Privacy Policy
Website Privacy Policy
INFORMATION NOTICE REGARDING THE PROCESSING OF ONLINE CUSTOMER’S PERSONAL DATA IN COMPLIANCE WITH THE 2016/679 EU REGULATION (“GDPR”)
This Privacy Policy entered into force on 25 May 2018. Last modified: 25 May 2018
We reserve the right to amend this Privacy Policy in full or in part, or to update its content for example in case of changes in applicable law. We therefore invite you to regularly visit this page in order to be aware of the latest, updated version of this Privacy Policy.
Data Controller
Cavagna Group S.p.A.
Via Statale 11/13, Ponte San Marco di Calcinato (BS) – Italy
Tel.: +39 030 9663111
E-mail address: privacy@cavagnagroup.com
(“Company” or “Data Controller”).
Personal Data proceed
Biographical data. Contact data. Navigation data (“Data”). For Navigation Data please refer also to the Cookie Policy.
Purposes of the processing
Allowing the correct functioning of the web browsing service on the following website: www.cavagnagroup.com
Obtaining anonymous statistical information regarding the website usage.
Answering the user’s requests (for example request for sending information material; request for information, etc.).
When the data retention period expires, the Data will be destroyed, erased or anonymized.
Legal basis for the processing
Legitimate interest pursued by the Data Controller (i.e. website management).
Legitimate interest pursued by the Data Controller (i.e. website management).
Performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.
When the data retention period expires, the Data will be destroyed, erased or anonymized.
Data retention period
See Cookie Policy.
See Cookie Policy.
Until the fulfilment of the request or 10 years starting from the expiry of the contractual relationship.
When the data retention period expires, the Data will be destroyed, erased or anonymized.
Provision of personal data
It is required to process the Navigation Data in order to grant the navigation service on the website. The communication of biographical data and contact data in order to request information and/or services is completely at user’s discretion. The refusal to provide such data implies the Data Controller’s impossibility to satisfy the user’s requests.
Recipients of personal data
The Data may be processed by external subjects operating as autonomous data controllers such as, by way of example, other companies belonging to Cavagna Group S.p.A., authorities and control/supervisory bodies and Cavagna Group’s consultants. The data may be processed as well by third parties operating as autonomous data controllers through the installation of analytical cookies. For any further information see the Cookie Policy.
Personnel authorized to process personal data
In order to pursue the above-mentioned purposes, the data may be processed by the employees of the deputed corporate functions, who have been expressly authorized to process the data and who have received adequate operating instructions.
Data transfer to extra EU countries
Part of the navigation data may be transferred outside the EU (see Cookie Policy). Furthermore, some Data may be transferred to WP Engine, Inc., a hosting company, based in the USA, that has certified its terms of use through the Privacy Shield Framework, a deal that guarantees the protection of the European citizen’s data that happen to be transferred to the USA. For any additional information, please visit the following website: www.privacyshield.gov
The data subject can obtain a copy of the data by writing an e-mail to the following e-mail address: legal@wpengine.com
Rights of the data subject – complaint with the supervisory authority
By contacting Cavagna Group’s Legal Department via e-mail at the following address: privacy@cavagnagroup.com, the data subjects have the right to access the Data processed by the Data Controller; furthermore they have the right to rectification and or integration of incomplete data, to erasure and also to restriction of processing in cases envisaged by art. 18 of GDPR. The data subjects can also exercise the right to oppose the processing on ground relating to his or her particular situation.
If the processing is based on consent or on a contract and is carried out by automated means, the data subjects have the right to receive the personal data concerning them, which they provided to a controller, in a structured, commonly used and machine-readable format. The data subjects shall also have the right to transmit the data to another controller without hindrance, if this is technically feasible.
The data subjects have the right to lodge a complaint with the competent supervisory authority in the Member State of their habitual residence place of work or place of the alleged infringement.
Customers Privacy Policy
INFORMATION NOTICE REGARDING THE PROCESSING OF CUSTOMER’S PERSONAL DATA IN COMPLIANCE WITH ART. 13 OF THE 2016/679 EU REGULATION (“GDPR”)
This Privacy Policy entered into force on 25 May 2018. Last modified: 17 December 2021
We reserve the right to amend this Privacy Policy in full or in part, or to update its content for example in case of changes in applicable law. We therefore invite you to regularly visit this page in order to be aware of the latest, updated version of this Privacy Policy.
