IN ACCORDANCE WITH ARTICLES 13-14 OF GDPR

WEBSITE “PRIVACY POLICY”

(October 2023 release)

Dooor SRL, located at Via Ugo La Malfa, 27/D, 61032 Fano (PU), Italy and reachable at [email protected], is the Data Controller responsible for managing your personal data. This notice outlines the use of your data and your rights, including those related to contacts made through our website, https://www.dooor.it.

For a better understanding of the information, please refer to the information provided by the Italian Data Protection Authority: https://www.garanteprivacy.it/regolamentoue/guida-all-applicazione-del-regolamento-europeo-in-materia-di-protezione-dei-dati-personali.

 

  1. WHO IS THE DATA CONTROLLER WHO DECIDES THE PURPOSES AND MEANS OF THE PROCESSING? HOW AND WHERE CAN YOU CONTACT IT?

The Data Controller is Dooor SRL, reachable at the addresses indicated above and at the e-mail address: [email protected], for the exercise of the rights listed below and for any request for clarification.

 

  1. WHAT PURPOSES, METHODS, LEGAL REQUIREMENTS, CONSEQUENCES, DATA RETENTION TIMES ARE APPLIED TO THE PROCESSING?

The processing of the data that will be requested will be carried out for the following:

  • provide information and clarifications on the activities of the Data Controller, through the available means of contact (email, messaging, telephone, postal mail, social media, etc.) (LEGAL BASIS: overriding legitimate interest of the Data Controller to provide the requested information and to administer the relationship; DURATION: for as long as necessary to provide the requested information, maximum 24 months);
  • any obligations deriving from laws, regulations and EU legislation (LEGAL BASIS: regulatory obligation; DURATION: for the entire limitation period provided for by applicable laws);
  • any assessment, defence or exercise of a right in court (LEGAL BASIS: legitimate interest, considered prevalent for self-defence in court; DURATION: for the entire limitation period provided for by applicable laws);
  • protect the security of the Data Controller’s networks and IT systems (LEGAL BASIS: legitimate interest, considered prevalent as it complies with Recital 49 GDPR; DURATION: 6 months);
  • marketing (LEGAL BASIS: consent, which can always be revoked by the data subject; DURATION: maximum 24 months unless revoked early) through newsletters, promotional emails, social media, messaging;
  • soft-spam marketing (LEGAL BASIS: legitimate interest, always enforceable by the data subject; DURATION: maximum 24 months (unless objection) via promotional email or information on products or services similar to the customer’s previous ones;
  1. b) with reference to the methods of processing the personal data of the data subject, the said processing will be carried out in compliance with the security measures provided for by current legislation, in manual or computerized form.

 

  1. TO WHOM MAY YOUR DATA BE COMMUNICATED?

The Data Controller, in order to carry out the activities, may in turn communicate them to the following subjects to the extent strictly necessary for the achievement of the aforementioned purposes, all based in the European Community/European Economic Area unless otherwise indicated:

  • to the Data Controller’s authorized personnel;
  • bodies for the coordination, supervision and management of national and foreign Internet networks, as well as communication and telephone networks and related services (in particular messaging and e-mail, cloud services);
  • to companies and professionals, as well as service providers (in particular IT assistance and maintenance, as well as web administration, legal assistance, etc.), which the Data Controller uses for the management of its activities and relations with data subjects, who may be appointed as Data Controller’s managers if necessary; in particular, providers such as Google Ireland Ltd. (cloud and email), Hubspot (for CRM services), social media (such as Facebook and Instagram by Meta Platforms Inc., Pinterest by Cold Brew Labs, Inc.), Mailchimp by Rocket Science Group (newsletter), ADV Media Lab srl (social media and web management) may be involved;
  • any authorities, public bodies or third parties who have access to the data by law or on the basis of provisions regulated by applicable legislation.

For the purposes indicated above in this policy, the data may be transferred abroad to countries not belonging to the European Union. In the case of providers of software products and web services of US-based companies and related data transfers (e.g. such as Google Ireland Ltd.), transfers will take place on the basis of the EU-US Data Privacy Framework, unless otherwise stated.

 

  1. WHAT RIGHTS DO YOU HAVE REGARDING THE PROCESSING OF YOUR DATA?

You may contact the Data Controller to assert the rights indicated in art. 15-22 GDPR. You have the following rights:

  1. you have the right to ask the data controller for access to your personal data, asking for confirmation or not of their existence, as well as the rectification or deletion of the same or the limitation (temporary blocking) of the processing concerning you;
  2. YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR DATA ON GROUNDS RELATING TO YOUR PARTICULAR SITUATION IN THE CASE OF: I) PROCESSING THAT IS NECESSARY FOR THE PERFORMANCE OF A TASK CARRIED OUT IN THE PUBLIC INTEREST OR IN THE EXERCISE OF OFFICIAL AUTHORITY, OR II) IN THE EVENT OF THE PURSUIT OF THE LEGITIMATE INTERESTS OF THE CONTROLLER;
  3. if you have given consent for one or more specific purposes, you have the right to withdraw that consent at any time;
  4. you have the right to portability of your personal data (for those with a legal basis of contractual or consensual execution) by means of a request to the Data Controller, by means of communication of a file in . CSV, or similar interoperable open format, depending on the type of data requested;
  5. you have the right to lodge a complaint with a supervisory authority, e.g. the Italian Data Protection Authority (http://www.garanteprivacy.it); in any case, you have the right to lodge a complaint with the competent supervisory authority of the Member State where you habitually reside, work or the place where the alleged violation occurred;
  6. you have the right to request information on the balancing of interests carried out by the Data Controller for processing based on legitimate interest.

