Privacy Policy

Privacy Policy of www.ferrantinet.com

For information regarding the collection of your personal data, the purposes and the entities with which the data is shared, please contact the Data Controller.

Data Controller

Ferranti srl unipersonale
Via Vicinato 43
Frazione Fratta
06036 Montefalco (Perugia)
Email address of the Data Controller: [email protected]

Types of Data collected

The Data Controller does not provide a list of types of Personal Data collected.
Complete details on each type of Personal Data collected are provided in the dedicated sections of this privacy policy or through specific information texts displayed prior to the collection of the Data.
Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically during the use of this Application.
Unless otherwise specified, all Data requested by this Application is mandatory. If the User refuses to provide the Data, it may be impossible for this Application to provide the Service. In cases where this Application specifically states that some Data is optional, Users are free to refrain from providing such Data without affecting the availability of the Service or its operation.
Users who have doubts about which Data is mandatory are encouraged to contact the Data Controller.
The possible use of Cookies - or other tracking tools - by this Application or by the owners of third-party services used by this Application aims to provide the Service requested by the User, in addition to the other purposes described in this document and in the Cookie Policy.
The User assumes responsibility for the Personal Data of third parties obtained, published, or shared through this Application.

Methods and place of processing the collected Data

Methods of processing
The Data Controller takes appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of the Personal Data.
The processing is carried out using IT and/or telematic tools, following organizational procedures and methods strictly related to the purposes indicated. In addition to the Data Controller, in some cases, other parties involved in the operation of this Application (administrative, sales, marketing, legal, system administration personnel) or external parties (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communication agencies) may have access to the Data, if necessary, as Data Processors by the Data Controller. The updated list of these parties can be requested from the Data Controller at any time.

Place
The Data is processed at the Data Controller’s operational offices and in any other places where the parties involved in the processing are located. For further information, please contact the Data Controller.
The User's Personal Data may be transferred to a country different from the one in which the User is located. To obtain further information about the place of processing, the User can refer to the section regarding the details on the processing of Personal Data.

Retention period
Unless otherwise specified in this document, the Personal Data is processed and stored for as long as required by the purpose for which it has been collected and may be kept for a longer period due to legal obligations or based on the Users’ consent.

Cookie Policy

This Application uses tracking tools. To learn more, Users can consult the Cookie Policy.

Additional information for users

Legal basis for processing
The Data Controller processes Personal Data relating to the User if one of the following conditions applies:

  • The User has given their consent for one or more specific purposes.
  • Processing is necessary for the performance of a contract with the User and/or for any pre-contractual obligations thereof.
  • Processing is necessary for compliance with a legal obligation to which the Data Controller is subject.
  • Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Data Controller.
  • Processing is necessary for the purposes of the legitimate interests pursued by the Data Controller or by a third party.

It is always possible to request clarification from the Data Controller regarding the legal basis for each processing operation and, in particular, to specify whether the processing is based on legal requirements, a contract, or necessary to enter into a contract.

Additional information on the retention period
Unless otherwise specified in this document, the Personal Data is processed and stored for as long as required by the purpose for which it has been collected and may be kept for a longer period due to legal obligations or based on the Users’ consent.

Thus:

  • Personal Data collected for purposes related to the performance of a contract between the Data Controller and the User will be retained until such contract has been fully performed.
  • Personal Data collected for the purposes of the legitimate interests of the Data Controller will be retained as long as such interests are met. The User may obtain further information regarding the legitimate interests pursued by the Data Controller in the relevant sections of this document or by contacting the Data Controller.

When the processing is based on the User's consent, the Data Controller may retain the Personal Data longer until such consent is revoked. Furthermore, the Data Controller may be required to retain Personal Data for a longer period to comply with a legal obligation or by order of an authority.

Upon the expiration of the retention period, the Personal Data will be deleted. Therefore, after this period, the rights of access, deletion, rectification, and data portability cannot be exercised.

Users' rights based on the General Data Protection Regulation (GDPR)
Users may exercise certain rights concerning their Data processed by the Data Controller.

In particular, within the limits established by the law, Users have the right to:

  • Revoke their consent at any time. The User may withdraw consent previously given for the processing of their Personal Data.
  • Object to the processing of their Data. The User can object to the processing of their Data when it is carried out on a legal basis other than consent.
  • Access their Data. Users have the right to obtain information regarding their Data processed by the Data Controller, specific aspects of the processing, and receive a copy of the Data processed.
  • Verify and request rectification. The User can verify the accuracy of their Data and request its updating or correction.
  • Obtain the restriction of processing. Users have the right to request the limitation of the processing of their Data. In this case, the Data Controller will not process the Data for any purpose other than storing it.
  • Obtain the deletion or removal of their Personal Data. The User can request the deletion of their Data from the Data Controller.
  • Receive their Data or have it transferred to another controller. The User has the right to receive their Data in a structured, commonly used, and machine-readable format and, where technically feasible, to have it transferred to another controller without hindrance.
  • Lodge a complaint. The User may lodge a complaint with the competent data protection authority or take legal action.

