PRIVACY POLICY

This Website collects some Personal Data from its Users.

Privacy and cookie policy ex Art 13 of the EU General Data Protection Regulation 2016/679 (GDPR)

Owner and Data Controller

TOPGRAF srl
Via Cremasca 24/A - 24052 Azzano San Paolo (BG) – Italy
Tel. (+39) 035-45006
info@topgraf.it
C.C.I.A.A. BG n° 255575 Rea – Business Register BG
C.F. – P.IVA (IT) 02019740162

Owner contact email: : info@topgraf.it

Types of Data collected

Among the Personal Data collected by this Application, either independently or through third parties, are: name; email; Usage Data; Tracking Tools; surname.

Complete details on each type of Personal Data collected are provided in the dedicated sections of this privacy policy or through specific information displayed before the Data is collected. Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically during the use of this Application. Unless otherwise specified, all Data requested by this Application are mandatory. If the User refuses to provide them, it may be impossible for this Application to provide the Service. In cases where this Application indicates that certain Data are optional, Users are free to refrain from providing such Data without affecting the availability of the Service or its functionality. Users who are unsure about which Data are mandatory are encouraged to contact the Data Controller. Any use of Cookies – or other tracking tools – by this Application or the owners of third-party services used by this Application is intended to provide the Service requested by the User, along with other purposes described in this document and the Cookie Policy.

The User assumes responsibility for the Personal Data of third parties obtained, published, or shared through this Application.

Methods and Location of Data Processing

Processing Methods

The Data Controller adopts appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of Personal Data.
Processing is carried out using computer and/or telematic tools, with organizational methods and logics strictly related to the purposes indicated. In addition to the Data Controller, in some cases, other parties involved in the organization of this Application (administrative, commercial, marketing, legal staff, system administrators) or external parties (such as third-party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) may have access to the Data, and may also be appointed, if necessary, as Data Processors by the Data Controller. The updated list of Data Processors can always be requested from the Data Controller.

Location

Data is processed at the Data Controller’s operational offices and at any other location where the parties involved in the processing are located. For more information, contact the Data Controller.
The User's Personal Data may be transferred to a country different from the one in which the User is located. To obtain further information about the location of the processing, the User may refer to the section concerning details on the processing of Personal Data.

Retention Period

Unless otherwise specified in this document, Personal Data is processed and stored for the time necessary to fulfill the purposes for which it was collected, and may be kept for a longer period due to any legal obligations or based on the consent of the Users.

Purposes of Data Processing

The User’s Data is collected to allow the Data Controller to provide the Service, comply with legal obligations, respond to requests or executive actions, protect its own rights and interests (or those of Users or third parties), detect any fraudulent or malicious activities, as well as for the following purposes: Contacting the User, Displaying content from external platforms, Commercial affiliation, and Creating and managing this Application.

To obtain detailed information on the purposes of processing and the Personal Data processed for each purpose, the User can refer to the section "Details on the Processing of Personal Data."

Details on the Processing of Personal Data

Personal Data is collected for the following purposes and using the following services:

Commercial affiliation
This type of service allows this Application to display advertisements for products or services offered by third parties. The ads may appear either as advertising links or in the form of banners in various graphic formats. Clicking on the icon or banner published on this Application is tracked by the third-party services listed below and shared with this Application. To learn what data is collected, please refer to the privacy policies of each service. ClickFunnels Backpack (Etison, LLC) ClickFunnels Backpack is a commercial affiliation service provided by Etison, LLC. Personal Data processed: Usage Data; Tracking Tools. Processing location: United States – Privacy Policy.
Contacting the User
Here is the English translation of the provided text: Contact Form (This Application) By filling out the contact form with their Personal Data, the User consents to their use for responding to requests for information, quotes, or any other type of request indicated in the header of the form. Personal Data processed: email; name.
reation and management of this Application
The main components of this Application are created and managed directly by the Data Controller using the software mentioned below. WordPress (self-hosted) (This Application) This Application is developed and managed by the Data Controller using a CMS (Content Management System) software called WordPress.
Displaying content from external platforms
This type of service allows displaying content hosted on external platforms directly on the pages of this Application and interacting with it. These services are often referred to as widgets, which are small elements embedded in a website or application. They provide specific information or perform a particular function, often enabling user interaction. However, this type of service may still collect data on web traffic related to the pages where the service is installed, even when users do not actively use it. Google Fonts (Google Ireland Limited) Google Fonts is a font style display service managed by Google Ireland Limited that allows this Application to integrate such content within its pages. Personal Data processed: Usage Data; Tracking Tools. Processing location: Ireland – Privacy Policy.

Information on How to Opt-Out of Interest-Based Advertising

In addition to any opt-out features provided by any of the services listed in this document, Users can read more about how to opt-out of interest-based advertising in the dedicated section of the Cookie Policy.

This Application uses Tracking Tools. To learn more, Users can consult the Cookie Policy.