Data Controller
The Cavagna Group companies that may process the Data (as defined hereinafter) in quality of Data Controllers are:
- Cavagna Group S.p.A., with registered office in Via Statale 11/13, 25011, Ponte San Marco di Calcinato (BS). Fiscal Code: 01390980173 and Vat No. 00622330983;
- Enne.Pi. S.r.l., with registered office in Via Risorgimento 1, 25080, Calvagese della Riviera (BS). Fiscal Code: 01127410171 and Vat No. 02100760988;
- Cori Engineering S.p.A., with registered office in Via Statale 11/13, 25011, Ponte San Marco di Calcinato (BS). Fiscal Code: 01 6067001 75 and Vat No. 00641840988;
- Kosan International S.r.l., with registered office in Via Gavardina 46/A, 25081, Bedizzole (BS). Fiscal Code: 03576660173 and Vat No. 02152100984;
- Cavagna Group Engineering S.r.l., with registered office in Via Statale 11/13, 25011, Ponte San Marco di Calcinato (BS). Fiscal Code: 01914030174 and Vat No. 00664470986;
- Mesura Metering S.r.l., with registered office in Via Statale 11/13, 25011, Ponte San Marco di Calcinato (BS), Fiscal Code and Vat No.03996920983;
- Bigas International Autogas Systems S.r.l., with registered office in Via L. Becchetti 4, 25081, Bedizzole (BS) – Italy. Fiscal Code and VAT number 05061900485.
Where the expression “Data Controller” is used in this Information Note, such expression will refer to any of the above-listed companies whose details are indicated in the purchase order received by the supplier. Consequently, it may occur that more than one of the companies of the Cavagna Group processes Data as autonomous Data Controllers.
Contacts (for all the companies of the group):
Tel.: +39 030 9663 111
E-mail address: privacy@cavagnagroup.com
Definition of “Data” and “Source of Data”
By “Data” we mean the data regarding natural persons that are processed by the Data Controller in order to execute a contractual relationship with its customers/buyers, intended as legal persons (“Customers”). By way of example, the Data may include that of the legal representative who undersigns the contract on behalf of the Customer, as well as Data belonging to Customer’s employees and consultants who are involved in the above-described activities. In this latter case, the Data source is the Customer.
Purposes of the processing
Purposes related to the establishment and the subsequent execution of a contractual relationship between the Customer and the Data Controller.
Training of Customer’s personnel.
Performance of administrative-accounting obligations such as accounts and treasury management, as well as invoicing (for example the verification and registration of invoices), in compliance with the current legislations.
Out-of-court debt collection.
If necessary, the Data will be processed in order to verify, exercise and/or defend the Data Controller’s right in court.
Management of business trips or invitation to events.
When the above-mentioned data retention periods expire, the Data will be destroyed or anonymized, in compliance with the technical procedures of erasure and backup.
Legal basis for the processing
As per the legal representative’s Data: performance of the contract.
As per the Customer’s employees/consultants involved in the activities described in the contract: legitimate interest.
Legitimate interest.
The necessity to fulfil a legal obligation to which the Data Controller is subject.
Legitimate interest.
Legitimate interest.
Performance of a contract.
When the above-mentioned data retention periods expire, the Data will be destroyed or anonymized, in compliance with the technical procedures of erasure and backup.
Data retention period
Contract period and, after its termination, 10 years.
In case of judicial dispute, the Data will be retained for the entire duration of the dispute until the time limit for lodging an appeal expires.
Contract period and, after its termination, 10 years.
In case of judicial dispute, the Data will be retained for the entire duration of the dispute until the time limit for lodging an appeal expires.
Contract period and, after its termination, 10 years.
In case of judicial dispute, the Data will be retained for the entire duration of the dispute until the time limit for lodging an appeal expires.
Contract period and, after its termination, 10 years.
In case of judicial dispute, the Data will be retained for the entire duration of the dispute until the time limit for lodging an appeal expires.
Contract period and, after its termination, 10 years.
In case of judicial dispute, the Data will be retained for the entire duration of the dispute until the time limit for lodging an appeal expires.
12 months from the booking date.
When the above-mentioned data retention periods expire, the Data will be destroyed or anonymized, in compliance with the technical procedures of erasure and backup.
Provision of personal data
The provision of the signatory’s Data is compulsory in order to conclude and/or execute the contract- the refusal to provide the Data does not allow to establish a contractual relationship and/or fulfill the corresponding obligations.
Recipients of personal data
The Data may be communicated to external subjects operating as data controllers, by way of example: authorities and control/supervisory bodies and, in general, public or private parties legitimized to request to access the Data.
