Privacy

The purpose of this Privacy Policy is to inform Users who access the Website how their personal data will be processed by Bonomelli, controller of the data (the “Controller”).

1. Processing of personal data

1.1 The processing of the User’s personal data by the Controller will be performed in accordance with Italian Legislative Decree 196/2003 “Code regarding the protection of personal data” (hereinafter the “Code”) and subsequent amendments and additions.

1.2 The processing of the User’s personal data (such as name, postal address, email, etc.), will be done in accordance with principles of propriety, legality and transparency, and respecting the User’s privacy and rights and, by way of example, for the following purposes:

(i) For the fulfilment of obligations under the law, rules, European regulations.

(ii) Contractual, administrative and accounting needs (contract management, customer management, fulfilment of tax, accounting and legal obligations).

(iii) Commercial activities (mail order sales, marketing and advertising, promotional activities, historical research and statistical analysis, newsletters).

(iv) Execution of contractually agreed activities.(v) Needs associated with the Controller’s internal operations or management, including accounting.

(vi) Communication of sales information regarding new products and services of the Controller and/or its parents, subsidiaries and/or associated to the Controller or with which the Controller has signed commercial agreements, in order to verify the level of customer satisfaction with products and services. It is understood that for these purposes the Controller may transfer the data collected abroad (even outside the territory of the European Economic Area).

1.3 Note that, with respect to the personal data supplied, it is always possible to exercise one’s rights under article 7 of the Code (Right to access personal data and other rights) according to which:

The interested party has the right to obtain confirmation of the existence or otherwise of personal data, even if not yet recorded, and their communication in intelligible form.

2. The interested party has the right to know:

a) The origin of personal data.b) The purposes and methods of processing.c) The logic applied in case of processing with the aid of electronic instruments.

d) The identity of the Controller, manager and the representative appointed under article 5, paragraph 2.

e) The entities or categories of entities to whom the data may be communicated or who can learn about them as appointed representative in the State, managers or agents.

1.3 Note that, with respect to the personal data supplied, it is always possible to exercise one’s rights under article 7 of the Code (Right to access personal data and other rights) according to which:

The interested party has the right to obtain confirmation of the existence or otherwise of personal data, even if not yet recorded, and their communication in intelligible form.

2. The interested party has the right to know:

a) The origin of personal data.

b) The purposes and methods of processing.

c) The logic applied in case of processing with the aid of electronic instruments.

d) The identity of the Controller, manager and the representative appointed under article 5, paragraph 2.

e) The entities or categories of entities to whom the data may be communicated or who can learn about them as appointed representative in the State, managers or agents.

2.1. The interested party has the right to obtain:

a) The updating, correction or, if interested, completion of the data.

b) The deletion, anonymisation or blocking of data processed unlawfully, including data whose retention is unnecessary for the purposes for which the data were collected or subsequently processed.

c) Certification that the operations in letters a) and b) have been communicated, also as regards their content, to those to whom the data were communicated or disclosed, except if this requirement proves impossible or involves actions that are manifestly disproportionate to the protected right.

3. The interested party has the right to oppose, in whole or in part:a) The processing of personal data for legitimate reasons, even though they may be pertinent for collection purposes.b) The processing of personal data for purposes of sending advertising materials or direct sales or for carrying out market research or commercial communications. The User, even if authorisation was provided, can oppose the processing of data for the purposes referred to in point b).

4. The processing of the information provided by the User for the aforementioned purposes will be performed mainly using automated and computerised and electronic methods for storing, managing and transmitting the data, in compliance with the confidentiality and security required by law, remaining valid the consent of the owner of the data themselves.

5. Providing the personal data indicated is optional.

6. The data can be communicated, for similar purposes to those mentioned above, to consultants, professionals, external specialised service companies or other entities of the Controller’s sector, operating under the direct authority of the latter, which are responsible for processing under articles 29 and 30 of the Code (hereinafter “Data Processors”) and will receive suitable operational training; the same will be done – by the Data Processors appointed by the Controller – with employees or collaborators of the Data Processors.

7. The User may, at any time, exercise his/her rights under art. 7 of the Code and know the complete list of the data processors by sending an email to the Controller at the address privacy.montenegrocorporate@montenegro.it or by letter sent by ordinary mail to: Bonomelli S.r.l.– Servizio consumatori – Via Enrico Mattei, 6 – 40069 Zola Predosa (BO)

SECURITY POLICY