Owner and Data Controller

Macario S.r.l Via A. Savio, 19 - 15033 Casale Monferrato (AL)

info@macariocompany.it

Types of data collected

Among the Personal Data collected by this Application, independently or through third parties, there are: first name, last name, telephone number, VAT number, company name, address, state, province, email, ZIP code, Various types of Data, city, Cookies, Usage Data, gender, Tax Code, country and Social Security Code (SSN).

Full details on each type of Personal Data collected are provided in the dedicated sections of this privacy policy or through specific informational texts displayed before the Data is collected. Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically during the use of this Application.

Unless otherwise specified, all Data requested by this Application are mandatory and failure to provide this Data may make it impossible for this Application to provide its services. In cases where this Application expressly indicates that some Data is not mandatory, Users are free not to communicate such Data without consequences on the availability or operation of the Service.

Users who have doubts about which Personal Data is mandatory, are invited to contact the Data Controller. Any use of Cookies - or other tracking tools - by this Application or by the owners of the third-party services used by this Application is intended to provide the Service requested by the User, in addition to the additional purposes described in this document and in the Cookie Policy, if available

Users are responsible for the Personal Data of third parties obtained, published or shared through this Application and confirm that they have the consent of such third parties to provide such Data to the Data Controller.

Mode and place of data processing

Methods of processing

The Data Controller adopts appropriate security measures to prevent unauthorized access, disclosure, modification or unauthorized destruction of the Data.

Data processing is carried out using computers and/or IT tools, following organizational procedures and methods strictly related to the purposes indicated. In addition to the Data Controller, in some cases, other parties involved in the organization of this Application (administrative, commercial, marketing, legal personnel, system administrators) or external parties (such as third parties). technical service providers, postal couriers, hosting providers, IT companies, communication agencies) appointed, if necessary, as Data Processors by the Data Controller. The updated list of these subjects may be requested from the Data Controller at any time.

Legal basis for the processing

The Data Controller may process Personal Data relating to Users if one of the following conditions exists:

• Users have given their consent for one or more specific purposes. Note: in some laws, the Data Controller may be authorized to process Personal Data until the User objects to such processing (“opt out”), without having to rely on consent or another of the following legal bases. This, however, does not apply if the processing of Personal Data is subject to European data protection legislation;
• the provision of Data is necessary for the execution of a contract with the User and/or for any pre-contractual obligations of the same;
• processing is necessary to fulfill a legal obligation to which the Data Controller is subject;
• the processing is connected to a task carried out in the public interest or in the exercise of public authority vested in the Data Controller;
• processing is necessary for the pursuit of the legitimate interest of the Data Controller or third parties.

In any case, the Data Controller will be happy to help clarify the specific legal basis applicable to the processing, and in particular if the provision of Personal Data is a legal or contractual obligation, or a requirement necessary to conclude a contract.

Place

The Data are processed at the Data Controller's operating offices and in any other place where the parties involved in the processing are located.

Depending on the User's location, data transfers may involve the transfer of User Data to a country other than your own. To find out more about the place of processing of the transferred Data, Users can consult the section containing details on the processing of Personal Data.

Users also have the right to know the legal basis for data transfers to a country outside the European Union or to any international organization governed by public international law or established by two or more countries, such as the UN, and on the security measures adopted by the Data Controller to safeguard their Data.

If such a transfer takes place, Users can find out more by checking the relevant sections of this document or request information from the Data Controller using the information provided in the contact section.

Retention time

Personal Data will be processed and stored for the time required by the purposes for which they were collected.

Therefore:

• Personal Data collected for purposes related to the execution of a contract between the Data Controller and the User will be retained until the execution of that contract is completed.
• Personal Data collected for purposes related to the legitimate interest of the Data Controller will be kept for the period strictly necessary to satisfy these purposes. Users can find specific information regarding the legitimate interests pursued by the Data Controller in the relevant sections of this document or by contacting the Owner.

The Data Controller may be authorized to keep Personal Data for a longer period whenever the User has given consent to such processing, provided that such consent is not revoked. In addition, the Data Controller may be obliged to keep Personal Data for a longer period in compliance with a legal obligation or by order of an authority.

Once the storage period has expired, the Personal Data will be deleted. Therefore, at the expiry of the storage period, the right of access, cancellation, rectification and the right to data portability can no longer be exercised.

The purposes of the treatment

User Data is collected to allow the Owner to provide its Services, as well as for the following purposes: Contacting the User, Analytics, Registration and authentication, and Viewing content from external platforms.

Users can find more detailed information on these processing purposes and on the specific Personal Data used for each purpose in the respective sections of this document.

