Privacy Policies
Web Privacy Policy
This information is issued pursuant to Articles 12, 13 and 14 of EU Regulation 2016/679 GDPR and is aimed at users of the company website. This site is designed to be used in a B2B context and is not aimed at an audience of minors.
The following applies only to websites, Apps, social profiles and services, whose domains or properties are registered or attributable to the publisher SCHMUCKER s.r.l. In particular, to the schmucker.it domain and all third-level domains linked to it.
1 - Notes to the reader
In order to make this document more understandable and transparent to our users, we felt it was necessary to use simple and conversational language. Therefore, using a less formal tone should not be interpreted as a lack of respect or courtesy towards the user but simply as a way to facilitate communication. If you are a minor, you should be aware that this Site is not intended to be accessed by minors and the information it contains, including this policy, may be difficult for you to understand.
2 - Who is this document for?
This Information (hereinafter referred to as the "Policy"), provided pursuant to Articles 13 and 14 of Regulation (EU) No. 679 of 27 April 2016 (the so-called "GDPR"), is aimed at illustrating how SCHMUCKER s.r.l. (hereinafter also referred to as "Company" or simply "SCHMUCKER " processes personal data collected in connection with your use of the applications and services offered via this website.
3 - Who are we and how can you contact us?
SCHMUCKER s.r.l. as the Publisher and Data Controller, it is primarily responsible to you for any questions, concerns or complaints regarding this Policy or the processing of your personal data. If you, as a User and a "data subject", need any clarification regarding the processing of your personal data, please contact us at the following addresses:
SCHMUCKER s.r.l.
Registered and operational headquarters:
Via Riva Rossa n. 12 – 34076 Romans D’Isonzo (GO)
C.F./ P.IVA 0373660315- Cod. REA: GO - 47437
PEC: schmucker@legalmail.it
Telephone +39 0481.909464
email: privacy@schmucker.it
4 - Data Protection Officer – DPO
5 - Why can we process your data?
You should be aware that the processing of your personal data is only lawful if there is a valid legal basis under the GDPR. The following legal bases are used for the processing considered in this policy:
Consent - Art. 6.1 letter a) GDPR
You have given your consent to the processing of your personal data for one or more specific purposes.
Contract - Art. 6.1 letter b) GDPR
The processing is necessary for the performance of a contract to which you are a party or for the execution of pre-contractual measures taken at your request.
Legal obligation - Art. 6.1 letter c) GDPR
The processing is necessary for compliance with a legal obligation to which you are subject or our company is subject.
Legitimate interest - Art. 6.1 letter f) GDPR
The processing is necessary for the purposes of a legitimate interest pursued by our company or by a third party, provided that your interests, fundamental rights or freedoms are not overridden.
If you would like more information about the legitimate interests of processing your personal data, please contact us using the information we have previously provided to you.
6 - For what purposes do we process your personal data and on what lawful grounds?
We process your personal data to provide you with the best possible experience when you access our website, use our services and interact with us. This includes the following purposes:
6.1 - To allow you to visit our website
Description of processing: When you visit our website, we automatically collect certain information, including your IP address, login details, browser type and version, browser plug-ins, operating system, and platform. During your navigation on our site, we may also collect other data such as the Clickstream URL, the articles viewed or searched for, any display and download errors, the time and duration of visits to certain pages and interaction with the page itself. To collect this data, we use various technologies, including cookies. More information about cookies can be found in a specific paragraph of this policy. If you require further information regarding the processing of your personal data, please contact us using the information we have previously provided to you.
Acquisition methods: The data are automatically provided by your browsing devices through the communication protocols of the Internet network (e.g. TCP/IP, UDP)
Basis of lawfulness: We process this data on the basis of our legitimate interest - Art. 6.1 lit. f) of the GDPR - to provide and improve navigation on our Site, offer efficient and secure web services trying to ensure the continuous improvement of your browsing experience over time.
