IT EN FR ES DE

Privacy Policy

Personal Data Processing Policy Pursuant To Article 13 of Eu Regulation 2016/679

This Policy will be reviewed and adapted as necessary in the event of any regulatory updates (June 2022)

 

Dear Client,
For the purposes envisaged by Regulation (EU) no. 2016/679 (General Data Protection Regulation – GDPR) on the protection of individuals with regard to the processing of Personal Data, we hereby inform you that the Personal Data provided by you and acquired by AEC ILLUMINAZIONE S.R.L. shall be processed in accordance with the provisions of the aforementioned Regulation, in compliance with the resulting rights and obligations. To this end, AEC ILLUMINAZIONE S.R.L. informs you, pursuant to Article 13 (GDPR), of the following points.

 

Identity and Details of the Data Controller

The data controller is AEC ILLUMINAZIONE S.R.L. with registered office at Via A. Righi 4 – Z.I. Castelnuovo – 52010 Subbiano – AREZZO.
Contact details of the Data Controller:
a) VAT no./Tax Code: IT00343170510
b) telephone: +39 0575041110
c) email: info@aecilluminazione.it
d) certified email: amministrazione@pec.aecilluminazione.it

 

Data Protection Officer (DPO)

The Data Protection Officer (DPO), designated by the Data Controller pursuant to Article 37 (GDPR), is Sicurdata S.r.l. in the person of DPO Agostino Oliveri, with registered office in Scandicci (FI) at Via E. Codignola 10/A – 50018.
The contact information of the Data Processor is:
a) Telephone: +39 3487035239
b) email: dpo.sicurdata@opendata.it
c) certified email: sicurdatasrl@pec.pec-opendata.com
d) VAT no.: 06387650481

 

Personal data processed

The collated Personal Data is identification data such as first name, surname and email address, in addition to any data you may have provided.
Usage data necessary to enable you to navigate this Website will also be processed.
Usage data is information automatically collected through this Website (including via third-party applications integrated into this Website) including: the IP addresses or domain names of the computers utilised by the User who connects to this Website, the addresses in URI (Uniform Resource Identifier) notation, the time of the request, the method utilised to forward the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response from the server, the country of origin, the characteristics of the browser and the operating system utilised by the visitor, the various timings of the visit (such as the length of time spent on each page) and the details of the itinerary followed within the Application, with particular reference to the sequence of pages consulted, the parameters pertaining to the User’s operating system and computer environment.

 

Purpose, legal basis for processing, nature of conferment

The data shall be processed for the below purposes and on the basis of the relevant legal bases. The necessary information on the nature of the provision of data is also provided, namely:
A) Purpose: to facilitate browsing and consultation of the Website; Legal basis: Article 6.1(f) (GDPR) given that the processing is necessary for the pursuit of the legitimate interest of the Data Controller; Nature of the provision: necessary to be able to browse the Website.
B) Purpose: to respond to requests for assistance or information, which we receive by email utilising the appropriate form; Legal basis: Article 6.1(b) (GDPR) insofar as it is necessary for the execution of a contract to which the Data Subject is party or the performance of pre-contractual measures adopted at the request of the same; Nature of the provision: necessary in order to be able to make requests for assistance or information.
C) Purpose: to send communications regarding products and services offered by the Controller (newsletter activities); Legal basis: consent pursuant to Article 6.1(a) (GDPR). You may revoke your consent at any time. Revocation does not affect the lawfulness of processing based on consent granted prior to revocation; Nature of consent: necessary in order to register for the service.
D) Purpose: registration for the reserved area useful for accessing all documentation of the products offered by the Controller (product warranties, assembly instructions, photometries, 3Ds, DWG files) and exclusive content; Legal basis: Article 6.1(b) (GDPR), it being necessary for the performance of a contract to which the Data Subject is party or the performance of pre-contractual measures adopted at the Data Subject’s request; Nature of conferment: necessary to register for access to the reserved area.
E) Purpose: registration for a personal account relating to the “Work With Us” section in order to respond to job offers published by the Data Controller or to submit a spontaneous application; Legal basis: Article 6.1(b) (GDPR), it being necessary for the execution of a contract to which the Data Subject is party or the performance of pre-contractual measures adopted at the Data Subject’s request; Nature of the conferment: necessary in order to create the personal account.
F) Purpose: to comply with legal obligations; Legal basis: Article 6.1(c) (GDPR), it being necessary to fulfil a legal obligation to which the Data Controller is subject; Nature of the provision: obligatory.
G) Purpose: For the exclusive scope of security and prevention of fraudulent conduct, the Data Controller implements an automatic control system involving the detection and analysis of User behaviour on the Website associated with the processing of Personal Data, including the IP address; Legal basis: Article 6.1(f) (GDPR), with the processing being necessary for the pursuit of the legitimate interests of the Controller; Nature of the provision: necessary to be able to exercise a right in court.

