Privacy Policy

PRIVACY POLICY FOR VISITORS TO THE WEBSITE WWW.WOORKINTERIORS.COM

Information on data processing of visitors consulting the website according to Article 13 of Regulation (EU) 2016/679

The purpose of this Privacy Policy is to describe how the website www.woorkinteriors.com is managed, with reference to the processing of personal data of users/visitors consulting it.

The policy is made only for the aforementioned website and not for any other websites that may be consulted by the user via links.

WOORK – Design & Build Inc. with registered office in 551 5th Ave, S.te 1810, New York, NY 10176, tel. (917) 383-0947, e-mail info@woorkinteriors.com, in its capacity as Data Controller, guarantees compliance with the legislation on the protection of personal data (Reg. 2016/679/EU Legislative Decree 196/03, as amended by Legislative Decree 101/2018).

Users/visitors are invited to carefully read this Privacy Policy before forwarding any kind of personal information by e-mail and/or filling in any electronic form on the website itself.

Data Controller.

In addition to the Data Controller as identified above, any partner sites that from time to time participate in data processing activities independently may take on the role of autonomous Data Controllers.

Subject of the data processing.

1) Navigation data

Computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.

This information is not collected in order to be associated with identified interested parties, but by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and IT environment.

This data is used for the mere purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning.

Data on web contacts are not, however, stored for more than seven days, except in the event of any investigation of computer crimes against the site.

2) Data provided deliberately by users/visitors

If users/visitors connecting to this website send their personal data in order to access certain services, or to make requests by e-mail or to send messages, they are aware that this entails the acquisition by the Data Controller of the sender’s address and/or any other personal data that will be processed exclusively for the purpose of responding to the request, or for the provision of the service.

Personal data provided by users/visitors will only be communicated to third parties if the communication is necessary to comply with the requests of the users/visitors themselves or is required by law (as in the case of invoicing).

3) Cookies

In addition to the data expressly given to the Data Controller, other data resulting from the user’s navigation on the site may be recorded: when the user accesses the site, the site may send the user a “cookie”. A “cookie” is a small text file that the site may automatically send to your computer when you view our pages.

“Cookies” serve to make navigation more comfortable, as well as to obtain information on the individual user’s navigation within the site and to enable the operation of certain services that require identification of the user’s path through different pages of the site.

For each access to the site, regardless of the presence of a “cookie”, the site records the type of browser (e.g. Internet Explorer, Chrome, Firefox), the operating system (e.g. Windows, Macintosh), the host and URL of origin of the user-navigator, as well as data on the page requested.

This data may be used in aggregate and anonymous form for statistical analysis on the use of the site.

For the complete management of cookies, please consult the “Cookie policy” page of this site.

Processing methods.

Processing is carried out using automated tools for the time strictly necessary to achieve the purposes for which the data were collected and, in any case, in compliance with the relevant regulations in force.

Specific security measures are observed in order to prevent the loss of data, unlawful or incorrect use thereof and unauthorized access thereto, so as to allow access only to the persons in charge or responsible persons appointed in accordance with the provisions of the law in force.

Purposes of processing.

In addition to those indicated in the individual disclosures that precede the compilation of the forms in the various sections of the site, the purposes of the processing carried out by the Data Controller are to be understood as:

a) collection, storage and processing for the purposes of the establishment and operational and

administrative management of the contractual relationship established and the provision of the

service offered on the site, including subscription to informative newsletters;

b) user support and contact: to respond to user requests and help them in the event of problems;

c) processing of the personal data provided and those inferred from navigation on the site in order

to provide a service consistent with the indications transmitted during use of the service;

d) collection, storage and processing of data for statistical analysis in anonymous and/or aggregate

form.

Legal basis of the processing.

The legal basis of the data processing carried out by the Data Controller through the site consists, as regards the indications set out under a) and b) above, in the contract entered into, or in the pre-contractual phase connected thereto, with the Interested Parties, while as regards sub c) and d) the legal basis is to be found in the legitimate interest of the Data Controller in the free economic initiative referred to in Article 41 of the Italian Constitution.

Recipients.

In addition to the Data Controller, in some cases, categories of Data Processors and authorized parties involved in the company organization (administrative, commercial, legal, accountants, system administrators) may have access to the data.

Furthermore, the Data Controller may make use of external subjects (such as third party technical service providers, transporters, hosting providers, cloud services, IT companies, communication agencies) who will be appointed as external Processors.

The updated list of Processors can always be requested from the Data Controller by contacting the address indicated above.

Transfer to a third country.

The Data Controller does not transfer user/site visitor data to other countries outside the European Union.

The data processed by the Controller will never be disseminated.

Place of data processing.

The processing operations related to the web services of this website take place within the EU and therefore, on the basis of Reg. 2016/679/EU in a place to be considered suitable.

Time and place of data storage.

Data will be stored for a period of time not exceeding the achievement of the purposes, (“principle of limitation of storage”, Art. 5 of the EU Regulation) or according to the deadlines provided by the legal regulations.

Optional or compulsory provision of data.

Besides what has been specified for navigation data, which acquire data automatically, users/visitors are free to provide their personal data or not to provide them. Failure to provide them may only result in the impossibility of obtaining what has been requested. The optional, explicit and voluntary sending of electronic mail to the addresses indicated on this site entails the subsequent acquisition of the sender’s address, which is necessary to reply to requests for services, products or information, as well as any other personal data included in the message.

Rights of data subjects.

The person to whom the personal data refer has the right at any time pursuant to the GDPR to obtain confirmation of the existence or non-existence of such data and to know its content and origin, to verify its accuracy or to request that it be supplemented or updated, or corrected.

Requests should be addressed to the Data Controller at the above addresses.

In relation to the processing of the aforementioned data, the customer/user has the right to obtain from the Controller:

1. confirmation of the existence or otherwise of his/her personal data, their communication in

intelligible form and knowledge of their origin, as well as the logic on which the processing is based;

2. the deletion, within a reasonable period of time, of your data, their transformation into

anonymous form or the blocking of data processed in breach of the law;

3. the updating of the data, their rectification or, when interested, their integration;

4. certification to the effect that the operations as per points 2) and 3) above have been brought to

the attention of those to whom they have been communicated, unless this proves impossible or

involves the use of disproportionate means;

5. the rectification or erasure of data concerning him/her or the restriction of processing;

6. has the right to withdraw consent for optional processing not related to the performance of the

contract signed with the Controller;

7. he also has the right to object on legitimate grounds to the processing of personal data concerning him, even if pertinent to the purpose of collection, to request their portability, to exercise the right to be forgotten, and to apply both to the ordinary Judicial Authority and to the competent Data Protection Authority for any infringement he believes he may have suffered in the manner indicated on the Guarantor’s website at www.garanteprivacy.it.

Automated decision-making processes.

No automated decision-making processes are carried out on the aggregate data collected, except for the purpose of better managing the site.

Minors.

In accordance with the provisions of Article 8 of the GDPR, no person under the age of 16 may send information to this website without the prior consent of their parents or legal guardian, nor may they make purchases or carry out legal acts on this website without the aforementioned consent, unless this is permitted by the regulations in force.