Flaspoint

Privacy Policy

This privacy policy applies to the websites: www.flashpointsrl.com , www.adronline.it , www.mercipericolose.it and scipdatabase.it
The Data Controller is identified in the company Flashpoint srl

We thank you for the interest you have shown us with your access to our site.
The protection of your privacy is extremely important to us. Below, in fact, you can find detailed information on how we process your data in reference to our sites.
This Privacy Policy is intended to give you a clear overview of our data processing methods because we want to earn your trust.

Index

1. WHO IS THE DATA CONTROLLER OF THE DATA YOU PROVIDE US
2. WHAT CATEGORIES OF DATA DO WE PROCESS?
3. ON WHAT LEGAL BASIS WILL THE DATA BE PROCESSED?
4. FOR WHAT REASONS WILL WE PROCESS YOUR DATA?
5. WHO DO WE SHARE YOUR DATA WITH?
6. WILL YOUR DATA BE TRANSFERRED TO A THIRD COUNTRY?
7. HOW LONG WILL YOUR DATA BE STORED?
8. WHAT DATA PROTECTION RIGHTS CAN YOU CLAIM AS A DATA SUBJECT?
9. THE SUPERVISORY AUTHORITY FOR THE PROTECTION OF PERSONAL DATA FOR US IS
10. HOW IS YOUR DATA PROTECTED?
11. RELEVANT LEGAL TEXTS

1. WHO IS THE CONTROLLER OF THE DATA YOU PROVIDE US

The Controller of the processing of your data is:

FLASHPOINT SRL
registered office in Via Norvegia, 56 int. 20
56021 Cascina (PI)
ITALY
tel. 050/716900, fax 050/716920,
e-mail info@flashpointsrl.com and PEC info2@flashpointpec.eu
Data processing takes place at the offices of Flashpoint Srl in Cascina (PI), Monza (MB) and Padua (PD), the data is handled only by technical personnel of the office designated by the Data Controller.

The SITES are all located in Italy on servers at: Serverplan Srl – Corso della Repubblica 171 – 03043 Cassino (FR), OVH Srl (Single Shareholder) Registered Office: Via Carlo Imbonati, 18 20159 Milan and at Flashpoint Srl – Via Norvegia, 56 – 56021 Cascina (PI).

2. WHAT CATEGORIES OF DATA DO WE PROCESS
Personal data (hereinafter referred to as “Data”) is information that refers to an identified or identifiable physical subject.
Through our websites, we process the following categories of data and in particular:

Data that you voluntarily make available to us:

A) Request for information: when a user requests free information via a form or otherwise, some data is requested (name and surname, email, telephone, info request message, main activity, source of knowledge of the site, captcha code) necessary to be able to provide the response and for marketing surveys. Such data is then stored for purely statistical purposes but in no case communicated externally.
B) Subscription to the site newsletter: when a user subscribes to the newsletter, only some data is requested (name and surname, email, main activity, captcha code) in order to be able to send the requested newsletter. By subscribing to the newsletter, the user gives his consent to also receive advertising material relating to products, services, events and refresher courses offered by Flashpoint, in which case his data will also be used to forward this material. The data will not be communicated externally under any circumstances.
C) Registration on the sites: when a user registers on our websites, the personal data necessary for their identification are requested (Name and surname, email, username, password) which are then stored in order to control access and for purely statistical purposes but in no case communicated externally. The registered user will be able to benefit from some services.
For example, by registering on the website www.adronline.it the user will be able to download for FREE in pdf format all the Parts of the ADR Agreement, in the current edition, translated into Italian by Flashpoint Srl.
D) Purchase of products or services: when a user purchases a product or service through the virtual shop on the website www.flashpointsrl.com (courses: www.flashpointsrl.com/courses and products: www.flashpointsrl.com/categoria-prodotto/prodotti/) all the fiscal and personal data necessary to proceed with the invoicing and/or delivery of the ordered goods are requested (name and surname, email, password, VAT number, Fiscal Code, SDI Code, Address and name of the participant).

Cookies: To enable you to navigate our websites efficiently and safely and to use certain functions, we use cookies on various pages. This information is not collected to be associated with identified interested parties, but by its very nature could, through processing and association with data held by third parties, allow users to be identified.
For more information on the categories of personal data that we collect, see our Cookie Policy.

Special categories of personal data: We do not collect and process any SPECIAL/SENSITIVE DATA through the website.

3. ON WHICH LEGAL BASIS WILL THE DATA BE PROCESSED

CONSENT
In consideration of the subjects and the type of data processing listed above, the lawfulness of the processing in this case is to be identified only and exclusively in the CONSENT that you voluntarily provide us.
By using or consulting our sites you explicitly approve this privacy policy and consent to the processing of your personal data in relation to the methods and purposes described below, but explicit consent will be requested only by choosing to check the non-pre-filled box.
According to the new General Regulation (art. 4 GDPR), consent is any free, specific, informed and unequivocal expression of will, following our clear and concise request.
Your consent provided applies to all processing activities carried out for the same or the same purposes. purpose.

