INFORMATION REGARDING THE PROCESSING OF PERSONAL DATA PURSUANT TO ART. 13 OF THE EU REGULATION 679/2016
May 2018 version

This information will be reviewed and adjusted, in the event of any changes in the legislation.

Corcos Srl, with registered headoffice in Via Dei Ceramisti, 26 - 50055 Lastra a Signa (FI) (hereinafter, "Data Controller", "Owner"), as Data Controller, informs you, pursuant to art. 13 EU Regulation no. 2016/679 (hereinafter also "RGPD") of our privacy policy and to understand how your personal data is handled when you use our services and to allow you, if necessary, to give consent to the processing of your personal data in the sections of the site where it is requested to provide personal data.
This information also fully respects and complies with Recommendation no. 2/2001 that the European authorities for the protection of personal data, adopted on 17th May 2001, to identify some minimum requirements for the collection of personal data online and, in particular, the methods, timing and nature of the information that the owners of the processing must provide to users when they connect to web pages, regardless of the purpose of the connection. It is specified that the consent procedure will be clear, brief and easily understandable; if the original conditions for which consent was requested should be changed, for example if the purpose of the data processing changes, further consent will be required pursuant to European Regulation no. 679/2016.
According to the rules of the Directive, Corcos Srl will make use of the data collected based on the principles of lawfulness, correctness, transparency, purpose limitation and storage, data minimization, accuracy, integrity and confidentiality.

1. Data controller

Titolare del trattamento è Corcos srl, con sede legale in Via Dei Ceramisti, 26 - 50055 Lastra a Signa (FI) a cui potrai rivolgerti per far valere i tuoi diritti. Di seguito si elencano le informazioni di contatto del Titolare:
• Tel: +39.055.8721551
• Fax:+39.055.8721329
• Address: Via Dei Ceramisti,26 - 50055 Lastra a Signa (FI)
• PEC (official email address):amministrazione@pec.corcos.com
• Email address: corcos@corcos.com

2. Data Protection Officer

Corcos Srl’s Data Protection Officer (DPO-RPD), with registered address in Via Dei Ceramisti, 26 - 50055 Lastra a Signa (FI) is Sara Corcos, in the figure of Legal Rep., whom you can contact using the following contact details:
• Tel: +39.055.8721551
• Fax:+39.055.8721329
• PEC (official email address): amministrazione@pec.corcos.com
• Email address: corcos@corcos.com

3. Aim of the Data Protection Process

With your consent, we will keep your data for the following purposes:

A) To allow us to provide you with the services requested, including the collection, storage and processing of data in order to establish and manage, a relationship connected to the provision of the services requested and to communicate with you in relation to the established relationship;
B) to allow navigation and consultation of the Corcos Srl web site;
C) to respond to requests for assistance or information, which we will receive via e-mail, telephone or chat (via the app), or via the form provided;
D) fulfill legal, accounting and tax obligations;
E) to carry out direct marketing, via email, for services similar to those to which you have already adhered to, unless you have not given your consent to the privacy policy in the first place, to allow Corcos srl to promote products or services that might be of interest to you;
F) to carry out studies, research, market statistics; send you advertising material and information, commercial information or customer satisfaction surveys to improve our services, via e-mail or text message, and / or via an operator and / or through the official pages of Corcos Srl on social media;
G) to make personalized commercial proposals based on the products or services you have previously purchased or which you have browsed on our website;
H) to propose a subscription to our newsletter;
I) with the aim to render our website secure and in order to prevent fraudulent behavior, the Owner will establish an automatic security system which oversees and analyses the behavior of our users associated to the treatment of personal data.

3.1 Legal and mandatory or optional nature of the process
The legal basis for the processing of Personal Data for the purposes referred to in the previous section is art. 6 (1) (b) of the Regulation as the processing is necessary for the provision of the services. Supplying the personal data for these purposes is optional but failure to provide it would make it impossible to activate the requested services. The purpose related to legal obligations represents a legitimate processing of personal data pursuant to art. 6 (1) (c) of the Regulation. Once the personal data has been provided, the processing may indeed be necessary to fulfill legal obligations to which Corcos Srl is subject. The usage made for marketing purposes as described above, is based on whether or not you give your consent, pursuant to art. 6 (1) (a) of the Regulation.
The provision of your personal data for these purposes is entirely optional and does not affect the use of the services. Any subsequent usage carried out for marketing purposes for similar products or services to those purchased by you, find its legal basis, pursuant to art. 6.1.f of the Regulations, in the legitimate interest of Corcos Srl to promote its products or services. It is reasonable for the interested party to expect this type of usage by Corcos Srl and can be revoked at any time.
If at any time you wish to revoke the processing of your data for marketing purposes, you can do so at any time logging into your account, or by sending an email to Corcos Srl at corcos@corcos.com or by replying to the commercial email received.

4. Methods of processing your data

In relation to the purposes referred to in the previous point, the processing of personal data takes place in compliance with the principles of confidentiality, correctness, lawfulness and transparency, using manual, IT and technological tools, for the sole purposes of marketing the abovementioned services. These will be carried out via the use of fax, telephone, cell phone, e-mail or other remote communication techniques; personal data will be managed by implementing appropriate technical and organizational measures to ensure a level of security appropriate to the risk pursuant to art. 32 GDPR.

