Privacy

PRIVACY & COOKIE DISCLAIMER

in accordance with art. 13 Reg. UE 2016/679 (di seguito “GDPR”)

 

  1. General information

This disclaimer allows you to know how Newlat Food S.p.A. will process the Personal Data, both those conferred directly by the User (such as name, surname, postal and e-mail address, age, date of birth, sex, etc.), and those collected in a different way by Newlat Food SpA, through the website www.newlat.it and the related commitments undertaken in this regard by the Company.

Newlat Food S.p.A. can collect and process the User's Personal Data when they visit the Website and use the services and features on the Website.

In the sections of the Website where the User's Personal Data is collected, a specific Disclaimer is generally published in accordance with art. 13 and 15 of EU Reg. 2016/679.

Should it be requested by the EU Reg. 2016/679, the User's agreement will be required before proceeding with the processing of Personal Data.

 

  1. Data Controller

The Data Controller is Newlat Food S.p.A. (VAT number 00183410653), in person of the legal representative, Dott. Stefano Cometto, with registered office in Reggio Emilia (RE), Via J. F. Kennedy n. 16, whose contacts are: email privacy@newlat.it, tel. 0039 0522 7901.

Newlat Food S.p.A. will process the Personal Data in full compliance with the GDPR and the national legislation on the protection of personal data (hereinafter "Privacy Policy").

 

  1. Type of processed data

The visit and consultation of the Website do not generally involve the collection and processing of the User's Personal Data, except for the Navigation Data and Cookies, as specified below. In addition to the Navigation Data, Personal Data voluntarily provided by the User can be processed when he interacts with the functionality of the Website or asks to use the services offered on the Website.

In compliance with GDPR, Newlat Food S.p.A. could also collect the User's Personal Data from third parties in the performance of its business.

  1. Cookie

The site uses cookies.

By using the Website, you agree to the use of cookies in accordance with this Policy.

Cookies are small files stored on the hard disk of the User's computer.

There are two macro-categories of cookies: technical Cookies and profiling Cookies.

Technical cookies are necessary for the proper functioning of a website and to allow user navigation; without them the user may not be able to view the pages correctly or use some services.

Profiling Cookies create User’s profiles in order to send advertising messages in line with the preferences expressed by the user during navigation.

Cookies can also be classified as:

- Session Cookies, which are deleted immediately when the browser is closed;

- Persistent cookies, which remain within the browser for a certain period of time and are used, for example, to recognize the device that connects to a site simplifying authentication operations for the user;

- Own Cookies, generated and managed directly by the manager of the website on which the user is browsing;

- Third Party Cookies, generated and managed by parties other than the operator of the website on which the user is browsing.

 

  1. Cookies used on the Website

The Website uses the following types of cookies:

  1. Session, Persistent and Own cookies, necessary to allow navigation on the Site, for purposes of internal security and system administration;
  2. Session, Persistent and Third Party cookies, necessary to allow the user to use multimedia elements present on the Site, such as images and videos;
  3. Persistent and Third Party Cookies, used by the Site to send statistical information to the Google Analytics system, through which Newlat Food S.p.A. can perform statistical analysis of accesses / visits to the site.

The cookies used exclusively pursue statistical purposes and collect information in aggregate form.

Through a couple of cookies, one of which Persistent and the other of Session (with expiration at the closing of the browser), Google Analytics also saves a register with the start times of the visit to the Site and exit from it.

You can prevent Google from tracking data through cookies and the subsequent processing of data by downloading and installing the browser plug-in from the following address:

http://tools.google.com/dlpage/gaoptout?hl=it

  1. Persistent and Third-Party Cookies, used by the Site to contain links to other sites (such as third-party websites).

Newlat Food S.p.A. does not make any access or control over Cookies, Web Beacons and other tracking technologies of the User that could be used by third party sites to which the User can access from the Site; Newlat Food S.p.A. does not carry out any control over the contents and materials published by or obtained through third-party websites, nor on the relative methods of processing of the User's Personal Data and expressly disclaims any related liability for such eventualities.

The User is obliged to check the Privacy Policy of third party sites accessed through the Website and to inquire about the conditions applicable to the processing of their Personal Data.

This Privacy Policy applies only to the Site as defined above.

 

  1. How to disable cookies in browsers

It is possible to deactivate cookies on the websites by downloading special software such as Ghostery (https://www.ghostery.com) for the browser in use and disabling the use of individual Cookies.

