In order to execute the contract, Rose.it receives access to data designated as "personal data" pursuant to Legislative Decree 196/2003 (known as the "Privacy Code"). This law establishes that those who process personal data are required to provide clear information to the data subject regarding which data will be used. In any case, compliance with the contract must be implemented by ensuring appropriate transparency and fairness, without violating the privacy and fundamental rights of the data subject. In order to process the order, Rose.it must be aware of the tax and personal details. To process the order, Rose.it may process data classified as sensitive.
The data is used for the purposes of the contract and related tax and legal obligations. The data is used for the duration of the contract and subsequently for commercial and tax purposes or for promotional activities.
Data is processed using specific tools that ensure the necessary privacy, both through the use of paper forms and computer applications. Accessing rose.it automatically acquires certain information (cookies) essential for error-free browsing; this data will then be automatically deleted after the browsing session ends or after a predetermined period of time.
While the user has the right to consent to the use of their data, refusal may prevent rose.it from fulfilling the contractual relationship, resulting in delivery being impossible.
The data provided for the purposes of the contract cannot be "transferred" under any circumstances. The data required to fulfill the contractual agreement may be managed by internal company personnel and by third parties authorized by law.
Data Controller
The Data Controller is Rifnet Srl, with registered office at Via Europa 219, Concesio (BS), Italy.
This policy aims to provide full clarification on the company’s approach to the processing of users’ personal data in relation to the services provided through this website.
At any time, you may exercise the rights set out in Articles 15 et seq. of EU Regulation 679/2016 (GDPR), including the right to obtain from the Controller access to your personal data and the rectification or erasure thereof, or restriction of processing concerning you, or to object—on legitimate grounds—to such processing, as well as the right to data portability.
In order to offer you the services provided on Rifnet Srl’s websites, Rifnet Srl must process certain personal data.
Some data may be provided implicitly, while other data are requested directly from the user. Our websites mainly process two categories of data:
When you register, we ask you to provide certain information necessary to use our service.
These include, for example:
First name, last name, company, email address, phone number, province, city, postal code, address.
If you provide personal data relating to third parties, such as family members or friends, you must ensure that those individuals have been adequately informed and have consented to the processing of their data in the manner described in this notice.
If you are under 16 years of age, you may not provide any personal data or register. In any case, we assume no responsibility for any false statements you may provide. Should we become aware of untrue statements, we will immediately delete any personal data collected.
We collect the following data through the services you use:
technical browsing data: e.g. IP address, browser type, information about your computer, data relating to the current (approximate) location of the device you are using;
browsing data for user profiling collected through cookies or similar technologies: for further information, please see the “Cookies” section.
Your personal data will be processed by the Data Controller exclusively using the methods and procedures necessary to provide the requested services.
We use your data to grant you access to our services and to provide them, including:
registration to our forum;
communications related to the provision of the service.
Only with your explicit consent may the data be used to inform you about promotional activities that may be of interest to you.
In particular, we use your data to: send you promotional, commercial and advertising communications by email, carry out analysis and reporting related to promotional communication systems, such as tracking the number of emails opened, clicks on links contained in the communication, or the list of newsletter subscribers.
Data are collected by the Controller in accordance with applicable law, with particular regard to the security measures required by the GDPR (Article 32) for processing through IT, manual and automated tools, and with logic strictly related to the purposes indicated in section 2, in any case ensuring the security and confidentiality of the data.
Providing personal data is mandatory only for processing that is necessary to deliver the services offered; refusal makes it impossible to use the service. It is optional for promotional purposes, and refusal to give consent has no negative consequences on the provision of the service offered via the website.
Personal data will be stored in paper and/or electronic/IT form and for the time strictly necessary to fulfill the purposes set out in section 2, in compliance with your privacy and applicable laws.
For direct marketing and profiling purposes, we keep your data for a maximum period equal to that provided for by the applicable legislation.
Data are collected by the parties indicated in section 4, in accordance with applicable law, with particular regard to the security measures required by the GDPR (Article 32) for processing through IT, manual and automated tools, and with logic strictly related to the purposes indicated in section 2, in any case ensuring the security and confidentiality of the data.
Access to personal data, withdrawal of consent (opt-out)
Any natural person using our service may:
obtain from the Controller, at any time, information about the existence of their personal data, the origin thereof, the purposes and methods of processing and, where applicable, obtain access to the personal data and the information referred to in Article 15 of the GDPR;
request the updating, rectification, integration, erasure, restriction of processing where one of the conditions set out in Article 18 of the GDPR applies, the anonymisation or blocking of personal data processed in breach of the law, including data that do not need to be retained for the purposes for which they were collected and/or subsequently processed;
object, in whole or in part, on legitimate grounds, to the processing of data, even if relevant to the purpose of collection, as well as to the processing of personal data for commercial information, sending advertising material, direct sales, market research or commercial communication. Each user also has the right to withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal;
receive their personal data, provided knowingly and actively or through use of the service, in a structured, commonly used and machine-readable format, and transmit them to another controller without hindrance;
lodge a complaint with the Italian Data Protection Authority (Garante per la Protezione dei Dati Personali).
The Data Controller is Rifnet Srl, Via Europa 219, 25062 Concesio (BS), Italy, VAT no. 03338800984, represented by its legal representative.
Please note that for any question or request relating to your personal data and the protection of your privacy, you may write to the dedicated address: Info@rifnet.it
This privacy notice may be subject to changes. If substantial changes are made to the use of users’ data by the Controller, the Controller will inform users by publishing them prominently on its pages or through alternative or similar means.