Users have the right to obtain information regarding the legal basis for the transfer of Data to a country outside the European Union or to any international organization governed by public international law or set up by two or more countries, such as the UN, and regarding the security measures adopted by the Data Controller to safeguard their Data.

Details on the right to object

When Personal Data is processed in the public interest, in the exercise of official authority vested in the Data Controller, or for the legitimate interests pursued by the Data Controller, Users may object to such processing by providing a reason related to their particular situation.
Users must be aware that, should their Data be processed for direct marketing purposes, they can object to this processing at any time without providing any justification. To find out whether the Data Controller is processing Personal Data for direct marketing purposes, Users can refer to the relevant sections of this document.

How to exercise rights

Any requests to exercise the User’s rights can be directed to the Data Controller using the contact details provided in this document. These requests are free of charge and will be addressed by the Data Controller as quickly as possible, in any event within one month, providing the User with all the information required by law. Any rectifications, deletions, or restrictions on processing will be communicated by the Data Controller to each recipient, if applicable, to whom the Personal Data has been disclosed unless this proves impossible or involves disproportionate effort. The Data Controller will inform the User of these recipients upon request.

Further information for Users in Switzerland

This section applies to Users in Switzerland and, for these Users, it supersedes any other conflicting or diverging information contained in the privacy policy.

Further details on the categories of Data processed, the purposes of the processing, the categories of recipients of personal data, if any, the retention period, and other information about personal data can be found in the section entitled "Detailed information on the processing of Personal Data" in this document.

The rights of users under the Swiss Federal Data Protection Act

Users may exercise certain rights concerning their data within the limits of the law, including:

  • The right to access personal data.
  • The right to object to the processing of their Personal Data (this also allows Users to request restrictions on the processing of personal data, the deletion or destruction of personal data, or the prohibition of disclosure of personal data to third parties).
  • The right to receive their Personal Data and transfer it to another controller (data portability).
  • The right to request the correction of inaccurate Personal Data.

How to exercise these rights

Any requests to exercise the User's rights can be directed to the Data Controller using the contact details provided in this document. These requests are free of charge, and the Data Controller will respond as quickly as possible, providing the information required by law.

Further information for Users in Brazil

This section of the document complements the information contained in the rest of the privacy policy and is provided by the entity that manages this Application and, if applicable, its parent company, subsidiaries, and affiliates (hereinafter collectively referred to as "we," "our," or "us").
This section applies to all Users in Brazil (hereinafter referred to as "you," "your," or "yours"), pursuant to the "Lei Geral de Proteção de Dados," and for these Users, it overrides any other conflicting or divergent information contained in this privacy policy.
In this part of the document, the term "personal information" is used as defined by the LGPD.

Legal bases under which we process your personal information

We process your personal information only when one of the following legal bases applies:

  • Your consent to the processing activities in question.
  • Compliance with legal obligations that we are required to fulfill.
  • Execution of rules stipulated by laws, regulations, contracts, agreements, or other similar legal instruments.
  • Research studies conducted by research entities, preferably performed on anonymized personal information.
  • Performance of a contract and related pre-contractual obligations when you are a party to that contract.
  • The exercise of our rights in judicial, administrative, or arbitration proceedings.
  • Protection of your or a third party's physical safety.
  • Protection of health – within procedures implemented by healthcare entities or professionals.
  • Our legitimate interest, provided that your fundamental rights and freedoms do not outweigh such interests.
  • Credit protection.

For more information on legal bases, you can contact us at any time using the contact details provided in this document.

Categories of personal information processed

To find out which categories of personal information are processed, please refer to the "Detailed information on the processing of Personal Data" section of this document.

Why we process your personal information

To understand why we process your personal information, refer to the sections "Detailed information on the processing of Personal Data" and "Purposes of the Data Processing" in this document.