CONTRACT

LEGAL OBLIGATION
(Art. 6(1)(c) of the GDPR): We must process some of your data to act in compliance with the legal obligations to which we ourselves are subject.

4. FOR WHAT REASONS WILL WE PROCESS YOUR DATA?

We will process your data for the following main reasons:

Comply with requirements dictated by national and community regulations;
• to satisfy the obligations established by the laws, regulations, community legislation, civil and tax regulations.
• to send the newsletter, information relating to its activity or updates on the matter, promotional material, invitations to information or promotional events, sending promotional material by telephone, post, courier and e-mail
• carry out market and statistical surveys, marketing and preferences on services
• carry out direct and indirect sales and placement activities

For entering personal data into the company’s IT databases

• for issuing quotes and offers to active and/or potential customers
• for issuing requests for quotes and offers to active and/or potential suppliers
• for keeping ordinary and VAT accounts
• for managing collections and payments

SECONDARY PURPOSES

Data processing for compliance with legal obligations: We are subject to certain legal obligations when operating the websites. This includes, among other things, the obligation to ensure data security when using our websites. For this purpose, we may process your data as part of the measures to be taken to ensure data security.

Data processing on the basis of legitimate interest:

Storage of access data in server log files: When you visit our websites, we may store access data in server log files, such as the name of the requested file, date and time of access, volume of data transferred and the requesting provider. We use this data exclusively to ensure efficient operation of the site. For security purposes (spam filters, firewalls, virus detection), the automatically recorded data may also include personal data such as the IP address, which could be used, in accordance with applicable laws, to block attempts to damage the site itself or to cause damage to other users, or in any case harmful or criminal activities.
The above information is processed based on the legitimate interests of the owner.

5. WHO DO WE SHARE YOUR DATA WITH?
We always take appropriate measures to ensure that your data is processed, protected and transmitted in accordance with applicable legal requirements. In addition, we may transfer other data to third parties as part of the use of cookies. For more information on cookies, visit our Cookie Policy.

THIRD PARTY SERVICE PROVIDERS
We use other companies and individuals to carry out certain activities on our behalf.
In addition to us as Joint Controllers, in some cases, categories of persons involved in the organization or external parties (such as third-party technical service providers, IT companies, etc.) may have access to the data.
These providers only have access to the personal data that is necessary to carry out their tasks. We guarantee that they cannot use the same data for other purposes and are also required to process personal data in accordance with this Privacy Policy, and in accordance with applicable regulations on the protection of personal data.

We always take appropriate measures to ensure that your data is processed, protected and transmitted in accordance with the applicable legal requirements. In addition, we may transfer other data to third parties as part of the use of cookies. For more information on cookies, please visit our Cookie Policy.

Third-party plug-ins are the sole responsibility of their respective providers:
Google Analytics for web analysis purposes
Our websites use Google Analytics, a web analysis service of Google Inc. (www.google.com). Google Analytics uses cookies: text files that are stored on your computer and that allow an analysis of your use of the website. IP anonymization is active on our websites. You can prevent the storage of cookies by configuring your browser software accordingly.

Facebook social plugins and buttons:
Our websites use Facebook social plugins (“Plug-ins”), social plugins that include:
• “Like” button; Share button; Embedded posts; Comment box.
Our websites do not receive the information contained in the plugin, but may receive a notification regarding the actions you perform within the plugin. For example: if you use the Comments plugin to comment on something, our website may access the comment on your profile.

Twitter plug-ins and social buttons:
Our websites use social plug-ins (“Plug-ins”) from the microblogging service Twitter. An overview of the Twitter plug-ins and their appearance can be found at https://twitter.com/about/resources/buttons
When you access a page of one of our websites that contains such a plug-in, your browser will establish a direct connection to Twitter’s servers. If you are logged in to Twitter, Twitter can associate your visit to our website with your Twitter account. If you interact with the plug-ins, for example by clicking the “Twitter” button, the corresponding information is also transmitted directly to a Twitter server and stored there. The information will also be published on your Twitter account and displayed to your contacts.
You can also completely prevent the loading of Twitter plug-ins with add-ons for your browser, e.g. with the script blocker “NoScript” (http://noscript.net/).

Linkedin Plug-ins and Social Buttons:
Our sites use social plug-ins and social buttons provided and managed by Linkedin. When you access a page of one of our websites that contains this type of plug-in, your browser will establish a direct connection with Linkedin servers. The content of the plug-in is transmitted directly from Linkedin to your browser and integrated into the page.

Advertising Tracking
System.io Conversion Tracking – More info: https://systeme.io/it/privacy-policy
Personal Data: Usage Data; Tracking Tools

6. WILL YOUR DATA BE TRANSFERRED TO A THIRD COUNTRY?
Our sites may transfer personal data to service providers and affiliated companies outside the European Economic Area (EEA).
With the ruling in case C-311/18 of 16 July 2020, the Court of Justice of the European Union invalidated the “Privacy Shield”, but data processing, at this time, can still take place legitimately on the basis of the Standard Contractual Clauses and only if the EU Commission has confirmed an adequate level of data protection in the third country (ex Art. 45(1) of the GDPR) or if appropriate data protection guarantees are in place pursuant to Art. 47 GDPR (e.g. binding corporate rules pursuant to Art. 46(2)(b), Art. 47 GDPR, standard data protection clauses issued by the EU Commission pursuant to Art. 46(2)(c)).

