der Gufler Sophia
Rathausplatz 3, 39034 Toblach (BZ)
South Tyrol, Italy
VAT no. IT 03084630213
Tax code no. GFLSPH83L45B220A
T 0039 328 297 36 01
Concept, Design & Text
1 Thank you for your interest in our products and our company. Data protection is a matter of great importance to us at arca. However, if a data subject makes use of our company’s particular services via our website, this will require the processing of personal data.
In particular, visitors or those persons who use the web services offered on the website (www.arca.rip) will be informed about data processing in accordance with Article 13 of Legislative Decree no. 196 of 30 June 2003 (the Data Protection Code). This data protection provision relates solely to the above-mentioned website and will not apply to linked websites or other websites that may be visited by users.
This data protection declaration forms an integral part of our website and the services we offer. Access to and use of the website, as well as purchases of the products offered on the website, require you to have read and understood this data protection declaration. If you do not consent to this data protection declaration, we would ask you not to use our website.
The company may change or update this data protection declaration in whole or in part. The current version of the data protection declaration can be viewed by all users on our website under “Privacy”. If a user does not agree with the changes, s/he may cease using our website. Continuing to use our website and our products and services after the above changes and/or updates have been published will be deemed as acceptance of the changes and acknowledgment of the binding nature of the new General Terms and Conditions. The www.arca.rip website is owned and managed by the company.
2 Types of data collection and purpose of processing:
The systems and software processes required for the correct operation of the website collect certain personal data during normal use, whose transmission forms part of the normal use of internet communication protocols. Such information is not collected in order to identify data subjects but, owing to its nature, will permit users to be identified through processing and compilation with data transmitted by third parties.
This category of data includes IP addresses or domain names, the computers operated by users of the website, the URI addresses (Uniform Resource Identifier) of the requested resources, the time of the request, the method used to make the request to the server, the size of the file received in response, the status of the response given by the server (successful, error, etc.) as a numerical code, and other parameters related to the user’s operating system and the computer environment.
Such data are used exclusively for statistical purposes and are only administered anonymously in order to ensure that they function correctly. The data can also be used to determine responsibility in the hypothetical event of violations of IT law entailing damage to the website: with the exception of such cases, the above-mentioned data will be stored for no longer than 24 months.
Data provided voluntarily by users/visitors:
Data voluntarily and expressly transmitted to arca by website users/visitors for the purpose of using certain services (e.g. online shop, etc.) or via e-mail enquiries can be registered automatically, but the information will only be used for the services specified in the information notification.
Your data will be used to answer your specific enquiries, to meet contractual, tax or accounting obligations, or to fulfil invoicing, debt collection or other obligations under applicable law.
Cookies are text files that are placed and saved on a computer system via an internet browser.
By using cookies arca can provide users of this website with more user-friendly services that would not be possible without setting cookies.
The data subject can at any time prevent our website from setting cookies via the corresponding setting in their internet browser, thus permanently halting the setting of cookies. Furthermore, cookies that have already been set can be deleted at any time via an internet browser or other software programs. All common internet browsers permit this. If the data subject deactivates the setting of cookies in their internet browser, this may prevent full use of all functions of our website.
With the exception of navigation data, arca will only process data that the user has voluntarily and expressly provided. Refusal to provide certain information may, however, limit the services offered.
Once registration takes place, personal data will only be processed for the services specified in the information notification.
Website visitors can register for one or more of the following services:
- information about services/products, offers, inquiries, etc.
- participation in various initiatives
- purchases of products offered on the website
- contacting the company using the form provided for this purpose.
3 The following is a brief list of the specific use made of personal data on the website. In order to be able to use the services, the user may be asked to provide some or all of the following data: forename, surname, age, street, post code, e-mail address, address, city, country, date of birth, phone number, mobile phone number, fax, payment method. It should be noted that additional information may also be requested.
3.1 Online shop or configurator
4 Processing of personal data:
Pursuant to Art. 28 of Legislative Decree no. 196 of 30 June 2003 (the Data Protection Code), arca, whose sole proprietor is Sophia Gufler, with registered offices at 39034 Toblach, Rathausplatz no. 3, tax code no. GFLSPH83L45B220A, VAT no. IT03084630213, registered with the Bozen/Bolzano Chamber of Commerce under the number BZ - 230978, is the data controller and processor of all personal data that may be collected via the above-mentioned website.
Personal data will only be processed within the meaning of these data protection regulations by the owners, employees and staff of arca who have been expressly appointed as persons responsible for data protection processing. Staff have been appropriately trained in this regard and will work under the direct supervision and responsibility of the controller of data processing.
The person responsible for data processing is the current person responsible for IT security at arca. An up-to-date list of all data protection officers can be requested via e-mail from the owner in person or from the person responsible for data processing at firstname.lastname@example.org.
5 Disclosure to third parties:
No personal data will be disclosed under any circumstances unless stipulated by law or the judicial authorities or as requested by other bodies or institutions.
The company will also make use of the services supplied by other enterprises and/or people to provide certain services, such as sending e-mails, delivering parcels or making payments. Such third parties will only have access to those personal data that are absolutely necessary for the completion of their own tasks. The company would emphasise that third parties are prohibited from using the personal data for any other purpose and are obliged to use the data in accordance with the data protection declaration and the applicable legal provisions.
arca does not intentionally collect sensitive or judicially relevant personal data via its website. Pursuant to Art. 4 of the Data Protection Code, sensitive data will mean personal information on gender and ethnic origin, religious, philosophical or other beliefs, political attitudes, membership of parties, trade unions, associations or organisations with a religious, philosophical, political or trade union background, as well as information about a person’s state of health or their sexual orientation. As regards Art. 4 of the Data Protection Code, judicially relevant data will include personal information regarding measures based upon Art. 3 (1) a) to o) and r) to u) of Presidential Decree no. 313 of 14 November 2002 governing criminal records, the register of administrative penalties arising from criminal acts and related proceedings, or the position as a defendant or suspect within the meaning of Articles 60 and 61 of the Code of Criminal Procedure. We would recommend that you do not provide such information on our website. If this is unavoidable (for example if you are part of a protected group of persons and are sending a CV for employment purposes, in response to a job offer or when expressing interest in a job with our company), we would request that you send the specific information letter by post, indicating your written consent to the treatment of said personal and sensitive data.
6 Storage of data
Information and personal data collected via this website, including data that the visitor voluntarily provides in order to obtain information material or other communications by writing to the addresses given in the “Contacts” section, will only be kept for the time absolutely necessary to supply the desired service. Once this service has been performed, all personal data will be deleted pursuant to arca’s data protection rules subject to the requirements of the competent authorities or of such storage as required by law.
7 Exercise of applicable rights
According to Art. 7 of the Data Protection Code, the data subject has the right at any time to receive confirmation of the existence or otherwise of personal data, as well as of the content and origin thereof, to check the data for correctness and completeness, and to require their updating or correction. The data subject also has the right to have unlawfully used data deleted, anonymised or blocked, as well as at any time to object to the use of such data for good reason. To do this it is necessary to contact the data controller or data protection officer via e-mail at email@example.com.
8 Data security
arca protects personal data by means of internationally recognised security standards as well as through procedures that prevent any unauthorised access, unauthorised use and distribution, unauthorised modification and loss, as well as unintentional or unlawful destruction.
9 Minors as users/visitors:
The company’s website as governed by the above data protection provisions is not intended for use by minors. We are aware of the need to protect data relating to minors, especially in an online environment, which is why we will not collect or save any data from underage visitors unless this is done unintentionally.