PRIVACY POLICY AND PERSONAL DATA PROCESSING
The following information is provided in accordance with:
- Art. 13 of the Privacy Code D.Lgs. 30.6.2003 No. 196;
- Art. 13 of the EU General Regulation No. 679/2016 on personal data processing (GDPR);
- Recommendation No. 2/2001 adopted by the European data protection authorities, gathered in the Group established by Art. 29 of Directive No. 95/46/EC, on May 17, 2001, to identify minimum requirements for online personal data collection, in particular the methods, timing, and nature of the information that data controllers must provide to users when they connect to web pages, regardless of the purpose of the connection.
This policy applies to the website deltaservicedieselengines.com (hereinafter referred to as "site") and not to other websites that the user may access via links present on this site.
This page describes how the site manages the processing of personal data of users who browse, navigate, or use it in accordance with the available functionalities and services offered by the site.
The processing is always based on principles of lawfulness and fairness in compliance with all applicable regulations, and appropriate security measures are taken to protect the data.
1) DATA CONTROLLER, PROCESSORS, AND AUTHORIZED PERSONNEL
As a result of browsing, navigating, or using this site, data related to identified or identifiable individuals or legal entities may be processed.
The data controller is:
Delta Service Srl
S.S. 18 - Località Fosso Pioppo, No. 4 - 84091 Battipaglia (Salerno)
VAT Number: 05045500658
Email: info@deltaservicedieselengines.com
The data processors are:
- Luca Immediata
- Netsons, responsible for maintaining the site's technological infrastructure and, for this purpose, may access the data.
As per the contract between the data controller and the data processors, the latter undertake not to disclose the data in any way or for any reason processed by the site.
Authorized personnel involved in managing the site and business operations may process data for the purposes described in this policy. Additionally, external entities, who may be designated as data processors when necessary, may process data on behalf of the data controller.
The data may also be shared with public authorities, law enforcement, or other public and private entities only if necessary to comply with legal, regulatory, or EU obligations.
Users are advised to avoid providing unnecessary sensitive data (i.e., data revealing racial or ethnic origin, religious, philosophical, or other beliefs, political opinions, trade union membership, health status, or sexual orientation) or judicial data, as their inclusion may result in the deletion of the message.
2) LOCATION AND METHODS OF DATA PROCESSING
The processing related to this site takes place at the aforementioned address and is carried out by the Data Controller, Data Processors, and authorized personnel. Additional processing locations may include the hosting service provider, for maintenance purposes.
Data will be processed confidentially using automated tools and will not be disclosed to unauthorized third parties. Data will not be transferred abroad, including to non-EU countries.
3) PURPOSES, LEGAL BASES, AND DATA RETENTION PERIOD
The collection of personal data from the user is explicit, meaning that the user must accept this policy by voluntarily checking a specific box confirming the reading and acceptance before providing their personal data and consenting to its processing.
Failure to check the acceptance box may result in the inability to process the user's data, leading to the inability to provide services requested by the user while browsing, registering, or performing other site-related actions.
Personal data, unless otherwise specified, will be processed by the Data Controller, Data Processors, and authorized personnel.
Personal data is necessary to access specific site functions and services for the following purposes:
- Site Registration and Business Contact Information: Identification data such as title, first name, last name, full address, email, phone number, tax code, company name, and VAT number (for business customers) are required for account creation and purchases.
- Contact Form Submissions: Users' identification and contact details are required to respond to inquiries.
- Voluntarily Provided Data: Users sending emails to the provided addresses consent to their email and other voluntarily provided details being used for a response.
4) AUTOMATIC DATA COLLECTION PURPOSES
- Access Logs: The site collects access logs for security and monitoring purposes, including IP addresses and access times.
- Abandoned Carts: Data on incomplete transactions may be stored for performance monitoring.
- Browsing Data: Standard technical data such as IP addresses, browser details, and visited pages are collected for statistical and security reasons.
5) COOKIE POLICY
Cookies are small text strings sent to the user's browser by the visited website. More detailed information is available in the site's dedicated Cookie Policy.
Types of cookies used:
- Essential Technical Cookies: Necessary for website functionality, no consent required.
- Functional Cookies: Allow navigation customization (e.g., language settings, selected products).
- Analytical Cookies: Used for aggregated statistical analysis of site usage.
- Third-Party Cookies: May include tracking cookies from external services; consent is required.
Disabling cookies may affect the full functionality of the website.
6) DATA SECURITY MEASURES
Security measures include:
- Data backups to prevent loss;
- Restricted access via passwords;
- HTTPS/SSL encryption;
- Secure hosting infrastructure in Milan, Italy, with advanced monitoring and protection systems.
Users are responsible for maintaining the confidentiality of their account passwords.
7) PERSONAL DATA BREACH NOTIFICATIONS
Under Articles 33 and 34 GDPR, the Data Controller or Processor will notify the appropriate authorities within 72 hours in case of a data breach and inform affected individuals if the breach presents a high risk to their rights.
8) USER RIGHTS
Users have the following rights under GDPR:
- Right to Withdraw Consent (Art. 7)
- Right to Access Personal Data (Art. 15)
- Right to Rectification (Art. 16)
- Right to Erasure ('Right to Be Forgotten') (Art. 17)
- Right to Restrict Processing (Art. 18)
- Right to Data Portability (Art. 20)
- Right to Object (Art. 21)
- Right to Lodge a Complaint (Art. 77-79)
Users can manage their data directly via their account or contact the Data Controller at info@deltaservicedieselengines.com.
Requests will be processed within one month, extendable up to three months for complex cases. Exercising rights is generally free, though exceptions may apply.
9) MINORS
The consent of minors under 16 years old requires parental authorization.
10) POLICY UPDATES
This Privacy Policy may be updated periodically to reflect changes in regulations and jurisprudence. Users are encouraged to check this page regularly.
Last updated: May 2018.