Or you can activate the "anonymous browsing" mode: it is a function that allows you to navigate without leaving a trace in the browser of the Navigation Data.

Alternatively, you can disable / delete cookies by accessing the browser configuration panel.

 

  1. Retention of Personal Data

Personal Data is stored through computer systems owned by Newlat Food S.p.A. and are only handled by specifically authorized staff, including personnel assigned to carry out extraordinary maintenance operations.

In accordance with the GDPR, Personal Data is kept and stored for 5 years

 

  1. Purposes and modalities of processing Personal Data

Newlat Food S.p.A. may process the User's common and sensitive Personal Data for the following purposes: use by Users of services and functionalities present on the Site, management of requests and reports from its Users, sending of newsletters, management of applications received through the Site, etc.

Moreover, with the additional and specific optional agreement of the User, Newlat Food S.p.A. may process Personal Data for marketing purposes, that is to send to the User promotional material and / or commercial communications relating to the Company's services, at the addresses indicated, either through traditional methods (such as, paper mail, phone calls with operator, etc.) and / or through automated methods (such as, internet communications, fax, e-mail, sms, applications for mobile devices such as smartphones and tablets, social network accounts, phone calls with automatic operator, etc.).

Personal Data is processed both in paper and electronic form and placed in the company information system in full compliance with the GDPR, including security and confidentiality profiles and based on principles of correctness and lawfulness of processing.

 

  1. Security and quality of Personal Data

Newlat Food S.p.A. commits to protect the security of the User's Personal Data and to comply with the security provisions of the applicable legislation in order to avoid data loss, illegitimate or illegal use of data and unauthorized access to them.

Furthermore, the information systems and computer programs used by Newlat Food S.p.A. are configured in such a way as to minimize the use of personal data and identifiers; these data are processed only for the achievement of the specific purposes from time to time pursued.

Newlat Food S.p.A. uses multiple advanced security technologies and procedures to promote the protection of personal data of users; for example, Personal Data is stored on secure servers, located in places with safe and controlled access.

The User can help Newlat Food S.p.A. to update and maintain their Personal Data by communicating any changes related to their address, their qualification, contact information, etc.

 

  1. Field of communication and access of Personal Data

The User's Personal Data may be disclosed to:

- all the subjects to whom the right of access to such data is recognized by virtue of regulatory provisions;

- to our collaborators, employees, as part of their duties;

- to all those natural and/or legal persons, public and/or private when the communication is necessary or functional to the performance of our activity and in the manner and for the purposes outlined above.

 

  1. Transfer of non-EU data

With regards to any transfer of Data to Third Countries, the Owner informs that the processing will be carried out according to one of the methods permitted by applicable law, such as the agreement of the interested party, the adoption of Standard Clauses approved by the European Commission, the selection of subjects adhering to international programs for the free circulation of data (eg EU-USA Privacy Shield) or operating in countries considered safe by the European Commission.

It is possible to have more information, upon request, from the Owner to the above contacts.

 

  1. Nature of provision of personal data

The provision of some Personal Data by the User is mandatory to allow Newlat Food S.p.A. to manage communications, requests received by the User or to contact the User to follow up on his request.

This type of data is marked with an asterisk symbol [*] and in this case the conferment is mandatory to allow Newlat Food S.p.A. to comply with the request that, in default, can not be processed.

On the contrary, the collection of other data not marked with an asterisk is optional: failure to provide data will not entail any consequences for the User.

The provision of Personal Data by the User for marketing purposes, as specified in the section "Purposes and methods of processing" is optional and the refusal to provide them will have no consequence.

The consensus given for marketing purposes is extended to the sending of communications carried out through automated and traditional methods and / or contact means, as exemplified above.

 

  1. Rights of the Person concerned

13.1 Art. 15 (Right of access), Art. 16 (Right of rectification) of EU Reg. 2016/679

The Person concerned has the right to obtain from the Data Controller the confirmation that personal data is being processed or not, and in this case to obtain access to the Personal Data and the following information:

  1. the purposes of the processing;
  2. the categories of Personal Data in question;
  3. the recipients or categories of recipients to whom the Personal Data have been or will be communicated, in particular if recipients of third countries or international organizations;
  4. the retention period of the Personal Data provided or, if not possible, the criteria used to determine this period;
  5. the existence of the right of the interested party to request the Data Controller to rectify or delete personal data or limit the processing of personal data concerning him or to oppose their processing;
  6. the right to lodge a complaint with a supervisory authority;
  7. the existence of an automated decision-making process, including profiling and, at least in such cases, significant information on the logic used, as well as the importance and expected consequences of such processing for the data subject.

