used by Users who connect to the Site, (ii) the URI (Uniform Resource Identifier) addresses of resources requested, (iii) the time of the request, (iv) the method used to submit the request to the server, (v) the size of the file obtained in response, (vi) the numeric code indicating the status of the response given by the server (success, error) and (vii) other parameters relating to the User’s operating system and system environment.
This data is used solely for the purpose of obtaining anonymous statistical information on the use of the Site and to check that it is operating properly, and is deleted immediately after processing.
Some pages of the Site employ a technology called cookies.
Cookies are small data files that are saved on the computer when a site, or parts of it, is accessed. Cookies enable x to ensure the Site remains operational and to gather anonymous statistical information on its use. It is possible to refuse to accept cookies by choosing the appropriate setting in your own browser, but that could prevent the full functionality of the Site being used.
2.3 Data voluntarily supplied by the User
The Data Controller handles the following personal data of data subjects: name, surname, email, phone number, address, username and password.
The User assumes responsibility for third party data published or shared through the Website and warrants that they have the right to communicate or disseminate it, discharging the Controller of any liability towards Third Parties.
3. Purposes of processing
The Data supplied may be processed for the following purposes:
a) Recording data which is necessary for managing the operation and fulfilment of your online purchase order;
b) dispatching informative newsletters and/or sales communications concerning the products or services of the Data Controller through automated channels;
c) fulfilment of obligations as required by law, by a regulation, by EC regulations or by an order of the Authority.
4. Legal basis and nature of provision of data
The legal framework for the processing of Personal Data for the purposes stated in section 3 (a) is art. 6(1)(b) of the Regulation insofar as processing is necessary for performing the Services and for all subsequent operations in relation to it. The supply of data must thus be deemed obligatory and any refusal to communicate such personal data makes it impossible to accept and fulfil the purchase order.
Supplying the data referred to in point c is optional in nature and in no way precludes conclusion of the purchase transaction, and this data is subject to obtaining specific consent.
The purposes referred to in section 3 (c) represent legitimate processing of Personal Data within the meaning of art 6(1)(c) of the Regulation. Once Personal Data have been supplied, processing is absolutely necessary to meet a legal obligation to which we are subject.
5. Means of processing
In handling the Personal Data of data subjects, the Controller adopts suitable security processes aimed at preventing access, publication, modification or unauthorised destruction of the Personal Data.
Processing is performed using digital and non-digital tools, and/or the internet, for organisational purposes and with logics closely connected to the indicated purposes, in such a way as to ensure an adequate level of protection for Personal Data.
6. Recipients of PD
Your Personal Data may be shared, for the purposes given in section 3 above, with:
7. Place of processing
Data Processing takes place at the premises of the Date Controller and in any other place in which the parties legitimately involved in the Processing may be located.
The data gathered will be held on NC MARMI S.R.L.’s server, located in Aiello del Friuli (Ud) – ITALY - Via Mameli, 11.
8. Transfer of Personal Data
The Data Controller does not transfer Personal Data outside the European area.
It is in all cases understood that, where it becomes necessary to transfer Personal Data outside the EU, the Data Controller will verify at that time that the transfer will take place in accordance with the applicable legal provisions, if necessary drawing up agreements to guarantee an adequate level of protection and/or adopting the standard contractual clauses established by the European Commission.
9. Data retention periods
Data is retained only for the period necessary for performing the Service requested by the User, or required for the purposes described in this document, after which time it will only be retained for the execution of relevant obligations under prevailing law.
10. Rights of data subjects
In accordance with articles 15 et seq of the Regulation, you have the right to request from us, at any time, access to your Personal Data, for it to be corrected or deleted or to object to it being processed, you have the right to request that processing should be restricted, in the circumstances covered by art. 18 of the Regulation, as well as to obtain, in the instances stipulated in art. 20 of the Regulation, the data relating to you, in a structured format, in common use and machine-readable.
Requests are to be submitted in writing to NC MARMI S.R.L. to the following address: email@example.com
In any case, you always have the right to submit a complaint to the competent supervisory authority (Garante per la Protezione dei Dati Personali), in accordance with art. 77 of the Regulation, if you consider that the processing of your Personal Data is not compliant with prevailing legislation.
We would, lastly, advise you that if you consider your rights to have been breached by the Data Controller and/or by a third party, you are entitled to submit a complaint through the supervisory authority and/or other competent supervisory body empowered by the Regulation to this page www.garanteprivacy.it/home/urp.