PRIVACY AND COOKIE POLICY
INFORMATION ON DATA PROCESSING
This Privacy Policy outlines what data is collected and how it is used, disclosed, transferred, and/or stored by the company.
This information is provided pursuant to Articles 13-14 of Regulation (EU) 2016/679 – hereinafter GDPR – to those who interact with the web services accessible electronically from the address: www.merlosrl.com.
This policy is subject to updates, which will be promptly published on the website.
DATA CONTROLLER
The data controller of the data collected from this site is Merlo s.r.l., located at Strada del Bottone 18, 10043 Orbassano Italy, VAT no. 10615980017, email: commerciale@merlosrl.com.
METHODS OF PERSONAL DATA PROCESSING
The Personal Data provided or acquired will be processed according to principles of fairness, lawfulness, transparency, and the protection of confidentiality under the current regulations.
The Data Controller processes the Personal Data of Users by adopting appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of Personal Data.
Processing is carried out using computer and/or telematic tools, with organizational methods and logic strictly related to the purposes indicated. Among the Personal Data collected by this Website, independently or through third parties, there are: Cookies, Usage Data, Email, and Name. Additional Personal Data may be indicated in other sections of this Privacy Policy or by specific information texts displayed at the same time as the data collection. Personal Data may be voluntarily entered by the User, or automatically collected during the use of this Website.
1. DISCLOSURE AND COMMUNICATION OF DATA
In addition to the Data Controller, in some cases, the data may be accessible to:
a) categories of staff trained for this purpose, involved in the organization of the website (administrative, sales, marketing, legal staff, system administrators);
b) external entities (such as third-party technical service providers, hosting providers, IT companies, communication agencies) appointed as Data Processors by the Controller in accordance with Article 28 GDPR. The updated list of Data Processors, if appointed, can always be requested from the Data Controller;
c) public or private entities that may access the data in compliance with legal obligations;
d) entities performing auxiliary and instrumental tasks to the activities of the Controller;
e) external entities such as partners involved in organizing initiatives and events promoted and/or sponsored by the Controller, for which the communication of the data is necessary for organizational reasons;
f) with the consent of the individual concerned, the subjects indicated in point 5) letter g) of this Privacy Policy.
2. DATA PROVIDED VOLUNTARILY BY THE USER
The optional, explicit, and voluntary sending of emails, including through the Contact Form or to the addresses indicated on this website, entails the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any other personal data included in the email. The consent for providing the data by the User is necessary to be included in the databases of the Controller and for the purpose of establishing and properly conducting what is offered by the same to its Users, as well as third parties to fulfill the requested activity. Failure to provide the data will prevent the registration in the Controller’s databases, the completion of any contracts, as well as their execution and any other potential activity. Therefore, the failure to provide certain personal data by the User may prevent this website from providing its services. The User assumes responsibility for the Personal Data of third parties published or shared through this website and guarantees that they have the right to communicate or disclose them, releasing the Controller from any liability towards third parties.
3. DATA PROCESSING LOCATION
Data is processed at the operational headquarters of the Data Controller. For further information, you can contact the Data Controller.
4. DATA PROCESSING DURATION
As expressly provided by Article 5, paragraph 1, letter e) of the GDPR, the data is retained for the time necessary to process it in relation to the provision of the requested service by the User, or required by the purposes described in this document.
In particular:
– Personal data collected for purposes related to the execution of a contract between the Data Controller and the User will be retained until the contract is fully executed;
– Data collected for purposes linked to the legitimate interest of the Controller will be retained until such interest is satisfied. The User may obtain further information regarding the legitimate interest pursued by the Controller in the relevant sections of this document or by contacting the Controller;
– Data collected based on the User’s consent will be retained until such consent is revoked;
– Data collected for fiscal/administrative obligations will be retained for the time necessary to fulfill such obligations and in accordance with the law, and in any case, for a period not exceeding what is dictated by civil law;
– Data may be retained by the Controller for a longer period in compliance with legal obligations or by order of an authority.
The User may always request the interruption of the processing or the deletion of data not related to the execution of the contract.
At the end of the retention period, Personal Data will be deleted. Therefore, upon the expiration of this period, the right to access, delete, rectify, and the right to data portability can no longer be exercised.
