According to the Privacy Regulation n. 2016/679 (hereafter “Regulation”), this page describes the methods of processing the personal data of Users who consult the Pedretti Graniti websites accessible electronically at the following addresses:
This information does not concern other sites, pages or online services accessible through hypertext links that may be published on the sites but referring to resources external to the Pedretti domain
Holder of the treatment
with headquarters in Via Pignole n. 16/18/20 – 38080 Carisolo (TN)
All requests regarding the processing of personal data will be addressed to the Data Controller at the following address:
Types of data processed and purposes of the processing
During their normal operation, the IT systems and software procedures used to operate this site acquire some personal data whose transmission is implicit in the use of Internet communication protocols.
This category of data includes the IP addresses or domain names of the computers and terminals used by the Users, the addresses in URI / URL (Uniform Resource Identifier / Locator) notation of the requested resources, the time of the request, the method used in the submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the User’s IT environment.
These data, necessary for the use of web services, are also processed for the purpose of:
obtain statistical information on the use of the services (most visited pages, number of visitors by time or day, geographical areas of origin, etc.); check the correct functioning of the services offered.
Data communicated by the User
These data are provided through the optional, explicit and voluntary sending to the body’s address by e-mail or other means. These are data such as: name and surname, e-mail address, telephone number, as well as other personal data included in the communications.
The optional, explicit and voluntary sending of messages to the contact addresses of Pedretti Graniti, the private messages sent by Users to the profiles / institutional pages on social media (where this possibility is foreseen), as well as the compilation and submission of any forms present on the Pedretti Graniti sites entail the acquisition of the sender’s contact data, necessary to reply, as well as all personal data included in the communications. By submitting their data, the User consents to their use to respond to requests for information or of any other nature.
Cookies and other tracking systems
Cookies are not used for user profiling, nor are other tracking methods used. For further information, please refer to the relative cookie page.
Prohibition: personal data that refer to third parties cannot be provided without their express authorization.
Legal basis of the treatment
The personal data indicated on this page are processed by Pedretti Graniti on the basis of:
- consent to treatment
- execution of a contract
- fulfillment of a legal obligation
- pursuit of a legitimate interest of the Data Controller
Methods of data processing
The treatment will be carried out with automated tools (IT / electronic) and in paper form. Suitable measures are foreseen to prevent the loss of data, illicit or incorrect use and unauthorized access. The data will be processed exclusively by the Data Controller and by those specifically authorized by the Data Controller.
In addition to the Data Controller, other authorized persons (administrative, commercial, system administrators) or additional third parties (such as suppliers of third party technical services, hosting providers, IT companies) may have access to personal data for the realization of the services provided by the company, appointed, if necessary, Data Processors by the Owner.
Data retention period
the data communicated by the User will be kept for the period necessary for the fulfillment of any requests and in any case not exceeding ten years.
Disclosure of data
Personal data may be disclosed to all subjects, including public authorities, who have access to personal data by virtue of regulatory or administrative measures.
Rights of the interested party
Against the Owner and at any time you can exercise the rights provided by the Regulation. According to current legislation you can:
- Request access to personal data and obtain a copy of the same (art. 15);
- If you believe it to be inaccurate or incomplete, request its correction or integration (art. 16);
- If the legal conditions exist, object to the processing of your data (art.21), request their cancellation (art.17), or exercise the right of limitation (art.18).
- Propose a complaint to the Data Protection Authority.
The exercise of the aforementioned rights can be exercised by means of written communication to be sent to the contact data indicated in the Data Controller item, by pec or registered letter with return receipt.