7. HOW LONG WILL YOUR DATA BE STORED?
According to Art. 17 GDPR, your data will be stored for as long as we are legally required to or as long as we need your data for the purposes stated in Section 4. Your data will then be deleted in accordance with the principle of data minimisation.

  • FOR ACCOUNT FUNCTIONALITY: Your data is stored exclusively for the time necessary to complete the purposes of managing the account you created to access our services offered through the company websites and in any case the data will be stored until the request to delete the account, or if it is deactivated by us.
  • WITH REFERENCE TO THE PROCESSING FOR THE PURPOSE OF SENDING COMMERCIAL COMMUNICATIONS and promotional, if consented, the data will be stored no later than two years from the first contact, without prejudice to the opposition to the processing by the interested party. In any case, cancellation can be requested by sending an email to info@flashpointsrl.com
  • IN REFERENCE TO PERSONAL DATA SUBJECT TO PROCESSING FOR MARKETING PURPOSES OR PROCESSING FOR PROFILING PURPOSES these will be retained in compliance with the principle of proportionality and in any case until the purposes of the processing have been pursued or until – if previously – the revocation of the specific consent by the interested party occurs.
  • FOR LEGAL OBLIGATIONS: In any case, data of a civil, accounting, fiscal nature will be retained for the term of ten years, as required by law.

8. WHAT DATA PROTECTION RIGHTS CAN YOU CLAIM AS A DATA SUBJECT?
You can claim a number of different rights that you are entitled to as a data subject.
To do so, please see the contact details provided in Section 1 of this Privacy Policy.

Right of access
You can request information about your stored personal data (Art. 15 GDPR). This information includes the categories of data processed by us, the purposes of the processing, the source of the data, if we have not collected it directly from you, and if applicable the recipients to whom we have transmitted your data.
You can receive from us a free copy of your data, which is the subject of the agreement.
If you are interested in further copies, we reserve the right to invoice for any additional copies.

Right to rectification and erasure
You can request the rectification of inaccurate personal data and the completion of incomplete personal data concerning you. (Art. 16 GDPR).
Furthermore, you can request the erasure of your data in accordance with and under the conditions of Art. 17 GDPR. This could happen, for example:

  • if your personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
  • if you withdraw your consent on which the processing is based and there is no other legal basis for the processing;
  • if you object to the processing of your data and there are no overriding legitimate grounds for the processing;
  • if the personal data have been unlawfully processed unless the processing is necessary for compliance with a legal obligation which requires us to process your data:
    – in particular with regard to legitimate retention periods;
    – to establish, exercise or defend legal claims.

Right to restriction of processing
You have the right to restrict the processing of your personal data, for example, by marking your archived data with the aim of limiting their future processing. For this purpose, one of the conditions specified in Art. 18 of the GDPR, e.g.:

  • you contest the accuracy of the personal data, therefore during the period of verification of the accuracy of such personal data we limit the processing;
  • the processing is unlawful but you request that its use be limited instead;
  • we no longer need your personal data but you need it to ascertain, exercise or defend a right in court;
  • you have objected to the processing pending the verification of whether our legitimate grounds for processing prevail over yours.

Right to data portability
Finally, you have the right to receive the personal data but not the particular content of the survey that you have provided us in a structured, commonly used and machine-readable format. You can transfer said data to another data controller without hindrance. You have the right to obtain the direct transmission of personal data to another data controller, if technically feasible (Art. 20 of the GDPR).

Right to object
You have the right to object, on grounds relating to your particular situation, at any time to the processing of personal data concerning you, provided that the processing is based on your consent or on our legitimate interests or those of a third party. In this case, we will no longer process the personal data unless he demonstrates compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims. You can object to the processing at any time if we process your personal data for direct marketing purposes (Art. 21 GDPR). The right to withdraw your consent to the processing remains freely revocable at any time, regardless of your right to object.

Right to lodge a complaint with a supervisory authority
We work together with you to obtain a fair resolution of any complaint regarding data protection.
You have the right to lodge a complaint with the Data Protection Authority if you believe that our processing of your personal data violates applicable data protection law.

9. THE SUPERVISORY AUTHORITY FOR THE PROTECTION OF PERSONAL DATA FOR US IS:
The authority responsible for the protection of personal data.

10. HOW ARE YOUR DATA PROTECTED?
We have implemented appropriate technical and organizational security measures to ensure data protection. For this purpose, we have developed a reliable internal security approach.

11. RELEVANT LEGAL TEXTS

The provisions of the GDPR are available at: https://eur-lex.europa.eu/legal-content/IT/TXT/PDF/?uri=CELEX:32016R0679&from=IT