5. PURPOSES OF DATA PROCESSING
User data is collected to allow the website to provide its services, as well as for the following purposes: Contacting the User, Managing addresses and sending email messages, interacting with external platforms, and statistics. Specifically:
a) to fulfill any type of obligation required by current laws, regulations, or commercial usage, particularly in the tax/fiscal domain;
b) to respond to specific requests made by the User to the Controller through the website and its communication tools (contact form, information request forms, etc.);
c) for informational communications regarding the Controller’s services, following a request for information via email or contact form and other communication tools;
d) for other purposes related to those mentioned above and in any case falling within the scope of the website’s activities;
e) to send information and promotional and commercial offers;
f) for profiling activities for marketing purposes;
g) to share data with companies and/or third parties with whom the Controller collaborates or has agreements, who may use the Data of the Data Subject to send communications and/or informational material related to events they organize or services they provide.
The types of Personal Data used for each purpose are indicated in the specific sections of this document.
For the purposes referred to in point a), the processing is necessary for the performance of a contract to which the Data Subject is a party, for the performance of pre-contractual measures, or to comply with a legal obligation to which the Data Controller is subject.
For the purposes referred to in points b), c), d), the processing is optional; however, the failure to communicate one or more data items will make it impossible to respond to your request for information and to take advantage of the services offered by the Controller.
For the purposes referred to in points e), f), g), the processing is based on the freely expressed consent of the Data Subject.
ADDITIONAL INFORMATION ON PROCESSING
LEGAL DEFENSE
The User’s Personal Data may be used for the Controller’s defense in court or in the preparatory stages of its possible establishment, in the case of abuse in the use of this website or related services by the User. The User declares to be aware that the Controller may be required to reveal the data upon request of public authorities.
NATURE OF DATA PROCESSED AND CONSEQUENCES OF REFUSAL
The provision of navigation data by Users, for the purposes mentioned above, depends on the degree of privacy that the User has enabled or disabled through their browser. In some cases, disabling it may affect the navigation on this website. For certain forms on this website, the provision of navigation data and/or the use of technical cookies is mandatory for the proper functioning of the website itself. The provision of certain data is, in any case, necessary for the structure of the website and its procedures. Specifically, as an example:
• to send messages via the contact form, the minimum data requested is mandatory;
Otherwise, the procedure cannot be completed.
Any request for other optional data will be preceded by a specific approval checkbox. The provision of all other data is optional, depending on the type of information the User wishes to provide to the website.
EXERCISE OF THE DATA SUBJECT’S RIGHTS
The Data Subject has the right to exercise the faculties provided by Articles 7, 15-22 of Regulation (EU) 679/2016.
In particular, they have the right to revoke their consent at any time and, by simply requesting the Data Controller, may request access to their Personal Data, receive the Personal Data provided to the Controller and, where possible, transmit it to another Data Controller without hindrance (so-called portability), obtain the updating, limitation of processing, rectification of data, and the deletion of those processed in violation of current regulations. They also have the right, for legitimate reasons, to object to the Processing of Personal Data concerning them, and to the Processing for the purposes of sending advertising material, direct sales, and for carrying out market research. They also have the right to lodge a complaint with the Privacy Authority as the supervisory authority for personal data protection. The Data Subject may exercise their rights by contacting the Data Controller via email at: commerciale@merlosrl.com.
CHANGES TO THIS PRIVACY POLICY
The Data Controller reserves the right to make changes to this Privacy Policy at any time by giving notice to Users on this page. Therefore, please consult this page often,
referring to the date of the last modification indicated at the bottom. In case of non-acceptance of the changes made to this Privacy Policy, the User is required to cease using this website and may request the Data Controller to remove their Personal Data. Unless otherwise specified, the previous Privacy Policy will continue to apply to Personal Data collected up to that moment.
The Data Controller is responsible for this Privacy Policy.
Privacy Policy updated in January 2023.
COOKIE POLICY
This cookie policy, or extended information regarding cookies and other tracking tools, concerns the use of cookies by the website www.merlosrl.com.
The data controller of the data collected from this site is Merlo s.r.l., located at Strada del Bottone 18, 10043 Orbassano Italy, VAT no. 10615980017, email: commerciale@merlosrl.com.
