For further privacy information (the TECO s.r.l. personal data protection notice for clients and suppliers

Client privacy notice
Supplier privacy notice

TECO Srl
Via Sandro Pertini n.39/41
25050 Provaglio d'Iseo (BS) Italia


+39 030 6850510
+39 030 6850555
info@tecosrl.it
pec@pec.tecosrl.it


P.IVA: 03215890173
Codice fiscale: 01238310039
Cod.SDI Teco srl: CZR6GUY

Last update: 20th April 2019

PERSONAL DATA PROCESSING NOTICE PURSUANT TO ARTICLES 13 AND 14 OF EU REGULATION 2016/679 (GENERAL DATA PROTECTION REGULATION)

Dear user
With head offices in Via Sandro Pertini, 39/41, 25050 Provaglio d'Iseo (BS) Italia, VAT no.: 03215890173, tax code: 01238310039 TECO S.R.L (hereafter data controller), pursuant to EU Regulation 2016/679 (hereafter regulation) is required to supply you with certain information regarding the processing of your personal data.
This notice applies to the www.tecosrl.it website (hereafter the website) and not to any other websites users may consult via links and is an integral part of the site and the services we offer. This notice is given in accordance with articles 13 and 14 of the regulation to those interacting with the site’s web services.
Your personal data will be processed in accordance with the regulation’s legislative measures and the privacy obligations contained in it. The processing of your personal data will thus take place in accordance with the principles of fairness, lawfulness, transparency, limitation of purposes and storage, minimisation and precision, integrity and privacy as well as the principle of responsibility in article 5 of the regulation.

DATA PROCESSING CONTROLLER AND RESPONSIBLE STAFF

The data controller is TECO S.R.L as identified above. An up-to-date list of responsible staff can be requested in writing at the following email address:
amministrazione@tecosrl.it.

TYPES OF DATA PROCESSED

BROWSING DATA

During normal working, the IT systems and software procedures required for website functioning collect certain personal data whose transmission is implicit in the use of internet communication protocols. This is information which is not collected with the intention of linking it to identified parties but whose very nature may enable such users to be identified via processing and linking with data stored by third parties. This data category comprises the IP addresses or domain names of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) notation addresses of the resources requested, request times, methods used to submit requests to the server, the dimensions of the files obtained in response, number codes indicating the state of the server data response (positive outcome, error, etc.) and other parameters relating to the user’s operating system and IT environment. Web contact data is not stored for more than seven days.

DATA SUPPLIED VOLUNTARILY BY USERS

CONTACT SECTION

The optional and voluntary sending of personal data in the Contacts section in addition to other personal data entered in messages leads to the processing of this data on the basis of explicit consent (article 6, paragraph 1a of the regulation), exclusively and strictly for the purposes of the request, such as responding to information requests received. Without prejudice to any other legally required processing, all other purposes are excluded.

The optional, explicit and voluntary sending of emails to the email addresses shown on this website implies the subsequent acquisition of the sender’s address by the controller as well as any other personal details contained in the email and required for the specific purposes of the request sent to the controller.

PRIVATE AREA

TECO s.r.l. makes a free information service available to its users giving them access to its whole range and from which they can download information on the firm’s products and services. Accessing this service requires specific registration on the site’s private area.

Optional and voluntary sending of the personal data required for access to this area leads to data processing following explicit consent by you to registration (article 6, paragraph 1a of the regulation), exclusively for user identification purposes (and thus supply login data) and for anonymous statistical purposes relating to user interest in the firm’s products.

In the registration phase users can also supply separate specific and voluntary consent to the use of the personal data collected, and the email address supplied in particular, for the purposes of receiving commercial communications and newsletters via email containing information on the firm’s products and services. If you no longer want to receive such communications and newsletters, click on the link present at the end of these emails or write to the controller to revoke your consent and request that your personal data be cancelled from our mailing list.

Without prejudice to any other legally required processing, all other purposes are excluded.

