Lafert

Lafert SpA (hereinafter "Lafert") Privacy Information Notice

1. Introduction

This privacy information notice is intended to inform you of how Lafert collects and processes your personal data through the use of this website, in particular through the "Contact us" section.

Data Controller: Lafert SpA is the parent company of the Lafert Group, which is composed of different companies, whose details can be found on this website. Lafert SpA is the Data Controller and is responsible for this website.

Contacts: If you have any questions relevant to this privacy information notice or our privacy practices, please contact our Privacy Team at the following email address: privacy@lafert.com.

Changes to the privacy information notice: We subject our privacy information notice to regular review. This version was updated on 30 November 2018.

Third-party links: This website may include links to third-party websites, plug-ins and applications. By clicking on these links or by enabling these applications, you can allow third parties to collect or share data about you. We do not control these third-party websites and we are not responsible for their privacy statements. When leaving our website, we invite you to read the privacy information notice of each website you visit.

2. The data we collect about you

We may collect, use, store and transfer different types of personal data about you that we have grouped as follows:
- Identification data: they include first name, last name, user name or similar identification, e-mail address and telephone number.
- Technical data: they include IP (Internet Protocol) address, access data, browser type and version, time zone setting and position, browser plug-in types and versions, operating system, platform and other technology on the devices used for the access to this website
- Usage data: they include information on how you use our website, products and services

Furthermore, we collect, use and share aggregated data such as statistical or demographic data for any purpose. Aggregated data may derive from your personal data but are not considered personal data under the law as these data do not reveal, directly or indirectly, your identity. For example, we can aggregate usage data to calculate the percentage of users who access a specific function of the website. However, if we combine or connect aggregated data with your personal data in such a way that we can identify you, directly or indirectly, we will process the combined data as personal data that will be used in accordance with this privacy information notice

3. How do we collect your personal data?

We use different methods to collect data from and about you including through:
- Direct interaction: you can provide us with your identity and contact details by filling in forms and interacting with us by mail, telephone, email or otherwise.
- Automated technologies or interaction: as you interact with our website, we will automatically collect technical data using cookies. For more details, please refer to our cookie policy informativa sui cookies.

4. How we use your data

We will use your personal data only when the law allows us to do so. Often, we will use your personal data in the circumstances in which:
- we must perform the contract we are entering into or have entered into with you;
- it is necessary for our legitimate interests (or those of third parties) and your fundamental interests and rights do not prevail over such interests;
- we must comply with a legal obligation.

Generally, we do not rely on consent as the legal basis for the processing of your personal data, although we will request your consent before sending you direct marketing communications by email or SMS. You have the right to withdraw your consent to marketing at any time by contacting us

Purposes for which we will use your personal data: We have set out below, in table format, a description of all the ways in which we intend to use your personal data and the legal basis on which we rely. We have also identified our legitimate interests where appropriate.
Please note that we may process your personal data for various legal reasons based on the specific purpose for which we are using your data.

Objectives/Activities	Type of data	Legal basis for processing including the bases of legitimate interest
To register you as a new customer or supplier	(a) identity (b) contact	Performance of the contract with you or the company you represent
To manage our relationship with you	(a) identity (b) contact (c) profile (d) marketing and communications	(a) Performance of the contract with you or the company you represent (b) Necessary for our legitimate interests (in order to study how customers use our products/services)
To manage and protect our business and this website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and data hosting)	(a) identity (b) contact (c) technical	(a) Necessary for our legitimate interests (for the management of our business, provision of administrative and IT services, network security, to prevent fraud and in a corporate or group reorganisation context) (b) Required to comply with a legal obligation
To provide you with suggestions and recommendations about goods or services that may be of interest to you	(a) Identity (b) Contact (c) Technical (d) Use (e) Profile (f) Marketing and communications	Necessary for our legitimate interests (to develop our products/services and grow our business)

Change of purpose: We will use your personal data only for the purposes for which we have collected them, unless we reasonably consider it necessary to use them for another purpose and this reason is compatible with the original purpose. If you wish to obtain an explanation on how the processing of your data for the new purpose is compatible with the original purpose, please contact us.
Should we need to use your personal data for an unrelated purpose, we will inform you and explain the legal basis that allows us to do so.
Please note that we may process your personal data without your knowledge or without your express consent, in accordance with the aforementioned rules, where required or permitted by law.

5. Disclosure of your personal data

We may share your personal data with other Lafert Group companies located in the European Economic Area for the purposes indicated in the table.

6. Security of your data

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, consulted in an unauthorised way, altered or disclosed. In addition, we will limit access to your personal data to employees, agents, contractors and other third parties who need to know them. These individuals will process your personal data only according to our instructions, which will also include an obligation of confidentiality.
We have put in place procedures to deal with any personal data breach and we will inform you and the competent authorities of any breach if we are legally obliged to do so.

