Privacy Policy

Introduction

Ceramica Flaminia S.p.A. (hereinafter also referred to as the “Company”) has adopted rules and company policies pursuant to the European Union General Data Processing Regulation (GDPR – Regulation (EU) 2016/679) in order to ensure high security standards and rules designed to ensure appropriate processing of Personal Data.

In particular, the term Personal Data is used with reference to the definition provided in article 4(1) of the GDPR, i.e., it “means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.” (hereinafter, “Personal Data” or “Data”).

In accordance with the applicable regulations, Ceramica Flaminia intends to guarantee the necessary degree of protection and security in the processing of the personal data of each user, also in terms of access to the company website. Unless otherwise specified and regulated by a specific privacy statement released pursuant to article 13 of the GDPR (bottom of page), this Privacy Policy shall also be construed as a document designed to supply information as per articles 13 and 14 of the GDPR to those who navigate the Website and interact with the data controller through the services offered by the Website itself.

The Data Controller
Ceramica Flaminia S.p.A., a company with registered office in Civita Castellana (VT) 01033, Flaminia State Road km 54,630 – is the Data Controller, i.e., the subject responsible for making decisions regarding the purposes and the modalities of the processing, also from the standpoint of security. It is possible to contact the Controller to request information on processing methods, send in a report, or exercise a right by sending an e-mail to “privacy@ceramicaflaminia.it”.

Types of data processed
It is possible to acquire information on a user navigating a website in terms of:

Navigation data: during normal use, the IT systems and the software procedures underpinning the operation of the Website acquire some personal data whose transmission is implicit in the use of Internet communication protocols. This group of data includes: IP addresses, type of browser used, operating system, the domain name and the Internet sites from which the user entered/exited the site, information on the pages visited inside the site, time of access, time spent on an individual page, an analysis of the path within the site, and other parameters relating to the operating system and the IT environment of the user.

These technical/IT data are collected and used exclusively in aggregate, non-identifying form, and could be used to ascertain responsibilities in the event of cyber crimes being committed against the Website.

Data supplied voluntarily by the visitor: all the personal data supplied freely by a user visiting a website, for example, to register and/or request information on a given product and/or service, or to receive our newsletter by completing the ad hoc forms in dedicated areas of the website. The processing of such personal data is performed on the basis of all the information contained in the specific policy statements released, pursuant to article 13 of GDPR, when users enter personal data and when they register with the site.
Data collecting with tracking tools (cookies): cookies are text files containing small amounts of information, which are downloaded to your computer or mobile device whenever you visit an online site via a browser. For information on tracking purposes and the management of preferences, see the specific section “cookie policy” in each individual website.

Processing methods
As a rule, personal data are processed using electronic supports and procedures, for the time strictly necessary. Personal data are processed by the Data Controller solely to the extent necessary to fulfil the main purpose of the processing. In particular, personal data are processed for a time period limited to the time period strictly necessary, i.e., until the end of the contractual relationship established between the data subject and the data controller, without prejudice to a longer retention time as may be required by law.

Subjects authorised to process the data
The Data are processed by internal and external resources, duly identified and trained, who work as persons authorised to process the data or as data processors.

Rights of the Data Subjects
As provided for in article 15 if the GDPR, data subjects can exercise their rights in dealing with the data controller, and namely:
At any time, the Users may:

Object to the processing of their personal data. Users can object to the processing of their data when this is done on a legal basis other than their consent. Additional information on the right to object is given in a section below;
Access their data. Users have the right to obtain information on the data processed by the Controller relating to specific aspects of the processing, and to receive a copy of the data processed;
Verify and request that their data be rectified. They can verify the correctness of their data and ask that the data be updated or rectified;
Ask that the processing be restricted. When given conditions are met, the Users may request that the processing of their data be restricted. In this case, the Controller shall not process the data for any purpose other than to retain them;
Have their Personal Data erased. When given conditions are met, the Users may request that their data be deleted by the Controller;
Revoke their consent at any time. Users may withdraw their consent at all times. They may revoke the consent to the processing of their Personal Data that they have given previously;
Receive their data or have them transferred to a different controller. They have the right to receive their data in structured, commonly used and machine readable formats and, when technical feasible, to have their data transferred to a different controller without impediments. This provision applies when the data are processed by means of automatic tools and the processing is based on the consent of the User, or on a contract the User is a party to, or on contractual clauses associated with it;
Lodge a complaint. Users may lodge a complaint with the data protection authority in charge or take legal action. File a complaint with the authority for the protection of personal data and resort to any other means of protection provided for by the applicable regulations.

For the exercises of the aforementioned rights, and for any request on the processing of your data, you can write to the following e-mail address “privacy@ceramicaflaminia.it”.