 

13.2 Art. 17 (Right to erasure) of EU Reg. 2016/679

The Person concerned has the right to obtain from the Data Controller the cancellation of the Personal Data concerning him without undue delay and the Data Controller is obliged to cancel the Personal Data without undue delay if one of the following reasons exists:

  1. Personal Data are no longer necessary for the purposes for which they were collected or otherwise processed;
  2. the Person concerned revokes the consensus on which the treatment is based in compliance with art. 6, paragraph 1, letter a) or art. 9, paragraph 2, letter a) of EU Reg. 2016/679 and if there is no other legal basis for the treatment;
  3. the interested party opposes the treatment pursuant to art. 21, paragraph 1 and there is no legitimate prevalent reason to proceed with the processing, or opposes the treatment pursuant to art. 21, paragraph 2 of EU Reg. 2016/679;
  4. Personal Data has been processed unlawfully;
  5. Personal Data must be deleted to fulfill a legal obligation provided for by the law of the Union or of the Member State to which the Data Controller is subject;
  6. Personal Data have been collected in relation to the offer of information society services pursuant to art. 8, paragraph 1 of EU Reg. 2016/679.

 

13.3 Article 18 (Right of processing limitation) of EU Reg. 2016/679

The Person concerned has the right to obtain from the Data Controller the limitation of processing when one of the following hypotheses occurs:

  1. the interested party contests the accuracy of the Personal Data, for the period necessary for the Data Controller to verify the accuracy of such Personal Data;
  2. the processing is illegal and the Person concerned takes position against the cancellation of Personal Data and asks instead that its use is limited;
  3. although the Data Controller no longer needs it for processing, Personal Data is necessary for the Person concerned to ascertain, exercise or defend a right in court;
  4. the Person concerned has opposed the processing pursuant to art. 21, paragraph 1 of Reg. EU 2016/679, waiting for verification of the possible prevalence of the legitimate reasons of the Data Controller with respect to those of the Person concerned.

 

13.4 Art.20 (Right to data portability) of EU Reg. 2016/679

The Person concerned has the right to receive, in a structured format, customary and readable by automatic device, the Personal Data concerning him supplied to a Data Controller and has the right to transmit such data to another data controller without impediments from part of the data controller.

 

  1. Withdrawal of consent to the processing

The Person concerned has the right to revoke the consent to the processing of his Personal Data by sending a registered letter to the following address: Newlat Food S.p.A., Via J. F. Kennedy n. 16, Reggio Emilia (RE), accompanied by a photocopy of his identity document, with the following text: <<withdrawal of consent to the processing of all my personal data>>.

At the end of this operation, your Personal Data will be removed from the archives as soon as possible.

If you wish to have more information on the processing of your Personal Data or exercise the rights referred to in paragraph 7 above, the Person concerned may send a registered letter to the following address: Newlat Food S.p.A., Via J. F. Kennedy n. 16, Reggio Emilia (RE).

Before being able to provide or modify any information, it may be necessary to verify the identity of the Person concerned and answer some questions.

An answer will be provided as soon as possible.

PRIVACY & COOKIE DISCLAIMER - Customers

Pursuant to art. 13 EU Regulation 2016/679 (hereafter "GDPR")

 

  1. General information

This disclaimer allows you to know how Newlat Food S.p.A. will process the Personal Data, both those conferred directly by the User (such as name, surname, postal and e-mail address, age, date of birth, sex, etc.).

 

  1. Data Controller

The Data Controller is Newlat Food S.p.A. (VAT number 00183410653), in person of the legal representative, Dott. Stefano Cometto, with registered office in Reggio Emilia (RE), Via J. F. Kennedy n. 16, whose contacts are: email privacy@newlat.it, tel. 0039 0522 7901.

Newlat Food S.p.A. will process the Personal Data in full compliance with the GDPR and the national legislation on the protection of personal data (hereinafter "Privacy Policy").

 

  1. Type of Data processed

The Data Controller will process your personal data, collected within the scope of the contract and/or for the purpose of the conclusion of the contract, including, by way of example, name, surname, mobile phone number, e-mail address and in general your contact details as the Customer's contact person.

