Privacy Policy

1. Personal data processing
Serfruit s.p.a. (hereinafter referred to as “Serfruit" or “Data Controller””) is concerned about privacy issues of the users (hereinafter referred to as "Users") and guarantees that personal data processing referred to the website www.serfruit.it (hereinafter the "Site") is in compliance with the rights of the data subject, and in particular the rights to privacy and to personal data protection.
Access to some sections of the Site and/or any requests for information and services from Users of the Site may require Users to enter personal data. The Data Controller will ensure that the data are processed pursuant to Italian Legislative Decree 196/2003 "Code on the Protection of Personal Data" (hereinafter referred to as “the Code").
This Privacy Policy note aims to inform, before Users access the various sections of the Site and before providing their data, on how Serfruit will use their personal data. Therefore, Users are required to read this information note before compiling the boxes in the various sections of the Site.

2. Purpose of data processing
The personal data, supplied by Users following the existing contractual relations or supplied by Users when compiling the on-line modules, may be used for the following purposes, in compliance with the applicable rules and fulfilling the duties of confidentiality and professional secrecy:

to allow registration on the Site, required in order to access the reserved area of the Site “Reserved Area” or to deliver and manage the various services offered in the reserved area;
management and administrative purposes, in accordance with the objective of the future or existing contract between User and Serfruit and, anyway, for purposes in relation and/or instrumental to the execution of the contract, excluded any different use. “Purposes in relation and/or instrumental to the execution of the contract” shall mean:

1.      executing legal obligations in connection with the contract
2.      organizing and managing the execution of the contract, i.e. contacts with agents, representatives, carriers, etc..;
3.      external collaboration to fulfil legal obligations;
4.      internal statistical analysis;
5.      information about client solvency;

to answer questions from the Users about Serfruit products, advertising, or about the website “Contacts”;

3. Processing procedures
The data processing will be inspired by the principles of fairness, lawfulness, transparency and privacy protection.
Personal data will be manually, electronically and telematically processed with an implementation strictly connected with the above mentioned purposes.
Personal data will be stored in electronic form or/and in hardcopy archive or/and in any other adequate device, pursuant the minimum security measures set forth in the Technical Specifications Contained in Annex B to the Code.

4. Nature of the provision of the personal data of users
The provision of personal data, for the purposes sub a) and b), is mandatory, in order to perform the contract and/or to deliver and manage the various services offered in the reserved area of the Site. The missing, partial or incorrect provision of personal data, which is necessary for the performance of the required service, shall prevent such performance.
Regarding the purposes sub c), the provision of personal data by the User is optional. However, the missing, partial or incorrect provision of the requested data may entail the impossibility of Serfruit to answer or deliver the requested service.

5. Categories of data concerned
The categories of data subject to processing are personal data of the User (such as name, last name, company name, legal address, registration number, phone, fax, e-mail, etc) and data regarding the economic and commercial activity of the User with reference of the business relation with Serfruit (especially data of orders, contracts, financial solvency, bank and financial data, accounting and fiscal data, etc.).
These data can be submitted directly, during the browsing of the Site, or at the moment of the order or contract, or may be obtained from commercial information companies, registers, lists or public data base (especially concerning the financial solvency data).

6. Cookies
Personal data of the Users are not acquired by the Site using cookies.
We do not use cookies for personal information transmission, nor we use any “persistent cookie” or any other system for the tracking of the Users.
We may use “session cookies” (Session Cookies are not permanently stored in the User computer and will be deleted when the browsing session ends) only for the transmission of session IDs (random numbers generated by the server) necessary to the security and the efficiency of the browsing session.
The “session cookies” used in the Site avoid the use of other information technology tools potentially dangerous for the privacy of the Users in the browsing session and do not acquire personal data of the User.

7. Categories of subjects to whom the personal data of the Users may become known
Personal data may become known to the employees or staff of the offices of the Data Controller who, operating under the direct authority of the Data Controller, are nominated as Data Processors or as persons tasked with Processing pursuant to Articles 29 and 30 of the Code and who will be suitably trained for the task; while the Data Processors nominated by the Data Controller will be responsible for ensuring the training of their employees or collaborators.

8. Scope of communication or disclosure of personal data of Users
The data processing will be carried out only by Data Processors from the technical staff of Serfruit’s data processing department or, occasionally, by maintenance personnel.
The personal data provided by Users shall not be communicated to third parties.