Your privacy rights in Brazil, how to submit a request, and how we will handle it

Your privacy rights in Brazil

You have the right to:

  • Obtain confirmation of whether we are processing your personal information.
  • Access your personal information.
  • Request the correction of incomplete, inaccurate, or outdated personal information.
  • Request anonymization, blocking, or deletion of unnecessary or excessive personal information, or data processed in violation of the LGPD.
  • Obtain information about the possibility of providing or refusing consent and the consequences of such decisions.
  • Obtain information regarding the third parties with whom we share your personal information.
  • Request the portability of your personal information (except anonymized data) to other service providers or product suppliers, provided that our commercial and industrial secrets are safeguarded.
  • Request the deletion of personal information processed based on your consent, unless one or more exceptions provided for in Article 16 of the LGPD apply.
  • Revoke your consent at any time.
  • File a complaint regarding your personal information with the ANPD (National Data Protection Authority) or a consumer protection agency.
  • Object to processing in cases where such processing does not comply with legal provisions.
  • Request clear and adequate information regarding the criteria and procedures used in automated decision-making processes.
  • Request a review of decisions that harm your interests, made exclusively based on automated processing of your personal information. These include decisions to define your personal, professional, consumer, or credit profile, or other aspects of your personality.

You will never be discriminated against or treated unfavorably as a result of exercising your rights.

How to submit a request

You can submit a request to exercise your rights free of charge at any time by using the contact details provided in this document or through your legal representative.

How and when we will handle your request

We will do our best to respond to your request as quickly as possible.
In any case, if we are unable to do so, we will ensure to inform you of the factual or legal reasons that prevent us from immediately fulfilling or following up on your request. If your personal information is not processed by us, and we are able to do so, we will indicate the person or entity to whom you should direct your request.

If you decide to submit a request for access or confirmation of the existence of processing of personal information, please specify whether you prefer to receive your personal information in electronic or paper format.
Also, let us know if you want an immediate response, in which case you will receive a simplified response, or if you require complete information.
In the latter case, we will respond within 15 days from the time of your request, providing all the information regarding the origin of your personal information, confirmation of the existence or non-existence of personal information concerning you, all the criteria used for the processing, and the purposes of such processing, while safeguarding our commercial and industrial secrets.

If you decide to submit a request for correction, deletion, anonymization, or blocking of personal information, we will ensure that the other parties with whom we have shared your personal information are immediately informed of your request so that they can also comply with it – except in cases where such communication proves impossible or overly burdensome for us.

Transfer of personal information outside of Brazil in legally permissible cases

We may transfer your personal information outside of Brazil in the following cases:

  • When the transfer is necessary for international legal cooperation between intelligence services, investigative bodies, and criminal prosecution agencies, as provided by international law.
  • When the transfer is necessary to protect your life or physical safety or that of a third party.
  • When the transfer is authorized by the ANPD.
  • When the transfer is based on an international cooperation agreement.
  • When the transfer is necessary for the exercise of public authority or the fulfillment of a public service.
  • When the transfer is necessary for the performance of a legal obligation, the execution of a contract, and related pre-contractual obligations, or for the normal exercise of rights in judicial, administrative, or arbitration proceedings.

Further information for Users in the United States

This part of the document integrates with and supplements the information contained in the rest of the privacy policy and is provided by the business running this Application and, if the case may be, its parent, subsidiaries, and affiliates (for the purposes of this section referred to collectively as “we”, “us”, “our”).

The information contained in this section applies to all Users (Users are referred to below, simply as “you”, “your”, “yours”) who are residents in the following states: California, Virginia, Colorado, Connecticut, Utah, Texas, Oregon, and Montana.

For such Users, this information supersedes any other possibly divergent or conflicting provisions contained in the privacy policy.

This part of the document uses the term Personal Information.

Notice at collection

The following Notice at collection provides you with timely notice about the categories of Personal Information collected or disclosed in the past 12 months so that you can exercise meaningful control over our use of that Information.

While such categorization of Personal Information is mainly based on California privacy laws, it can also be helpful for anyone who is not a California resident to get a general idea of what types of Personal Information are collected.

We won’t process your Information for unexpected purposes, or for purposes that are not reasonably necessary to and compatible with the purposes originally disclosed, without your consent.

What are the sources of the Personal Information we collect?

We collect the above-mentioned categories of Personal Information, either directly or indirectly, from you when you use this Application.

For example, you directly provide your Personal Information when you submit requests via any forms on this Application. You also provide Personal Information indirectly when you navigate this Application, as Personal Information about you is automatically observed and collected.