How long we keep your data: We only keep your personal data for as long as necessary to enable you to browse the Site. In particular, some data is stored for the duration of your stay on the Site itself and others until you decide to delete them by deleting technical and functional cookies (e.g. language setting). For more information on cookie management, see our Cookie Policy in the Footer of the site;
6.2 - Manage communications
Description of Processing: We collect your personal data when you communicate with us in person, through our website, email, by telephone or by any other means using the contact information we have provided to you through this Site. For example, we collect your contact details and details of our messages to and from you including data relating to when you sent them, when we received them and in some cases also where you sent them from.
Method of acquisition: The data are partly automatically provided in the communication protocol used by the tool you have chosen and partly are provided by you in the content of the communication.
Basis of lawfulness: We mainly process this data on the basis of our legitimate interest - Art. 6.1 lit. (f) GDPR - to respond to your requests and manage the necessary communications. However, in some cases we may be held liable by virtue of specific contractual or legal obligations - art. 6.1 lit. (b) and lett. (c) GDPR.
How long we keep your data: Following up on contact or support requests you choose to send us, your personal data is only processed for as long as necessary to provide you with the information and/or assistance you need. The data is deleted after 12 months from the last response we send you.
6.3 - Manage communication through forms
Description of processing: As a user, you can provide us with your personal data, including those that allow your identification when you fill in specific forms (so-called "Cookie Details"). Form") published on our pages such as the contact form. These forms are designed to facilitate your requests and guarantee you quick and accurate answers.
Method of acquisition: the data are voluntarily provided by you when filling out our request or registration forms. Failure to provide them will make it impossible for us to provide you with the requested service.
Basis of lawfulness: The processing is necessary for the execution of pre-contractual measures adopted at your request - art. - 6.1 lett. b) of the GDPR.
How long we keep your data: We only keep your personal data on the site for as long as necessary to deal with your request.
6.4 - Newsletters and other direct marketing communications
We may use the data you provide to send you newsletters or other communications that we think may be of interest to you. Where required by law, the sending of communications of a commercial nature will only take place after obtaining your consent. In any case, we offer you the possibility to unsubscribe from any communication sent.
Description of the service:
If you want to keep up to date with our products and choose to subscribe to our newsletter or other form of automated direct communication, you must provide certain data such as your name, your e-mail address or other specific data from time to time stated in the registration form. If you subscribe to our newsletter service, you give us your consent to send commercial communications (e.g. information notes, promotions, etc.) to your e-mail address in an automated way. These communications will never be invasive and will be carried out exclusively for the purpose of commercial promotion of our Brand and our products and/or services. You can withdraw your consent to the processing for these purposes at any time, free of charge and easily by using the appropriate link in each of our e-mails or by using the contact information indicated in this policy. The effectiveness of the communications made through the newsletter service is periodically monitored in order to understand your interest in the communications made. In particular, the correct delivery to your mail server, your interaction with the landing page such as, for example, the opening or not of our newsletters by the author, the number of openings over time are monitored. Tracking is carried out to understand your interest in our communications and to opt out of automatic sending if messages are not received regularly or there is no interaction from you for long periods of time (e.g. 36 months).
Method of acquisition: The data necessary for the activation of the communication service, such as your name and your e-mail address, are voluntarily provided by you in the specific registration form. Information regarding the delivery of our communication to your mail server is provided automatically by the communication protocol. The data relating to your interaction with the communication service are obtained from special markers inserted by the newsletter service used by us within the landing page.
Basis of lawfulness: We process the data automatically provided in the communication protocol and those obtained from the newsletter management system, by virtue of our Legitimate Interest - art. 6.1 letter f) of the GDPR - to make personalized communications about your interests. However, pursuant to art. 130 of Legislative Decree 196/2003, commercial communications carried out in an automated or systematic manner (without the intervention of an operator), can only be made if the recipient has given his consent. This consent is equivalent to that provided for by Article 6.1 letter a) of the GDPR and is managed in the manner established by Article 7 of the GDPR.
How long we keep your data: The data will be processed and stored until you decide to withdraw your consent or ask for it to be deleted.