7. Retention of your data

We will retain your personal data only for the period reasonably necessary to meet the purposes for which they were collected, including the purpose of meeting any legal, regulatory, tax or accounting requirements.

8. Your legal rights

In certain cases, you have rights under personal data laws. These rights are:
- To request access to your personal data
- To request the correction of your personal data
- To request the erasure of your personal data
- To object to the processing of personal data
- To request the limitation of the processing of personal data
- To withdraw consent

If you wish to exercise one of the aforementioned rights, please contact us at the following address: lspa.privacy@shi-g.com

Lafert SpA, via John Fitzgerald Kennedy, 43, 30027 San Donà di Piave (VE), Italia.
Tax Code and VAT no. IT 00168750271

To facilitate the use of our website, we are using "cookies". Cookies are small units of data stored on the hard drive of your computer by your browser that are necessary for using our website. We use cookies to better understand how our website is used and to allow improved navigation. Cookies help us determine, for example, whether a page on our website has already been viewed. Cookies may also tell us whether you have visited our website before or whether you are a new visitor.

The cookies we use do not store any personal data or otherwise collect personally-identifiable information. If you do not wish to receive cookies, please configure your Internet browser to erase all cookies from your computer's hard drive, block all cookies or to receive a warning before a cookie is stored. If you want to know more about cookies, head to AboutCookies.org

The types of cookie we use

Strictly necessary cookies: These cookies are essential in order to enable you to move around the website and use its features, such as accessing secure areas of the website. Without these cookies services you have asked for, like competition forms etc, cannot be provided.

Performance cookie: These cookies collect information about how visitors use a website, for instance which pages visitors go to most often, and if they get error messages from web pages. These cookies don’t collect information that identifies a visitor. All information these cookies collect is aggregated and therefore anonymous. It is only used to improve how a website works. By using our website, you agree that we can place these types of cookies on your device.

Functionality Cookies: These cookies allow the website to remember choices you make (such as your user name, language or the region you are in) and provide enhanced, more personal features. For instance, a website may be able to provide you with local weather reports or traffic news by storing in a cookie the region in which you are currently located.

These cookies can also be used to remember changes you have made to text size, fonts and other parts of web pages that you can customise. They may also be used to provide services you have asked for such as watching a video or commenting on a blog. The information these cookies collect may be anonymised and they cannot track your browsing activity on other websites.

By using our website, you agree that we can place these types of cookies on your device.

How to manage cookies on PCs

If you want to allow cookies from our site, please follow the steps below,

Google Chrome
1. Click on 'Tools' at the top of your browser window and select Options
2. Click the 'Under the Hood' tab, locate the 'Privacy' section, and select the 'Content settings' button
3. Now select 'Allow local data to be set'

Microsoft Internet Explorer
1. Click on 'Tools' at the top of your browser window and select 'Internet options', then click on the 'Privacy' tab
2. Ensure that your Privacy level is set to Medium or below, which will enable cookies in your browser
3. Settings above Medium will disable cookies

Mozilla Firefox
1. Click on 'Tools' at the top of your browser window and select Options
2. Then select the Privacy icon
3. Click on Cookies, then select 'allow sites to set cookies'

Safari
1. Click on the Cog icon at the top of your browser window and select the 'Preferences' option
2. Click on 'Security', check the option that says 'Block third-party and advertising cookies'
3. Click 'Save'

How to manage cookies on Macs
If you want to allow cookies from our site, please follow the steps below,

Microsoft Internet Explorer 5.0 on OSX
1. Click on 'Explorer' at the top of your browser window and select 'Preferences' options
2. Scroll down until you see 'Cookies' under Receiving Files
3. Select the 'Never Ask' option

Safari on OSX
1. Click on 'Safari' at the top of your browser window and select the 'Preferences' option
2. Click on 'Security' then 'Accept cookies'
3. Select the 'Only from site you navigate to'

Mozilla and Netscape on OSX
1. Click on 'Mozilla' or 'Netscape' at the top of your browser window and select the 'Preferences' option
2. Scroll down until you see cookies under 'Privacy & Security'
3. Select 'Enable cookies for the originating web site only'

Opera
1. Click on 'Menu' at the top of your browser window and select 'Settings'
2. Then select 'Preferences', select the 'Advanced' tab
3. Then select 'Accept cookies' option

Data Privacy Statement for Google Analytics
This website uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”). Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of the website (including your anonymised IP address) will be transmitted to and stored by Google on servers in the United States.

Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. Google will not associate your IP address with any other data held by Google. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. By using this website, you consent to the processing of data about you by Google in the manner and for the purposes set out above.

