Home / Privacy policy

Privacy policy

Users who visit this website do so in accordance with Article 13 of Regulation (EU) 2016/679 (GDPR).
This page describes, in accordance with Regulation (EU) 2016/679, the methods of processing Personal Data of users collected during the navigation of this Site www.zmcitaly.com or conferred directly by the interested party through the compilation of forms and addresses of contact.
This information does not apply to other sites, pages or online services accessible through hypertext links that may be published on the site.

  1. Data Controller
    The data controller is Zmc Italia S.r.l. – via Piazza della Repubblica 1A – 20121 Milan – Phone +39 0331 217.476 Email zmc@zmc.it
  2. Responsible for Data Processing
    The manager of Data Processing is Mr. Claudio Zibetti
  3. Types of collected data – Purposes – Legal basis
    1. “INFORMATION REQUEST” FORM – Data given directly by the interested party by filling in and sending the contact forms. The explicit and voluntary sending of messages to the contact addresses, as well as the filling out and submission of the forms present on the site, involve the acquisition of the sender’s contact details, as well as all the personal data included in the communications. These data are processed for the following purposes and in compliance with the relevant legal bases of processing, for a period of retention no longer than necessary for the purposes for which they were collected and processed.
      1. Purpose: to respond to requests sent by the interested party through the contact forms.
      2. Legal basis: : legitimate interest, processing is necessary to respond to requests; for the implementation of pre-contractual measures taken at the request of the party concerned.
    2. Website navigation data
      This site, for its proper functioning, requires during normal navigation some personal data, including IP addresses or domain names of computers used by users who connect to the site, the addresses in URI (Uniform Resource Identifier) notation of resources requested, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (success, error, etc.) and other parameters related to the operating system and the user’s computer environment. The browsing data is acquired not for the purpose of identifying users, but for the sole purpose of collecting, anonymously, statistical information on the use of the site and its services.
    3. Cookie
      Cookies are small text strings that the sites visited by the user send to his terminal (usually to the browser), where they are stored before being re-transmitted to the same sites at the next visit of the same user. During the navigation on a site, the user can also receive cookies on their terminal that are sent from different websites or web servers (so-called “third parties”), on which some elements may exist (such as, for example, images, maps, sounds, specific links to pages of other domains) on the site that the same is visiting. Cookies, usually present in users’ browsers in very large numbers and sometimes even with long temporal persistence, are used for different purposes: execution of authentication, monitoring of sessions, storage of information on specific configurations concerning users accessing the server, etc. In this regard, and for the purpose of the present provision, two macro-categories are therefore identified: “technical” cookies and “profiling” cookies. For more information, refer to the Cookie Policy
  4. Categories of recipients of personal data
    The following categories of subjects may become aware of your data: Data Controller, Data Processor and aide data processors, appointed in writing by the undersigned company, partners, accounting and invoicing staff, commercial staff, our consultants, such as external managers, to the extent that is necessary to perform their duties at our organization, upon letter of assignment and / or stipulation of a contract imposing the duty of confidentiality and security, as well as subjects who need access to data for legal advice, with purpose auxiliary to the relationship between the parties, such as the execution of contracts in place, within the limits strictly necessary to carry out the auxiliary tasks entrusted to them. In addition to the Data Controller, in some cases, other parties involved in the organization of this Website (administrative, commercial, marketing or legal employees, system administrators) or external subjects (such as suppliers of third party technical services, postal operators, hosting providers, IT companies, communication agencies), also appointed, if necessary, as Data Processors on behalf of the Data Controller may have access to the data. The updated list of the Data Processors can always be requested from the Data Controller.
  5. Methods of processing
    The processing of data takes place through the use of tools and procedures suitable to ensure security and confidentiality and can be carried out either by paper means, or through the use of automated computerized means, suitable for storing, managing and transmitting the data. The data is processed at the operational headquarters of the Data Controller and in any other place where the parties involved in the processing are located.
  6. Communication and dissemination
    The data will not be disclosed to indeterminate subjects through their availability or consultation. The data may be communicated, as far as their respective and specific competence is concerned, to Bodies and in general to any public or private entity with respect to which there is an obligation for us (or faculty recognized by law or secondary or community legislation) or need for communication.
  7. Rights of the interested parties
    The articles from 15th to 22nd of the GDPR UE 679/2016 give the interested parties specific rights. In particular, the right to obtain confirmation of the existence or not of personal data, access to personal data and the correction or deletion of the same or the limitation of the processing that concern him or to oppose their treatment, in addition to the right to portability of data, the communication of such data and the purposes on which the treatment is based. Furthermore, the interested parties have the right to obtain the revocation of consent at any time without prejudice to the lawfulness of the treatment based on the consent given prior to the revocation, the transformation into anonymous form or the blocking of data processed in violation of the law, as well as the update or, if there is an interest in this, data integration. The interested parties have the right to object, for legitimate reasons, to the processing itself. The reports for any variation of personal data must arrive promptly to the person in charge of processing in order to comply with art. 11, letter (c) of the aforementioned legislation, which requires that the data collected is accurate and, therefore, updated. Interested parties who believe that the processing of personal data referred to them through this site is in violation of the provisions of the Regulation have the right to propose a complaint to a supervisory authority, as required by art. 77 of the Regulations, or to take appropriate judicial offices (Article 79 of the Rules).