Website Navigation

Dear visitor, in this page we want to give you all the indications provided for in art. 13 of Regulation EU 2016/679 (hereinafter, the “GDPR”) regarding the processing of the personal data of those who visit the website of Ceramica Flaminia (hereinafter, the “website”). The information and personal data acquired through the use of the website will be processed according to the provisions of the said regulation, in keeping with the confidentiality obligations specified therein.

This notice is intended solely for users interacting with the website of Ceramica Flaminia S.p.A. at “www.ceramicaflaminia.it” and the domain linked thereto www.magazine.ceramicaflaminia.it, it is not intended for other sites, pages or online services that may be reached via hypertext links published on this website.

Data Controller
The Controller of the data supplied through website www.ceramicaflaminia.it is Ceramica Flaminia S.p.A., a company with registered office in Civita Castellana, VAT number 00061720561.
The Controller may be contacted at the following e-mail address: “privacy@ceramicaflaminia.it”.

Personal Data
During normal use, the IT systems and the software procedures underpinning the operation of this website acquire some personal data whose transmission is implicit in the use of Internet communication protocols. In particular, navigation data are processed. This group of data includes: IP addresses, type of browser used, operating system, the domain name and the Internet sites from which the user entered/exited the site, information on the pages visited by the users inside the site, time of access, time spent on an individual page, an analysis of the path within the site, and other parameters relating to the operating system and the IT environment of the user.

Purposes of the processing
When this website is visited, data relating to identified or identifiable persons may be processed. The personal data obtained during site navigation are processed for the following purposes:

Obtain anonymous statistical information on the use of the website (pages visited most, number of visitors per time slot or per day, geographical areas of origin, etc.);
Verify the proper functioning of the website and ensuring protection of company data and company business;
Meet the obligations provided for by EU and national regulations.

The legal basis for the acquisition and the subsequent processing of the data is to pursue a legitimate interest, pursuant to art. 6(1)(f) of the GDPR, which consists in ensuring the security of the website and the information exchanged through it, i.e., the ability of the website to withstand, at a given level of security, unforeseen events or unlawful or malicious acts that may undermine the availability, authenticity, integrity and confidentiality of the personal data retained or transmitted.

Processing Methods
Navigation data are collected automatically by the system when a user uses the functions of the website.

The personal data are processed by means of computerised systems. The data are stored in electronic files, also for purposes of permitting their identification and selection in aggregate form. In any event, the processing is carried out according to criteria strictly correlated with the purposes specified and according to modalities that ensure the security and confidentiality of the data through the adoption of measures designed to prevent the data from being modified, deleted, destroyed, as well as prevent unauthorised access, or processing modalities not allowed or not in keeping with the purposes for which the data are collected.

Data disclosure
The processing of the data associated with web services is entrusted to personnel authorised to process personal data.

A user’s personal data may be disclosed to the following categories or recipients:

employees and/or collaborators of the Controller, who manage the website within the framework of their respective tasks and are duly authorised and trained for the job;
third-party companies or other entities carrying out outsourced activities on behalf of the Controller to ensure the operation of the website (e.g., site maintenance and software and hardware assistance services);
persons for whom there is a legally established disclosure obligation or a communication need for purposes of ascertaining, exercising and defending one’s rights in judicial proceedings.

A user’s personal data are not disseminated under any circumstances.

Nature of the provision of data
The provision of navigation data is required and non optional, and it takes place automatically during navigation when a user uses the functions of the website.

The data subject may refuse to give the Controller permission to access cookie-related data: to this end, the user may disable the cookies following the instructions supplied by the browser in current use, as described in the cookie policy.

Transfer of data to countries outside the EU
The data processed in connection with the web services of this site are not transferred to countries outside the European Union.

Should it be necessary to transfer the data of the user outside the EU, the recipients of the data shall be placed under protection and security obligations equivalent to those guaranteed by the Controller and as provided for in Chapter V of the GDPR.

Rights of the data subject
In the circumstances envisaged, the data subjects have the right to obtain access to their personal data, have their data rectified or erased, have the processing restricted, and the right to object to the processing of their data (arts. 15 et seq of GDPR). Users can exercise their rights at any time by sending a request to e-mail address “privacy@ceramicaflaminia.it”.

If they believe that the processing of their data is carried out in violation of the provisions set out in the GDPR, the users have the right to lodge a complaint with the Data Protection Authority at www.garanteprivacy.it.

Data retention
The data collected by the website during its operation are retained for the time strictly necessary to carry out the activities described above. At the end of the retention period, the data are erased or anonymised, unless there are other reasons to retain them.

Additional information
For any further information on this notice or on any privacy related issue, or if you wish to exercise your rights, you can contact us at the e-mail address: “privacy@ceramicaflaminia.it”.