Information on the processing of personal data of website users
Artt. 13 e 14 del Regolamento 2016/679/UE (nel seguito anche “GDPR”)
Why this notice
OVERKART SRL (hereinafter also “Company” or “Owner”) is committed to the respect and protection of your privacy and wants you to feel safe both while simply browsing the site and in case you decide to register by providing us with your personal data in order to take advantage of the services made available to its Users and/or Customers. On this page Company intends to provide some information on the processing of personal data related to users who visit or consult the web site accessible by electronic means from the address https://www.overkart.it/ (the “Site”). The information is provided only for the Company’s website and not also for other websites that may be consulted by the user through links (for which please refer to their respective privacy policies/policies). Reproduction or use of pages, materials and information contained within the Site, by any means and in any medium, is not permitted without the prior written consent of Company. Copying and/or printing for personal and non-commercial use only is permitted (for inquiries and clarifications contact Company at the contact information below). Other uses of the content, services, and information on this site are not permitted. With respect to the content offered and information provided, Company will endeavor to keep the contents of the Site reasonably current and revised, without offering any warranty as to the adequacy, accuracy, or completeness of the information provided by expressly disclaiming any liability for any errors of omission in the information provided on the Site.
Origin – Navigation data
Company informs you that the personal data provided by you and acquired at the time of your request for information and/or contact, registration to the site and use of services through smartphones or any other tool used to access the Internet, as well as the data necessary for the provision of such services, including navigation data and data used for the possible purchase of products and services offered by Company but also only the so-called “navigation” data of the site by Users, will be processed in accordance with applicable regulations. The computer systems and software procedures used to operate this website acquire, in the course of their normal operation, some personal data whose transmission is implicit in the use of the Internet. This is information that is not collected to be associated with identified data subjects, but which by its very nature could, through processing and association with data held by third parties, allow the identification of navigating users. This category of data includes the “IP addresses” or domain names of the computers used by users connecting to the site, the addresses in URI (Uniform Resource Identifier) notation of the requested resources, the time of the request, the method used in submitting the request to the web server, the size of the file obtained in response, the numerical code indicating the status of the response given by the web server (successful, error, etc.) and other parameters related to the user’s operating system and computer environment. This data is used for the sole purpose of obtaining anonymous statistical information about the use of the site and to monitor the proper functioning of the Company’s website. It should be noted that the aforementioned data could be used to ascertain responsibility in the event of computer crimes against the Company’s site or other sites connected or linked to it: except for this eventuality, at present the data on web contacts do not persist for more than a few days.
Origin – Data provided by the user
Purpose of processing and legal basis
Data are processed for the purposes:
1. Strictly related to and necessary for registration on the website www.Azienda.it, services and/or Apps developed or made available by Company, use of related information services, handling of contact or information requests, for making purchases of products and services offered through the website Company;
2. for ancillary activities related to the management of User/Customer requests and the sending of feedback that may include the transmission of promotional material; for the finalization of the purchase order of the products and services offered, including aspects related to payment by credit card, the management of shipments, of the possible exercise of the right of repentance provided for distance purchases, updating on the availability of products and services temporarily unavailable;
3, related to the fulfillment of obligations under EU and national regulations, the protection of public order, and the detection and suppression of crimes;
4. Direct marketing, i.e. sending advertising material, direct sales, carrying out market research or commercial communication of products and/or services offered by Company; this activity may also concern products and services of Companies of the Company Group and be carried out by sending advertising/information/promotional material and/or invitations to participate in initiatives, events and offers aimed at rewarding users/customers, carried out by “traditional” means (by way of example, paper mail and/or operator calls), or by means of “automated” contact systems (by way of example, SMS and/or MMS, telephone calls without operator intervention, e-mail, fax, interactive applications), pursuant to Art. 130 c. 1 and 2 of D. lgs. 196/03 as amended;
The provision of data for the purposes referred to in points 1), 2) and 3), connected to a pre-contractual and / or contractual phase or functional to a user request or provided for by a specific regulatory provision, is mandatory and, failing that, it will not be possible to receive the information and access any services requested; with regard to point 4) of this Information Notice, consent to the processing of data by the user/customer is instead free and optional and always revocable without consequences on the usability of products and services except for the impossibility for the Company to keep users/customers updated on new initiatives or special promotions or benefits that may be available. Company may send you commercial communications relating to products and/or services similar to those already provided, in accordance with Directive 2002/58/EU, using the e-mail, or paper coordinates, indicated by you on such occasions to which you may object in the manner and at the contact details below.