OTHER DATA REGISTERED ON THE SITE INCLUDING THAT SUPPLIED BY THIRD PARTIES

In the section of the site set aside for TECO staff we may also record certain identification and contact details in addition to the data required for registration in the private area or newsletter section regarding clients or collected via contact with our authorised staff.
or our external appointees (e.g. our agents) or those supplied or collected by third party resources (such as trade fairs we take part in as exhibitors).

Cookies

Details of the cookies used on the site are available in our cookie policy, consultable via the following link on which you can personalise your site use experience

PURPOSES AND LEGAL BASIS FOR PROCESSING

Personal data will be processed for the following purposes:

  • Operational management and purposes strictly connected with this, relating to website access and use of the site’s services - the legal basis for this processing is user consent (article 6, paragraph 1a of the regulation) or contract fulfilment (article 6, paragraph 1a of the regulation).
  • Elaboration for statistical purposes and in anonymous, aggregate form on site use and its correct functioning - the legal basis for this is user consent (article 6, paragraph 1a of the regulation) and the legitimate interest of the data controller (article 6, paragraph 1f of the regulation).
  • Fulfilment of certain obligations required under current law, pursuant to EC regulations or laws, fulfilment of institutional duties - the legal basis is the fulfilment of legal obligations (article 6, paragraph 1a of the regulation).
  • Functional purposes related to information requests received via website contact forms or direct marketing activities by the controller, specifically: the sending of commercial communications and newsletters - the legal basis for this processing is user consent (article 6, paragraph 1a of the regulation).
  • Functional purposes relating to management, storage and communication of legitimately acquired commercial client and prospective buyer contacts and site users - the legal basis for this processing is either the fulfilment of a contract involving the interested party or pre-contractual measures adopted at the latter’s request (article 6, paragraph 1b of the regulation), or the legitimate interest of the controller in maintaining his contact base (article 6, paragraph 1f of the regulation).

NATURE OF DATA SUPPLY AND THE CONSEQUENCES OF REFUSAL

Whilst not always obligatory, personal data may be essential to effective browsing on the site and for service fulfilment.
In particular, for the purposes of points a. (access to private area services) and d. (requests for information and commercial and marketing information) personal data is always optional and users may thus decide not to supply data or subsequently refuse processing of the data given, revoking consent at any time via the specific newsletter function or by sending a specific request to the controller using the methods described in this notice. However, denying consent may make it impossible for us to acquire your data

and provide you with access to our services, respond to your requests or send you our commercial communications and newsletters.

PROCESSING METHODS

Your personal data will be processed with the assistance of paperwork and/or automatic IT tools by those responsible for processing, appointed in accordance with article 28 of the regulation or by those authorised to process data within the time frame required for the fulfilment of the purposes for which they were collected or any other associated legitimate purpose. At the end of this period data will be stored pursuant to specific legal or contractual obligations or in response to specific official requirements as well as for administrative purposes and/or to defend or enforce rights in the event of litigation or pre-litigation.

In particular, as regards access to the private area or for the marketing purposes set out above, in the event of a desire by you to withdraw consent given or have your data removed, your data will be promptly deactivated in our database in such a way as to ensure that no further communications from us are sent to you or that your access to the private area is removed. Subsequently your personal data will be removed or made anonymous. Furthermore the email addresses in our newsletter mailing list will be removed after 24 months of inactivity.

In any event the data controller undertakes to adopt whatever technical and organisational safety measures are required to prevent data destruction or loss, unauthorised access pursuant to article 32 of the regulation.

In this sense, where there is evidence of unlawful use of the private area or untruthful data having been supplied, the data controller reserves the right to suspend/remove a user’s private area access account, blocking the latter’s fruition of the services made available on it.

Your data will not be distributed in any way but may be passed on to third parties whose services are required and associated with the purposes shown above (examples are professionals, relevant administrative and judicial authorities, professional law studios, national and/or international public authorities as appropriate).

Automatic decision-making processes are not employed in the processing context including profiling (pursuant to article 22, paragraphs 1 and 4 of the regulation) generating legal effects relating to you or impacting significantly on you.