On behalf of the Data Controller, the Data may be processed by external subjects appointed as data processors, who carry out specific activities on behalf of the Data Controller. By way of example, these companies may deal with accounting, fiscal and insurance obligations, transport and postal shipping, payments and proceeds management. Other Cavagna Group’s companies, travel agencies, customs assistance, etc.
The list of the recipients of the Data is constantly updated and can be easily and freely consulted by sending a written notice to the Data Controller at the following e-mail address: privacy@cavagnagroup.com
Personnel authorized to process personal data
The employees of the deputed corporate functions may process the data in order to pursue the abovementioned scopes.
These employees have been expressly authorized to perform such processing and they have received adequate operative instructions.
Data transfer to extra EU countries
The Data may be transferred to extra EU Countries and, in particular, to:
1) Extra-EU countries whose data protection level has been considered adequate by the European Commission in compliance with art. 45 of GDPR”
or
2) Extra-EU countries different from those indicated at point 1) upon signing the Standard Contractual Clauses approved by the Europena Commission in compliance with art. 46, 2 letters c) and d)”
A copy of the Data may be obtained by contacting the Legal Department via e-mail at the following address: privacy@cavagnagroup.com, in accordance with the modalities described at the section “Rights of the Data Subject”.
Rights of the data subject – complaint with the supervisory authority
By contacting Cavagna Group’s Legal Department via e-mail at the following address: privacy@cavagnagroup.com, the data subjects have the right to access the Data processed by the Data Controller; furthermore they have the right to rectification and or integration of incomplete data, to erasure and also to restriction of processing in cases envisaged by art. 18 of GDPR. The data subjects can also exercise the right to oppose the processing on ground relating to his or her particular situation.
If the processing is based on consent or on a contract and is carried out by automated means, the data subjects have the right to receive the personal data concerning them, which they provided to a controller, in a structured, commonly used and machine-readable format. The data subjects shall also have the right to transmit the data to another controller without hindrance, if this is technically feasible.
The data subjects have the right to lodge a complaint with the competent supervisory authority in the Member State of their habitual residence place of work or place of the alleged infringement.
Suppliers Privacy Policy
INFORMATION NOTE REGARDING THE PROCESSING OF PERSONAL DATA IN THE MATTER OF CONTRACTS WITH SUPPLIERS IN COMPLIANCE WITH THE 2016/679 EU REGULATION (“GDPR”)
This Privacy Policy entered into force on 25 May 2018. Last modified: 23 October 2023
We reserve the right to amend this Privacy Policy in full or in part, or to update its content for example in case of changes in applicable law. We therefore invite you to regularly visit this page in order to be aware of the latest, updated version of this Privacy Policy.
Data Controller
- Parteca S.p.A., with registered office in Via Statale 11/13, 25011, Ponte San Marco di Calcinato (BS). Fiscal Code: 03008050175 and Vat No. 00622330983;
- Cavagna Group S.p.A., with registered office in Via Statale 11/13, 25011, Ponte San Marco di Calcinato (BS). Fiscal Code: 01390980173 and Vat No. 00622330983;
- Enne.Pi. S.r.l., with registered office in Via Risorgimento 1, 25080, Calvagese della Riviera (BS). Fiscal Code: 01127410171 and Vat No. 02100760988;
- Cori Engineering S.p.A.,with registered office in Via Statale 11/13, 25011, Ponte San Marco di Calcinato (BS). Fiscal Code: 01 6067001 75 and Vat No. 00641840988;
- Kosan International S.r.l., with registered office in Via Gavardina 46/A, 25081, Bedizzole (BS). Fiscal Code: 03576660173 and Vat No. 02152100984;
- Cavagna Group Engineering S.r.l.,with registered office in Via Statale 11/13, 25011, Ponte San Marco di Calcinato (BS). Fiscal Code: 01914030174 and Vat No. 00664470986;
- Mesura Metering S.r.l., with registered office in Via Statale 11/13, 25011, Ponte San Marco di Calcinato (BS), Fiscal Code and Vat No.03996920983;
- Bigas International Autogas Systems S.r.l., with registered office in Via L. Becchetti 4, 25081, Bedizzole (BS) – Italy. Fiscal Code and VAT number 05061900485.
Where the expression “Data Controller” is used in this Information Note, such expression will refer to any of the above-listed companies whose details are indicated in the purchase order received by the supplier. Consequently, it may occur that more than one of the companies of the Cavagna Group processes Data as autonomous Data Controllers.
Contacts (for all Group companies):
email: privacy@cavagnagroup.com
Tel.: +39 030 9663 111
Definition of “Data” and “Source of Data”
With “Data” we mean the information, regarding natural persons, which is processed by the Data Controller with the purpose of stipulating and executing a contractual relationship with its own suppliers.