Your privacy rights under US state laws

You may exercise certain rights regarding your Personal Information. In particular, to the extent permitted by applicable law, you have:

  • The right to access Personal Information: the right to know. You have the right to request that we confirm whether or not we are processing your Personal Information. You also have the right to access such Personal Information;
  • The right to correct inaccurate Personal Information. You have the right to request that we correct any inaccurate Personal Information we maintain about you;
  • The right to request the deletion of your Personal Information. You have the right to request that we delete any of your Personal Information;
  • The right to obtain a copy of your Personal Information. We will provide your Personal Information in a portable and usable format that allows you to transfer data easily to another entity—provided that this is technically feasible;
  • The right to opt out from the Sale of your Personal Information; We will not discriminate against you for exercising your privacy rights;
  • The right to non-discrimination.

Additional rights for Users residing in California

In addition to the rights listed above common to all Users in the United States, as a User residing in California, you have:

  • The right to opt out of the Sharing of your Personal Information for cross-context behavioral advertising;
  • The right to request to limit our use or disclosure of your Sensitive Personal Information to only that which is necessary to perform the services or provide the goods, as is reasonably expected by an average consumer. Please note that certain exceptions outlined in the law may apply, such as when the collection and processing of Sensitive Personal Information is necessary to verify or maintain the quality or safety of our service.

Additional rights for Users residing in Virginia, Colorado, Connecticut, Texas, Oregon, and Montana

In addition to the rights listed above common to all Users in the United States, as a User residing in Virginia, Colorado, Connecticut, Texas, and Oregon, you have:

  • The right to opt out of the processing of your personal information for Targeted Advertising or profiling in furtherance of decisions that produce legal or similarly significant effects concerning you;
  • The right to freely give, deny, or withdraw your consent for the processing of your Sensitive Personal Information. Please note that certain exceptions outlined in the law may apply, such as when the collection and processing of Sensitive Personal Information is necessary for the provision of a product or service specifically requested by the consumer.

Additional rights for Users residing in Utah

In addition to the rights listed above common to all Users in the United States, as a User residing in Utah, you have:

  • The right to opt out of the processing of your Personal Information for Targeted Advertising;
  • The right to opt out of the processing of your Sensitive Personal Information. Please note that certain exceptions outlined in the law may apply, such as when the collection and processing of Sensitive Personal Information is necessary for the provision of a product or service specifically requested by the consumer.

How to exercise your privacy rights under US state laws

To exercise the rights described above, you need to submit your request to us by contacting us via the contact details provided in this document.

For us to respond to your request, we must know who you are. We will not respond to any request if we are unable to verify your identity and therefore confirm the Personal Information in our possession relates to you. You are not required to create an account with us to submit your request. We will use any Personal Information collected from you in connection with the verification of your request solely for verification and shall not further disclose the Personal Information, retain it longer than necessary for purposes of verification, or use it for unrelated purposes.

If you are an adult, you can make a request on behalf of a child under your parental authority.

How to exercise your rights to opt out

In addition to what is stated above, to exercise your right to opt out of Sale or Sharing and Targeted Advertising, you can also use the privacy choices link provided on this Application.

If you want to submit requests to opt out of Sale or Sharing and Targeted Advertising activities via a user-enabled global privacy control, such as, for example, the Global Privacy Control, you are free to do so, and we will abide by such request in a frictionless manner.

How and when we are expected to handle your request

We will respond to your request without undue delay, but in all cases within the timeframe required by applicable law. Should we need more time, we will explain to you the reasons why and how much more time we need.

Should we deny your request, we will explain to you the reasons behind our denial (where envisaged by applicable law, you may then contact the relevant authority to submit a complaint).

We do not charge a fee to process or respond to your request unless such request is manifestly unfounded or excessive and in all other cases where it is permitted by the applicable law. In such cases, we may charge a reasonable fee or refuse to act on the request. In either case, we will communicate our choices and explain the reasons behind them.

Further information on the processing

Defense in court

The User’s Personal Data may be used by the Data Controller in court or in the preparatory stages leading to its possible establishment for the defense against abuses in the use of this Application or the related Services by the User.

The User declares to be aware that the Data Controller may be required to reveal Personal Data upon request of public authorities.

Specific information

At the User's request, in addition to the information contained in this privacy policy, this Application may provide the User with additional and contextual notices regarding specific Services or the collection and processing of Personal Data.

System logs and maintenance

For operational and maintenance purposes, this Application and any third-party services it uses may collect system logs, which are files that record interactions and may also contain Personal Data, such as the User's IP address.

Information not contained in this policy

More details concerning the collection or processing of Personal Data may be requested from the Data Controller at any time using the contact information provided.

Changes to this privacy policy

The Data Controller reserves the right to make changes to this privacy policy at any time by notifying Users on this page and, if possible, on this Application as well as, where technically and legally feasible, by sending a notification to Users through any contact information in its possession. Therefore, please consult this page frequently, referring to the date of the last modification indicated at the bottom.