Privacy policy compliant to Regulation (EU) 2016/679 (GDPR)

In compliance with Regulation (EU) 2016/679 (hereafter referred to as “GDPR”), please see below the data processing procedures for visitors to the Eurotech Group websites accessible on www.eurotech.com (hereafter referred to as “the website”). 

DATA CONTROLLER

The Data Controller is Eurotech S.p.A. (hereafter referred to as “Eurotech”) with its registered office at via Fratelli Solari 3/A, 33020, Amaro – UD (Italy) (e-mail: privacy@eurotech.com – PEC: eurotechgroup@eurotech.com – phone: +39 0433 485 411).

EUROTECH’S DATA PROTECTION OFFICER

The Data Protection Officer (DPO) may be contacted at the following address: Eurotech S.p.A., Data Protection Officer, via Fratelli Solari 3/A, 33020, Amaro – UD (Italy) (e-mail: dpo@eurotech.com – phone: +39 0433 485 411).

INFORMATION ABOUT DATA WE COLLECT

Navigation Data

The IT systems and software responsible for the website functionality may collect personal data during ordinary operations and transfer them as implied by the use of typical Internet communication protocols.

This category includes the IP addresses or the domain names of computers and terminals used, the URI/URL addresses (Uniform Resource Identifier/Locator) of requested sources, the time of request, the type of request submitted to the server, the response file size, the code of the response status (success, error, etc.) and other parameters relative to the user’s operating system and IT setting.

 

Purposes and legal basis for the processing
(GDPR-Art.13, par. 1, lett.c)

These data are used to monitor the website’s correct functioning and to collect statistical information (most visited pages, number of visitors, time of the visit, visitor’s geographical location, etc.). Data might be used to assign responsibilities in case of cybercrimes against the website (owner’s legitimate interest).  

Communication setting
(GDPR-Art.13, par. 1, lett.e,f)

Data are processed by internal personnel only, properly authorized and trained and will not be transmitted to third parties, nor broadcast or transferred to non-EU countries. Data will be shared with competent authorities for the sole purpose of  investigation.

Data storage period
(GDPR-Art.13, par. 2, lett.a)

Except for criminal investigation purposes, data will be stored for no longer than 90 days and, if inserted into Eurotech's Customer Relationship Management database (hereafter referred to as "CRM"), they will be stored for up to three years following the last interaction with the data subject.

Provisioning
(GDPR-Art.13, par. 2, lett.f)

Data are not conferred by the interested party; they are acquired automatically by the website IT system.

 

Contact, download and registration forms

The discretionary, explicit and voluntary transmission of messages to Eurotech contacts, as well as the filling and submitting of  forms within the above mentioned websites, entail the sender’s contact data acquisition, that are necessary to provide a response, as well as all other data included in communications and in the form fields, as well as website navigation stats.

Purposes and legal basis for the processing
(GDPR-Art.13, par. 1, lett.c)

Contact data are required for:

  • providing a response and/or contacting the data subject;
  • updating Eurotech’s CRM for marketing and promotional purposes, including the transfer of informative materials and invitations to promotional events, only upon the interested party’s free and specific consent (GDPR-Art.6, par. 1, lett.a)

Communication setting
(GDPR-Art.13, par. 1, lett.e,f)

Data are processed by properly authorized and  trained personnel only (GDPR-Art.29). Data will not be broadcast, but they may be shared with other subsidiaries of Eurotech Group. For the sending and management of newsletters, third-party services are used, fron companies based in the USA and pursuant to the Privacy Shield, therefore data is transferred on the basis of an adequacy decision. 

Period of data storage
(GDPR-Art.13, par. 2, lett.a)

Data will be stored for the time required to respond to the message and, if inserted in Eurotech's CRM, they will be stored up to three years following the last interaction with the data subject.

Provisioning
(GDPR-Art.13, par. 2, lett.f)

Failure to provide the required data will block the transfer of the message. Furthermore, failure to consent to the insertion of personal data in the CRM prevents Eurotech from contacting the interested party. 

 

Support

Interested parties  can request Eurotech's assistance as well as authorization for the return of merchandise. Personal and contact data are requested for service delivery.

 

Purposes and legal basis for the processing
(GDPR-Art.13, par. 1, lett.c)

Only personal and contact data needed to provide a response and the best support to the data subject are processed. Request submission is subject to the specific, free and informed consent (GDPR-Art.6, par.1, lett.a)

Communication setting
(GDPR-Art.13, par. 1, lett.e,f)

Data are processed by properly authorized and trained personnel only (GDPR-Art.29). Data will not be broadcast and may be shared with commercial partners for support purposes requested by the data subject.

Third-party companies might be asked for providing technical support services based in the USA and pursuant to the Privacy Shield, therefore the data are transferred on the basis of an adequacy decision.

Period of data storage
(GDPR-Art.13, par. 2, lett.a)

Data are processed for the time required by the support service to fulfill the request and may be stored for statistical function.

Provisioning
(GDPR-Art.13, par. 2, lett.f)

Data inserted in the mandatory fields is necessary to receive support, while non-mandatory fields are related to additional information to deliver a better service.  

 

Cookie

For more information about cookies, please visit the Cookie Policy:

https://www.eurotech.com/en/page/cookie-policy

 

SECURITY

Eurotech adopts proper technical and organizational efforts to ensure the security of processed data according to the risk level and in compliance with the GDPR.

RIGHTS OF THE DATA SUBJECT

The data subject shall have the right to request access to, modification and deletion of personal data, as well as limiting or blocking the processing of data (GDPR – Art.15 and following).

RIGHT TO COMPLAINT

The data subject shall have the right to lodge a complaint to the appointed authorities according to the expected procedures, if he/she believes that the processing of personal data is misconducted or is against the GDPR.


This website or third-party tools used in it uses cookies useful for the proper functioning of the site and for the purposes described in the cookie policy. If you want to learn more or opt out of all or some cookies, see the
cookie policy
By closing this banner, scrolling this page, clicking on a link or continuing navigation in any other way, you allow the use of cookies.
agree