You can prevent Google from detecting a cookie that is generated because of and related to your usage of this website (including your IP address) as well as processing of these data by downloading and installing this browser plugin: http://tools.google.com/dlpage/gaoptout?hl=en

Privacy Policy: Video Surveillance System

Pursuant to art. 13 of Regulation (EU) No. 2016/679 (hereinafter the "GDPR") Lafert S.p.A. provides below the information on the processing of personal data carried out in relation to the management of the video surveillance system set up for access and external areas pertaining to the Company’s plants located at:
- Via J.F. Kennedy, 43, 30027, San Donà di Piave (VE)
- Via J.F. Kennedy, 29, 30027, San Donà di Piave (VE)

Lafert S.p.A. implemented a video surveillance system consisting in fixed and mobile cameras installed near the entrances and accesses of the building, access gates and driveways, sensitive outdoor areas (e.g. waste collection area) and private parking spaces as per plan attached.

The processing of personal data, which are collected through the video surveillance system, is carried out in compliance with the provisions provided to protect personal data, with particular reference to the regulation provided for by the GDPR, D.Lgs. 196/2003, the provisions of the Guarantor for the protection of personal data, as well as in compliance with the legislation dictated by the Workers' Statute.

1. Data controller
The Data Controller is Lafert S.p.A. (hereinafter also Data Controller), Via John Fitzgerald Kennedy, 43, 30027, San Donà di Piave (VE) CF 00168750271.

2. Purpose and legal basis of processing
The processing of personal data is carried out for the purpose of pursuing the legitimate interest of the Data Controller:
- to protect the company’s assets;
- to protect private property in the premises, in the access areas and in the uncovered areas from possible damage, vandalism, theft;
- to protect the environment;
- to protect the health and safety of those present;
- for disciplinary purposes.

3. Reasons for the need for the system
The video surveillance system has been considered the most effective tool to guarantee the achievement of the abovementioned purposes to surveillance within 72h the aforementioned areas (parking areas, perimeter areas, entrance gates, access gates and driveways). Lafert considered the dimensions and numbers of the places compared to the persons involved. Moreover this kind of measure is been considered appropriate having regard to past events suffered by the Company (theft, damages).

Therefore, on the basis of the above considerations, the video surveillance system was considered the most suitable, effective and also necessary mean to improve the external and internal security of the company buildings, the related pertinences and persons present.

4. Categories of personal data and data subjects
Through the video surveillance system the Data Controller may collect photographs and videos of employees, visitors and anyone who enters into the specific zones controlled by the cameras. The cameras are not able to register audio.

5. Personal data retention period
The Data Controller retains the personal data only for the period necessary for the achievement of the abovementioned purposes and in any case for a period not exceeding 72 h from the date of recorded, after this period the personal data are deleted automatically by the system. For special reasons, for example the company closing for holidays, the retention period may be extended.

6. Processing methods
The video surveillance system is active 24 hours a day, every day of the year, and consists of cameras and all the tools for connection and recording. The cameras are installed in order to capture the accesses and the uncovered areas, limiting the angle of view of the area to be protected. These cameras are fixed and mobile, adjustable and with the use of the zoom.
Suitable information signs were placed nears the camera areas both inside and outside the premises. Outdoor signs are also visible at night.
The system temporarily stores images and videos and deletes them automatically after 72 hours.

There are two people in charge the real-time vision of the images (carried out by means of a terminal) during the working day (8 AM – 6PM) equipped with appropriate authentication credentials and specifically instructed for the performance of these tasks:
1. Elisa De Pieri
2. Monica Fusco

The Data Controller has also identified in the persons of Alberto Pavan and Thomas Barea the responsible persons for the video surveillance system, which can be contacted respectively at the following addresses:
- Alberto Pavan: alberto.pavan@shi-g.com , +39 0421 229 714
- Thomas Barea: thomas.barea@shi-g.com , +39 0421 229 754

The responsible persons will be able to access to the images and videos recorded thanks to their personal authentication profile and within the required retention period only in order to verify any crimes, violations or events in relation to the purposes indicated above. The records are stored on a server whose access is limited only to those responsible and protected from unauthorized access.

7. Sharing the data to third parties and dissemination
The responsible persons of the video surveillance system will have access to the recordings and they can extract a copy for the purposes of communication to the Judicial Authority in the exercise of Lafert’s right to defence or in order to satisfy the Autority’s request, who will treat them as autonomous data controller. Exclusively in this case, the images will be kept separately even for periods longer than the above term and made available to the Judicial Authority.

Personal data, unless required by law, will not be disseminated or transferred to non-EU countries.

8. Rights of the data subject
Each data subject can exercise the following rights set out in articles 15 to 22 of the GDPR:
a. right of access
b. right of rectification
c. right to cancellation
d. right to restriction of processing
e. right to data portability
f. right to object to processing
g. right to withdraw consent
h. right not to be subject to a decision based solely on automated processing.

In addition, each data subject has the right to lodge a complaint with the Data Protection Authority.

You can exercise these rights contacting the Data Controller at the following e-mail address: lspa.privacy@shi-g.com.

Privacy Policy

Cookie Policy

Video Surveillance