Privacy Policy
Dear User,
below you will find all the details about the processing of your personal data on the following BEFOR Group websites.
This is the information provided pursuant to Art. 13 of EU Reg. 679/2016 to those who interact with our web services.
The information is given only for the Sites listed and not also for other websites that may be consulted by the user through links or content from other addresses.
Website: https://www.b4-group.it/
THE DATA CONTROLLER
The data controller is BEFOR S.r.l., with registered office at Via Mecenate 76/36, Milan, [email protected]
THE DPO
The Data Protection Officer (“DPO”) appointed by the Data Controller in accordance with Articles 37 et seq. GDPR is Lawyer Valerio Nicosia. You may contact The Data Protection Officer (“DPO”) appointed pursuant to Articles 37 et seq. GDPR by sending an e-mail to: [email protected].
PURPOSE OF PROCESSING
The processing is aimed at the proper management of the website and its interactions with users, as well as the correct and complete management of requests forwarded by users.
We also process data for the fulfillment of legal obligations to which the Owner is subject as well as, with prior consent, for sending commercial communications.
TYPES OF DATA PROCESSED
Navigation data
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified interested parties, but by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) notation addresses of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and computer environment.
Data provided voluntarily by the user
The optional, explicit and voluntary sending of electronic mail to the addresses indicated on this site and/or using the contact forms on the same present involves the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any other personal data included in the message.
The personal data provided by users who submit requests for information to be sent are used for the sole purpose of performing the service or provision requested.
Additional data
When interacting with the website or specific areas of it, you may be presented with information related to the services requested or contracts entered into/stipulated.
COOKIES
see “Cookie Policy”
PROVISION OF DATA
Apart from what is specified for navigation data as well as in the section on Cookies, the user is free or not free to provide personal data. Their absence may result in the impossibility of obtaining what has been requested.
METHODS OF PROCESSING
Processing may be carried out with or without the aid of electronic tools. The processing is carried out by the Data Controller and/or by persons expressly authorized by the same and/or by subjects appointed as external data processors.
The Data Controller does not use automated decision-making processes, including profiling, which entail legal or similar effects, in order to achieve the purposes envisaged in this statement.
PLACE OF DATA PROCESSING
The processing operations related to the web services of this site take place at the server farm chosen by the Contractors within the European Union and are handled only by technical personnel of the office in charge of processing. No personal data from the web service is disseminated.
DURATION OF PROCESSING
The Data Controller will process personal data for the time necessary to fulfill the above purposes and in any case for no longer than 2 years from the acquisition of the data for processing purposes.
With reference to the sending of informative and/or commercial communications, on the other hand, it is always possible for the recipient to terminate the processing in the manner indicated at the bottom of each informative communication sent or by sending an email to [email protected].
COMMUNICATION OF DATA
Personal data may come to the attention of the persons in charge and responsible for the processing and may be communicated for the purposes set forth in this informative communication to other companies of the BeFor group, to external collaborators, subcontractors and, in general, to all those public and private subjects to whom the communication is necessary for the correct fulfillment of the purposes indicated in this informative communication. Personal data are not subject to dissemination.
RIGHTS OF THE DATA SUBJECT
Pursuant to Art. 15 – 22 G.D.P.R., the data subject has the right to request from the data controller access to his/her personal data or the rectification or cancellation thereof or the restriction of the processing of data concerning him/her, or the right to object to its processing, as well as the right to request the portability of the data. The request can be made by email ([email protected]) or by registered mail with the subject: “request for access to data by the data subject,” specifying in the request the right that the data subject wishes to exercise (deletion, rectification, portability, oblivion), together with a valid email/pec address to which the response should be delivered. The data controller or, anyone appointed by the same, will proceed to fulfill the request within 30 days from the date of receipt. Should the response be complex, the time may be extended by an additional 30 days, upon timely notice to the same data subject.
If the data subject deems it appropriate to assert his or her rights, he or she may file a complaint with the competent supervisory authority, corresponding to the National Privacy Guarantor, located at Palazzo Monte Citorio 121, Rome (http://www.garanteprivacy.it).
Website: http://www.b4digitalstore.com/
THE DATA CONTROLLER
The Data Controller related to this service is B4SERVICE S.r.l., with registered office in Via Mecenate 76/36, Milan, email [email protected].