By way of example, Data may include the data of the supplier’s legal representative who signs the contract in the name and on behalf of the latter, as well as the data of the supplier’s employees/consultants who are involved in the activities described in the contract. In this latter case, the source of the Data is the supplier.
The Data processed fall into the category of "Common Data" and, specifically, include the first and last name of the supplier and/or of the supplier's employees and/or consultants, the place and date of birth, the supplier's landline and/or mobile telephone number and company e-mail address, data relating to the supplier's education, educational qualification, main positions held within the company.
Purposes of the processing
Creation and execution of a contractual relationship between the supplier and the Data Controller.
Evaluation and monitoring of the skills and training of the supplier's resources (owners, employees and/or consultants) assigned to manufacturing, as part of the company's Quality System.
Performance of administrative-accounting obligations– such as the accounts and treasury management, as well as invoicing (for example the verification and registration of invoices), in compliance with what requested by the current legislation.
Yearly evaluation of the supplier’s performance.
If necessary, in order to verify, exercise and/or defend the Data Controller’s rights in court.
Management of business trips.
When the data retention period expires, the Data will be destroyed or anonymized, in compliance with the procedures of erasure and backup.
Legal basis for the processing
Execution of the contract as far as the Supplier’s legal representative Data are concerned.
Legitimate interest as far as the Data of Supplier’s employees/consultants involved in the activities described in the contract are concerned.
Execution of the contract as far as the Supplier’s legal representative Data are concerned.
Legitimate interest as far as the Data of Supplier’s employees/consultants involved in the activities described in the contract are concerned.
Necessity to fulfil a legal obligation to which the Data Controller is subject.
Legitimate interest.
Legitimate interest.
Execution of the contract
When the data retention period expires, the Data will be destroyed or anonymized, in compliance with the procedures of erasure and backup.
Data retention period
Duration of the contract and 10 years after its termination.
In case of judicial dispute, the Data will be retained for the entire duration of the same until the expiry of the time-limit for lodging an appeal.
Duration of the contract and 10 years after its termination.
In case of judicial dispute, the Data will be retained for the entire duration of the same until the expiry of the time-limit for lodging an appeal.
Duration of the contract and 10 years after its termination.
In case of judicial dispute, the Data will be retained for the entire duration of the same until the expiry of the time-limit for lodging an appeal.
Duration of the contract and 10 years after its termination.
In case of judicial dispute, the Data will be retained for the entire duration of the same until the expiry of the time-limit for lodging an appeal.
Duration of the contract and 10 years after its termination.
In case of judicial dispute, the Data will be retained for the entire duration of the same until the expiry of the time-limit for lodging an appeal.
12 months from the booking.
When the data retention period expires, the Data will be destroyed or anonymized, in compliance with the procedures of erasure and backup.
Provision of personal data
It is compulsory to provide the Data in order to conclude and/or execute the contract. Consequently, the refusal to provide the Data does not allow to establish a contractual relationship and/or fulfil the corresponding obligations.
As for the other categories of Data (for example the e-mail address and mobile phone belonging to the Supplier’s employee who takes care of selling), the provision is optional but the refusal to provide the Data will not allow a prompt and optimal execution of the contract.
Recipients of personal data
The Data may be communicated to external subjects operating as data controllers, by way of example, authorities and control/supervisory bodies and, in general, public or private parties legitimized to request the access to Data, auditors and legal departments.
On behalf of the Data Controller, the Data may be processed by other companies of the Group and by other external subjects appointed as data processors, who carry out specific activities on behalf of the Data Controller. By way of example these activities may be accounting, fiscal and insurance obligations, transport and postal shipping, payments and proceeds management, development, operation and maintenance of software, etc.
The list of the recipients of personal data is constantly updated and it can be easily and freely consulted by sending a written request to the Data Controller at the following e-mail address: privacy@cavagnagroup.com
Personnel authorized to process personal data
The employees of the deputed corporate functions may process the data in order to pursue the abovementioned scopes.
These employees have been expressly authorized to perform such processing and they have received adequate operative instructions.
Data transfer to extra EU countries
The Data may be transferred to extra EU Countries and, in particular, to:
1) Extra-EU countries whose data protection level has been considered adequate by the European Commission in compliance with art. 45 of GDPR”
or
2) Extra-EU countries different from those indicated at point 1) upon signing the Standard Contractual Clauses approved by the Europena Commission in compliance with art. 46, 2 letters c) and d)”
A copy of the Data may be obtained by contacting the Legal Department via e-mail at the following address: privacy@cavagnagroup.com, in accordance with the modalities described at the section “Rights of the Data Subject”.