 

Possible recipients of the data

Your Personal Data may be disclosed to:
a) Parties typically acting as Data Controllers, namely:
  • Persons or companies providing assistance and consultancy services to the Data Controller;
  • Parties with whom it is necessary to interact for the provision of services;
  • Parties delegated to perform technical maintenance activities (including maintenance of network equipment and electronic communication networks).
b) Parties, bodies or authorities to whom your Personal Data must be disclosed under legal provisions or orders of the authorities;
c) Persons authorised by the Data Controller to process the Personal Data necessary to carry out activities strictly related to the provision of the Services, who have committed themselves to confidentiality or have an appropriate legal obligation of confidentiality, such as employees of the Data Controller;
The complete list of Data Processors is available by sending a written request to the Data Controller at the aforementioned email address.

 

Transfer of data abroad

The management and storage of Personal Data by the Data Controller shall occur on servers located within the Data Controller’s European Union.
It is in any case understood that the Data Controller, should it become necessary, shall have the right to move the location of the servers to Italy and/or the European Union and/or non-EU countries. In this case, the Data Controller hereby ensures that the transfer of data outside the EU will take place in accordance with the applicable legal provisions.
The management and storage of Personal Data by the Data Controller shall occur on servers located within the Data Controller’s European Union.
It is in any case understood that the Data Controller, should it become necessary, shall have the right to move the location of the servers to Italy and/or the European Union and/or non-EU countries. In this case, the Data Controller hereby ensures that the transfer of data outside the EU will take place in accordance with the applicable legal provisions.

 

Data retention period

Navigation data is retained until the end of the session.
Any data released by the User will be retained for the time necessary to respond to their request.

 

Cookies

Please refer to the Cookie Policy.

 

Rights of the Data Subject, complaints and judicial redress

With regard to the data itself, the Data Subject – or a person so delegated in writing – may exercise the following rights:
a) The right of access pursuant to Article 15 (GDPR);
b) The right to rectification pursuant to Article 16 (GDPR);
c) The right to be forgotten pursuant to Article 17 (GDPR);
d) The right to restriction of processing upon the occurrence of one of the cases set out in Article 18 (GDPR);
e) The right to receive certification that the operations carried out pursuant to Articles 16, 17 and 18 (GDPR) have been brought to the attention of those to whom the data has been disclosed, unless such proves impossible or involves disproportionate effort (Article 19 (GDPR);
f) The right to data portability pursuant to Article 20 (GDPR);
g) The right to object to the processing of Personal Data pursuant to Article 21 (GDPR);
h) the right to withdraw consent at any time pursuant to Article 7 (GDPR);
i) the right to lodge a complaint with a Supervisory Authority pursuant to Article 77 (GDPR);
l) the right to judicial review pursuant to Articles 78 and 79 (GDPR).

 

In order to exercise your rights, you may contact the Data Controller via the Data Controller’s contact points indicated in this Policy.
This Policy has been updated as of June 2022. Should there be any modifications to processing, the Controller shall provide evidence thereof via the updating of this text.

Reserved area
Access our reserved area "MY AEC" to download any file.
Product warranty
Mounting instructions
3DS files
2D dwg
Photometric files
Contact us
Trust the professionalism of AEC Illuminazione.

Consultancy and design for each type of lighting system.