Privacy Policy on www.disano.it

This application (hereinafter “Application”) requires the collection of your Personal Data.
The Personal Data are collected and processed for the purposes and using the procedures described below.

Data Controller

Disano Illuminazione S.p.A - 20089 Rozzano (Milan, Italy) - Viale Lombardia, 129,
info@disano.it

Data Processor

The Data Processor of your personal data is Mr. De Matteis Giuseppe. You can contact the Data Processor at the following address: resp.trattamento@disano.it; you can request the list of Data Processors for future processing by exercising your right to access your personal data.

Who to contact to inquire about your rights

To know your rights under our Privacy Policy you can contact the Data Protection Officer appointed by Disano Illuminazione S.p.a. at the following address: rosanna.ricci@lexacta.it

Type of data processed

This Application processes the following type of Personal Data: cookies and browsing data collected automatically while navigating the Application. Please read our cookie policy for more information.

Personal Data may also be provided voluntarily by the user or any interested party.

The Personal Data collected may refer to both the user or to third-parties of which the user is providing data.
The user is liable for the Personal Data of third-parties published or shared through the Application and guarantees that they have the right to transmit or disclose this information, holding the Data Controller free from any responsibility toward third-parties.

Method and place of personal data processing

Processing method

Your personal data will be processed to fulfil the purposes that will be described later in this notice. All necessary processing operations will be carried out by staff specifically appointed by the Data Processor using computer systems and through the temporary handling of paper documents. The Data Controller will process the user’s personal data following suitable security measures to prevent unauthorized access or changes to, and disclosure or destruction of Personal Data. Data is processed through automated computer means with organizational modes that are closely connected with the purposes described below.
Apart from the Data Controller, access to data may be available to third-parties (suppliers of third-party technical services, couriers, hosting providers, computer companies, and communications agencies). An updated list of subjects can be obtained from the Data Controller.

The data collected will be stored by Disano Illuminazione S.p.a. for no longer than 12 months from your last login to your account at www.disano.it.

Place

Data are processed at the headquarters of the Data Controller, unless otherwise stated in this document.

Duration

Data are processed for the amount of time strictly necessary to provide the service requested by the user and the user may always ask for the interruption of the processing or the deletion of Data.

Purposes of the data processing

The personal data you provided will be used for the following purposes:

i. to send newsletters;
ii. to complete Application maintenance;
iii. to develop statistics;
iv. to carry out promotional and commercial activity;
v. to mail catalogues and informative material;
vi. to provide the requested service and for any related reasons;
vii. to improve the organization and services offered by Disano S.p.a.;
viii. to comply with legal obligations and protect the legitimate interests of Disano Illuminazione S.p.a.

The user’s personal data are collected for the purposes detailed in the specifications attached to the several areas of the Application.
The use of personal data for further processing by the Data Controller may, in some cases and under specific legal obligations, require the consent from the user.

Disano S.p.a. will process your personal data only after obtaining your consent. Yes, your consent to the processing of your personal data can be withdrawn. Without your consent, we will not be able to provide the services requested. If you withdraw your consent, the current processing will be interrupted and the services will no longer be offered. The withdrawing of your consent will not affect the lawfulness of the processing already completed and will not prevent any future processing that the company must apply by law or in pursuing its legitimate interests in case they prevail over the reasons for your withdrawal.

Further information on data processing

Legal defence

The user’s personal data may be used to defend the owner of the Application in court or during the preparatory stage for legal action in defence against unlawful use of the Application or of any connected services by the user.

Specific policies

Specific information may be present on the website regarding particular services or processing of the data provided by the user or interested parties.

Maintenance

The user’s personal data may be processed using the additional modes and purposes connected with the maintenance of the Application.

Information not contained in this Privacy Policy

More information regarding the processing of personal data may be obtained from the Data Controller at any time.

User rights regarding personal data

The user’s rights under this privacy policy are: right of withdrawal of consent, right of access, right to erasure, right to rectification and integration, right to data portability, right to object to the processing of personal data, right to restriction of processing, and right to lodge a complaint with the supervisory body.

Changes to this Privacy Policy

The Application reserves the right to make changes to this Privacy Policy at any time, by notifying users on this page and in any case guaranteeing the same protection of their personal data. Please read this page on a regular basis to check for updates by taking the last updated date at the end of the page as a reference.

Further information

This Privacy Policy is drafted autonomously and with full assumption of responsibility by the Data Controller.

Definitions and legal references

Last updated: May 2018

Legal reference: General Data Protection Regulation (UE 2016/679 Regulation)