Cookies are small text files used by websites to make the user’s browsing experience more efficient, and they are sent to their browser, where they are stored to be reused by the same website during their next visit.
Cookies have different functions. Some cookies are intended to improve the functionality and navigation of this website (so-called technical or necessary cookies). Other cookies are used to track users during navigation, record information, and reveal their interests, analyzing their readings and hobbies to customize the advertising shown when opening emails, browsing social networks, or other web pages (so-called profiling cookies). Cookies are used to personalize content, provide social media features, and analyze traffic.
In their browser, the user can set privacy preferences to not store cookies, delete them after each visit or every time they close the browser, or even accept only cookies from www.merlosrl.com and not from third parties.
Depending on the time cookies remain in the browser, they are classified as:
Session cookies: temporary cookies that remain on the device until the User leaves the site.
Persistent cookies: cookies that remain on the device for longer until they are deleted.
This website uses various types of cookies.
Technical cookies
Technical cookies are those whose use does not require the User’s consent. They are cookies used solely to carry out the transmission of a communication over an electronic communications network or to the extent strictly necessary for the provider of an information society service explicitly requested. On this website, technical cookies are used to store the User’s decision on the use of cookies on the website itself. The retention period for technical cookies is the duration of the website’s browsing session.
DELETING OR DISABLING COOKIES
Except for the technical cookies strictly necessary for normal browsing, the provision of data is left to the will of the User, who decides to browse the website after reading the brief notice contained in the appropriate banner and to take advantage of the services of third parties that involve the installation of cookies. The User can avoid the installation of cookies by keeping the banner (thus refraining from closing it by clicking the “OK” button), unchecking some or all of the categories of cookies used by the website, as well as through the appropriate functions available in their browser.
The user can manage cookie preferences directly within their browser and prevent third parties from installing cookies.
It is important for the User to know that disabling all cookies may compromise the functionality of this website. Each browser has different procedures for managing settings.
To disable third-party cookies, it is also possible to use Your Online Choices, http://www.youronlinechoices.com/it/le-tue-scelte, a web service managed by the non-profit association European Interactive Digital Advertising Alliance (EDAA), which provides information on behavioral advertising based on profiling cookies and allows users to easily object (opt-out) to their installation. By deleting all cookies from their browser or removing them through services like Your Online Choices, third-party cookies will be generally inhibited, not only within the scope of this website.
ADDITIONAL INFORMATION ON PROCESSING
Specific information
Upon the User’s request, in addition to the information contained in this Cookie Policy, this Website may provide additional and contextual information regarding specific services, or the collection and processing of Personal Data.
System logs and maintenance
For operational and maintenance purposes, this website and any third-party services it uses may collect system logs, i.e., files that record interactions and may also contain Personal Data, such as the User’s IP address.
Information not contained in this Cookie Policy
More information regarding the processing of Personal Data may be requested at any time from the Data Controller using the contact information provided.
EXERCISE OF THE DATA SUBJECT’S RIGHTS
Pursuant to Articles 15-22 of Regulation (EU) No. 679/2016, the Data Subject has the right to obtain confirmation of the existence or non-existence of personal data concerning them, even if not yet registered, and to receive it in an intelligible form.
The Data Subject has the right to obtain information on:
a) the origin of the personal data;
b) the purposes and methods of processing;
c) the logic applied in the case of processing carried out with the help of electronic tools;
d) the identity of the Data Controller and Data Processors;
e) the entities or categories of entities to whom the personal data may be communicated or who may become aware of it as designated representatives within the State’s territory, data processors, or persons in charge of processing.
The Data Subject has the right to obtain:
a) the updating, rectification, or, when interested, the integration of data;
b) the deletion, anonymization, or blocking of data processed in violation of the law, including data that is no longer necessary for the purposes for which it was collected or subsequently processed.
The Data Subject has the right to object, in whole or in part:
a) for legitimate reasons, to the processing of personal data concerning them, even if relevant to the purpose of collection;
b) to the processing of personal data concerning them for the purpose of sending advertising material, direct sales, or for conducting market research or commercial communication.
NOTICE: The Data Controller is not responsible for updating all the links included in this Cookie Policy, which refer to third-party sites. Therefore, if a link is not functional or not up to date, Users acknowledge and accept that they must always refer to the document and/or section of the websites to which the link refers.