Dear user,

First of all, thanks for stopping by. We value the fact that you can trust us and so we want to share with you on this page the  purposes and methods of processing of personal data that we collect during your browsing on the site (hereinafter “Site”) and with the use of the services offered by us.

The processing of your personal data is always based on principles  of lawfulness and correctness in compliance with all applicable laws.

Below you will find all the details on the processing of your personal data.

We are available to answer your questions. 

PROCESSED PERSONAL DATA

  1. Personal data processed for purposes of operation of the Site

The computer systems and software procedures used to operate the Site acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified interested parties, but which, by their very nature, could, through processing and association with data held by the Company or by third parties, allow the identification of users of the Site.

This category of data includes IP addresses or domain names of computers used by users who connect to the Site, URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters related to the user’s operating system and computer environment.

 

  1. Data provided directly by the user

The optional, explicit and voluntary sending of data as requested by various sections of this Site are used in order to give effect to user requests (Example only indicative and not exhaustive: when you request information or clarification by calling the numbers indicated on the Site or writing to the e-mail addresses present there).

Specific information, including summary information, are reported or displayed on the pages of the Site prepared for services on request, in order to draw your attention to the processing of your personal data.

We hereby declare that the Site is reserved for persons of adult age only.

3. Geolocation data

This Site may process your geographical location data in order to provide location-based services. Most browsers and devices provide the user with some tools by default to prevent geographical tracking. If the user has expressly authorized geolocation, this Site may receive information about its actual geographical location.

FINALITY’, LEGAL BASIS FOR PROCESSING AND PERIOD OF RETENTION OF PERSONAL DATA

Operation of the site

The data collected during navigation are used to obtain anonymous statistical information on the use of the Site and to check its correct functioning.

Legal basis of the purpose: execution of a contract of which you are a party (use of the Site).

Retention period of personal data: for the entire duration of the browsing session on the Site.

Contractual purpose

The data provided directly by the user are used in order to process the latter’s requests (e.g. registration to the Site or contact request).

Legal basis of the purpose: execution of a contract of which you are a party (use of the Site).

Retention period of personal data: for the entire duration of the contractual relationship and subsequently according to the prescriptive terms of the contract.

After the above retention periods, your personal data will be destroyed, deleted or anonymized, in accordance with the technical procedures of deletion and backup.

MANDATORY NATURE OF THE PROVISION OF DATA

With the exception of navigation data, which are necessary to implement IT and telematic protocols, the provision of personal data by users is free and optional. However, failure to provide the data will make it impossible to proceed with the requests submitted or that the user intends to forward.

 

RECIPIENTS OF THE DATA

Your data may be communicated to persons acting as Data Controllers (such as, for example, supervisory and control authorities and any public entity entitled to request data) or processed on behalf of the Company, by persons designated as Responsible, to whom appropriate operational instructions are given.

In particular, the data may be communicated to the following categories of subjects:

a) natural and/or legal persons providing services of various kinds in favour of the Company (eg. service providers for the management of the Site, such as system outsourcers, companies dealing with internet connectivity services, etc. ). Such persons may also act as Data Processors;

b) public and/or private entities to which the data will have to be communicated in order to fulfil or to require the fulfilment of specific legal obligations, regulations and Community legislation. These subjects will act as independent Data Controllers or Data Processors.

 

ENTITIES AUTHORISED TO PROCESS

The data will be processed by internal employees, collaborators of the Company or external subjects who perform on behalf of the Company, technical and organizational tasks of the Site.

 

TRANSFER OF PERSONAL DATA TO NON-EU COUNTRIES

There are no data transfers outside the European Union.

RIGHTS OF THE DATA SUBJECT – COMPLAINT TO THE SUPERVISORY AUTHORITY

Data controller: BASIC SRL – registered office in Lagonegro (Potenza) via Umberto I no.24.

By contacting the Company by e-mail at info@sunballast.com, interested parties can ask the Data Controller for access to the data concerning them, their deletion, the correction of inaccurate data, the integration of incomplete data, the limitation of processing in the cases provided for by art. 18 GDPR, as well as opposition to processing in cases of legitimate interest of the owner.

Data subjects, in addition, in case when the processing is based on consent or contract and is carried out by automated means, have the right to receive data in a structured, commonly used and machine-readable format, and, if technically feasible, to transmit them to another Data Controller without impediments.

The data subject is also entitled to submit a complaint to a Data Protection Authority in his or her member state of residence, or the member state in which he or she works or where the presumed data breach occurred.