PRIVACY policy – SOGEMI ENGINEERING S.R.L.
- Data Controller
(pursuant to articles 13-14 of EU Regulation 2016/679 – GDPR)
The Data Controller of personal data is:
SOGEMI ENGINEERING S.R.L.
Via Gallarate, 20920151 Milan (MI) – Italy
+39 02 38002400
For any request relating to privacy, you can contact the Data Controller at the addresses indicated above.
- Types of data collected
By visiting the sogemieng.it website, the Data Controller may process the following categories of data:
- a) Browsing data
Computer systems and software acquire, in the course of their normal operation, some personal data whose transmission is implicit in the use of internet protocols, including:
- IP address
- Date and time of the visit
- Browser type
- Pages visited
This data is used in aggregate form for statistical and security purposes.
- b) Data provided voluntarily by the user
By filling out the contact form or sending an email to the addresses on the site, the user provides:
- Name and surname
- Email address
- any information in the message
- Purposes of processing and legal bases
The data collected is processed for the following purposes:
Purpose | Legal basis |
Respond to requests for information, quotes or contacts via form or email | Implementation of pre-contractual measures (Art. 6.1.b GDPR) |
Management and technical maintenance of the website | Legitimate interest of the Data Controller (art. 6.1.f GDPR) |
Site security and prevention of abuse or cyber attacks | Legitimate interest (Art. 6.1.f GDPR) |
Anonymous traffic statistics (if anonymous technical/statistical cookies are present) | Legitimate interest (Art. 6.1.f GDPR) |
Sending communications about our services or activities – only if you request specific information | Legitimate interest (Art. 6.1.f GDPR) |
- Processing methods
The processing takes place using IT and/or telematic tools in compliance with the security measures provided for by the GDPR. No automated decision-making or profiling is carried out.
- Data retention
- Contact details: kept for the time necessary to manage the request and in any case no longer than 12 months.
- Browsing data: stored for a maximum period of 30 days, unless it is necessary to ascertain computer crimes.
- Technical log and security data: up to 12 months.
- Communication and recipients of data
The data can be communicated to:
- IT and hosting service providers
- companies that manage site maintenance
- legal or technical advisors, if necessary
All suppliers operate as Data Processors (art. 28 GDPR).
The data are not transferred to third parties for commercial purposes and are not transferred outside the European Union unless appropriate guarantees are adopted.
- Cookies
The site uses only technical cookies necessary for the operation of the site and, if active, anonymous analytical cookies. Any third-party cookies will be managed through banners and a dedicated Cookie Policy.
- Rights of the data subject
The user can exercise the rights provided for by art. 15-22 of the GDPR, including:
- Access to data
- rectification
- erasure (right to be forgotten)
- Restriction of processing
- opposition
- Data portability
Requests must be sent to the Data Controller by email or certified email.
The user also has the right to lodge a complaint with the Data Protection Authority.
- Changes to this policy
This policy may be updated. The current version is published on this page.