9. Data Controller and Data Processing Officers
Data Controller is Serfruit s.p.a., via G. Dossetti n. 2, 20066 Melzo (MI), ITALY, (registered office).
Data Processing Officers are:

Mr. Ludovico Magni
Mr. Davide Di Gioia

10. User rights pursuant to art. 7 of the Code
The User may exercise his rights towards the Data Controller at any time, pursuant to article 7 of Italian Legislative Decree 196/2003, which, for the User convenience, is reproduced in full below:
“Article 7 Right to access personal data and other rights
1. A data subject has the right to obtain confirmation as to whether or not personal data concerning him exist, regardless of their being already recorded, and communication of such data in intelligible form.
2. A data subject shall have the right to be informed of:
a) the source of the personal data;
b) the purposes and methods of the data processing;
c) the logic applied to the processing, if the latter is carried out with the help of electronic means;
d) details identifying the Data Controller, the data processors and the appointed representative pursuant to Article 5, paragraph 2;
e) the subjects or categories of subjects to whom or which personal data may be communicated and who or which may gain knowledge thereof in their capacity as appointed representatives in the State’s territory, data processors or person(s) in charge of the processing
3. A data subject shall have the right to obtain:
a) an update, rectification or, if he or she requests it, an integration to the personal data;
b) the cancellation or change to anonymous status or a block on the data that have been processed in breach of the law, including personal data whose retention is unnecessary for the purposes for which the data have been initially collected or subsequently processed;
c) a declaration that the operations specified under letters a) and b) have been notified, as also related to their contents, to the subjects to whom personal data were communicated or disseminated, except where this is impossible or implies the use of means that are manifestly disproportionate compared with the right that is to be protected.
4. A data subject has the right to object to, totally or in part:
a) the processing of his/her personal data for legitimate reasons, even if this data is relevant for the purpose for which the data was collected;
b) the processing of personal data relating to him/her for the purpose of sending advertising material or for direct sales, or for carrying out market research or marketing communications.".
The above mentioned rights can be exerted directly by the data subject or by any person or association, with written mandate or proxy, representing the data subject.

11. How to exercise rights pursuant to art. 7 of the Code
The User may at any time, exercise the rights referred to in art. 7 of the Code by sending an e-mail message to the address info@serfruit.it or a letter sent by ordinary mail to the the address: SERFRUIT s.p.a. – via G. Dossetti n. 2, 20066 Melzo (MI), ITALY, or contacting Serfruit on the phone number +39 (2) 95732191.

12. Interpretation of the Privacy Policy
In case of disputes in the interpretation between the Italian version and any translation of this Privacy Policy, the Italian version has priority over the other versions.