 

Legal Basis for Processing

The Data Controller processes Personal Data related to the User if one of the following conditions is met:

  • The User has given consent for one or more specific purposes.
  • Processing is necessary for the performance of a contract with the User and/or for the implementation of pre-contractual measures.
  • Processing is necessary to comply with a legal obligation to which the Data Controller is subject.
  • Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Data Controller.
  • Processing is necessary for the pursuit of the legitimate interests of the Data Controller or third parties.

The User may always ask the Data Controller to clarify the specific legal basis for each processing activity, and in particular to specify whether the processing is based on law, a contract, or necessary to conclude a contract.

Further Information on Retention Period

Unless otherwise indicated in this document, Personal Data is processed and stored for the time required to fulfill the purposes for which it was collected, and may be kept for a longer period due to any legal obligations or based on the consent of the Users.

Therefore:

  • Personal Data collected for purposes related to the execution of a contract between the Data Controller and the User will be retained until the completion of that contract.
  • Personal Data collected for purposes related to the legitimate interest of the Data Controller will be retained until the fulfillment of that interest. The User can obtain further information about the legitimate interest pursued by the Data Controller in the relevant sections of this document or by contacting the Data Controller.

When the processing is based on the consent of the User, the Data Controller may retain the Personal Data for a longer period until the consent is revoked. Additionally, the Data Controller may be required to retain the Personal Data for a longer period to fulfill a legal obligation or by order of an authority.

Once the retention period has ended, Personal Data will be deleted. Therefore, upon the expiration of this period, the rights to access, delete, rectify, and data portability can no longer be exercised.

User Rights under the General Data Protection Regulation (GDPR)

Users may exercise certain rights regarding their Data processed by the Owner.

In particular, Users have the right to do the following, to the extent permitted by law:

  • Withdraw consent at any time: The User can withdraw their consent to the processing of their Personal Data previously given.
  • Object to the processing of their Data: The User can object to the processing of their Data when it is based on a legal basis other than consent.
  • Access their Data: The User has the right to obtain information about the Data processed by the Data Controller, about specific aspects of the processing, and to receive a copy of the Data processed.
  • Verify and request rectification: The User can verify the accuracy of their Data and request its update or correction.
  • Obtain the restriction of processing: The User can request the restriction of the processing of their Data. In such a case, the Data Controller will not process the Data for any other purpose than its storage.
  • Obtain the deletion or removal of their Personal Data: The User can request the deletion of their Data by the Data Controller.
  • Receive their Data or have it transferred to another controller: The User has the right to receive their Data in a structured, commonly used, and machine-readable format and, where technically feasible, to have it transferred to another controller without hindrance.
  • File a complaint: The User can file a complaint with the competent personal data protection authority or take legal action.

Users have the right to obtain information regarding the legal basis for transferring Data abroad, including to any international organization governed by international law or established by two or more countries, such as the United Nations, as well as regarding the security measures taken by the Data Controller to protect their Data.

Details about the right to object to processing

Where Personal Data is processed for a public interest, in the exercise of an official authority vested in the Owner or for the purposes of the legitimate interests pursued by the Owner, Users may object to such processing by providing a ground related to their particular situation to justify the objection.

Users must know that, however, should their Personal Data be processed for direct marketing purposes, they can object to that processing at any time, free of charge and without providing any justification. Where the User objects to processing for direct marketing purposes, the Personal Data will no longer be processed for such purposes. To learn whether the Owner is processing Personal Data for direct marketing purposes, Users may refer to the relevant sections of this document.

How to Exercise the Rights

Any requests to exercise the User's rights can be addressed to the Data Controller using the contact details provided in this document. The request is free of charge, and the Data Controller will respond as soon as possible, in any case within one month, providing the User with all the information required by law. Any rectifications, deletions, or restrictions of processing will be communicated by the Data Controller to each recipient, if any, to whom the Personal Data has been disclosed, unless this proves impossible or involves disproportionate effort. The Data Controller will inform the User of such recipients if they request it.

Further Information on Processing

Defense in Legal Proceedings

The User's Personal Data may be used by the Data Controller in legal proceedings or in the preparatory stages of such proceedings to defend against abuses in the use of this Application or the connected Services by the User.
The User acknowledges that the Data Controller may be required to disclose the Data by order of public authorities.

Specific Notices

At the User's request, in addition to the information contained in this privacy policy, this Application may provide the User with additional and contextual notices regarding specific Services, or the collection and processing of Personal Data.

System Logs and Maintenance

For purposes related to the operation and maintenance, this Application and any third-party services it uses may collect system logs, which are files that record interactions and may contain Personal Data, such as the User's IP address.

Information Not Contained in This Policy

Additional information regarding the processing of Personal Data may be requested at any time from the Data Controller using the contact details.

Changes to This Privacy Policy

The Data Controller reserves the right to make changes to this privacy policy at any time by notifying Users on this page and, if possible, on this Application. If technically and legally feasible, a notice will also be sent to Users via one of the contact details held by the Data Controller. Therefore, please frequently consult this page, referring to the last modified date indicated at the bottom.

If the changes affect processing based on consent, the Data Controller will seek to collect the User's consent again, if necessary.