Privacy Policy

    Last updated: February 3, 2025

    1. Introduction and scope

    This Privacy Policy describes how personal data of users visiting the Beton Technology S.r.l. website (hereinafter "Site") is processed. This information is provided pursuant to Article 13 of EU Regulation 2016/679 (GDPR) and current Italian legislation on personal data protection.

    This policy applies exclusively to this Site and not to any external sites accessible via links.

    2. Data Controller and contacts

    The Data Controller is:

    Beton Technology S.r.l.

    • Registered and operational office: Via Primo Maggio, 13 – 22042 San Fermo della Battaglia, fraz. Cavallasca (CO) – Italy
    • VAT / Tax Code: 02976510137
    • REA: 288949 – Como Business Register
    • Share capital: € 11,000 fully paid
    • Email: info@betontechnology.it
    • Certified Email (PEC): info@pec.betontechnology.it

    3. Types of data processed

    3.1 Browsing data

    The computer systems responsible for the Site's operation acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols. These include: IP addresses, browser type, operating system, domain name and addresses of websites from which access was made, request times and other parameters related to the user's operating system.

    3.2 Data voluntarily provided by the user

    The optional, explicit and voluntary sending of messages through the contact forms on the Site involves the acquisition of personal data indicated by the user (name, surname, email, phone, company name, message). Such data will be used exclusively to respond to requests and provide the requested services.

    4. Processing purposes and legal bases

    Personal data is processed for the following purposes:

    Managing contact requests

    Responding to requests for information, quotes and technical consultations.

    Legal basis: execution of pre-contractual measures (Art. 6.1.b GDPR)

    Compliance with legal obligations

    Complying with obligations under laws, regulations and EU legislation.

    Legal basis: compliance with legal obligations (Art. 6.1.c GDPR)

    Site security

    Ensuring IT security and preventing fraudulent activities.

    Legal basis: legitimate interest of the Controller (Art. 6.1.f GDPR)

    Anonymous statistical analysis

    Improving the browsing experience through aggregated and anonymous data.

    Legal basis: user consent for non-essential cookies (Art. 6.1.a GDPR)

    5. Processing methods and security measures

    Processing is carried out using automated and manual tools, in compliance with the principles of lawfulness, fairness, transparency, purpose limitation, data minimization, accuracy, storage limitation, integrity and confidentiality.

    Adequate technical and organizational security measures are adopted to protect data from unauthorized access, loss, destruction or disclosure, including:

    • SSL/TLS encryption for data transmission
    • Backup and disaster recovery systems
    • Limited access to data by authorized personnel only
    • Staff training on data protection

    6. Data retention

    Personal data is retained for the time strictly necessary to achieve the purposes for which it was collected, in compliance with the storage limitation principle:

    • Browsing data: retained for a maximum of 12 months for IT security purposes
    • Contact form data: retained for 24 months from the request, unless a contractual relationship is established
    • Accounting and tax data: retained for 10 years as required by tax regulations

    At the end of the retention period, data is deleted or irreversibly anonymized.

    7. Recipients and data processors

    Data may be disclosed to:

    • IT and hosting service providers: for technical management of the site and servers
    • Email service providers: for sending communications
    • Consultants and professionals: for accounting, tax and legal compliance
    • Public authorities: when required by law

    Entities processing data on behalf of the Controller are designated as Data Processors pursuant to Art. 28 GDPR and operate based on specific instructions.

    8. Data transfers outside the EU

    Some service providers may transfer data outside the European Economic Area. In such cases, the transfer is carried out in compliance with the safeguards provided by the GDPR:

    • European Commission adequacy decisions
    • Standard Contractual Clauses (SCC) approved by the European Commission
    • Binding Corporate Rules (BCR) for corporate groups

    9. Data subject rights

    As a data subject, you have the right to:

    Access (Art. 15)

    Obtain confirmation of processing and access your data

    Rectification (Art. 16)

    Correct inaccurate data or complete incomplete data

    Erasure (Art. 17)

    Request deletion of your data

    Restriction (Art. 18)

    Restrict processing in certain cases

    Portability (Art. 20)

    Receive your data in a structured format

    Objection (Art. 21)

    Object to processing for legitimate reasons

    To exercise your rights, you can contact us at the email address info@betontechnology.it or via certified email (PEC) at info@pec.betontechnology.it.

    10. Complaint to the Data Protection Authority

    If you believe that the processing of your personal data violates the GDPR, you have the right to lodge a complaint with the Italian Data Protection Authority:

    Garante per la protezione dei dati personali

    11. Changes to this policy

    The Controller reserves the right to modify, update or supplement this Privacy Policy at any time. Any changes will be published on this page with an indication of the last update date. We invite you to periodically consult this page.

    CallContact Us