 

  1. Retention of Personal Data

Your Personal Data will be kept only for the time necessary for the purposes for which they are collected, respecting the principle of minimization as per art. 5, paragraph 1, letter c) of the GDPR.

The Data Controller may retain some data even after the termination of the contractual relationship, for the time necessary to fulfill contractual and legal obligations.

Further information is available from the Data Controller or at privacy@newlat.com.

 

  1. Purposes and methods of processing Personal Data

Your Personal Data will be processed for the following purposes:

  1. a) execution of the contract and/or pre-contractual measures, pursuant to art. 6, paragraph 1, lett. b) of the GDPR;
  2. b) comply with any legal obligations to which the Data Controller is subject, pursuant to art. 6, paragraph 1, lett. c) of the GDPR;
  3. c) in the event that it is necessary to ascertain, exercise or defend a right in court, for the pursuit of the legitimate interest that the Controller has found to exist on the basis of the balancing of interests made, pursuant to art. 6, paragraph 1, lett. f) and of the art. 9, paragraph 2, lett. f) of the GDPR.

In all the cases illustrated above, the Owner has no obligation to acquire any consent from the Customer. In fact, all the above-mentioned treatments pursue primary purposes for which article 6 of the GDPR excludes the need to acquire a specific agreement of the Person concerned, since the legal bases of legitimacy of the treatment are represented - depending on the case - by the Contract of services and / or supply, from the obligation to comply with the law, from the need to execute measures requested by the interested party. In the case of actions to assert or defend a right in court, the legal basis of the processing is represented by the legitimate interest of the Data .

 

  1. Scope of communication and access of Personal Data

Your Personal Data may be shared with:

- natural persons authorized by the Data Controller, pursuant to art. 29 GDPR, due to the performance of their job duties (such as employees and system administrators, etc.);

- service providers (such as consultants, lenders, etc.) who typically act as data controllers pursuant to art. 28 of the GDPR;

- subjects, bodies or authorities that are obliged to communicate their personal data in accordance with the provisions of law or orders of the authorities.

The complete and updated list of data recipients can be requested from the Data Controller, at the addresses indicated above.

 

  1. Diffusion: Your personal data will not be disclosed in any way.

 

  1. Transfer of extra EU data

With regards to any transfer of Data to Third Countries, the Data Controller informs that the processing will be carried out according to one of the methods permitted by applicable law, such as the consensus of the interested party, the adoption of Standard Clauses approved by the European Commission, the selection of subjects adhering to international programs for the free circulation of data (eg EU-USA Privacy Shield) or operating in countries considered safe by the European Commission.

It is possible to have more information, upon request, from the Data Controller to the above contacts.

 

  1. Your privacy rights

You have the right to ask the Data Controller, at any time, to access your Personal Data, to rectify or cancel them or to oppose their treatment, to request the limitation of treatment, to obtain in a structured format, in common use and readable by automatic device the data concerning you in the cases provided for by art. 20 of the GDPR.

At any time you may revoke ex art. 7 of the GDPR, the consent already given, without prejudice to the lawfulness of the processing carried out before the withdrawal of consent.

We also inform you that you have the right to oppose ex art. 21 of the GDPR, for legitimate reasons, to the processing of data, for example, may oppose at any time the sending of direct marketing with automated tools (SMS, MMS, email, push notifications, fax) and not (paper mail, telephone with operator ); moreover, the possibility of exercising this right in part remains valid, that is, in this case, by opposing, for example, to the sending of promotional communications only via automated tools.

Requests must be sent in writing to the Data Controller at the addresses indicated above.

In any case, you are always entitled to file a complaint with the competent supervisory authority (Personal Data Protection Authority), pursuant to art. 77 of the Regulations, if you believe that the processing of your data is against the law in force.

PRIVACY & COOKIE DISCLAIMER - Providers

Pursuant to art. 13 EU Regulation 2016/679 (hereafter "GDPR")

 

  1. General information

This disclaimer allows you to know how Newlat Food S.p.A. will process the Personal Data, both those conferred directly by the User (such as name, surname, postal and e-mail address, age, date of birth, sex, etc.).

