Privacy notice

Data controller
FORMEST S.R.L., registered office in Italy, Saonara (PD), via E. Romagna no. 3/A, VAT number and tax code 03768010286, headquarters in Italy, in Padova, Riviera Francia no. 21
Data controller’s email address: privacy@formest.it

Type of data collected
The following data is included in the personal data collected by this application autonomously or through third parties: cookies, data on usage, first name, last name, phone number, company name, email address and various types of data. Full details about each type of data collected are given in the dedicated sections of this privacy policy or via specific policies displayed before the data is collected. Personal data can be provided freely by users or, in the case of data on usage, collected automatically whilst using this application. All the data requested by this application are mandatory and, if they are not provided, it may be impossible for this application to fulfil the service. If this application flags some data as optional, users are free to abstain from communicating these data without it having any effect on the availability of the service or its operation. If users have any doubts about the mandatory data, they are encouraged to contact the data controller. The purpose of any use of cookies or other tracking tools by this application or the owners of third-party services used by this application, if not indicated otherwise, is to provide the service requested by the user, in addition to the other purposes described in this document and in the cookie policy, if available. The user assumes responsibility for any personal data of third parties published or shared through this application and guarantees to have the right to communicate or disseminate them, exonerating the data controller from any liability to third parties.

Method and place of processing the data collected

Processing method
The data controller processes the users’ personal data by adopting appropriate security measures to prevent unauthorised access, disclosure, modification or destruction of personal data. The processing is carried out using IT and/or telematic tools with organisational methods and logic closely linked to the stated purposes. In addition to the data controller, in some cases, categories of employees involved in the organisation of the website (administrative, commercial, marketing, legal, system administrators) i.e. external subjects (e.g. suppliers of third-party technical services, postal couriers, hosting providers, IT companies, communication agencies) may have access to the data and are designated, if necessary, as data processors by the data controller. The updated list of the people in charge can always be requested from the data controller.

Place
The data are processed at all of the data controller's operational headquarters and in any other place in which the parties involved in the processing are located. For more information, contact the data controller.

Times

Storage time
The data are processed and stored for the time required by the purposes for which they were collected. Therefore: The personal data collected for the purposes linked to fulfilling a contract between the data controller and the user are kept until said contract has been fulfilled. Personal data collected for purposes linked to the legitimate interest of the data controller will be kept until that interest has been satisfied. The user can obtain more information about the legitimate interest pursued by the data controller in the relevant sections of this document or by contacting the data controller. When the processing is based on the user’s consent, the data controller may keep the personal data for longer until consent in question is revoked. Moreover, the data controller may be obliged to store personal data for a longer period in compliance with a legal obligation or by order of an authority. The personal data will be erased at the end of the storage period. Therefore, at the end of this period, the right of access, erase, rectification and the right to data portability can no longer be exercised.

Processing purposes of the data collected
The user’s data are collected to allow the data controller to provide its services and for the following purposes: statistics, contacting the user and interaction with social networks and external platforms. The types of personal data used for each purpose are indicated in the relevant sections of this document.

Details on personal data processing
The personal data are collected for the following purposes and by using the following services:
- Contacting the user
- Interaction with social networks and external platforms
- Statistics

Cookie Policy
This application uses cookies. You can consult the cookie Policy to find out more and to obtain detailed information.

Legal basis for processing
The data controller process the user’s personal data if one of the following conditions exists: the user has given his/her consent for one or more specific purposes; NB: in some jurisdictions, the data controller may be authorised to process personal data without the user’s consent or another of the legal bases specified below, until the user objects (“opt-out”) to the processing. This, however, is not applicable if the processing of personal data is governed by European legislation on the protection of personal data;
the processing is necessary to complete a contract with the user and/or to complete pre-contractual measures;
the processing is necessary to fulfil a legal obligation to which the data controller is subject; the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
the processing is necessary to pursue the legitimate interest of the data controller or third parties.

It is, however, always possible to ask the data controller to clarify the concrete legal basis for each processing and, particular, to specify if the treatment is based on the law, envisage by a contract or necessary to complete a contract.

Other information about processing
Defence before the courts
The user’s personal data can be used by the data controller in court or in the preparatory stages to establish its defence against abuse in the use of this application or related services by the user. The user declares that he/she is aware that the data controller may be requested to reveal the data on request of the public authorities.

Specific policies
On the user’s request, in addition to the information outlined in this privacy policy, this application may provide the user with additional and contextual information on specific services or the collection and processing of personal data.

System and maintenance logs
For requirements linked to operation and maintenance, this application and any third parties used by it may collect system logs, i.e. files which record the interactions and which may also contain personal data, such as the user’s IP address.

Information not contained in this policy
Further information about personal data processing can be requested at any time from the data controller by using the contact information.

Exercising the users’ rights

User’s rights
The users can exercise specific rights concerning the data processed by the data controller. In particular, the user has the right to:

- revoke consent at any time
The user can revoke consent previously given to allow the processing of his/her personal data.

- object to the processing of his/her data
The user can object to the processing of his/her data when it occurs on a legal basis other than the one for which consent was given. More details on the right to object are indicated in the section below.

- accessing his/her data
The user has the right to obtain information on the data processed by the data controller, on specific aspects of the processing and to receive a copy of the data processed.

- verifying and requesting rectification
The user can verify the accuracy of his/her data and request its updating or correction.

- obtaining the limitation of processing
When certain conditions are met, the user can request the limitation of the processing of his/her data. In this case, the data controller will not process the data for any other purpose other than their storage.

- obtaining the erasure or removal of his/her personal data
When certain conditions are met, the user can request the erasure of his/her data by the data controller.

- receiving his/her data or having them transferred to another data controller
The user has the right to receive his/her data in a structured, commonly used format that can be read by an automatic device and, where technically feasible, to obtain their transfer to another data controller without unnecessary obstacles. This provision is applicable when the data are processed with automated tools and the processing is based on the user’s consent, a contract of which the user is a part or on contractual measures linked to the user.

- lodging a complaint
The user may lodge a complaint with the competent personal data protection supervisory authority or act in court.

Details of the right to object
When personal data are processed in the public interest, in the exercise of public authority vested in the data controller or to pursue a legitimate interest of the data controller, the users have the right to object to the processing for reasons related to their particular situation. Users are reminded that, if their data are processed for direct marketing purposes, they can object to the processing without providing any reasons. To find out if the data controller processes data for direct marketing purposes, users can refer to the relevant sections of this document.

How to exercise rights
To exercise their rights, users can send a request to the data controller’s contact details indicated in this document. The requests are made free of charge and fulfilled by the data controller as quickly as possible and, in any case, within one month. This application does not support “do not track” requests. To find out if any third-party services used support them, the users is invited to consult the relevant privacy policies.

Changes to this privacy policy
The data controller reserves the right to make changes to this privacy policy at any time and to communicate them to the users on this page. You are, therefore, requested to consult this page frequently and use the date of the latest change indicated at the bottom of the page as reference. In the user does not accept the changes made to this privacy policy, he/she must cease using this application and may ask the data controller to remove his/her personal data. Unless otherwise specified, the previous privacy policy will continue to be applied to the personal data collected up to that time.

Information about this privacy policy
The data processing controller is responsible for this privacy policy stored on its servers.