DECLARATION ON THE PROTECTION OF PERSONAL DATA
In accordance with Art. 13 of EU Regulation 2016/679 on the protection of individuals regarding the processing of personal data
In accordance with Article 13 of EU Regulation 2016/679 (hereinafter referred to as "DSGVO 2016/679"), which contains provisions on the protection of personal data, we would like to inform you that the personal data supplied to us will be treated in compliance with the above provisions, to which FRENER & REIFER is bound.
Entity/Person Responsible for the Processing of Personal Data
The entity responsible for data processing is FRENER & REIFER GmbH, with its registered office in Bressanone (BZ), via Alfred-Ammon 31, in the person of its legal representative, domiciled for this purpose at the head office of the same company.
Data Protection Officer
If you have any questions regarding data protection and this data protection declaration, as well as the exercise of your rights, you can also contact the F&R Data Protection Officer, who can be reached at:
FRENER & REIFER GmbH / Srl
Data Protection Officer
via Alfred Ammon 31
Data Source and Provision of Data
The personal data collected by the data controller shall be collected directly from the data subject. The provision of the data shall only be regarded as compulsory if the data processing serves to fulfil the obligations towards the data subject on the basis of an existing contract and laws, legal regulations and ordinances. Failure to provide the data may result in FRENER & REIFER being unable to fulfil its obligations under the existing legal relationship.
Purpose of Processing
The data provided by you are intended for identification purposes and for the obligations provided for by law as well as for the execution of the contract and the professional and ongoing cooperation between you and FRENER & REIFER GmbH.
Processing for purposes outside the scope of a contract and obligations from laws, legal norms and regulations, takes place solely and exclusively after the voluntary and explicit written agreement of the person concerned.
Form of Processing and Storage
Data processing takes place telematically, electronically and/or manually, in compliance with the security provisions of Art. 32 of DSGVO 2016/679 and Articles 33-36 of the Italian Privacy Code, on the part of individuals specifically entrusted with this purpose and in compliance with the provisions of Art. 29 of DSGVO 2016/679. We inform you that your personal data will be stored, with your voluntary and explicit consent and taking into account the principles of legality and the maximum limitation of data use, in accordance with Art. 5 of DSGVO 2016/679, for the entire duration of the contractual relationship and, except in the case of a mutual communication on your part, beyond, for the purpose of potential further collaboration.
Communication of Data and Publication
We also inform you that your data will be used exclusively for the purposes provided for by law and for the fulfilment of the purposes of the contract, as well as for the purposes agreed to by you. In this context, the data may be communicated to consultants, public institutions, clients, representatives, contractors and, if necessary, other subjects.
Disclosure of Personal Data
Except for the purposes provided for by law, those necessary for the performance of the contract and those to which you have expressly consented, your data will not be disclosed to third parties within the European Union or to residents of third countries.
Special Categories of Personal Data
Pursuant to Articles 26 and 27 of Legislative Decree 196/2003 and Articles 9 and 10 of DSGVO 2016/679, you may provide FRENER & REIFER with data that is considered to be a special category of personal data, as it could reveal "racial or ethnic origin, political opinions, religious or philosophical beliefs or trade union membership, health data or data relating to sex life or sexual orientation". These categories of data can only be used with your free and explicit consent, which can be given in writing in the final part of this declaration.
Processing of Surf Data
This data protection declaration also applies to the websites of FRENER & REIFER. Other data protection declarations may be applicable on other servers and websites of third parties.
The data protection regulations oblige us to handle the data of the users/users in a proper and purpose-specific manner. We will not use the data for purposes other than those stated.
Collected data, purposes and lawful basis of data processing
Every time a user accesses one of the F&R website pages and every time a file is displayed, data relating to this process is stored in a log file. Depending on the access protocol used, the data log may record the following information:
- IP address of the device requesting access
- Name of the file requested
- Date and time of the request
- Access modes/functions requested by the user’s device
- Access status of the web server
- The URL from which the file was requested
- Operating system, type of browser and/or browser settings.
No user profiles are created that associate IP addresses with personal data unless otherwise expressly stated in this privacy notice.
The data collected is used exclusively for the purposes of providing content, detecting and tracking any unauthorised access or access attempts to our web server, and for the analysis of website statistics like number of visitors and page popularity. Data analysis is carried out by authorised F&R employees only
Free text fields: Contact form and Comment function
Personal data provided by filling in the contact forms or using the comment function on this website is transmitted to F&R. When using the comment function, comments are displayed on this website along with the user’s name.
The personal data you provide is transmitted to us in encrypted form via a secure connection. To do so, we use SSL (Secure Sockets Layer), i.e. a state-of-the-art security protocol with 256-bit encryption. SSL encryption (recognisable by the “https://” in the browser’s address bar and a lock icon in the status bar) is a protocol developed for encrypting data during transmission from a web server to a browser. This way, the user’s personal data is SSL-encrypted when transmitted to our server.
Automated decision making/Profiling
We do not undertake automated decision making or profiling activities.
Rights of the Data Subject
You may exercise at any time the rights provided for by Article 7 of Legislative Decree 196/2003 and Articles 15 to 22 of DSGVO 2016/679:
- Confirmation as to whether your personal data will be processed;
- Access to your personal data
- Correction or deletion of data;
- Data transferability, i.e. to receive the data in a structured and readable format on a data carrier in daily use in order to be able to hand them over to another responsible person without hindrance;
- Information on the purposes of the data processing, the categories of data processed, the recipients to whom the data has been communicated and, where possible, the duration of its retention;
- Limitation of processing;
- Objection to data processing, which can take place at any moment, even in the case of the data’s use for marketing purposes;
- Objection to automated decision-making processes such as profiling
- Revocation of the declaration of consent without affecting the lawfulness of the processing until the moment of revocation;
- Complaint to the supervisory authority (www.garanteprivacy.it)