COLLECTED DATA
When you use our services, you agree that our company collects some of your personal data. This page is intended to tell you what data we collect, why we collect it and how we use it.
We only process data provided by you, we do not collect or process data in an automated way.
Third-party data
If you provide personal data of third parties, such as those of your family members or friends, you must be sure that these parties have been adequately informed and have consented to their processing in the manner described in this policy.
Data of children under 16 years of age
If you are under 16 years of age, you may not provide us with any personal data nor may you register with Dofma Srl, and in any event we shall not be liable for any false statements you may provide. If we become aware of the existence of untruthful declarations we will proceed with the immediate deletion of any personal data acquired.
USE OF COLLECTED DATA
We may use the data collected, where you have expressly given us consent, to inform you about activities relevant to your interests.
In particular, we use them to: communicate promotional, commercial and advertising activities about events, initiatives or partnerships of Dofma Srl, via e-mail.
Perform analysis and reporting activities related to promotional communication systems, such as tracking the number of e-mails opened, clicks made on links within the communication, the type of device used to read the communication and its operating system or the list of unsubscribers to the newsletter.
OBLIGATION TO PROVIDE DATA
The provision of personal data is compulsory only for the processing required to provide the services offered by Dofma Srl (refusal to provide the service makes it impossible to use the service itself).
SUBJECTS OF TREATMENT
The data controller is Dofma Srl in the person of its pro-tempore legal representative, with registered office located at Via Monte Grappa, 21 – 20811 Cesano Maderno (MB) p.IVA 00685120966 / C. F. 00679310151
The data controller employs data processors to achieve the purposes specified in point 1 and a Data Protection Officer (DPO) to supervise the protection of personal data.
The data collected as part of the provision of the service may be disclosed to: Companies that perform functions that are strictly connected and instrumental to the operation – also technical, such as providers of direct marketing and customer care services, companies that provide archiving, administrative, payment and billing services, and administrative and judicial authorities by virtue of legal obligations.
Your personal data may be transferred outside the European Union for processing by some of our service providers. In this case, we ensure that this transfer is done in compliance with applicable legislation and that an adequate level of protection of personal data is guaranteed by relying on an adequacy decision, on standard clauses defined by the European Commission or on Binding Corporate Rules.
Under no circumstances do we transfer or sell personal data to third parties.
MODIFICATION AND ACCESS TO DATA
You may at any time revoke your consent to the processing of your data by sending an e-mail via the form on the contact page of our website, with the subject “revocation of consent to use and personal data”.
You may at any time export your data by sending an e-mail request through the form on the contact page of our site, with the subject exporting personal data.
Your personal data will be exported within 30 days or, if the export is particularly complex, within three months.
Any natural person using our service may: Obtain from the controller, at any time, information about the existence of their personal data, the origin of the data, the purposes and methods of processing and, if any, to obtain access to personal data and information referred to in Article 15 of the GDPR Request the updating, rectification, integration, deletion, restriction of the processing of data if one of the conditions provided for in Article 18 of the GDPR is met, transformation into anonymous form or blocking of personal data processed in violation of the law, including data whose storage is not necessary in relation to the purposes for which the data were collected and/or subsequently processed oppose, in whole or in part, for legitimate reasons, the processing of the data, even if pertinent to the purpose of collection and the processing of personal data for the purposes of commercial information or sending advertising material or direct sales or for carrying out market research or commercial communication.
Every user also has the right to revoke consent at any time without prejudice to the lawfulness of processing based on the consent given before revocation receive their personal data, consciously and actively provided or through the use of the service, in a structured, commonly used and machine-readable format, and to transmit them to another data controller without hindrance file a complaint with the Italian Data Protection Authority.
DATA STORAGE
For analysis purposes aimed at developing and improving the service your personal data may be subject to the same retention period.
For the purposes of direct marketing and profiling we retain your data for a maximum period equal to that provided for by the applicable legislation (24 and 12 months respectively).
Invoices, accounting documents and transaction data are kept for 11 years in accordance with the law (including tax obligations).
In the event of exercising the right to be forgotten through a request for express deletion of personal data processed by the data controller, please note that such data will be retained, in a protected form and with limited access, solely for the purpose of investigating and prosecuting criminal offences, for a period not exceeding 12 months from the date of the request, and will thereafter be securely deleted or irreversibly anonymised.
Finally, we remind you that for the same purposes, the data relating to telematic traffic, excluding in any case the contents of communications, will be retained for a period not exceeding 6 years from the date of communication, pursuant to Article 24 of Law No. 167/2017, which transposed EU Directive 2017/541 on anti-terrorism.
INFORMATION CHANGES
This policy may be subject to change. If substantial changes are made to the Owner’s use of data relating to the user, the Owner will notify the user by publishing them as prominently as possible on its pages or through alternative or similar means.