Rights of the data subject – complaint with the supervisory authority
By contacting Cavagna Group’s Legal Department via e-mail at the following address: privacy@cavagnagroup.com, the data subjects have the right to access the Data processed by the Data Controller; furthermore they have the right to rectification and or integration of incomplete data, to erasure and also to restriction of processing in cases envisaged by art. 18 of GDPR. The data subjects can also exercise the right to oppose the processing on ground relating to his or her particular situation.
If the processing is based on consent or on a contract and is carried out by automated means, the data subjects have the right to receive the personal data concerning them, which they provided to a controller, in a structured, commonly used and machine-readable format. The data subjects shall also have the right to transmit the data to another controller without hindrance, if this is technically feasible.
The data subjects have the right to lodge a complaint with the competent supervisory authority in the Member State of their habitual residence place of work or place of the alleged infringement.
Privacy Statement for Candidates
INFORMATION NOTICE IN COMPLIANCE WITH ART. 13 OF REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL (“GDPR”) – “CANDIDATES”
This Privacy Policy entered into force on 25 May 2018. Last modified: 25 May 2018
We reserve the right to amend this Privacy Policy in full or in part, or to update its content for example in case of changes in applicable law. We therefore invite you to regularly visit this page in order to be aware of the latest, updated version of this Privacy Policy.
Data Controller
Parteca S.p.A.
Via Statale 11/13
Tel.: +39 030 9663111
E-mail address: privacy@cavagnagroup.com
(“Company” or “Data Controller”).
Definition of “Data”
With “Data” we mean, by way of example and not of limitation, the name, surname, place and date of birth, domicile, email address and telephone numbers, certificates, working experiences and possible other Data inserted in Your résumé and/or in the questionnaire that will be submitted during the interview (the so called “common data”), and also the information that can reveal, by way of example, your health status (as the belonging to protected categories) possibly contained in your résumé or in other documents transmitted/forwarded to the Company, special categories of the personal data processed (the so called “special category data”).
Purposes of processing
1) Purpose coherent with the performance of the activity of research and selection of candidates.
2) To verify, through specialized societies as well, the accuracy of the data provided, availing of public information (including professional social network profiles, data banks, web registers or multimedia archives only accessible from the public). The processing is compliant to what indicated by the Working Party 29 in the «Opinion on data processing at work»; it is exclusively limited to the information linked to the professional attitude to work, only necessary to evaluate the specific risks linked to the type of activity that will be performed by the candidates. Furthermore, the processing must be executed in the least intrusive way, adopting every necessary measure in order to grant a correct balancing between the employer’s legitimate interest to control and the rights and fundamental liberties of the candidates.
3) To preserve the Data for a further period of six months compared with the purpose seen at point 1. This is necessary for future selections, in case the selection for which you have sent your candidacy has negative result. This will happen exclusively with Your consent, by answering an automatic request e-mail sent from the system to the e-mail address associated to Your registration. Whether You decide not to use such further service, Your candidacy will not be taken into consideration/considered for eventual future selections.
4) To comply with obligations and perform the Company’s or the subject’s rights expected from the applicable regulation with regard to the right to work and to the right to social security and social protection or from collective contracts, as well as from dispositions issued by legitimized authorities and supervisory and control authorities.
After the expiration of the above-mentioned terms of conservation, the Data will be destroyed or anonymized, compatibly with the technical procedures of erasure and backup.
Legal basis for the processing
Performance of pre-contractual measures adopted on Your request.
Legitimate interest.
Consent.
Carrying out the obligations and exercising specific rights of the Company or of the data subject in the field of employment and social security and social protection law in compliance with art. 9.2. let. b) of the Regulation.
After the expiration of the above-mentioned terms of conservation, the Data will be destroyed or anonymized, compatibly with the technical procedures of erasure and backup.
Period for which the personal data will be stored
The data controller will store the data collected for the entire duration of the selection process until its termination (i.e. until a suitable candidate for the position for which he/she applied is found), except the possible conservation authorized by You (see as follows).
The data controller will store the information collected for the entire duration of the selection process until its termination (i.e. until a suitable candidate for the position for which he/she applied is found).
Six months starting from the termination of the selection and possible other periods of six months from Your confirmation following the reception of an automatic request email, sent from the system to the email address associated to Your registration.
Six months starting from the reception of the candidacy, except for the eventual consent mentioned at point 3.