Detailed information on the processing of Personal Data

Personal Data is collected for the following purposes and using the following services:

Google Analytics with anonymized IP

Google Analytics with anonymized IP (Google Ireland Limited)

Google Analytics is a web analysis service provided by Google Ireland Limited (“Google”). Google uses the collected Data for the purpose of tracking and examining the use of this Application, compiling reports on its activities and sharing them with other Google services.

Google may use Personal Data to contextualize and personalize the ads of its advertising network. This Google Analytics integration anonymizes your IP address. It works by shortening the IP addresses of Users within member states of the European Union or in other states adhering to the agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server and shortened in the United States.

Personal Data collected: Cookies and Usage Data.

Place of processing: Ireland — Confidentiality Policy — Deciding to go out.

Storage duration:

• AMP_TOKEN: 1 hour
• _ga: 2 years
• _gac*: 3 months
• _gat: 1 minute
• _gid: 1 day

Information request form

By filling out the contact form with your Data, you consent to their use to respond to requests for information.

Personal Data collected: email address, first name, last name, telephone number and address. Your data will in no way be transferred to third parties for marketing purposes.

Your Personal Data will be kept for the time necessary to respond to requests for information. Your Personal Data will be stored in European territory and protected in accordance with Regulation (EU) 2016/679. Your Personal Data will be protected with all the best and current protection systems, aimed at preventing unauthorized access, disclosure, modification or destruction. The processing is carried out using IT and/or telematic tools, with organizational methods and with logic strictly related to the purposes indicated.

You have the right, at any time, to request the modification or cancellation (right to be forgotten) of the Personal Data subject to this consent, by sending an email to the Data Controller or by contacting us in another way.

PayPal (PayPal Inc.) PayPal is a payment service provided by PayPal Inc. that allows Users to make online payments using their PayPal credentials.

Personal Data collected: various types of Data as specified by the service's privacy policy.

Confidentiality Policy

Registration and authentication form

By filling in the registration and authentication form with your data, you consent to their use to identify you and give you access to dedicated services.

Personal Data collected: email address, first name, last name, telephone number and address. Your data will in no way be transferred to third parties for marketing purposes.

Your Personal Data will be kept for the time required by business needs and legal obligations relating to the dedicated services provided.

Your data will be stored in European territory and protected according to Regulation (EU) 2016/679. Your data will be protected with all the best and current protection systems, aimed at preventing unauthorized access, disclosure, modification or destruction. The processing is carried out using IT and/or telematic tools, with organizational methods and with logic strictly related to the purposes indicated.

You have the right, at any time, to request the modification or cancellation (right to be forgotten) of the Personal Data subject to this consent, by sending an email to the Data Controller or by contacting us in another way.

Mailing List or Newsletter subscription form

By registering for the mailing list or newsletter, your Data will be included in the contact list of those who may receive email messages containing commercial or promotional information relating to the Data Controller and Data Controller.

Personal Data collected: email address, first name, last name, telephone number and address. Your data will in no way be transferred to third parties for marketing purposes.

Your Personal Data will be kept for the time required by the purpose for which they were collected. Your data will be stored in European territory and protected according to Regulation (EU) 2016/679. Your data will be protected with all the best and most current protection systems, aimed at preventing unauthorized access, disclosure, modification or destruction. The processing is carried out using IT and/or telematic tools, with organizational methods and with logic strictly related to the purposes indicated.

The provision of personal data is not mandatory, any refusal to provide them will make it impossible to send the newsletter

You have the right, at any time, to request the modification or cancellation (right to be forgotten) of the Personal Data subject to this consent, by sending an email to the Data Controller or by contacting us in another way.

Sale of goods and services online

The Personal Data collected is used to provide services to the User or for the sale of goods, including payment and possible delivery.

Managing Cookies

This Application uses Cookies. To learn more and for a detailed information on cookies, the User can consult the Managing Cookies.

Users' rights

Users can exercise certain rights with reference to the Data processed by the Data Controller.

