PRIVACY POLICY
Data Controller
Eurofinestra by Ecosistema Srl
SP482 95/1, 46037 Governolo (MN)
email: info@eurofinestra.it — tel. +39 0376 668028
Purpose and legal basis of the processing
Recipients of personal data
Data retention period
Rights of the interested party
Data provision
Your personal data will be processed for the following purposes:
a) to provide the services you request via the contact form on the website;
b) to send newsletters and marketing communications, subject to your express consent obtained through voluntary subscription to the service.
The processing referred to in points a) and b) requires your express consent, which you provide by checking the appropriate box.
The personal data received will remain for the exclusive use of the Data Controller and will not be disclosed to other companies, organizations, professional bodies, or professionals, with the exception of technical service providers strictly necessary for the provision of the requested services (e.g., newsletter distribution platforms), who act as Data Processors.
Personal data will be retained for the period strictly necessary to achieve the specific purposes for which the user has given consent, and specifically:
for the purposes indicated in subparagraph (a), for the time necessary to fulfill the requested services and, in any case, no longer than 10 years from the date of collection, to comply with regulatory obligations;
for the purposes indicated in letter b), until the user revokes their consent.
You may, at any time, exercise the following rights:
a. Access to your personal data;
b. Rectification or erasure of your personal data, or restriction of processing;
c. Objection to processing on grounds relating to your particular situation;
d. Data portability, in the case of automated processing carried out on the basis of consent;
e. Withdrawal of consent to processing for marketing and newsletter purposes, without prejudice to the lawfulness of processing carried out prior to withdrawal;
f. Filing a complaint with the competent supervisory authority. In Italy, the competent authority is the Italian Data Protection Authority: www.garanteprivacy.it.
The aforementioned rights may be exercised by sending a specific request to the Data Controller through the contact channels indicated in Article 1. Requests will be processed within one month of receipt, extendable by an additional two months in cases of particular complexity.
The provision of data is mandatory for the purposes indicated in subparagraph (a) and necessary for the provision of the requested service. Refusal to provide the data may result in the service not being provided. For the purposes indicated in subparagraph (b), the provision of data is optional.