After the expiration of the above-mentioned terms of conservation, the Data will be destroyed or anonymized, compatibly with the technical procedures of erasure and backup.
Provision of personal data
The provision of Personal Data it’s mandatory for the activity of research and selection of personnel. The refusal to supply the Data does not allow to perform such activity and will not allow Your candidacy to be taken into consideration.
Recipients of personal data
The Data may be communicated to organizations that operate as autonomous data controllers or may be treated, on behalf of the Company, by subjects appointed as data controllers, who have been given the adequate instructions. Such subjects belong to the following categories:
- companies, which include companies belonging to the same group of the Company, which support the Company in the purpose of recruiting and analysing the candidates;
- temporary work agencies.
The data controller may communicate the data to other companies belonging to the Cavagna Group, with registered office in Italy, that will operate as autonomous data controllers and that will pursue the same purposes of the Data Controller. The communication of such data is necessary in order to research suitable personnel.
Personnel authorized to process personal data
Only the employees belonging to the deputed corporate functions will process the Data in order to pursue the above-stated purposes. Such employees have been expressly authorized and instructed to perform the data processing.
Rights of the data subject – complaint with the supervisory authority
By contacting the Legal Department via e-mail at the following address: privacy@cavagnagroup.com, the data subjects have the right to access the Data processed by the Data Controller; furthermore they have the right to rectification and or integration of incomplete data, to erasure and also to restriction of processing in cases envisaged by art. 18 of GDPR. The data subjects can also exercise the right to oppose the processing on ground relating to his or her particular situation.
If the processing is based on consent or on a contract and is carried out by automated means, the data subjects have the right to receive the personal data concerning them, which they provided to a controller, in a structured, commonly used and machine-readable format. The data subjects also have the right to transmit the data to another controller without hindrance, if this is technically feasible.
In any moment the data subjects have the right to revoke the consent previously granted; furthermore they can oppose the processing performed for the purpose of research and selection of personnel.
The data subjects have the right to lodge a complaint with the competent supervisory Authority.
Newsletter Privacy Policy
PRIVACY NOTICE IN COMPLIANCE WITH REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL (“GDPR”) – “NEWSLETTER”
This Privacy Policy entered into force on 25 May 2018. Last modified: 25 May 2018
We reserve the right to amend this Privacy Policy in full or in part, or to update its content for example in case of changes in applicable law. We therefore invite you to regularly visit this page in order to be aware of the latest, updated version of this Privacy Policy.
Data Controller
Cavagna Group S.p.A.
Via Statale 11/13
Tel.: +39 030 9663111
E-mail address: privacy@cavagnagroup.com
(“Company” or “Data Controller”).
Purposes of processing
The purpose is to send by e-mail informative communications regarding the data controller and other companies of the Cavagna Group (“Newsletter”) to those who expressly requires the same by inserting their email address in the relevant data collection form sent by the Marketing Department, only upon explicit request.
Legal basis for the processing
Performance of a contract to which the data subject is party.
Period for which the personal data will be stored
The data controller will store the collected data up to the moment you ask to unsubscribe from the Newsletter service. When this term has expired, the data will be destroyed or anonymized according to the applicable erasure/backup technical procedure.
Provision of personal data
In accordance with art. 13 (2) point e) of GDPR, the provision of your e-mail address is compulsory for the above stated purpose. Therefore, if you do not provide the same, we will not be able to send you the Newsletter.
Unsubscription
If you desire to stop receiving the Newsletter, you can use the “Unsubscribe” button at the bottom of every newsletter. Alternatively, you can write to marketing@cavagnagroup.com asking to remove your contact from the list of recipients.
Recipients of personal data
We may communicate the data to organizations that operate as data controllers (such as, for example, supervisory/control authorities and every public entity that have the right to request the data).
Personnel authorized to process personal data
Only employees working in the Marketing departments entitled to process data for the above-stated purpose will process the data. Such employees have been expressly authorized and instructed to perform the data processing.
Transfer of personal data to third countries
The data can be transferred to non-EU Countries and, specifically, in the USA to the company The Rocket Science Group LLC, owner of the MailChimp Platform, which the data controller uses for the automated sending of Newsletter. The company The Rocket Science Group LLC have certified their agreement with the EU/USA Privacy Shield Framework, which safeguard the transfer of European citizens’ data to the USA. For further information regarding the Privacy Shield Framework, you can visit the website www.privacyshield.gov.
You can request a copy of your data at any time to the email address personaldatarequest@mailchimp.com. MailChimp will process your data in accordance with their Terms of Use and Privacy Policy.
