Privacy Policy - Mollificio Brescia

Mollificio Brescia S.r.l. in compliance with the requirements of EU Regulation no. 2016/679 - GDPR has adopted its own organisational model that continues to focus on the security of personal data and respect for the right to privacy.
The Regulation provides that, before proceeding with the processing of Personal Data [i.e.: any operation or set of operations performed with or without the aid of automated processes and applied to personal data or sets of personal data, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction "], it is necessary that the person to whom such data belongs is informed about the reasons for which such data are requested and how they will be used. In this regard, the purpose of this document is to provide you, in a simple and straightforward manner, with all the useful and necessary information for providing data in a conscious and informed manner.

Data controller and data processors

The company that processes the data for the purposes described below, plays the role of data controller according to the relative definition contained in article 4 point 7) of the Regulation: "the natural or legal person, public authority, service or other body which, individually or together with others, determines the purposes and means of processing personal data ". The Data Controller is:

Company name: Mollificio Brescia S.r.l.
Registered and operational office: via Seradello 223/A, 25060 Ponte Zanano di Sarezzo (BS) Italy
VAT n. / Tax c. / Reg. Imprese BS: 02787840988
R.E.A. 479023
Share Capital: € 100.000,00 f.p.
Telephone: (+39) 030 8911700
Email: info@mollificiobrescia.it

The data may be communicated to specific subjects considered "recipients" in accordance with article 4 point 9) of the Regulation:

Third parties that carry out part of the processing activities and/or activities connected or instrumental to the processing or the provision of the services requested (e.g.: suppliers of the IT systems and of the website's web provider service). These subjects have been appointed as data processors.
Individuals, employees and/or collaborators of the data controller or the data processors, who have been entrusted with specific and/or further data processing activities. Such individuals are authorised to process the data under the direct authority of the data controller or data processor.
If required by law or to prevent or suppress a crime, the data may be disclosed to public bodies or to the judicial authority without these being defined as "recipients", in accordance with article 4 point 9) of the Regulation.

Place of data processing and data transfer

The data are processed and stored at the legal and operational headquarters of Mollificio Brescia S.r.l.
For administrative purposes, for the supply of the requested products and/or the activation and maintenance of the requested services, the data may be processed and stored at the offices of the data processors, appointed by the data controller.
All locations are in Italy.

Types of data processed

Data provided voluntarily:

searching for products or services
fulfilment of an order
data entry in the "Reserved area" or "Registration" section
sending a contact form or requesting information
contact by phone, email, chat or any other way
completing a questionnaire

According to the above, the following data may be provided: name; address and telephone number; payment information; age; position information; names of the recipients of the orders; content of reviews and emails sent to us; corporate and financial information; VAT number.

Data collected automatically:

information recorded by IT systems during the normal activity of supplying its services
Internet communication protocols
IP addresses
site access log

Data collection and processing methods

The collection and processing of data takes place through manual, paper, computer and data transmission tools, including the website [information request form, registration form for access to restricted areas of the website, product and/or service activation form, online purchase form].
Collection and processing are carried out strictly in line with the purposes specified in this notice and in any case in order to guarantee the security and confidentiality of the data.

Purposes of data processing

Subject to data processing consent, as required by article 6 of the Regulation, the data collected will be processed by the data controller and data processors for the following purposes:

administrative management of the contracts signed for the products and services requested by virtue of the execution of a contract, including the fulfilment of legal, accounting and tax obligations.
use of the service and technical management of sending information on products and services following requests voluntarily received via the contact form, email or chat on the website; supply, activation, maintenance of products and services requested; statistical surveys for internal use; communication activities for updates of benefit and interest; security and prevention of fraudulent conduct.

The provision of data is mandatory for the purposes indicated above. Failure to provide data could make it impossible to be contacted for sending the requested information.

Duration of data processing

The data are stored for the entire duration of the contractual relationship and, in the case of cancellation and/or other type of termination of the aforementioned relationship, under the terms established by law for the fulfilment, for example, of civil and tax obligations. For service usage purposes, the data will be stored for up to a maximum of 1 year. For marketing purposes, the data will be stored until consent is revoked or for the period established by the regulations or provisions by the Supervisory Authority (no more than 2 years).
With reference to the detection and combating of crimes, the personal data relating to traffic are kept for 10 years from their generation. The data are also processed for ordinary business processing linked to the provision of the service (e.g.: for documentation purposes in the event of a dispute with the invoice or a claim for payment, for the detection of fraud, to perform analysis on behalf of customers), in accordance with what is required by law. In this case, the data are stored, with stringent security measures applied in accordance with the law, and subsequently deleted.

Rights of the data subject

As required by article 15 of the Regulation, you may access your data, ask for rectification and updating, if incomplete or erroneous, request its cancellation if the collection occurred in violation of a law or regulation, as well as oppose the Processing for legitimate and specific reasons.
In particular, below you will find all your rights that you can exercise, at any time, against the Data Controller and/or Data Co-Controller:

right to access (Article 15);
right to rectification (Article 16);
right to cancellation (Article 17);
right to limitation (Article 18);
right to data portability (Article 20);
right to opposition (Article 21);
right to lodge a complaint with a supervisory authority (Article 77);
right to withdraw consent, in the cases provided for by art. 6, par. 1(a) or art. 9, paragraph 2 lett. a).

Cookies

Cookies used on the site:

technical cookies, those of browsing or session and strictly necessary for website operation or to allow users to enjoy content and services they require (your consent is not required for these cookies);
analytics cookies help to understand how the website is used by users. With these cookies we do not collect information about the user's identity or any personal data. The information is processed in aggregate and anonymous form (your consent is not required for these cookies because they are used directly by the website operator to collect information, in aggregate form, on the number of users and how they visit the website itself);

In detail, the cookies on the website are:

Name	Expiry date	Purpose	Type	Privacy / Deactivation
JSESSIONID	Browsing session	It allows you to recognise the user's browsing session.	Technical cookie	-
cc_cookie	6 months	It allows to memorize the user's choices regarding the consent of cookies.	Technical cookie	-
_ga	2 years	It allows to distinguish users.	Statistical cookies (Google Analytics)	Privacy / Deactivation
_ga_*	2 years	It allows to keep the session state.	Statistical cookies (Google Analytics)	Privacy / Deactivation

Below you can find a series of links on how to manage or disable cookies on the most popular browsers:

Internet Explorer: https://support.microsoft.com/en-us/help/17442/windows-internet-explorer-delete-manage-cookies
Google Chrome: https://support.google.com/chrome/answer/95647?hl=en
Mozilla Firefox: https://support.mozilla.org/en-US/kb/cookies-information-websites-store-on-your-computer
Opera: https://help.opera.com/en/latest/web-preferences/#cookies
Safari: https://support.apple.com/en-gb/guide/safari/sfri11471/mac