PERSONAL DATA TRANSFER

The personal data processed by this site will not be transferred outside the European Economic Area. The data controller remains free to move the server’s location to a non-European Union country where necessary. In such an event, the controller guarantees as of now that data processing will take place in conformity with the applicable laws, drawing up agreements guaranteeing adequate protection standards where necessary.

RIGHTS OF INTERESTED PARTIES

As an interested party, you can apply to the data controller to assert your rights in accordance with articles 15 to 22 of the regulation, set out as follows:

  • the right to request access to your personal data from the data processor (article 15);
  • the right to request amendments to your personal data from the data processor (article 16);
  • the right to request removal of your personal data from the data processor (article 17);
  • the right to request limitation in the processing of your personal data from the data processor (article 18);
  • the right to data portability (article 20);
  • the right to oppose processing (article 21);
  • rights regarding automatic decision making (article 22).

Wherever processing is based on article 6, paragraph 1a of the regulation, you have the right to withdraw your consent at any time without prejudice to the lawfulness of the processing based on the consent given prior to withdrawal.

You also have the right to complain to the Data Protection Authority.

To exert these rights send a registered letter to Teco S.r.l. at its Via Sandro Pertini, 39/41, 25050 Provaglio d'Iseo (BS) head offices or an e-mail to amministrazione@tecosrl.it.

For further privacy information (the TECO s.r.l. personal data protection notice for clients and suppliers

Dear Customer Company/Firm – Address of Headquarters

PRIVACY NOTICE IN ACCORDANCE WITH ART. 13 OF EU REGULATION NO. 2016/679 (“GDPR”)

The company Teco S.r.l. with registered office in Via Sandro Pertini no. 39/41, 25050 Provaglio d'Iseo (BS) Italy, VAT no.: 03215890173, Tax Code: 01238310039 (hereinafter “Controller”), in its capacity as data controller, informs you that according to art. 13 of EU Regulation no. 2016/679 (“GDPR”), your personal data will be processed in the following ways and for the following purposes:

1. Subject of the Processing
The Controller processes personal data, meaning those common identification data for commercial contact purposes (name, surname, company name, address, telephone number, e-mail, bank and payment details), communicated by you when defining and/or concluding contracts as Customers of the Controller’s services.

2. Purpose of the processing
Your personal data are processed for the following contractual purposes:

  • to conclude contracts with your company in its capacity as Customer;
  • to fulfil precontractual obligations (including the acquisition of information before conclusion of the contract), contractual and fiscal obligations arising from existing relationships with you;
  • to fulfil any obligations envisaged by law, by a regulation, by EU legislation or by an order from authorities;
  • to exercise the rights of the Controller, for example the right to legal defence.

Your personal data may be processed for marketing purposes:

  • We would like to point out that if you have already purchased our products, we may send you (by email) commercial or marketing communications regarding services and products of the Controller that are similar to those already purchased by you, unless you notify us to the contrary (art. 130 no. 4. Italian Legislative Decree 196/03 Italian Privacy Code).
    With regard to other Direct Marketing purposes, the processing will only take place with your specific consent (art. 130 Italian Legislative Decree 196/03 Italian Privacy Code and art. 7 GDPR).

3. Methods of processing and data retention
Your personal data may be processed by means of the operations stated in art. 4 no. 2) GDPR, and more specifically: collection, recording, organization, storage, consultation, processing, modification, selection, retrieval, alignment, use, interconnection, blocking, communication, erasure and destruction of the data.
Processing of your personal data may be carried out by electronic means and on paper.
The Controller will process your personal data for the time necessary to fulfil the aforementioned purposes and, however, for no longer than 10 years from the end of the contractual relationship. For marketing purposes, the Controller will process the personal data for the time strictly necessary to fulfill the purposes for which it was collected, for the period prescribed by law or in the context of provisions of the authority. Upon your will to revoke the consent given or express decision to cancel from our commercial newsletter, your data will be promptly deactivated by our marketing databases so that you will not receive further communications.

