Effective June 27, 2018
For the purposes of the General Data Protection Regulation (GDPR), the data controller is Bioagricert srl Unipersonale whose contact information is available below.
In this Policy we use the term "Designated Countries" to refer to the countries of the European Union (EU), the European Economic Area (EEA) and Switzerland. If you live in Designated Countries, you have a number of important rights that we want you to know. These rights will be indicated with reference to the Designated Countries where applicable.
Data we collect from you
This policy applies to the data we collect:
· On this website.
· In any electronic message between you and this website.
· Offline or by any other means, including any other website operated by the Company or by one of our affiliates and subsidiaries.
This policy does not apply to data collected by:
Any third party, including through any application or content (including advertising) that can be linked or accessed from the website.
What data we collect
We collect data to provide better services to all our users, from remembering user preferences to contact for specific services or opportunities that may interest them. The information we collect and how this information is used depends on how the user uses our services.
We collect and process some or all of the following types of information:
· Information provided by the user by filling in forms or creating an account on the website. This may include information provided at the time of registration to use the website or provided at the time of requesting additional information or services, such as: full name, email address, number telephone number, postal address and IP address. We may also request information when a problem with the website is reported.
· Registrations and copies of correspondence (including e-mail addresses), if the user contacts us.
· Details of all actions that the user performs through the website and the provision of services to the user.
· Details of website visits including, but not limited to, traffic data, location data and other communication data.
If you choose to create an account on our website, you must provide your full name, e-mail address, telephone number, postal address and IP address. We will inform you when this information is collected, if this is necessary.
How we use the data
We may use the information we collect in various ways to provide our service, including:
· Ensure that the content of the website is presented in the most effective way for the user and for his computer and to understand and analyze trends and usage preferences, improve our services and develop new products and services.
· Operate, maintain, improve and provide all the features of our services, provide our services and the information that is requested, answer users' questions and provide support to users regarding our services.
· Inform the user about changes to our services and provide information relevant to the use of the services.
· Provide information or services that are requested by users or that we believe may interest them. The user has the option of choosing not to receive promotional communications.
We will occasionally contact users via email, telephone and/or notices posted on our website. We will send them messages about the availability of our services, security or other problems relating to services. We will also send messages on how to use the services, network updates and promotional messages. Users can contact us at any time using our contacts shown below to change communication preferences. We ask users to take note of the fact that it is not possible to renounce the receipt of service messages from us, including safety and legal notices.
Legal basis for the processing of your data
You have chosen to let us use your data. At any time, you can revoke the consent you provided by contacting us via the addresses below.
We will collect and process your data only where we have legal bases. The legal bases include the consent (where you have given consent), the contract, where the processing is necessary for the execution of a contract (for example to provide the requested services) and legitimate interests.
If you have any questions about the legal basis on which we collect and use your personal information, please contact us using the contact details provided below.
Share your information
We do not share your personal information with advertisers, other companies or individuals outside of Foodchian ID Group, Inc. except in the following cases:
Disclosure for legal obligations/on a legal basis
We may have to share your information when we believe it is required by law or to protect your own or others' rights and security. It is possible that we will have to disclose your data when required by law, in the event of a subpoena, or other legal process or if we believe in good faith that disclosure is reasonably necessary to (1) investigate, prevent or take action regarding suspects or actual illegal activities or to assist government agencies; (2) enforce close agreements with you, (3) investigate and defend against claims or accusations of third parties, (4) protect the security or integrity of our Service (for example by sharing with companies that face similar threats); or (5) exercise or protect the rights and security of the Company, our users, staff. We will inform you about the legal requests to share your personal data, where appropriate, in our opinion, unless it is prohibited by law or a court order or when the request is an emergency. We may dispute these requests when we believe, at our discretion, that the requests are excessive, vague or lacking adequate foundation, but we do not promise to dispute any request.
For external treatment
Merger, acquisition or sale of assets/activities
How we store the data
We adopt industry standard security measures to ensure that all personal data is kept secure, including security measures to prevent personal data from being lost, used or accessed accidentally in an unauthorized manner, for the duration of our use of our services. We limit access to your personal data to those who have a real business need to access it. Those who process your information will do so only in an authorized manner and are subject to the duty of confidentiality.
We also have procedures to deal with any suspected breach of data security. We will inform you and any competent authority of an alleged breach of data security where we are obliged by law to do so.
Unfortunately, the transmission of information via the internet is not completely secure.
Although we will do our best to protect your personal information, we cannot guarantee the security of the data transmitted to the website, therefore each transmission remains at your own risk. Once we receive your information, we will use strict procedures and security features to prevent unauthorized access.
Data transfer to another country
We may store and use your information outside of your country. We process data both within and outside the European Union and rely on authorized mechanisms to legally transfer data across borders. The countries in which we process the data may have different and potentially non-protective laws, i.e. the mandatory laws of our country, but we will use the standard contractual clauses approved by the European Commission regarding the protection of personal data. These clauses are contractual commitments between companies that transfer personal, binding data to protect the privacy and security of the data. These clauses are designed to help safeguard your privacy rights and provide you with solutions in the unlikely event of your personal data being misused.
If your personal information changes, you can contact us to request an update or correction using our contacts. We will try to update the information on personal data within thirty (30) days from the date of the update request, in order to ensure that the information in our possession is as accurate and up-to-date as possible.
Where we keep the data
The data we collect and process as a result of using the services can be transferred to and stored in a country outside the Designated Countries. They can also be processed by our employees who work outside of Designated Countries and work for us. Such employees may be involved, among other things, in the fulfillment of your requests, in the processing of your payment data and in the provision of support services. By submitting your personal information and accessing this website, you accept the transfer, archiving or processing.