 

  1. FROM WHOM DID WE COLLECT YOUR DATA AND WHAT TYPE OF DATA?

The data are collected directly when you request information from the Data Controller. The data you provide directly are common data, such as first name, last name, email, etc. All this data is mandatory in order to request and receive information. For cookies see below.

 

  1. HOW DO WE USE COOKIES TO PROCESS YOUR WEB DATA?

Please refer to the supplementary information for cookies available here: https://dooor.it/en/cookie-policy/  For anything not provided for in this other policy, the provisions of this document (e.g. exercise of the rights of data subjects, etc.) shall apply.

In general, this site may contain links or references to other websites. The Company does not control cookies/tracking technologies from other websites to which this Cookie Policy does not apply.

What are Cookies?

Cookies are small text files sent by the site to the data subject’s terminal (usually to the browser), where they are stored and then retransmitted to the web page, on the next visit by the same User. A cookie cannot retrieve any other data from the User’s hard drive or transmit computer viruses or acquire e-mail addresses, and each cookie is unique to the User’s web browser.

Some of the functions of cookies may be delegated to other technologies. In this document, the term “cookies” refers both to cookies, properly so-called, and to all similar technologies.

Cookies are used to: (a) facilitate navigation within the site and ensure its correct use; (b) facilitate access to services that require authentication (by avoiding the need for Users to re-enter their authentication credentials each time they access the services); (c) for aggregated statistical purposes, to know which areas of the site have been visited; (d) for optimal management of pages and advertising spaces; (e) to deliver content and advertising in line with the choices made by surfers (so-called behavioral advertising with dynamic creatives).

Cookies are not harmful to your device. In the cookies that the site generates, no personal identification information is stored, which is encrypted and collected by them to improve the permanence and navigation within the Site.

Type and nature of the cookies installed

While browsing, the User may receive two different types of cookies:

  • those of the same site visited (so-called “first-party cookies”); and/or
  • those of different sites or web servers (so-called “third-party cookies”). In particular, this happens, for example, when you visit a page that includes content from a third-party website.

In this regard, we inform you that the Data Controller does not play any role in the processing of data acquired through this last type of cookie and we invite you to read the privacy policy and the respective purposes and methods of use as well as the procedures for refusing the installation of the related cookies directly on the websites of the respective managers. And in fact, the so-called “third-party cookies”, as well as the purposes for which they are used outside the site, fall under the direct and exclusive responsibility of the third party who installs them on the User’s terminal. If the latter does not wish to receive third-party cookies on their terminal, they may at any time, through the appropriate links, access the information and consent forms of these third parties and exclude their receipt.

On the basis of the purposes, we also inform you that the site uses the so-called technical cookies, necessary to guarantee the User the best functionality of the site. They are not used for other purposes and can be divided into:

  • navigation or session cookies, which ensure normal navigation and use of the website; they are not stored permanently on the hard drive of the User/Visitor’s device and are deleted when the browser is closed. They are used to transmit identifiers of browsing sessions and to allow safe and efficient browsing of the site. They are in fact necessary for the proper functioning of the website;
  • analytics cookies, similar to technical cookies when used directly by the site manager to collect information, in aggregate form, on the number of Users and how they visit the site, in order to improve the performance of the web page;
  • functionality cookies, which allow the User to browse according to a series of selected criteria (e.g., language) in order to improve the service rendered to the same.

They are, therefore, tools used by the Data Controller to ensure, among other things, efficient navigation, the stability of the session and the permanence of the selected language throughout the session. They are also used to store the choices made by the User regarding the display of certain elements of the page, such as information and communication banners.

The prior consent of the Users is not required for the installation of these cookies, although with respect to them the Data Controller remains obliged to provide adequate information, and in any case the possibility of preventing their installation at any time, through the settings of their browser, remains unaffected. However, we inform you that such a choice could complicate, slow down and sometimes block navigation on the site.

This web page also contains the so-called profiling cookies, aimed at creating profiles relating to the User and used in order to send advertising messages in line with the preferences expressed by the User in the context of web browsing. For the installation of these cookies, prior consent is required, expressed by clicking on the “ACCEPT” button or similar within the appropriate banner that appears during navigation and informs the User that this type of cookie is used within this site.  The installation can be blocked at any time, without the possibility of visiting the site and enjoying its contents being compromised in any way.

By using the interactive button to block profiling cookies, the User still receives a technical cookie to store the preference. By deleting all cookies from the browser, this technical cookie could also be removed and, therefore, the User may again be asked to express his choice to block these cookies by means of the interactive button.

This website also installs advertising cookies from partners, which make it possible to provide an advertising information service of greater interest to the User through the acquisition of information derived from navigation and the use of some services offered. In particular, these cookies are used to serve personalized ads within the portal.

Finally, we inform you that, as part of this personalized advertising service, cookies never store information that can allow the personal identification of Users.

Which cookies are used and for what purposes

In detail, some of the cookies used on this site are the following, others are potentially used (especially for advertising, profiling and statistics) and the related specifications can be found through the cookie banner, which can always be reactivated to review your choices at the bottom of the page or through a special widget/icon.