Rights of the data subject – complaint with the supervisory authority
The data subjects can exercise their right of access to the data processed by the data controller, right to rectification and or integration of incomplete data, to erasure and to restriction of processing in the cases envisaged by art. 18 of GDPR contacting the Legal Department to the email address: privacy@cavagnagroup.com.
If the processing is based on consent or on a contract and is carried out by automated means, the data subjects have the right to receive the personal data concerning them, which they provided to a controller, in a structured, commonly used and machine-readable format. The data subjects also have the right to transmit those data to another controller without hindrance, if this is technically feasible.
The data subjects have the right to lodge a complaint with the competent supervisory authority in the Member State of their habitual residence place of work or place of the alleged infringement.
Cookies Policy
INFORMATION NOTICE IN COMPLIANCE WITH THE REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL (“GDPR”) – “COOKIE POLICY”
This Privacy Policy entered into force on 25 May 2018. Last modified: 25 May 2018
We reserve the right to amend this Privacy Policy in full or in part, or to update its content for example in case of changes in applicable law. We therefore invite you to regularly visit this page in order to be aware of the latest, updated version of this Privacy Policy.
Data Controller
Cavagna Group S.p.A.
Via Statale 11/13, Ponte San Marco di Calcinato (BS) – Italy
Tel.: +39 030 9663111
E-mail address: privacy@cavagnagroup.com
(“Company” or “Data Controller”).
Personal Data proceed
Navigation data.
Cookie Policy
WHAT ARE COOKIES
The so-called “cookies” are data created by a server and stored as text files in a computer’s hard disk or in any device used by the user in order to access the Internet (smartphone, tablets, etc.). The cookies allow to collect information regarding the navigation performed by the user on a website.
The cookies can be permanently stored in your computer and have a variable duration (the so-called “persistent cookies”), but they can as well disappear when you close the browser or they can have a limited duration (the so-called “session cookies”).
The cookies can be installed on your computer by the site you’re visiting (the so-called “first party cookies”) or they can be installed by other websites (the so-called “third party websites”).
HOW WE USE COOKIES
- Technical cookies
- session/navigation cookies: the use of the so-called “session cookies” (which do not get persistently stored in the user’s computer and disappear once the browser is closed) is strictly limited to the transmission of session identifiers – session IDs- (which are made of random numbers generated by the server itself). These Session IDs are necessary in order to allow a safe and efficient exploration of the site and of its applications. The so-called “session cookies” used in the Company’s website make sure there is no need to use other information technologies, which may be potentially dangerous for the confidentiality of the user navigation. Moreover, session cookies do not allow the acquisition of the user’s identifying personal data. Session cookies do not require your consent;
- persistent cookies: even after the user leaves the website, the persistent cookies remain stored in his or her hard drive until they get deleted or they expire. The Company’s website itself creates this type of cookies and stores them on the device in order to be able to read them the moment the user returns to visit the website. The purpose of persistent cookies is to collect identifying information about the user and allow him or her to find the same preferences previously settled (for example language, etc.) even when subsequently visiting the website.
- Analytical Cookies: these cookies are installed in order to collect aggregate data mostly of statistical nature (e.g. how long you are staying on a page or how many visitors navigate the website)
- first party analytical cookies: they can be assimilated to the technical cookies as the website you’re visiting in that moment directly stores them on the computer in order to improve the website’s usability. Your consent for the first party analytical cookies is not required;
- third party analytical cookies: they are created and installed by third parties in order to analyse the user’s navigation path and subsequently create statistics about who visits the website. This allows to improve the offer of contents, show similar products and eventually create a targeted advertising. The system used is Google Analytics, which is a web service analytic system provided by Google LLC (“Google”). As well as the other systems, Google Analytics makes use of the cookies in order to allow the website to analyse how the users use the website. The information generated by the cookies about how the website is used will be transmitted to and deposited at the Google servers in the United States. Google will use this information with the purpose to track and examine the usage which is being made of the website, fill in reports about the website’s activities and provide other services regarding the Internet usage. Google might as well transfer this information to third parties only where this is allowed by the Law or where the third parties process such information on behalf of Google. Google will not associate the user IP address to any other data owned by Google. Anyway, the user can refuse to use the cookies by selecting the appropriate setting on his or her browser; however, this may prevent the user from using all of the website’s functions. As the IP address is visible, the usage of third party analytical cookies necessitates your consent. By clicking on the button “Continue” placed on the banner or by continuing with the navigation on the Company’s website, the user allows Google to process his or her Data for the above-listed purposes.
