Privacy policy in accordance with Art. 13 of the EU Regulation 2016/679

CET Electronics snc, headquartered in Via Badini, 72 31050 Zenson di Piave – Treviso, P.IVA IT01780330260 (hereinafter also just “CET”), as owner of the Aurora web portal https://hub3.cet.cloud/ accessible through the website https://grapeprodigi.eu  (hereinafter the “Site”) pursuant to Article 13 of the EU Regulation 2016/679 (hereinafter the “GDPR”) and in relation to the personal data that will come into its possession, informs the User of the following.

  1. Type of personal data subject to processing

1.1 The personal data that will be subject to processing by CET are as follows:

  • data aimed at defining the identification of the subject  (name, surname, e-mail, occupation, geographical location).

1.2 Personal data will be provided to CET voluntarily by the subject electronically when registering on the Site or completing forms on the Site.

  1. Legal basis and purpose of the processing

2.1. The legal basis of the processing is based on the use of the Site, the consent given or the relative contract that is finalized. Personal data will be processed in accordance with the GDPR in order to enable the provision of the services requested or contracted with CET, in particular:

– for the provision and management of the requested services such as access to the demo version of the Aurora web portal, requests for information, quotes, business contacts, newsletter services, etc.

 – for administrative and accounting purposes such as the fulfillment of tax obligations, supplier and customer management and internal control services.

2.2 Subject to the User’s consent, personal data will be processed in order to allow the sending of a limited annual number of communications containing information about products/services, offers, discounts or other promotional initiatives. In this case, the legal basis for processing is based on the consent of the subject.

  1. Methods of personal data processing – Security and confidentiality requirements

3.1. The processing of personal data by the data controller or any data processors will take place by means of paper, computer and telematic tools and through the organization of the same in databases having mainly automated form. The data will be kept in special archives in compliance with the technical and organizational measures necessary to ensure the security of the same.

3.2. CET guarantees maximum confidentiality of personal data by applying the most appropriate technologies to avoid unauthorized access to its databases as well as possible accidental loss and/or destruction of data.

3.3 Personal data will not be subject to dissemination.

3.4 Personal data may be transferred to Third Countries, in compliance with the provisions of the GDPR and the relevant laws in force.

  1. Provision of data and consequences of refusal to provide data

4.1 The personal data held by CET and subject to processing are those provided voluntarily by the interested party at the time of registration or completion of the forms on the Site.

4.2 The provision of personal data for the purposes referred to in point 2.1 is strictly necessary for the purposes of carrying out the activities referred to in point 2.1. Any refusal by the interested party to provide personal data will result in the impossibility of carrying out the activities referred to in point 2.1.

4.3 The provision of personal data for the purposes referred to in point 2.2 is optional and any refusal will not constitute an obstacle to the performance of the activities referred to in point 2.1. The User has the right to revoke his/her consent at any time. Withdrawal of consent to the processing of data for the purposes referred to in Section 2.2 does not affect the lawfulness of the processing based on the consent before the withdrawal. Consent may be revoked by contacting the data controller listed in Section 8.

  1. Period of retention of personal data and withdrawal of consent

5.1. Personal data will be kept by the data controller for the time necessary for the performance of the requested services and in any case until the request for deletion of data transmitted by the Users.   

5.2. Personal data acquired for the purposes mentioned in point 2.2 may be used for the duration of 24 months.

  1. Persons to whom the data may be disclosed

6.1. Within the limits and for the purposes indicated in the GDPR, personal data may be communicated for the purposes indicated in point 2.1 to internal and external collaborators, employees, third party service providers and to all those subjects to whom the communication is necessary for the correct fulfillment of the purposes indicated in point 2.1. Personal data may also be communicated to third party service providers or providers of activities related, instrumental or supporting the Site. These parties will act as data processors or data controllers, in compliance with all legal obligations.

6.2 Personal data may also be communicated to all those public or private subjects whose communication is obligatory by law or necessary for fiscal requirements.

  1. Rights of the concerned person

The data subject has the rights provided for in Article 15 GDPR, which provides as follows:

  1. The data subject shall have the right to obtain from the data controller confirmation as to whether or not personal data concerning him or her are being processed, and if so, to obtain access to the personal data and the following information:

(a) the purposes of the processing;

(b) the categories of personal data concerned;

(c) the recipients and categories of recipients to whom the personal data have been or will be disclosed, particularly if recipients in third countries or international organizations;

(d) when possible, the expected period of retention of personal data or, if this is not possible, the criteria used to determine this period;

(e) the existence of the data subject’s right to request from the controller the rectification or erasure of personal data or the restriction of the processing of personal data concerning him or her or to object to their processing

(f) the right to submit a complaint to a supervisory authority;

The data subject also has the right to data portability under Article 20 of the GDPR.

The exercise of the rights can be exercised by directly contacting the data controller indicated in Art. 8.

  1. Data Controller

The Data Controller is CET Electronics snc, located in via Badini, 72 – Zenson di Piave – Treviso – Italy – in the person of the legal representative. The updated list of data processors can be requested directly by contacting 0421-344100 or write to cet@cet-agritech.com.

  1. Changes to this privacy policy

9.1 The Data Controller reserves the right to make changes to this privacy policy at any time by publicizing them on this page. Therefore, please consult this page often, taking as reference the date of last modification indicated at the bottom of the page.

9.2 In any case, personal data already disclosed to CET may not be used for purposes other than those indicated by CET to the data subjects at the time of their collection, unless there is a new explicit consent of the data subject.