5. Data recipients

Your personal data may be shared, for the purposes referred to in the section above, with:
A) those who typically act as data processors, that is: i) persons, companies or third parties who provide assistance and consultancy to Corcos Srl in accounting, administrative, legal, tax, financial and credit recovery matters relating to the provision of the services ; ii) third parties with whom it is necessary to interact for the provision of those services; iii) or third parties delegated to carry out technical maintenance (including maintenance of network equipment and electronic communication networks);
B) persons, bodies or associations to whom it is mandatory to disclose your personal data to, for legal purposes or if requested by the authorities;
C) persons authorized by Corcos Srl to process personal data to carry out activities strictly related to the provision of our services, who are committed to confidentiality or have an adequate legal obligation of confidentiality, such as Corcos Srl’s employees;
D) commercial partners for their own purposes, carried out autonomously, if you have given specific consent. The complete list of data processors is available by sending a written request to Corcos Srl at corcos@corcos.com.

6. Data retention period

The data will be retained not only for the duration of the business relationship, but until the consent is revoked. We will keep it for the fulfillment of legal obligations and for administrative and commercial purposes.

7. Your rights

Pursuant to articles 7, 15, 16, 17, 18, 20, 21 and 22 of EU Regulation no. 2016/679, the interested party has the right to obtain confirmation as to whether or not, data concerning him/her, is being held and, in this case, to obtain access to the data and the following information:
a) what the information is used for;
b) the type of information held;
c) third parties with whom the personal data has been shared, in particular if these are in other countries or are international organizations;
d) if possible, the period during which the data will be held, or if this is not possible, the criteria used to determine the period;
e) all the information available regarding the source of the personal data if they did not come from the interested party;
f) the existence of an automatic process which includes profiling.

Furthermore the interested party has the right to:
a) request the correction of any incorrect data held by Corcos Srl without unjustified delay;
b) request the cancelation of all personal data held, without unjustified delay.
c) request to limit the disclosure of his/her personal data;
d) revoke the right to hold personal data at any time, for no specific reason;
e) to have access to all the personal data held on you, in an structured, clear and legible format;
f) to revoke the consent at any time;
g) to be able to complain to a supervisory association;
h) to be assured of the existence of adequate guarantees, if personal data is shared with a third country or to an international organization
i) to obtain a copy of the personal data held.

To exercise these rights, you can contact the Data Controller at the contact details in paragraph 1- Data Controller, by sending a specific request by registered letter, fax and / or e-mail.

8. Disclosure of your data

In compliance with the relevant legislation, the personal data provided may be shared for the purposes referred to in the previous section, with European Union and none European Union countries. Corcos Srl guarantees that the personal data shared will be treated with the upmost care according to the Regulation. The decision to share your personal data can be based on an adequacy decision or on the Standard Contractual Clauses approved by the European Commission. More information is available from the Data Controller.

9. Cookies

Cookies are small text files that are stored by a website and using the browser on a client computer's hard drive, they store small amounts of site information over a period of time.

Generally, there are various types of cookies; they are divided into technical cookies and profiling cookies (cookies that are used for marketing and promotional purposes).

This website uses technical and profiling cookies. The details are shown below.

Technical cookies are important especially for the web site to work properly. This includes navigation cookies and session cookies, which allow user-friendly navigation of the site. There are also the so-called Analytics Cookies, which collect information e.g. on the number of visitors to the site or the path taken by site visitors. The group of technical cookies also includes functional cookies, which allow the site to remember your selection (e.g. filters you have set or the automatic setting of the language of a website).

Furthermore, there are cookies that detect user settings, preferences and actions and by means of which a user profile is created, the so-called profiling cookies. This serves to combine advertising messages with the interests of users and thus enables targeted advertising to certain user groups.

When you open a web page that uses these cookies, a banner is displayed that warns the user that the site operators use cookies for marketing purposes. It also warns the user that the page may possibly allow third-party cookies.

The banner is linked to a page with detailed information (the current webpage), where the user can refuse the storage of cookies.

The banner offers the chance for the user to give their consent and displays an indication that by continuing to browse the page, you automatically allow the use of cookies.

A click on detailed information does not necessarily imply consent. The banner does not disappear after a certain time, but will remain displayed until the user has consented, rejected or knowingly navigated further. We are required by law to record and store the user's decision, so the banner will no longer appear on the user's next visit.

You can also refuse the use of cookies in a general or selective way. If you do not wish to accept our cookies, you can refuse them via your web browser. The corresponding function varies from browser to browser; related details can be found below. Please note that failure to accept cookies may lead to functional limitations of the site.

The user can selectively disable (opt out) the collection of data by Google Analytics, by installing the specific component provided by Google on their browser (opt out).

The collection and use of the information obtained through the plug-in, are governed by the respective privacy policies of the social networks, to which you can refer to. Corcos Srl complies with the provisions contained in the Code regarding the protection of personal data ("Privacy Code"), as amended by Legislative Decree of 28th May 2012, n. 69, in accordance to the European Directive 2009/136 / EC. and in compliance with the provisions of Regulation (EU) 2016/679.

The User can deny permission to the installation of cookies on his device by configuring the browser used for navigation: if he/she uses the www.corcos.com site without changing the browser settings, we assume that he/she will want to receive all the cookies used by the site and use all features.

Social Network Plugins

The www.corcos.com web site also incorporates plugins and / or buttons for social network, to allow easy sharing of content on your favorite social media. These plugins are programmed not to set any cookies when accessing the page, to safeguard user privacy. Cookies maybe be set, if so provided by the social media, only when the user makes effective and voluntary use of the plugin. If the user browses while logged into the social media, then he has already consented to the use of cookies conveyed through this site at the time of registration to the social media.

10. Persons in charge / authorised to process data

The list of data processors and persons in charge / authorized to process data, is constantly updated and kept at the registered office of the Data Controller.