Privacy Policy

We wish to inform you, pursuant to Article 13 of European Regulation (EU) 2016/679 (hereinafter GDPR) that the personal data you provide while browsing the website www.elettra.it and through the web services of ELETTRA S.R.L. accessible from the address www.elettra.it, will be processed in compliance with the provisions of the GDPR and Legislative Decree 196/2003 and subsequent amendments (Privacy Code). This information is provided solely for the ELETTRA S.R.L. website and not for other websites that may be consulted by the user via links.

1. Data controller

The data controller is ELETTRA S.R.L., Tax Code and VAT No. 00629080284, in the person of its pro tempore legal representative, with registered office in Via Lisbona No. 28A/5, Padova, registered in the Padova Register of Companies. e-mail privacy@elettra.it.

2. TYPE OF DATA PROCESSED

Through the website, you may provide ELETTRA S.R.L. with certain information that may contain personal data:
a) Navigation data: during normal operation, the IT systems and software procedures used to operate this website acquire certain data (known as log files) whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified data subjects, but by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes IP addresses or domain names of computers used by users connecting to the site, URI, Uniform Resource Identifier, addresses of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server ( successful, error, etc) and other parameters relating to the user’s operating system and IT environment. This data are used for the sole purpose of obtaining anonymous statistical info on the use of the site and to check that is functioning correctly, to identify anomalies and/or abuse, and is delated immediately after processing.
The data could be used to ascertain responsibility in the event of hypothetical computer crimes against the site or third parties
b) Your personal data provided voluntarily: personal details, e-mail address, telephone number, contact details, various types of information.

c) Location data: the website may collect, following your specific authorisation issued through a specific browser/operating system function, the (approximate) location data provided by your IP address;
d) Data sharing via social networks: the website may include plugins and/or buttons to allow you to share content on the social networks (e.g. Facebook, LinkedIn, YouTube, Instagram) you use.

e) Cookies: this website uses cookies in the forms and ways described in the Cookie Policy section, to which reference should be made; cookies are not used for user profiling.

3. PURPOSE, LEGAL BASIS OF THE PROCESSING

The collection and processing of the above personal data by ELETTRA S.R.L. has the following purposes and legal bases: – Pursuant to Article 6(1)(b) of the GDPR, for the purposes of the contract or of taking steps at the request of the data subject prior to entering into a contract, the data subject has provided the data to the data controller.

legitimate interest of the data controller in protecting company assets and ensuring compliance with contractual obligationsi

PURPOSE OF PROCESSING	CATEGORIES OF PERSONAL DATA	LEGAL BASIS FOR PROCESSING
a) to execute a contract to which the data subject is party or to take pre-contractual measures adopted at their request (e.g. responding to requests for contact, quotations and/or commercial information, etc. through the appropriate forms)	common personal data of the data subject	necessity for the performance of a contract or pre-contractual measures, for the provision of a service, or in any case the response to a request from the data subject
b) examination of the data subject’s job/partner application, including by sending an application using the appropriate form	common personal data of the data subject	necessary for the implementation of pre-contractual measures taken at the request of the data subject
	special categories of personal data provided by the data subject	necessity to fulfil the obligations and exercise the specific rights of the data controller or data subject in relation to employment law and social security and social protection (Art. 9(2)(b) GDPR)
c) access to your personal account in the Elettranet section	common personal data of the data subject	necessary for the performance of a contract or pre-contractual measures, for the provision of a service, or in any case the response to a request from the data subject
d) marketing purposes	common personal data of the data subject	consent of the data subject
e) website operation	browsing data and cookies	legitimate interest of the data controller in monitoring the proper functioning of its website
	f) asserting or defending a right of the data controller, including in court	common personal data of the data subject

4. MANDATORY OR OPTIONAL NATURE OF THE PROCESSING

You are free to provide or not provide your personal data, including by filling in the forms on the website, but failure to provide such data may make it impossible to respond to your requests. The provision of browsing data is necessary for technical reasons. The provision of data for the purposes referred to in letter f is necessary.The data controller is:

5. DATA RECIPIENTS

Data processing will be carried out by ELETTRA S.R.L. internal staff, identified and authorised to process data in accordance with instructions and tasks assigned in compliance with current legislation on privacy and data security. The data may be disclosed to external parties, who will process it as data processors or independent data controllers, as appropriate. By way of example, personal data may be processed by IT service providers such as cloud services, e-mail, hardware and software maintenance services,
which may also indirectly access personal data; parties, entities or authorities to whom
it is mandatory to disclose data for legal compliance purposes.
The data will not be transferred outside the European Economic Area. However, if transfer outside the EEA becomes necessary, it will be carried out in accordance with the appropriate and appropriate safeguards, in accordance with applicable legislation and in particular Articles 44 et seq. of the GDPR.

6. PROCESSING METHODS – STORAGE PERIOD

The personal data collected will be processed both on paper and electronically. The data collected will be processed and stored by ELETTRA S.R.L. for the period of time strictly necessary to achieve the purposes indicated, except in cases where storage for a longer period is required by current accounting, tax, civil and procedural legislation, by the competent authorities or by law; in the event of a dispute, the data will be deleted at the end of the dispute. The data collected for the purposes referred to in letter b will be stored for no longer than six months from the date of provision.

7. RIGHTS OF THE DATA SUBJECT

You have the right to obtain confirmation of the existence or otherwise of personal data, to know its content, verify its accuracy, access the data, request its origin, correction, integration, deletion, purposes and methods of processing, updating if incomplete, incorrect or collected in violation of the law, as well as to oppose their processing on the basis of the legitimate interest of the data controller and to obtain the limitation of processing; you have the right to block data processed in violation of the law and to data portability. If the processing is based on consent, you have the right to revoke it at any time. Requests should be addressed to the data controller by email at privacy@elettra.it or by registered letter to the following address: ELETTRA S.R.L., Via Lisbona n. 28A/5, Padua, indicating “Privacy” in the subject line.

8. FORMS OF PROTECTION

If you believe that your personal data has not been processed in accordance with current legislation, you have the right to lodge a complaint with the Italian Data Protection Authority, Piazza Venezia, 11 – 00187 Rome, tel. +39 06.696771, certified email address protocollo@pec.gpdp.it, or you may appeal to the judicial authorities.