Privacy & Cookie policy

PERSONAL DATA PROCESSING INFORMATION

This communication is made available to you — pursuant to art. 13 and 14 of the European Regulation 2016/679 on the protection of personal data («Regulation» or «GDPR») — and is aimed at those who interact with web services accessible electronically from the address www.tdmbrass. it («website or site»). This information is intended to inform the user about the processing of his personal data.

DATA CONTROLLER

The Data Controller is TDM BRASS s.r.l. with headquarters in Via Artigiani 5/9 — 25030 Maclodio (BS) – VAT n. IT 02212660985,-mail info@tdmbrass.it.

GENERAL PRINCIPLES AND COMMITMENT TO PRIVACY PROTECTION

TDM BRASS s.r.l. is committed to protect all personal data it processes, following these general principles:

• all data is processed in a lawful, correct and transparent manner towards the data subject, in compliance with the general principles provided for by EU Reg. No. 2016/679 and the current legislation on the protection of personal data;
• all data is processed and collected only for the purposes indicated in this Information or for the specific purposes already shared with the interested party, with the aim of collecting, processing and using as few personal data as possible;
• if the personal data collected are no longer necessary for any purpose or for legal obligations, every effort will be made to cancel, destroy or anonymize them;
• specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access;
• personal data will not be shared, sold, made available or communicated to subjects other than those indicated in the Information.

TYPES OF DATA COLLECTED

The website offers informative contents and, sometimes, interactive content. While browsing the Site, you can, therefore, acquire information about the visitor, in the following ways:

Navigation data
The computer systems and software procedures used to operate this site acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.
This category of data includes IP addresses or domain names of computers and terminals used by users, addresses in URI / URL notation (Uniform Resource Identifier / Locator) of the requested resources, the time of the request, the method used in the submit the request to the server, the file size obtained in response, the numerical code indicating the status of the response given by the server (success, error, etc.) and other parameters related to the operating system and the user’s computer environment.
These data, that are necessary for the use of web services, are also processed for the purpose of:

• obtaining statistical information on the use of services (most visited pages, number of visitors per hour or day, geographical areas of origin, etc.);
• check the correct functioning of the services offered.

Cookies
This Site uses cookies to make its services as efficient and simple to use as possible. Therefore, when you visit the Site, a minimum amount of information is entered into the User’s device, such as small text files called «cookies», which are saved in the User’s web browser directory. There are different types of cookies, but basically the main purpose of a cookie is to make the Site work more effectively and to enable certain features. For more information, you can consult the Website Cookie Policy

Data Provided Voluntarily by the User
Personal data related to website visitors are not collected or used, visitors remain anonymous. The only exception concerns the information for personal identification necessary to process the user’s contact requests and comply with the contractual obligations for the provision of services to the user.
The optional, explicit and voluntary sending of e-mails to the addresses indicated on this site entails the subsequent acquisition of the sender’s e-mail address, as well as any other personal data entered, necessary to respond to requests.
The Contacts module collects the user’s name, e-mail address, telephone number.
The Data Controller will use this information only for responding to user requests and for providing the requested services.
The information provided will not be used for commercial purposes and will not be sold, transmitted, licensed or passed on to third parties in any other way. The site administrator ensures the adoption of scrupulous procedures to protect navigation data and the use of special care to protect the data provided.

OPTIONAL SUBMISSION OF PERSONAL DATA

The user is free to provide personal data reported through the Collection Form, or indicated in contacts with the Office to make online orders, request the sending of informative material or of other communications or information. Failure to provide them may make it impossible to obtain what is requested. Sending the data involves the subsequent acquisition of the sender’s email address, as well as any other personal data entered, necessary to respond to requests.

PURPOSE AND LEGAL BASIS OF THE PROCESSING

The processing of Users’ personal data is carried out for the following purposes:

1. ensure access to the Site, navigation, use of the online services made available in connection with the Site;
2. for requirements relating to the authorization, enabling and personalization of access to the various areas and related contents of the Site;
3. Assessment of responsibility in case of hypothetical computer crimes against the site.

The legal basis of the processing is:

• for the purposes referred to in points a) and b), from the execution of the contract of which you are a party or from the execution of pre-contractual measures;
• for the purposes referred to in point c), by the legitimate interest of the Data Controller.

METHOD, PLACE AND DURATION OF THE PROCESSING

Personal data are processed with IT tools with logic strictly related to the purposes indicated. The Data Controller has implemented technical and organizational measures to provide an adequate level of security and confidentiality to personal data. These measures take into consideration the state of the art of the technology, the costs of its implementation, the nature of the data and the risks associated with their processing. The purpose is to protect data from accidental or unlawful destruction or alteration, accidental loss, disclosure or unauthorized access and from other forms of unlawful processing.
Furthermore, when handling your personal data, the Data Controller collects and processes personal data that are adequate, relevant and not excessive, as required to fulfill the aforementioned purposes and ensures that such personal data remains up-to-date and accurate.
The data is processed at the operating offices according to which the Company is organized, and at companies appointed and duly appointed as Data Processors. The data will not be transferred outside the European Union. In any case, it is understood that the Data Controller, if necessary, will have the right to move the location of the servers to non-EU countries. In this case, the Data Controller ensures from now on that the transfer of data will take place in accordance with the applicable legal provisions by stipulating, if necessary, agreements that guarantee an adequate level of protection.
Data processing is carried out for the time strictly necessary to pursue the aforementioned purposes, without prejudice to any retention terms provided for by law or regulations. 

CATEGORIES OF SUBJECTS TO WHICH THE DATA MAY BE COMMUNICATED

The data collected by the Data Controller will be shared only for the aforementioned purposes; we will not share or transfer your personal data to third parties other than those indicated in this Notice. Your personal data may be transferred, exclusively for the purposes listed in this Notice, to the following categories of recipients:

• business partners of the Data Controller, to whom the same communicates the data exclusively for the provision of the service;
• hosting providers, IT companies, communication agencies, third party technical services;
• companies or professional firms that provide assistance and advice to the Data Controller, in accounting, administrative, legal, tax and financial matters;
• subjects whose right to access data is recognized by law or by orders of the authorities.

These subjects are also appointed, if necessary, as Data Processors by the Data Controller. The updated list of Managers can always be requested from the Data Controller.

RIGHTS OF THE DATA SUBJECT

The data subject has the right to ask the Data Controller for access to their personal data, to rectify or delete them, as well as to request limitation or oppose their treatment. . The data subject is also the holder of the right to data portability. To exercise these rights, you can refer to the contacts indicated in this statement.
All requests received will be processed and checked in accordance with the applicable rules, previous verification of the conditions for their acceptance. In the absence of such conditions, the Data Controller may not follow up on the requests. The Data Controller makes every effort to respond to legitimate and well-founded requests within one month of their receipt. Depending on the complexity and number of requests, this deadline can be extended by two months. Upon the final outcome of the management of the request and against it, the interested party has the opportunity to file a complaint with the control authority at www.garanteprivacy.it.

POLICY UPDATE

The Data Controller reserves the right to make changes to this information in order to implement changes in the legislation or to adapt to technological innovations. Any changes will be reported on this web page and made constantly available through the hyperlink located on the home page of the Site. This information was last updated on 09/02/2022.