As far as we keep your data
We keep your information for as long as it is necessary to keep it for legitimate business or legal purposes. Some data can be deleted whenever you want, some data is automatically deleted and some data is kept for longer periods of time when needed. We try to ensure that our services protect information from accidental or harmful deletion. For this reason, there may be delays between deleting something and deleting copies from our active and backup systems.
Access, correct, delete your data
· Request access to your data that is in our possession
· Correct your information that we hold
· Delete your data that is in our possession
· Export a copy of your data that we hold if you wish to transfer it to an entity outside the Company.
There are other ways to check the data we collect, including:
Browser settings: for example, you can configure the browser to indicate when a cookie is set in your browser. You can also configure your browser to block all cookies from a specific domain or from all domains. But keep in mind that our services can rely on cookies to work properly and for other purposes, including remembering user preferences.
If you live in Designated Countries, you benefit from a number of important rights that we want you to know. The rights available to you depend on the reason for which we process your data:
· Access and request copies of your personal data in our possession
· Request the correction of any errors in your personal data in our possession
· Request the deletion of your personal data in certain situations and as permitted by law
· Request the transfer of your personal data and receive your personal data that you provided to us, in a structured format, commonly used and readable by a device
· Oppose the processing of your personal data at any time
· Oppose decisions made by automated means that produce legal effects that affect you or affect you
· Oppose in certain situations the processing of personal data on our part
· Limit the processing of personal data by us in certain circumstances
Third Party Websites
Compliance and cooperation with the competent authorities
We periodically review this Policy and ensure that your information is processed in accordance with this Policy. We trust we can resolve any of your questions or concerns regarding the use of your data by us.
When we receive formal written complaints, we respond by contacting the person who submitted the complaint. We work with the relevant regulatory authorities, including local data protection authorities, to resolve any complaints regarding data transfers that we cannot resolve directly.
If you reside in Designated Countries, you can file a complaint regarding the processing of your personal data to a supervisory authority in the Member State where you reside, where your work takes place or where the alleged violation took place.
IP address and cookies
We may collect information about your computer, including, where available, IP address, operating system and browser type, for system administration, customer support and to collect aggregate information for internal reporting purposes.
The cookies we use are "analytical" cookies.
Some of the common uses of our cookies are the following:
· Recognize and count the number of visitors and see how visitors move around the site when they use it. This helps us to improve the way our website works, for example by ensuring that users find what they are looking for easily.
· Identify and authenticate a user on different pages of our website, on our website, in a session or in different sessions. In this way the user does not need to provide a password on every page he visits;
· Be able to recover previously stored user data, such as information that the user has previously sent to the website, in order to facilitate the re-use of such information by the user.
The cookies and the services we use have the following purposes: Hosting and backend infrastructure, Statistics, Contact, Registration and authentication.
Hosting and backend infrastructure
This type of service has the function of hosting data and files that allow our Website to function, allow its distribution and provide an infrastructure ready for use to provide specific features of our Website.
Cookie Consent is a service to memorize the state of consent to the acceptance of cookies provided by the user for the current domain.
Personal data collected: data communicated during use of the service.
Place of processing: Ireland
Statistics for data collection
The services contained in this section allow the Data Controller to monitor and analyze traffic data and are used to keep track of user behavior.
Google Analytics (Google Inc.)
Google Analytics is a web analysis service provided by Google Inc. ("Google"). Google uses the personal data collected for the purpose of tracking and examining the use of our website, compiling reports and sharing them with other services developed by Google.
Google may use personal data to contextualize and personalize the ads of its own advertising network.
Personal data collected: Cookies and usage data.
Subject adherent to the Privacy Shield.
ShinyStat Free (Triboo Data Analytics S.R.L.)
ShynyStat Free is a statistical service provided by Triboo Data Analytics S.R.L.
This statistics service makes the user's IP address anonymous.
Personal data collected: Cookies and usage data.
Subscribe to mailing list or newsletter
By registering to the mailing list or to the newsletter, the user's email address is automatically inserted into a list of contacts to which email messages containing information relating to the company's activity can be transmitted. The user's email address may also be added to this list as a result of registering with this website or after making a purchase.
Personal data collected: Cookies, usage data, IP, Name and Surname, Email, Sector.
Registration and authentication
By registering or authenticating, the user allows our Website to identify him and give him access to dedicated services requested.
The registration and authentication service could be provided with the help of third parties. If this occurs, our Website may access certain data held by the third-party service used for registration or identification.
The user registers by filling out the registration form and providing his personal data directly to the Website.
Personal data collected: Cookies, usage data, IP, Name and Surname, Company name, Sector, Email, Type (Certified company / Inspector), BAC Code / Inspector.
Additional information on personal data
User identification via universal unique identifier (UUID)
Our Website can track Users by saving the so-called "universal unique identifier" (UUID) for statistical analysis purposes or to store Users' preferences.
Place of processing: Italy
Manage cookies for all other possible services used
To manage these cookies: YourOnlineChoices
Management of cookies through browser configuration
In addition to what is indicated in this document, the user can manage preferences for Cookies directly from within his browser and prevent - for example - that third parties can install them.
Through the browser preferences it is also possible to delete the Cookies installed in the past, including the Cookie in which the consent to the installation of Cookies by this website is eventually saved.
It is important to note that by disabling all cookies, the operation of our website may be compromised.
You can find information on how to manage cookies in the browser at the following addresses:
Bioagricert srl Unipersonale
Via dei Macabraccia 8
40033 Casalecchio di Reno (BO)
Tel. + 39 051 562158
Last update: 10/07/2019