PERSONAL DATA PROTECTION POLICY (PRIVACY POLICY) FOR CLIENTS / SITE USERS /APP USERS / CALL CENTRES
ABOUT US
Gruppo Cimbali S.p.a. (hereinafter the “Company”) takes great care to ensure the security and confidentiality of its clients personal data during all business operations.
The Company is the data controller for personal data gathered on this website/app and other data gathered by the Company.
WHAT KIND OF PERSONAL DATA MAY BE COLLECTED
The following categories of personal data may be collected:
- Contact details – information relating to your name, date and place of birth, address, telephone number, mobile number and email address.
- Interests – information you provide in relation to your interests, including products in which you are interested.
- Other personal data – information you provide relating to your date of birth, education or professional situation.
- Website use – information relating to the ways in which you use the website and open or forward our correspondence, including information collected through cookies (for more details please consult our Cookies Policy).
HOW WE COLLECT YOUR PERSONAL DATA
The Company collects and processes your personal data in the following circumstances:
- If you register on the website/download our app;
- If you contact us in order to request after-sales support, sales and/or product information or other services we provide;
- If you respond to one of our marketing campaigns, for example by filling out a response form or entering your details on one of our websites.
If you provide personal data on behalf of somebody else, you must ensure that the person/persons in question have seen this Privacy Policy before you do so.
Please help us keep your personal data up to date by informing us of any changes to it.
THE WAYS IN WHICH YOUR PERSONAL DATA MAY BE USED
Personal data must only be processed on legitimate grounds in accordance with current personal data regulations, as described below.
- Operational management and other closely related purposes such as accessing the website for event registration.
The Company collects your contact details and website usage data in order to allow you to access your profile, so that you can: (i) download documents relating to the services you have bought; (ii) register for an event you intend to participate in (hereinafter the “Event”).
Reason for data processing: fulfilment of contractual obligations.
Provision of data is compulsory so that we are able to respond to your requests; if you do not provide your data, we are unable to allow you to proceed.
- Customer satisfaction surveys
The Company may use your contact details to carry out customer satisfaction surveys relating to the service provided.
Reason for treatment: consent; failure to provide consent will have no effect on contractual relationships.
You can withdraw your consent at any time by clicking on the following link.
- Marketing activities designed to respond to your needs and provide you with promotional offers in line with your preferences
The Company may process your contact details for marketing and advertising purposes with the aim of informing you about sales promotion initiatives carried out using automated contact methods (email, SMS or other mass-messaging systems) as well as traditional contact methods (e.g. telephone calls using an operator). The Company may also contact you for the purposes of market research and statistical surveys in the event that you grant your consent for this and within the limits described at the following link.
- After-sales support, product sales information and other product services requested
The Company may process your contact details for purposes relating to sales and/or after-sales support, to provide you with product information or for other services requested by you where these are strictly related to products.
- Compliance with binding legal requests and obligations, regulations and measures taken by the judicial authorities, and to defend a right in a legal setting
The Company collects your contact details in order to fulfil a legal obligation and/or defend one of its rights in a legal setting.
Reason for treatment: legal obligations to which the Company is bound to adhere.
HOW WE KEEP YOUR PERSONAL DATA SAFE
The Company employs a vast range of security measures in order to optimise the protection, security, integrity and accessibility of your personal data.
All of your personal data is stored on our secure servers (or as secure hard copies) or on secure servers belonging to our suppliers or commercial partners. The data is accessible and usable in accordance with our security standards and policies (or the equivalent standards of our suppliers or commercial partners).
HOW LONG WE STORE YOUR DATA FOR
We only store your personal data for the time necessary to pursue the purposes for which it was collected and for any other legitimate related purpose. Therefore, if your personal data has been processed for two different purposes, we will store your data until both purposes have been fulfilled. However, once one of those purposes has been achieved, we will no longer process your personal data for that purpose.
Only those people who need to use your personal data for relevant purposes shall have access to it.
Where personal data is no longer necessary - or there are no longer legal grounds for storing it - it shall be made anonymous in an irreversible manner (and stored in this manner) or securely destroyed.
Below are the storage periods relating to the above purposes:
a) Fulfilment of contractual obligations: data processed in order to comply with any type of contractual obligation may be stored for the full duration of the contract and for no longer than ten years after the duration of the contract, in order to allow us to deal with any outstanding matters, such as accounting documentation (e.g. invoices).
b) Operational management and purposes strictly related to access to the website: data processed for this reason may be stored for the full duration of the contract and for no longer than ten years after the duration of the contract.
c) Customer satisfaction surveys: data processed for this reason may be stored for 24 months from the date we receive your most recent consent for this purpose (except where you have opted out of receiving additional correspondence). To coordinate with letter (c) from the previous paragraph.
d) Marketing: data processed for marketing purposes may be stored for 24 months from the date we receive your most recent consent for this purpose (except where you have opted out of receiving additional correspondence).
e) In the event of a dispute: in the event that we are forced to defend ourselves, take action or bring a claim against your or a third party, we may store personal data we consider to be reasonably necessary for such data processing purposes for the period in which such a claim may be pursued.
WHO WE CAN SHARE YOUR PERSONAL DATA WITH
Persons who may have access to your personal data include authorised employees and external suppliers who have - if necessary - been named parties responsible for data processing where these provide service support.
Other companies controlled by Gruppo Cimbali S.p.a. may also have access to your personal data for purposes relating to IT infrastructure management, as per specific contractual agreements, as well as for marketing purposes, on the provision that you grant your consent for this (see letter (e)).
Please contact us on titolare.gdpr@pec.gruppocimbali.com if you would like to see a list of parties responsible for data processing and other individuals or companies to whom we pass your data.
CONTACT DETAILS
The following email address can be used to contact the Company in its capacity of data controller: titolare.gdpr@pec.gruppocimbali.com. If you have questions regarding the way we process your personal data, please contact the data controller directly using the above email address only.
If you would like to contact the marketing and communications department to make a complaint, provide feedback or supply us with any other information, please use the following email address: marketing@gruppocimbali.com
For requests relating to after-sales support, commercial and/or technical product information and for other services we provide, please consult the “Contact” section of the www.cimbali.com website or call us on +39 02 90049 and ask for the Marketing and Communication department.
YOUR RIGHTS ON PERSONAL DATA PROTECTION AND YOUR RIGHT TO MAKE A COMPLAINT TO THE AUTHORITIES
Under certain circumstances, you have the right to ask us:
- for access to your personal data;
- for a copy of the personal data you have supplied us with (data portability);
- to amend data in our possession;
- to delete any data where we no longer have any legal grounds to process this;
- to oppose data processing where application regulations allow for this;
- to revoke your consent, where data processing depends on consent;
- to limit the way we process your personal data, to the extent set out by personal data privacy regulations;
These rights are subject to a number of exceptions designed to protect the public interest (e.g. preventing or identifying crime) and our own legitimate interests. In the event that you exercise one of the aforementioned rights, it shall be our responsibility to verify whether you are legitimately entitled to exercise that right. We will inform you of the outcome of this within one month.
We will make every effort to deal with your concerns should you make any complaints or remarks regarding the way we process your data. However, if you wish, you may take complaints or remarks to the authority responsible for data protection at the following address: Garante per la protezione dei dati personali - Piazza di Monte Citorio No. 121 - 00186 ROME.