This information notice is drafted and customized for visitors to the website https://www.tonalite.it/.
This document fully cancels and replaces the document previously published. Specific summary information is progressively reported or displayed on the pages of the site set up for particular services on request that provide forms for data collection.
We also inform you that, to provide a complete service, our site may contain links to other websites not managed by the Data Controller TONALITE S.P.A., with registered office at Via Prampolini n.55 – Modena (MO) 41124, e-mail: amministrazione@pec.tonalite.it, tel. +39 051 957253. The Controller is not responsible for errors, content, cookies, publication of illicit moral content, advertising, banners, or files that do not comply with current regulations and Privacy legislation by sites not managed by the same.
Data Subjects: Users of the website https://www.tonalite.it/
As the Data Controller of your personal data pursuant to and for the purposes of European Regulation 2016/679 (GDPR), TONALITE S.P.A. hereby informs you that the aforementioned legislation provides for the protection of persons and other subjects regarding the processing of personal data. Such processing will be based on the principles of correctness, lawfulness, transparency, and the protection of your privacy and rights.
The personal information and data provided by you or otherwise acquired during the use of the site will be processed in accordance with the legislative provisions of the aforementioned regulation and the confidentiality obligations provided therein.
Types of Data Processed
a) Browsing Data The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified data subjects, but by its very nature, through processing and association with data held by third parties, it could allow users to be identified. This category includes IP addresses or domain names used by users connecting to the site, URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained, etc. This data is used for the sole purpose of obtaining anonymous and aggregate statistical information on the use of the site and to check its correct functioning, and resides permanently on third-party servers (hosting providers). The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site.
b) Cookies The website uses cookies to help users speed up navigation, increase security, and analyze the use and efficiency of services. For more information, please refer to the Cookie Policy.
Purposes of Processing
Your data collected during navigation will be processed for the following purposes:
Carrying out operations strictly connected and instrumental to the management of relationships with users or visitors to the site; collection, storage, and processing of your data for statistical analysis, also in anonymous and/or aggregate form.
The processing of data for the fulfillment of the purposes referred to in point 1 is mandatory, and any non-communication, or incorrect communication, of any of the information may limit and/or prevent the full use of the features and services present on the site. The provision of data indicated in purpose 2 is optional, but any refusal could compromise the visitor’s requests (for more information on cookies, see the cookie policy). The Authority has clarified that explicit consent for such cookies is not necessary, but the visitor can disable them at any time following the instructions in the cookie policy (browser settings, anonymous browsing, etc.).
Personal data voluntarily provided by the user: The optional, explicit, and voluntary sending of e-mails to the addresses indicated on this site and the filling out of forms on the same involves the subsequent acquisition of the sender’s personal data (e.g., name, surname, email address). Specific summary information is present on the pages containing the forms.
Processing Methods
Personal data are processed using manual and electronic tools, and also through cookies, for the time strictly necessary to achieve the purposes for which they were collected. Each processing operation takes place in compliance with the methods indicated in European Regulation 2016/679, adopting the technical and organizational security measures necessary to guarantee the confidentiality, integrity, and availability of the data as indicated by Art. 32 of the aforementioned Regulation. Processing related to web services is carried out at the Controller’s headquarters and at the external Provider where the physical servers are located.
Communication
Your data are processed within the company by the following categories of authorized subjects appointed by the
Controller:
Customer service staff
Your data may be communicated to third parties, in particular to:
Companies that perform ordinary and extraordinary maintenance of the website;
Companies that provide services related to third-party cookies.
Disclosure
Your data will not be disclosed (spread to unspecified subjects).
Third Parties
Your data is also collected through tools and services provided by third parties and stored by them. Please note that Google Tag Manager is active on this site, which anonymously detects user navigation paths through specific tags and triggers. For more information on cookies, see the cookie policy.
Application of this Policy
If you have doubts regarding this Policy, please first contact TONALITE S.P.A. by sending an e-mail to: amministrazione@pec.tonalite.it. A Data Protection Officer (DPO) has been appointed and can be contacted at the following address: avv.daniela.guidi@gmail.com.
Changes to this Policy
TONALITE S.P.A. reserves the right to update this policy to adapt it to upcoming legislation, as well as taking into due consideration the suggestions submitted by employees, customers, collaborators, and users. In the event of changes by TONALITE S.P.A., the word “update” will be displayed next to the Website Policy link on the main privacy page of https://www.tonalite.it/. In case of substantial changes to the policy, the company will publish such changes visibly.
EU Reg. 2016/679: Arts. 15, 16, 17, 18, 19, 20, 21, 22 – Rights of the Data Subject
The data subject has the right to obtain confirmation as to whether or not personal data concerning him or her exist, even if not yet recorded, and their communication in intelligible form and the possibility of lodging a complaint with the Supervisory Authority.
The data subject has the right to obtain indication of:
a. the origin of the personal data;
b. the purposes and methods of processing;
c. the logic applied in case of processing carried out with the aid of electronic instruments;
d. the identification details of the controller, processors, and the representative designated pursuant to Art. 5, paragraph 2;
e. the subjects or categories of subjects to whom the personal data may be communicated or who may become aware of them in their capacity as designated representative in the territory of the State, processors, or persons in charge.
The data subject has the right to obtain:
a. updating, rectification or, where interested therein, integration of the data;
b. erasure, anonymization, or blocking of data processed unlawfully, including data whose retention is unnecessary for the purposes for which the data were collected or subsequently processed;
c. certification that the operations as per letters a) and b) have been notified, as also related to their contents, to the entities to whom or which the data were communicated or disseminated, unless this requirement proves impossible or involves a manifestly disproportionate effort compared with the right that is to be protected;
d. data portability.
The data subject has the right to object, in whole or in part:
a. on legitimate grounds, to the processing of personal data concerning him or her, even though they are relevant to the purpose of the collection;
b. to the processing of personal data concerning him or her for the purpose of sending advertising materials or direct selling or else for the performance of market surveys or commercial communication.