THE DPO
The Data Protection Officer (“DPO”) appointed by the Data Controller pursuant to Articles 37 et seq. GDPR is Avv. Valerio Nicosia. You may contact The Data Protection Officer (“DPO”) appointed pursuant to Articles 37 et seq. GDPR by sending an email to: [email protected].
PURPOSE OF PROCESSING
The processing is aimed at the proper management of the website and its interactions with users, as well as the correct and complete management of requests submitted by users and the e-commerce platform.
The basis of the processing is (i) the execution of the contract of pre-contractual measures taken at the request of the customer/supplier, (ii) the fulfillment of legal obligations to which the owner is subject, (iii) the legitimate interest of the Owner to provide an information/update service towards customers/suppliers, (iv) the consent of the customer/supplier with reference to the sending of commercial communications.
TYPE OF DATA PROCESSED
Browsing data
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified interested parties, but by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) notation addresses of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and computer environment.
Data provided voluntarily by the user
The optional, explicit and voluntary sending of electronic mail to the addresses indicated on this site and/or using the contact forms on the same present involves the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any other personal data included in the message.
The personal data provided by users who forward requests to send information are used only to perform the service or provision requested.
In order to enable the placing of orders through the site, the Controller will process personal data provided by the user when creating an account, concluding a contract and during the course of the contractual relationship.
By way of example, the Controller will acquire the following types of personal data:
- personal and fiscal data, such as first and last name, place and date of birth, address of residence, tax code;
- contact data, such as shipping address, telephone number, and e-mail address;
- banking data (e.g., IBAN);
- browsing data;
- additional data voluntarily provided by the user.
COOKIES
see “Cookie Policy”
PROVISION OF DATA
Apart from what is specified for navigation data as well as in the section on Cookies, the user is free or not free to provide personal data. Failure to provide them may result in the impossibility of obtaining what has been requested.
In particular, the provision of common personal data is strictly necessary for the purpose of carrying out contractual activities. Any refusal on the part of the interested party to provide personal data may result in the impossibility of establishing the relationship with the Owner.
On the other hand, the conferment of data aimed at sending commercial communications is optional and always revocable.
METHODS OF PROCESSING
Processing may be carried out with or without the aid of electronic tools. The processing is carried out by the Data Controller and/or by the appointees expressly authorized by the same and/or by the subjects appointed as external data processors.
The Data Controller does not use automated decision-making processes, including profiling, which entail legal or similar effects, in order to achieve the purposes envisaged in this statement.
PLACE OF DATA PROCESSING
The processing operations related to the web services of this site take place at the server farm chosen by the Contactors within the European Union and are handled only by technical personnel of the office in charge of processing. No personal data resulting from the web service is disseminated.
DURATION OF PROCESSING
The Controller will process personal data for as long as necessary to fulfill the above purposes.
With reference to data related to contractual services, it should be noted that the same will be kept for ten years from the completion of the service, except in exceptional circumstances that justify its extension.
On the other hand, with reference to account data, the sending of informative and/or commercial communications, it is always possible for the recipient to terminate the processing in the manner indicated at the bottom of each informative communication sent or by sending an email to [email protected].
COMMUNICATION OF DATA
Personal data may come to the attention of the persons in charge and responsible for the processing and may be communicated for the purposes set forth in this informative communication to other companies of the BeFor group, to external collaborators, subcontractors and, in general, to all those public and private subjects to whom the communication is necessary for the correct fulfillment of the purposes indicated in this informative communication. Personal data are not subject to dissemination.
RIGHTS OF THE INTERESTED PARTY
Pursuant to Art. 15 – 22 G.D.P.R., the data subject has the right to request from the data controller access to his/her personal data or the rectification or cancellation thereof or the restriction of processing concerning him/her, or has the right to object to its processing, as well as the right to request the portability of the data. The request can be made by email ([email protected]) or by registered mail with the subject: “request for access to data by the data subject,” specifying in the request the right that the data subject wishes to exercise (deletion, rectification, portability, oblivion), together with a valid email/pec address to which to deliver the acknowledgement. The data controller or, anyone appointed by the same, will proceed to fulfill the request within 30 days from the date of receipt. Should the response be complex, the time may be extended by an additional 30 days, upon timely notice to the same data subject.
If the data subject deems it appropriate to assert his or her rights, he or she may file a complaint with the competent supervisory authority, corresponding to the National Privacy Guarantor, located at Palazzo Monte Citorio 121, Rome (http://www.garanteprivacy.it).