In particular, Users have the right to:

• Revoke your consent at any time. Users have the right to withdraw consent if they have previously expressed their consent to the processing of their personal data.
• Oppose the processing of your Data. Users have the right to object to the processing of their Data if the processing takes place on a legal basis other than consent. More details are provided in the dedicated section below.
• Access their data. Users have the right to know if the Data is processed by the Data Controller, to obtain information on certain aspects of the processing and to obtain a copy of the Data processed.
• Verify and ask for correction. Users have the right to verify the accuracy of their Data and request that it be updated or corrected.
• Limit the processing of your Data. Users have the right, under certain circumstances, to restrict the processing of their Data. In this case, the Data Controller will not process the Data for any other purpose other than their conservation.
• Have your personal data deleted or otherwise removed. Users have the right, under certain circumstances, to obtain the cancellation of their Data by the Data Controller.
• Receive your data and have it transferred to another owner. Users have the right to receive their Data in a structured, commonly used and machine-readable format and, if technically feasible, to obtain its transmission to another owner without any obstacles. This provision is applicable provided that the Data is processed by automated means and that the processing is based on the User's consent, on a contract to which the User is a party or on the User's pre-contractual obligations.
• File a complaint. Users have the right to lodge a complaint with the competent data protection authority.

Details on the right to object to processing

When Personal Data is processed in the public interest, in the exercise of public powers vested in the Data Controller or to pursue a legitimate interest of the Data Controller, Users may object to such processing for reasons related to their particular situation. Justify the opposition.

Users are informed that, if their Personal Data are processed for direct marketing purposes, they can object to the processing at any time without providing any reason. To find out if the Data Controller processes data for direct marketing purposes, Users can refer to the respective sections of this document.

How to exercise these rights

Any requests to exercise the User's rights may be addressed to the Data Controller using the addresses listed in this document. These requests can be exercised free of charge and will be addressed by the Data Controller as soon as possible and always within one month.

Learn more about data collection and processing

Legal action

The User's Personal Data may be used by the Data Controller in court, in court or in the preparatory phases for its possible establishment to defend against abuse in the use of this Application or related services. The User declares to be aware that the Data Controller may be required to disclose personal data at the request of public authorities.

Learn more about the User's Personal Data

At the User's request, in addition to the information contained in this privacy policy, this Application may provide the User with additional and contextual information regarding specific services, or the collection and processing of Personal Data.

System logs and maintenance

For operational and maintenance purposes, this Application and any third-party services may collect files that record the interaction with this Application (System Logs) or use other Personal Data (such as the IP address) for this purpose.

Information not contained in this policy

More details in relation to the collection or processing of Personal Data may be requested from the Data Controller at any time. Please see your contact information at the beginning of this document.

How 'Do Not Track' requests are handled.

This Application does not support 'Do Not Track' requests.

To determine if the third-party services you use comply with “Do Not Track” requests, please read their privacy policies.

Changes to this privacy statement

The Data Controller reserves the right to make changes to this privacy policy at any time by advertising them to Users on this page and possibly within this Application and/or - as far as technically and legally feasible - by sending a notice to Users through any contact information available to the Owner. We strongly recommend that you consult this page often, taking as a reference the date of the last modification indicated at the bottom.

If the changes affect processing activities carried out based on the User's consent, the Data Controller will collect new consent from the User, if required.

Regulatory definitions and references

Personal Data (or Data)

Any information that, directly, indirectly or in connection with other data, including a personal identification number, allows the identification or identification of a natural person.

Usage data

Information automatically collected through this Application (or third-party services used in this Application), which may include: the IP addresses or domain names of the computers used by Users who use this Application, the addresses in URI (Uniform Resource Identifier) notation, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.), the country of origin, the characteristics of the browser and the operating system used by the User, the different time details per visit (for example, the time spent on each page within the Application) and the details relating to the path followed within the Application with particular reference to the sequence of pages visited, and other parameters relating to the operating system of the device and/or the User's computer environment.

User

The individual who uses this Application who, unless otherwise specified, coincides with the Data Subject.

Interested

The natural person to whom the Personal Data refers.

Data Processor (or Data Processor)

The natural person, legal entity, public administration and any other body, association or body responsible by the Data Controller for the processing of Personal Data, in accordance with the provisions of this privacy policy.

Data controller (or Data Controller)

The natural or legal person, public authority, service or other body that, individually or together with others, determines the purposes and means of the processing of Personal Data, including security measures related to the operation and use of this Application. The Data Controller, unless otherwise specified, is the owner of this Application.

This app

The tool through which the User's Personal Data is collected and processed.

Service

The Service provided by this Application as described in the relevant terms (if available) on this site/application.

European Union (or EU)

Unless otherwise specified, all references to the European Union contained in this document include all current member states of the European Union and the European Economic Area.

Cookies

A small portion of data stored on the User's device.

Legal Information

This privacy statement has been drafted on the basis of provisions provided for by multiple regulations, including Art. 13/14 of Regulation (EU) 2016/679 (General Data Protection Regulation).

This privacy policy concerns only this Application, unless otherwise specified in this document.

‍

‍

Last updated: 24/03/2023