PTM S.r.l. considers the users privacy essential and it warrants that the processing of inserted, collected and used personal data through the www.ptmsrl.com website is done in accordance with the rights of the concerned party, with reference in particular to privacy, protection of personal identity and right to the personal data protection under (EU) 2016/679 Regulation (General Data Protection Regulation – hereinafter GDPR).
The Controller is PTM S.r.l., in the person of its pro tempore legal representative. As «processing» – as better specified in Article 4 of GDPR – is meant every operation or set of operations carried out with or without using automated processes and applied to personal data or set of personal data, as collection, registration, organization, structuring, retention, adjustment or change, mining, consultation, use, communication through transmission, dissemination or any other form at disposal, comparison or interconnection, limitation, deletion or destruction.
As «personal data» is meant every information regarding an identified or identifiable natural person («interested party»); it is considered identifiable the natural person who can be directly or indirectly identified, with particular reference to an identification as name, identification number, data related to location, online identification or to one or more distinctive features of his/her physical, physiological, genetic, psychic, economic, cultural or social identity.
The Controller can collect some personal data of Users, such as name, surname, email address, USER ID and password, aggregated information during the Site browsing, other personal data voluntarily provided by the User during registration or when asking for goods or services offered by the Site or when sending an information enquiry to the Site through e-mail. Present contents are available to the Users without providing his/her personal data.
Some sections could result accessible exclusively by registered Users.
The User personal data can be processed by automated means, (i) during browsing, (ii) when registering in the Site (needed to be able to use services or to buy offered good by the Site), (iii) at the moment of supply enquiry either of single goods or single service.
Furthermore, if the User should contact us to ask for information, we’ll collect his/her personal data to give an answer.
The Controller will process personal data for as long as is strictly necessary to fulfil the purposes expressed in this information, except the compliance with legal and/or regulatory requirements.
Web browsing data
Information systems and software procedures for Site operation acquire, during their normal activity, some personal data which transmission is implied in the use of Internet Communication Protocols. It’s about information that are not collected to be associated with identified interested parties, but that, by their nature could allow to identify Users, through elaboration and association with data managed by third parties. In this data category are included IP addresses or domain names of computers used by Users that connect to the Site, addresses in (Uniform Resource Identifier) notation of the required resources, enquiry time, used method to submit the enquiry to the server, the size of file obtained as reply, numerical code that indicates the status of the server reply ( success, error, etc.) and other parameters relevant to the operating system ad to the User IT environment.
These data are used only to obtain anonymous statistic information on the site use and to check its proper functioning, they are deleted immediately after their processing. Data could be used to determine liabilities in case of hypothetical cybercrimes against the Site.
Data voluntary provided by the User
The Controller collects personal data inserted in forms for registration or enquiry for services or goods, as well as data forwarded to the User through electronic mail. Mainly it’s about information needed to supply to the User either required goods or services, or to contact the User in reply to his/her information enquiry.
Purpose of personal data processing
The Controller shall process Users personal data for the following purposes: a) For the needs relevant to authorization, activation and customization operations of access to the different Site areas and relevant contents; b) For the needs relevant to a contract conclusion and execution upon the User request; c) to give execution to a service or operation within the sphere of activities; d) For the needs of business development, report analysis with Customers and marketing, prior specific consent of the User.
Optional personal data contribution
Subject to what specified for navigation data, the User can supply or not his/her personal data in the registration forms to the Site or for the enquiry of goods or services available on the Site, i.e. by sending information enquiry to the Site through electronic mail.
Communication and/or personal data dissemination
Users personal data collected through the site will be accessible to bodies and employees officially appointed as authorised to the processing.
Persona data can be communicated to third parties that process data on behalf of the Controller, expressly named Responsible for processing, with which the company has subscribed dedicated contract, where they warrant to have adopted procedures with the aim to ensure respect for the principles of the GDPR.
The Controller is legitimated, even without having acquired any previous consent, to communicate data to supervisory bodies, legal and security authorities, i.e. to third subjects, if forced in compliance with legal obligation and/or by the same authorities.
Rights of data subject with reference to their personal data
At any time, you can exercise your rights according to Article 15 and following of the 679/2016 European Regulation. In particular you can:
- Obtain the confirmation whether or not personal data exist;
- Obtain their communication in intelligible form;
- Obtain the data correction (art. 16, GDPR);
- Obtain the erasure of the processed data (art. 17 GDPR);
- Obtain the limitation of data processing (art. 18, GDPR);
- Obtain communication of third recipients about intervention enquiries on data (art. 19, GDPR);
- Object to data processing (Art. 21, GDPR);
- Obtain the data portability;
- Withdraw your consent to your data processing without prejudicing the processing lawfulness based on the consent given before the withdrawal;
- Lodge a complaint with the supervisory authority on the legitimacy of the data processing.
All communication shall be sent to the Controller to the following e-mail address: email@example.com