6.5 - Soft Spam – Sending commercial communications relating to services or products already purchased
If you are one of our customers, we may use the email address you have provided to complete your purchase, to send you commercial communications from time to time about products or services similar to those you have purchased. You have the opportunity to object to this processing at any time, free of charge and easily through the appropriate link that you find in each of our communications (e.g. e-mail). This direct marketing action (so-called "Soft-Spam") is allowed to us within the limits of current legislation.
Method of collection: The contact data used for communication was provided by you to complete a purchase.
Basis of lawfulness: We process this data by virtue of our Legitimate Interest - art. 6.1 lett. f) of the GDPR to promote services and products similar to those already purchased by you and art. 130 c.4 of Legislative Decree 196/2003.
How long we keep your data: The data will be processed for the duration of the business relationship. They will no longer be processed for this purpose if you decide to object to this processing.
6.6 - Administration and security of the Site
We process your data to administer and maintain our Site securely, including to ensure that it functions properly, including troubleshooting and to understand any errors encountered during your or other users' use of our Site; In addition, we process the data collected on our website to maintain, manage and appropriately administer the IT systems and services necessary for its operation; We also collect this data through our security systems (e.g. Antivirus and Firewall) when you browse our web pages or if you use our services or web applications.
Methods of acquisition: The data are partly provided by you voluntarily through registration to our services and partly acquired automatically through communication protocols and your activities on the pages of the Site.
Lawful basis: We process this data by virtue of our legitimate interest in administering the Site, ICT systems and ensuring their availability, integrity and confidentiality. - art. - 6.1 lett. (f) GDPR.
How long we keep your data: We only keep your personal data for as long as necessary to achieve the purposes described above.
6.7 - Legal reporting obligations
We may process your data in order to make necessary communications, in response to requests that we are legally required to comply with, to law enforcement or judicial authorities or in defence of legal claims.
Method of acquisition: The data are already in our possession as they are collected for other purposes.
Basis of lawfulness: The processing is necessary to comply with a legal obligation - art. 6.1 lett. (c) GDPR to which you or our company is subject.
How long we keep your data: We keep your personal data for as long as necessary to fulfill our obligations.
6.8 - Further storage of personal data
After the expiry of the above-mentioned retention periods, we may anonymise your personal data and store it indefinitely in this way.
7 - Who can process your personal data?
In order to achieve the purposes indicated above, the following parties may have access to your personal data:
at. Our employees and collaborators are adequately trained on the measures to protect your rights and the security of your data. They act as authorized and competent subjects in the field.
b. We cooperate with companies, professional firms and consultants who specialize in assisting and/or advising SCHMUCKER on privacy, administration, and legal matters. In addition, we engage third parties to ensure the proper functioning of our website and its services. For example, we rely on service providers, cybersecurity experts, and other third parties to improve, extend, and protect our website and information technology systems. Each external party is carefully evaluated in terms of competence and reliability, and is contractually bound to guarantee a level of protection of your personal data no lower than ours. These subjects act as Data Processors pursuant to art. 4.8 of the GDPR.
d. We may communicate your data to administrative, institutional, judicial or other parties for whom communication is mandatory by law or necessary for the purposes described in this policy. These subjects will process the data in their capacity as Data Controllers pursuant to art. 4.7 of the GDPR.
The complete list of suppliers who process your personal data is available from the Data Controller.
8 - Cookies and other technologies
When you browse the pages of our site, we automatically collect data through the use of "cookies". A cookie is a text file containing small amounts of data that a website can send to your browser, which can then be stored on your computer as a tag that distinguishes your computer but does not identify you. Some of our website pages use cookies to provide you with a better service during subsequent uses of the website. You can set your browser to notify you before you receive a cookie, so that you have the opportunity to decide whether or not to accept it. You can also set your browser to turn off cookies; however, if you do this, some pages on our website may not function properly.
Instructions for disabling cookies can be found on the following web pages: Mozilla Firefox - Microsoft Edge - Google Chrome - Opera - Apple Safari
For information on the specific cookies used on this website, please consult the website's Cookie Policy via the appropriate link at the bottom of all pages of the website (Footer).