Melzo, 01/01/15
Serfruit S.p.a.
L’amministratore unico
Ludovico Magni

	Privacy policy home / Privacy policy Privacy Policy 1. Personal data processing Serfruit s.p.a. (hereinafter referred to as “Serfruit" or “Data Controller””) is concerned about privacy issues of the users (hereinafter referred to as "Users") and guarantees that personal data processing referred to the website www.serfruit.it (hereinafter the "Site") is in compliance with the rights of the data subject, and in particular the rights to privacy and to personal data protection. Access to some sections of the Site and/or any requests for information and services from Users of the Site may require Users to enter personal data. The Data Controller will ensure that the data are processed pursuant to Italian Legislative Decree 196/2003 "Code on the Protection of Personal Data" (hereinafter referred to as “the Code"). This Privacy Policy note aims to inform, before Users access the various sections of the Site and before providing their data, on how Serfruit will use their personal data. Therefore, Users are required to read this information note before compiling the boxes in the various sections of the Site. 2. Purpose of data processing The personal data, supplied by Users following the existing contractual relations or supplied by Users when compiling the on-line modules, may be used for the following purposes, in compliance with the applicable rules and fulfilling the duties of confidentiality and professional secrecy: to allow registration on the Site, required in order to access the reserved area of the Site “Reserved Area” or to deliver and manage the various services offered in the reserved area; management and administrative purposes, in accordance with the objective of the future or existing contract between User and Serfruit and, anyway, for purposes in relation and/or instrumental to the execution of the contract, excluded any different use. “Purposes in relation and/or instrumental to the execution of the contract” shall mean: 1. executing legal obligations in connection with the contract 2. organizing and managing the execution of the contract, i.e. contacts with agents, representatives, carriers, etc..; 3. external collaboration to fulfil legal obligations; 4. internal statistical analysis; 5. information about client solvency; to answer questions from the Users about Serfruit products, advertising, or about the website “Contacts”; 3. Processing procedures The data processing will be inspired by the principles of fairness, lawfulness, transparency and privacy protection. Personal data will be manually, electronically and telematically processed with an implementation strictly connected with the above mentioned purposes. Personal data will be stored in electronic form or/and in hardcopy archive or/and in any other adequate device, pursuant the minimum security measures set forth in the Technical Specifications Contained in Annex B to the Code. 4. Nature of the provision of the personal data of users The provision of personal data, for the purposes sub a) and b), is mandatory, in order to perform the contract and/or to deliver and manage the various services offered in the reserved area of the Site. The missing, partial or incorrect provision of personal data, which is necessary for the performance of the required service, shall prevent such performance. Regarding the purposes sub c), the provision of personal data by the User is optional. However, the missing, partial or incorrect provision of the requested data may entail the impossibility of Serfruit to answer or deliver the requested service. 5. Categories of data concerned The categories of data subject to processing are personal data of the User (such as name, last name, company name, legal address, registration number, phone, fax, e-mail, etc) and data regarding the economic and commercial activity of the User with reference of the business relation with Serfruit (especially data of orders, contracts, financial solvency, bank and financial data, accounting and fiscal data, etc.). These data can be submitted directly, during the browsing of the Site, or at the moment of the order or contract, or may be obtained from commercial information companies, registers, lists or public data base (especially concerning the financial solvency data). 6. Cookies Personal data of the Users are not acquired by the Site using cookies. We do not use cookies for personal information transmission, nor we use any “persistent cookie” or any other system for the tracking of the Users. We may use “session cookies” (Session Cookies are not permanently stored in the User computer and will be deleted when the browsing session ends) only for the transmission of session IDs (random numbers generated by the server) necessary to the security and the efficiency of the browsing session. The “session cookies” used in the Site avoid the use of other information technology tools potentially dangerous for the privacy of the Users in the browsing session and do not acquire personal data of the User. 7. Categories of subjects to whom the personal data of the Users may become known Personal data may become known to the employees or staff of the offices of the Data Controller who, operating under the direct authority of the Data Controller, are nominated as Data Processors or as persons tasked with Processing pursuant to Articles 29 and 30 of the Code and who will be suitably trained for the task; while the Data Processors nominated by the Data Controller will be responsible for ensuring the training of their employees or collaborators. 8. Scope of communication or disclosure of personal data of Users The data processing will be carried out only by Data Processors from the technical staff of Serfruit’s data processing department or, occasionally, by maintenance personnel. The personal data provided by Users shall not be communicated to third parties. 9. Data Controller and Data Processing Officers Data Controller is Serfruit s.p.a., via G. Dossetti n. 2, 20066 Melzo (MI), ITALY, (registered office). Data Processing Officers are: Mr. Ludovico Magni Mr. Davide Di Gioia 10. User rights pursuant to art. 7 of the Code The User may exercise his rights towards the Data Controller at any time, pursuant to article 7 of Italian Legislative Decree 196/2003, which, for the User convenience, is reproduced in full below: “Article 7 Right to access personal data and other rights 1. A data subject has the right to obtain confirmation as to whether or not personal data concerning him exist, regardless of their being already recorded, and communication of such data in intelligible form. 2. A data subject shall have the right to be informed of: a) the source of the personal data; b) the purposes and methods of the data processing; c) the logic applied to the processing, if the latter is carried out with the help of electronic means; d) details identifying the Data Controller, the data processors and the appointed representative pursuant to Article 5, paragraph 2; e) the subjects or categories of subjects to whom or which personal data may be communicated and who or which may gain knowledge thereof in their capacity as appointed representatives in the State’s territory, data processors or person(s) in charge of the processing 3. A data subject shall have the right to obtain: a) an update, rectification or, if he or she requests it, an integration to the personal data; b) the cancellation or change to anonymous status or a block on the data that have been processed in breach of the law, including personal data whose retention is unnecessary for the purposes for which the data have been initially collected or subsequently processed; c) a declaration that the operations specified under letters a) and b) have been notified, as also related to their contents, to the subjects to whom personal data were communicated or disseminated, except where this is impossible or implies the use of means that are manifestly disproportionate compared with the right that is to be protected. 4. A data subject has the right to object to, totally or in part: a) the processing of his/her personal data for legitimate reasons, even if this data is relevant for the purpose for which the data was collected; b) the processing of personal data relating to him/her for the purpose of sending advertising material or for direct sales, or for carrying out market research or marketing communications.". The above mentioned rights can be exerted directly by the data subject or by any person or association, with written mandate or proxy, representing the data subject. 11. How to exercise rights pursuant to art. 7 of the Code The User may at any time, exercise the rights referred to in art. 7 of the Code by sending an e-mail message to the address info@serfruit.it or a letter sent by ordinary mail to the the address: SERFRUIT s.p.a. – via G. Dossetti n. 2, 20066 Melzo (MI), ITALY, or contacting Serfruit on the phone number +39 (2) 95732191. 12. Interpretation of the Privacy Policy In case of disputes in the interpretation between the Italian version and any translation of this Privacy Policy, the Italian version has priority over the other versions. Melzo, 01/01/15 Serfruit S.p.a. L’amministratore unico Ludovico Magni