Methods, processing logic, storage time and security measures
Processing is also carried out with the aid of electronic or otherwise automated means and is done by Company and/or third parties that Company may use to store, manage and transmit the data. The data processing will be carried out with logics of organization and processing of your personal data, also related to the logs originated from the access and use of the services made available via web, products and services used related to the above-mentioned purposes and, in any case, in such a way as to ensure the security and confidentiality of the data. The personal data processed will be retained for the period of time required by the legislation applicable at the time. Also related to data security, in sections of the website set up for particular services, where personal data are requested from the navigating user, the data are encrypted using a security technology called Secure Sockets Layer, abbreviated to SSL. SSL technology encrypts information before it is exchanged via the Internet between the user’s processor and the Company’s central systems, making it unintelligible to unauthorized parties and thus ensuring the confidentiality of the information transmitted; in addition, transactions made using electronic payment instruments are carried out using the Payment Service Provider (PSP) platform directly, and Company retains only the minimum set of information necessary to handle any disputes. Just with reference to the aspects of personal data protection, the user/customer is invited, pursuant to Art. 33 of the GDPR to report to Company any circumstances or events from which a potential “personal data breach (data breach)” may arise in order to allow for immediate assessment and possible action to be taken against such an event by sending a notice to privacy@Azienda.it or contacting Customer Service. The measures taken by Azienda do not exempt the Client from paying the necessary attention to the use, where required, of passwords/PINs of appropriate complexity, which he/she shall update periodically, especially in case he/she fears they have been hacked/known by third parties, as well as carefully guard them and make them inaccessible to third parties, in order to avoid their improper and unauthorized use.
Cookies stored on your terminal cannot be used to retrieve any data from your hard disk, transmit computer viruses, or identify and use your e-mail address. Each cookie is unique to the browser and device you use to access the Website or use the Company App. Generally, the purpose of cookies is to improve the operation of the website and the user’s experience in using it, although cookies may be used to send advertising messages (as specified below). For more information on what cookies are and how they work, you can check out the “All about cookies” website http://www.allaboutcookies.org.
For detailed information on Cookies, please read the dedicated page.
Scope of communication and data transfer
In pursuit of the above purposes, Company may communicate and have processed, in Italy and abroad, personal data of users/customers to third parties with whom we have relationships, where these third parties provide services at our request. We will only provide these third parties with the information necessary to carry out the requested services by taking all measures to protect your personal information. Data may be transferred outside the European Economic Area if this is necessary for the management of your contractual relationship. In this case, protection and security obligations equivalent to those guaranteed by the Data Controller will be imposed on the data recipients. In the case of using services offered directly by Partners we will provide only the data strictly necessary for their performance. In any case, only data necessary for the pursuit of the intended purposes will be disclosed, and the safeguards applicable to data transfers to third countries will be applied where required. We may also disclose personal data to our commercial service providers, for marketing reasons, who are appointed external data controllers for this purpose. In addition, personal data may be communicated to the competent public subjects and authorities for the needs of compliance with regulatory obligations or to ascertain responsibility in case of computer crimes to the detriment of the website as well as communicated to, or allocated at, third parties (as managers or, in the case of providers of electronic communication services, as autonomous holders), who provide computer and telematic services (e.g.: hosting services, website management and development) and which Company uses to carry out tasks and activities of a technical and organizational nature also instrumental to the functioning of the website. Individuals in the above categories operate as separate Data Controllers or as Managers appointed for this purpose by Company. Personal data may, in addition, be known to employees/consultants of the Company who are specially trained and appointed as Data Processors. The categories of recipients to whom data may be disclosed are available by contacting Company at the contact details below.
Rights of data subjects
You may at any time exercise the rights granted to you by law, including:
a. to access your personal data, obtaining evidence of the purposes pursued by the Data Controller, the categories of data involved, the recipients to whom the data may be disclosed, the applicable retention period, and the existence of automated decision-making processes;
b. To obtain without delay the rectification of inaccurate personal data concerning you;
c. To obtain, in the cases provided for, the cancellation of your data;
d. to obtain the restriction of the processing or to object to the same, when possible;
e. to request the portability of the data you have provided to Azienda, i.e., to receive them in a structured, commonly used, machine-readable format, including for the purpose of transmitting such data to another data controller, within the limits and constraints of Art. 20 of the GDPR;
In addition, he may file a complaint with the Data Protection Authority under Art. 77 of the GDPR.
For the processing referred to in point 4) of the purposes, the Customer can always revoke consent and exercise the right to object to direct marketing (in “traditional” and “automated” form). The objection, in the absence of any indication to the contrary, will refer to both traditional and automated communications. You can contact us at email@example.com.
Data controller, pursuant to Art. 4 of the GDPR, is OVERKART SRL, Contrada Girola di Fermo, 8 – 63900 Fermo (FM), VAT no. 01834430447.
The above rights may be exercised upon request of the Interested Party in the manner made known by the Customer Service Department or on the Company’s website or by using the following references: firstname.lastname@example.org.
Use of the Web Site, including those intended for tablets and/or smartphones, by the Customer and/or User implies full knowledge and acceptance of the content and any directions included in this version of the policy published by Company at the time the site is accessed. Company would like to inform you that this policy may be changed without notice and therefore we recommend periodic reading.