9 - What are your Rights?
In accordance with applicable law and in the circumstances determined by the lawful bases under which your personal data is processed, you may exercise the following rights.
(a) Right of access to personal data. You have the right to obtain confirmation as to whether or not we are processing personal data concerning you and, where that is the case, to obtain access to the personal data being processed. You have the right to obtain a copy of the data being processed. This right is only applicable if it does not adversely affect the rights and freedoms of others. Please note that in the event of repeated requests, we may charge you a fee based on our administrative costs.
If you have an account (e.g. access to the reserved area of the catalogue), you can access your user profile in order to obtain a copy of it as well as correct, modify or delete inaccurate data. You also have the option to close your Account at any time by writing to privacy@schmucker.it
(b) Right to rectification, erasure or restriction of the processing of your personal data. If you wish to rectify, erase or restrict the processing of your personal data, please contact us using the information we have provided to you in this section. It is your responsibility to ensure that you provide true, accurate, complete data and that you keep it up to date (e.g. account).
(c) Right to withdraw consent. If you have given us consent to process your data, you can revoke it at any time (e.g. newsletter)
(d) Right to data portability. If the processing is based on your consent or contract and is carried out by electronic means, you have the right to receive the personal data concerning you provided to us in a structured, commonly used and machine-readable format and you have the right to transmit these data to another controller without hindrance from us. Please note that this right does not apply to processing carried out through our website
(e) Right to object. As a user, you have the right to object to the processing of your data in certain circumstances. For example, you may benefit from this right if the processing is based on our legitimate interests (or those of a third party). You can contest the merits of our legitimate interests, however, we may have the right to continue to process such personal data on the basis of our legitimate interests or when this is relevant in relation to legal claims, or the data is necessary for the establishment, exercise or defence of legal claims. You also have the right to object to the processing of your personal data for direct marketing purposes.
(f) The right not to be subjected to automated decision-making.
(g) Compensation. We also remind you that anyone who suffers material or immaterial damage caused by a violation of Regulation (EU) 2016/679, has the right to obtain compensation for damage from the data controller or processor.
(h) Right to lodge a complaint with the supervisory authority. Without prejudice to the possibility of contacting our Company to exercise the rights related to the processing carried out by us, you may lodge a complaint with the competent independent administrative authority in the Member State of the European Union where you habitually reside, where you work, or where an alleged violation of the law on the protection of your personal data has occurred. In Italy, you can lodge a complaint with the following supervisory authority:
Guarantor for the protection of personal data
Switchboard: +39 06.696771
E-mail address: garante@gpdp.it
PEC address: protocollo@pec.gpdp.it
Website: https://www.garanteprivacy.it
Forms for exercising your rights
To exercise your rights towards the Data Controller, you can use the following form:
https://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/1089924
Please note that we need to identify you in order to exercise your rights.
10 - Data security
We have taken a number of physical, technical and organisational measures to ensure adequate levels of security for the personal data processed under our control, so as to prevent all reasonably foreseeable risks, including but not limited to their destruction, loss, alteration or unauthorised disclosure or accidental or unlawful access.
The data provided is stored and archived on secure servers in the European Economic Area
If you have a password that allows you to access our web services, it is your responsibility to keep it secure and confidential.
11 - International transfers
Our personal data processing operations always take place within the European Economic Area ('EEA').
If, for any reason, it becomes necessary to transfer data to third countries, we will implement appropriate security measures and safeguards to ensure that your data is adequately protected in those third countries (for example, by using standard contractual clauses).
12 - Changes to the Policy
This Policy was last updated on 20/08/2024. A notice will be posted on our website home page whenever this Policy is changed materially.
13 - Questions about this Policy
The publisher of this site SCHMUCKERs.r.l.acting as the Data Controller of your personal data. If you have any questions, concerns or complaints regarding this Policy or the handling of your data, you can contact us by email at: privacy@schmucker.it