4. Access to data
Your data may be made accessible for the purposes stated in the previous art. 2:

  • to employees and collaborators of the Controller in their capacity as persons in charge of processing and/or internal data processors and/or system administrators
  • to third-party companies or other entities (including, but not limited to: professional firms, consultants, insurance companies, credit institutions, etc.) that perform activities on behalf of the Controller, also in their capacity as external data processors.

5. Communication of data
In accordance with art. 6 letters b) and c) GDPR, therefore without the need for express consent, the Controller may communicate your data for purposes arising from the contractual relationship to judicial authorities as well as any entities to whom communication is obligatory by law to fulfil the stated purposes. These entities will process the data in their capacity as independent data controllers.
Your data will not be subject to circulation.

6. Transfer of data
Your personal data may be transferred, for the purposes stated in this privacy notice, as well as for storage and retention purposes, to countries within the European Union and countries outside the European Union.
In any case, the Controller gives its assurance that the transfer of data outside the EU will take place in compliance with applicable legal provisions.

7. Nature of the conferral of data and the consequences of a refusal to reply
The conferral of data for the contractual purposes stated in the first part of art. 2 is mandatory. In the event such data are not conferred, we may not be able to guarantee execution of the contractual relationship.
The conferral of data for marketing purposes pursuant to the second part of art. 2 is instead optional; you may therefore decide not to confer any data or subsequently refuse the processing of data already provided. In this case you will not receive the aforementioned commercial communications and advertising material regarding the services offered by the Controller.

8. Rights of the data subject
As data subject, you may exercise your rights pursuant to art. 15 GDPR and in particular the right:

  • to obtain confirmation as to whether or not personal data concerning you exist, regardless of their being already recorded, and communication of such data in intelligible form;
  • to be informed: a) of the source of the personal data; b) of the purposes and methods of processing; c) of the logic applied in the case of processing carried out with the aid of electronic devices; d) of the identification data of the Controller, Processors and Representative appointed in accordance with art. 3 paragraph 1 GDPR; e) the entities or categories of entity to whom or which the personal data may be communicated and who or which may get to know said data in their capacity as designated representative in the territory of the State, data processors of persons in charge of processing.
  • to obtain: a) the updating, rectification or, where interested therein, integration of the data; b) the erasure, anonymization or blocking of data that have been processed unlawfully, including data whose retention is unnecessary for the purposes for which they have been collected or subsequently processed; c) certification to the effect that the operations as per letters a) and b) have been notified, as also related to their contents, to the entities to whom or which the data were communicated or disseminated, unless this requirement proves impossible or involves a manifestly disproportionate effort compared with the right that is to be protected.
  • to object in whole or in part: a) on legitimate grounds, to the processing of personal data concerning you, even though they are relevant to the purpose of the collection; b) to the processing of personal data concerning you, where it is carried out for the purpose of sending advertising materials or direct selling or else for the performance of market or commercial communication surveys using automated calling systems without human intervention by email and/ or using traditional marketing methods by telephone and/or post. It should be noted that the right of the data subject to oppose, stated in the previous point b), for direct marketing purposes by automated means shall extend to traditional methods, and, however, without prejudice to the possibility of the data subject exercising his/her right of opposition, even if in part. Therefore, the data subject may decide to receive communications only by traditional methods or only by automated methods or neither of the two types of communication.
  • Where applicable, you shall also have the rights pursuant to articles 16-21 GDPR (right to rectification, right to erasure (right to be forgotten), right to restriction of processing, right to data portability, right to object), as well as the right to make a claim to the Data Protection Authority.

9. Method of exercising data subject rights
The data subject may at any moment exercise rights by sending a registered letter with return receipt to Teco S.r.l. at its headquarter in Via Sandro Pertini no. 39/41, 25050 Provaglio d'Iseo (BS) Italy, or an email to the address amministrazione@tecosrl.it

10. Controller and Processors
The Data Controller is the company Teco S.r.l. with registered office in Via Sandro Pertini no.39/41, 25050 Provaglio d'Iseo (BS) Italy, VAT no.: 03215890173, Tax Code: 01238310039. The updated list of data processors is held at the registered office of the Data Controller.