The consent regarding the usage of cookies is given in one of the following ways:
- by clicking on the button “Continue” which you’ll find on the banner containing a short Information Note, which appears when the user enters the website;
- by continuing the navigation on the Company’s website accessing another area of the website or selecting an element of the same page.
The majority of the browsers are initially set in order to automatically accept the cookies. This means that, in any moment, the user has the possibility to set his or her browser in order to enable all of the cookies, enable only some, or disable them.
Moreover, the user can set the browser preferences in order to be advised whenever a cookie is stored on his or her computer. At the end of each navigation session the user can delete all of the cookies which have been stored from his or her hard drive. If he or she wants to delete the cookies stored in the cookie folder of the browser use, the user should know that each browser has different procedures to manage the settings. By clicking on the down-listed links the user can receive specific instructions for some of the main browsers:
Microsoft Windows Explorer
Google Chrome
Mozilla Firefox
Apple Safari
If the user does not want to receive Google Analytics cookies, he or she can disable them by visiting the following page: https://tools.google.com/dlpage/gaoptout/
If the user wants to know more about cookies in general, he or she can visit the following page: https://www.allaboutcookies.org
If the user wants to know/learn more about behavioural advertising and online privacy, he or she can visit the following page: https://www.youronlinechoices.com
If the user wants to know/learn more about Google Analytics cookies, he or she can visit the following page: https://marketingplatform.google.com/about/
If the user wants to learn more about the Criteo cookies used by our website, he or she can visit the following page: https://www.criteo.com/privacy/
Cookie | Name | Purpose | First/third party cookies | Legal basis | Term |
Google Analytics | _ga | analytical | Third Party | Consent | 2 years |
Google Analytics | _gat | analytical | Third Party | Consent | 1 minute |
Google Analytics | _gid | analytical | Third Party | Consent | 24 hours |
Further information
Google’s privacy policy and the modality of use of Google’s cookies are available at the following links:
https://www.google.com/intl/it/policies/privacy/
https://www.google.com/intl/it/policies/technologies/
It’s possible to download a Browser plug in in order to permanently oppose to Google Analytics cookies at the following link: https://tools.google.com/dlpage/gaoptout?hl=it
Provision of personal data
The personal data processed through the installation of technical and analytical first party cookies are necessary in order to grant a correct navigation.
It is optional to give consent for the installation of third party analytical cookies. Your personal data will be processed by installing such cookies only with your consent given in the above-listed ways.
Recipients of personal data
The Data may be processed by organizations which operate as autonomous data controllers such as, by way of example, supervisory and control authorities and organs.
The Data may as well be processed, on behalf of the Company, by organizations designated as Data Processors, to whom the adequate operative instructions are given. Such subjects essentially belong to the following categories:
- companies that offer services of forwarding e-mails;
- companies that offer services required in order to pursue the aims indicated in this Information Notice (IT suppliers, a company which takes care of the management and maintenance of the website…).
Personnel authorized to process personal data
Only the employees belonging to the deputed corporate functions will process the Data in order to pursue the above-stated purposes. Such employees have been expressly authorized and instructed to perform the data processing.
Data transfer to extra EU countries
The Data collected by using the cookies may be transferred to the countries not belonging to the EU and particularly to the USA.
Google, including Google Inc. and the other US subsidiaries of its property, has certified his adhesion to the coherent principles of the Privacy Shield, for Google Analytics as well.
A copy of the Data may be obtained by contacting the Cavagna Group’s Legal Department via e-mail at the following address: privacy@cavagnagroup.com
Rights of the data subject – complaint with the supervisory authority
By contacting the Legal Department via e-mail at the following address: privacy@cavagnagroup.com, the data subjects have the right to access the Data processed by the Data Controller; furthermore they have the right to rectification and or integration of incomplete data, to erasure and also to restriction of processing in cases envisaged by art. 18 of GDPR. The data subjects can also exercise the right to oppose the processing on ground relating to his or her particular situation.
If the processing is based on consent or on a contract and is carried out by automated means, the data subjects have the right to receive the personal data concerning them, which they provided to a controller, in a structured, commonly used and machine-readable format. The data subjects also have the right to transmit the data to another controller without hindrance, if this is technically feasible.
In any moment the data subjects have the right to revoke the consent previously granted. For the above-stated purpose, the data subject who might prefer to be contacted exclusively via traditional methods/means shall have the possibility to oppose only at the receipt of communications via automated means.
The data subjects have the right to lodge a complaint with the competent supervisory Authority.