Privacy Policy

Information pursuant to Article 13 of EU Regulation 2016/679
(Version updated as of April 8, 2024)
PURPOSE OF THIS DOCUMENT
The following describes the processing of personal data of users of the website www.sanyleg.com, which may be collected during its consultation. This information is provided in accordance with the European Regulation 2016/679 “Regulation on the protection of individuals with regard to the processing of personal data, as well as the free movement of such data” (GDPR) to those who interact with the web services accessible online at the address: www.sanyleg.com.

DATA CONTROLLER
Following consultation of the website www.sanyleg.com (hereinafter referred to as “SITE”), data relating to identified or identifiable individuals may be processed. The data controller is Sanyleg Srl a socio unico – Subject to the direction and coordination of Arnaud Holding Srl a socio unico – Via Albania, 1/3 – 46042 – Castel Goffredo (MN) – Italy (hereinafter referred to as “DATA CONTROLLER”).

SCOPE
This information is provided solely for the aforementioned SITE and not for other external websites that may be consulted through links on the pages of the SITE, which link to different domains for which the DATA CONTROLLER is not responsible. TYPES OF DATA PROCESSED
  • Navigation Data
  • The computer systems and software procedures used to operate the SITE acquire, during their normal operation, certain personal data, the transmission of which is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified individuals, but by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes, by way of example, IP addresses or domain names of computers used by users who connect to the site, URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.), and other parameters relating to the user’s operating system and computer environment. This data is used for the sole purpose of obtaining anonymous statistical information about the use of the SITE and to check its correct functioning. The data may be made available by the DATA CONTROLLER for the purpose of ascertaining responsibility in the event of hypothetical computer crimes or other requests authorized by the judicial authority.
  • Data Provided Voluntarily by Users of the Site
  • No personal data is required for consultation of the SITE. However, the optional, explicit, and voluntary sending of personal data to the addresses indicated on the SITE or through the completion of request forms or other guided procedures on the SITE itself, involves the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any other personal data entered. The DATA CONTROLLER invites the User not to send, in their service requests and/or queries, names or other personal data of third parties that are not strictly necessary.
  • Cookies
  • Cookies are small text files that are downloaded to the User’s device when visiting a website and allow the SITE to recognize the User’s device. They have various purposes such as, for example, allowing efficient navigation between pages, remembering favorite sites, and, in general, improving the browsing experience. Based on their function and purpose, cookies can be divided into technical cookies, profiling cookies, and third-party cookies. For further details on the Cookies used by the SITE, please refer to the appropriate section.


LEGAL BASIS AND PURPOSE OF PROCESSING
The legal basis for the processing of Navigation Data is to pursue the legitimate interests of the DATA CONTROLLER in relation to the management of the SITE. In particular, the data is used for the following purposes:
    • enable access and navigation on the SITE;
    • collect data and information in exclusively aggregate and anonymous form to verify the correct functioning of the SITE;
    • collect data and information in order to protect the security of the SITE (anti-spam filters, firewalls, virus detection) and users;
    • obtain anonymous statistical information on the use of the SITE.
In the event of computer crimes committed against the SITE, navigation data may also be used to ascertain liability. The personal data voluntarily provided by users to the addresses indicated on this SITE or through the completion of request forms or other guided procedures on the SITE itself will be processed solely for the purpose of responding to the interested party and performing the requested service or performance, including the management of any spontaneous applications submitted by the user. The data provided will not be disclosed to third parties without obtaining the explicit and unequivocal consent of the interested party.

CONSEQUENCES OF FAILURE TO PROVIDE DATA
The Navigation Data collected as part of this processing is mandatory as it is strictly functional to the computer management of the site. Apart from what is specified for navigation data, users are free to provide the personal data reported in request forms or otherwise indicated in contacts to request the sending of informative material or other communications. Failure to provide such data may result in the impossibility of obtaining what is requested. For completeness, it should be noted that, in some cases (not subject to the ordinary management of this site), the Authority may request information and news under the New European Regulation (GDPR), for the purpose of checking the processing of personal data. In these cases, the response is mandatory under penalty of administrative sanction.

USERNAME AND PASSWORD
In the event that users are required to choose a ‘username’ and/or ‘password’ to access reserved sections of the SITE, it will be the user’s responsibility to keep such data confidential and to immediately notify the DATA CONTROLLER of their use by unauthorized persons.

DATA PROCESSING METHODS – DATA RETENTION PERIOD
Personal data is processed with and without electronic or automated tools, computer or telematic means for the time strictly necessary to achieve the purposes for which it was collected. Specific security measures are observed to prevent the loss of data, illegal or incorrect use, and unauthorized access in compliance with the obligations of adaptation to minimum security measures. To provide a complete service, the SITE may contain links to other websites not managed by this DATA CONTROLLER, who cannot be held responsible for errors, content, cookies, publications of illegal moral content, advertisements, banners, or files not in compliance with current regulatory provisions and compliance with privacy regulations by the aforementioned sites.

DATA STORAGE LOCATION
Personal data will be stored at the headquarters of the DATA CONTROLLER and, in any case, within the European Union.

COMMUNICATION OF DATA
In addition to the DATA CONTROLLER, authorized parties for processing under art. 29 of the EU Regulation (employees and collaborators of the DATA CONTROLLER), according to their respective competence profile and for the aforementioned purposes, may also have access to the data. The data collected may also be communicated to external parties (for example, third-party technical service providers, hosting providers, computer companies), appointed as Data Processors pursuant to art. 28 of the EU Regulation, who operate on behalf of the DATA CONTROLLER and according to his instructions, but exclusively for activities strictly connected to the aforementioned purposes (for example, to ensure the operation of the Internet service, manage the computer and telematic system).

RIGHTS OF THE INTERESTED PARTIES
The subjects to whom the personal data refer have the right at any time to obtain from the DATA CONTROLLER access (Art. 15 EU Reg.) to their personal data and to verify their accuracy or request their integration, updating, or rectification. Users are also recognized the right to limit the processing of personal data (Art. 18 EU Reg.), the right to request their deletion (Art. 17 EU Reg.), the right to data portability (Art. 20 EU Reg.), and the right to object, for legitimate reasons, to their processing. In any case, the User remains free at all times to revoke the consents provided by sending a communication to the DATA CONTROLLER pursuant to the following paragraph. The user also has the right to lodge a complaint with the Guarantor, as provided for in art. 77 EU Reg. or to bring appropriate legal action under art. 79, EU Reg. if he/she believes that the processing of personal data concerning him/her has been carried out in violation of the provisions of the EU Reg.

EXERCISE OF RIGHTS
The user can exercise the aforementioned rights at any time by sending an e-mail to the address sanyleg@sanyleg.com or a registered letter with return receipt to Sanyleg Srl a socio unico, 46042 – Castel Goffredo (MN) – Italy, Via Albania n. 1/3.

CHANGES TO THIS PRIVACY POLICY
The DATA CONTROLLER reserves the right to update this Privacy Policy at any time to comply with the law and improve it, taking into account also the suggestions transmitted by customers, collaborators, and users.