 

  1. Data Controller

The Data Controller is Newlat Food S.p.A. (VAT number 00183410653), in person of the legal representative, Dott. Stefano Cometto, with registered office in Reggio Emilia (RE), Via J. F. Kennedy n. 16, whose contacts are: email privacy@newlat.it, tel. 0039 0522 7901.

Newlat Food S.p.A. will process the Personal Data in full compliance with the GDPR and the national legislation on the protection of personal data (hereinafter "Privacy Policy").

 

  1. Type of Data processed

The Data Controller will process your Personal Data, collected within the scope of the supply contract signed between the parties and/or for the purpose of the conclusion of the same, including, by way of example and without limitation, name, surname, mobile phone number , the e-mail address and in general your contact details as a contact person in the commercial relations maintained in the execution of the supply relationships.

 

  1. Conservazione dei Dati Personali

Your Personal Data will be kept only for the time necessary for the purposes for which they are collected, respecting the principle of minimization as per art. 5, paragraph 1, letter c) of the GDPR.

The Data Controller may retain some data even after the termination of the contractual relationship, for the time necessary to fulfill contractual and legal obligations.

Further information is available from the Data Controller and / or the DPO at the addresses indicated above.

 

  1. Purposes and methods of processing Personal Data

Your Personal Data will be processed, without your consent, for the following purposes:

  1. execution of the contract and/or pre-contractual measures, pursuant to art. 6, paragraph 1, lett. b) of the GDPR;
  2. comply with any legal obligations to which the Data Controller is subject, pursuant to art. 6, paragraph 1, lett. c) of the GDPR;
  3. in the event that it is necessary to ascertain, exercise or defend a right in court, for the pursuit of the legitimate interest that the Controller has found to exist on the basis of the balancing of interests made, pursuant to art. 6, paragraph 1, lett. f) and of the art. 9, paragraph 2, lett. f) of the GDPR.

In all the cases illustrated above, the Data Controller has no obligation to acquire any consent from the Customer. In fact, all the above-mentioned treatments pursue primary purposes for which article 6 of the GDPR excludes the need to acquire a specific consent of the interested party, since the legal bases of legitimacy of the treatment are represented - depending on the case - by the Contract of services and/or supply, from the obligation to comply with the law, from the need to execute measures requested by the interested party. In the case of actions to assert or defend a right in court, the legal basis of the processing is represented by the legitimate interest of the Data Controller.

Personal Data is processed using manual, computerized and telematic tools with logic strictly related to the purposes and, in any case, in such a way as to guarantee the security and confidentiality of the data, in addition to compliance with the specific obligations established by law.

 

  1. Scope of communication and access of Personal Data

Your Personal Data may be shared with:

- natural persons authorized by the Data Controller, pursuant to art. 29 GDPR, due to the performance of their job duties (such as employees and system administrators, etc.);

- service providers (such as consultants, lenders, etc.) who typically act as data controllers pursuant to art. 28 of the GDPR;

- subjects, bodies or authorities that are obliged to communicate their personal data in accordance with the provisions of law or orders of the authorities.

The complete and updated list of data recipients can be requested from the Data Controller, at the addresses indicated above.

 

  1. Transfer of extra EU data

With regards to any transfer of Data to Third Countries, the Data Controller informs that the processing will be carried out according to one of the methods permitted by applicable law, such as the consent of the interested party, the adoption of Standard Clauses approved by the European Commission, the selection of subjects adhering to international programs for the free circulation of data (eg EU-USA Privacy Shield) or operating in countries considered safe by the European Commission.

It is possible to have more information, upon request, from the Owner or the DPO to the above mentioned contacts.

 

  1. Your privacy rights

You have the right to ask the Owner, at any time, access to your Personal Data, rectification or cancellation of them or to oppose their treatment, you have the right to request the limitation of processing in the cases provided for by art. 18 of the GDPR, to revoke the consent given in accordance with art. 7 of the GDPR at any time; to obtain, in a structured format, in common use and readable by automatic device, the data concerning it, in the cases provided for by art. 20 of the GDPR; as well as to propose a complaint to the competent control authority pursuant to art. 77 of the GDPR (Guarantor for the Protection of Personal Data), if it considers that the processing of your data is contrary to the law in force.

You can make a request for opposition to the processing of your data pursuant to art. 21 of the GDPR in which to give evidence of the reasons justifying the opposition: the Data Controller reserves the right to evaluate your request, which would not be accepted if there are legitimate reasons to proceed with the processing that prevail over your interests, rights and liberties.