Dear Supplier Company/Firm – Address of Headquarters

PRIVACY NOTICE IN ACCORDANCE WITH ART. 13 OF EU REGULATION NO. 2016/679 (“GDPR”)

The company Teco S.r.l. with registered office in Via Sandro Pertini no. 39/41, 25050 Provaglio d'Iseo (BS) Italy, VAT no.: 03215890173, Tax Code: 01238310039 (hereinafter “Controller”), in its capacity as data controller, informs you that according to art. 13 of EU Regulation no. 2016/679 (“GDPR”), your data will be processed in the following ways and for the following purposes:

1. Subject of the Processing
The Controller processes personal data, meaning those common identification data for commercial contact purposes (name, surname, company name, address, telephone number, e-mail, bank and payment details), communicated by you when defining and/or concluding contracts as Suppliers.

2. Purposes of the processing
Your personal data are processed for the following contractual purposes:

  • to conclude contracts with your company in your capacity as Supplier;
  • to fulfil precontractual obligations (including the acquisition of information before conclusion of the contract), contractual and fiscal obligations arising from existing relationships with you;
  • to fulfil any obligations envisaged by law, by a regulation, by EU legislation or by an order from authorities;
  • to exercise the rights of the Controller, for example the right to legal defence.

Processing will only take place with your specific consent (art. 7 GDPR) for the following marketing purposes:

  • to send you commercial and/or advertising material regarding the products or services offered by the Controller

3. Methods of processing and data retention
Your personal data may be processed by means of the operations stated in art. 4 no. 2) GDPR, and more specifically: collection, recording, organization, storage, consultation, processing, modification, selection, retrieval, alignment, use, interconnection, blocking, communication, erasure and destruction of the data.
Processing of your personal data may be carried out by electronic means and on paper.
The Controller will process your personal data for the time necessary to fulfil the aforementioned purposes and, however, for no longer than 10 years from the end of the contractual relationship. For marketing purposes, the Controller will process the personal data for the time strictly necessary to fulfill the purposes for which it was collected, for the period prescribed by law or in the context of provisions of the authority. Upon your will to revoke the consent given or express decision to cancel from our commercial newsletter, your data will be promptly deactivated by our marketing databases so that you will not receive further communications.

4. Access to data
Your data may be made accessible for the purposes stated in the previous art. 2:

  • to employees and collaborators of the Controller in their capacity as persons in charge of processing and/or internal data processors and/or system administrators;
  • to third-party companies or other entities (including, but not limited to: professional firms, consultants, insurance companies, credit institutions, etc.) that perform activities on behalf of the Controller, also in their capacity as external data processors.

5. Communication of data
In accordance with art. 6 letter b) and c) GDPR, therefore without the need for express consent, the Controller may communicate your data for purposes arising from the contractual relationship to judicial authorities as well as any entities to whom communication is obligatory by law to fulfil the stated purposes. These entities will process the data in their capacity as independent data controllers.
Your data will not be subject to circulation.

6. Transfer of data
Your personal data may be transferred, for the purposes stated in this privacy notice as well as for storage and retention purposes, to countries within the European Union and countries outside the European Union.
In any case, the Controller gives its assurance that the transfer of data outside the EU will take place in compliance with applicable legal provisions.

7. Nature of the conferral of data and the consequences of a refusal to reply
The conferral of data for the contractual purposes stated in the first part of art. 2 is mandatory. In the event such data are not conferred, we may not be able to guarantee execution of the contractual relationship. The conferral of data for marketing purposes pursuant to the second part of art. 2 is instead optional; you may therefore decide not to confer any data or subsequently refuse the processing of data already provided. In this case you will not receive the aforementioned commercial communications and advertising material regarding the services offered by the Controller.

Request
information