Privacy Policy

1. INTRODUCTION

FLODRAULIC GmbH, in the person of its pro tempore legal representative, with its registered office located in Im Haslet 38, 93086 Wörth an der Donau, Germanytion on the protection of personal data for the applicable time, inform that the personal data relating to users, collected through the cookies installed on this website (hereinafter "Site") will be processed in the manner and for the purposes indicated in this information.

FLODRAULIC GMBH, as Data Controller, will process the personal data of its customers, suppliers and users of the website for which it independently determines the purposes and means of processing.

We inform you that the personal data you provide will be processed in accordance with current legislation, in compliance with the principles of correctness, lawfulness and transparency.

2. ROLES IN THE FIELD OF PRIVACY
2.1. FLODRAULIC GMBH identifies a Data Protection Committee, that is a mutual privacy board (Privacy Committee) responsible for the assessment and preparation of the interventions to be carried out in relation to the obligations deriving from the GDPR and from the national legislation in force on the subject, in order to control compliance. The Privacy Committee acts as a contact point for the data subjects for all matters relating to the processing of personal data and the exercise of their rights, as well as a contact point for the Control Authority for matters related to data processing.
2.2. FLODRAULIC GMBH appoints the data processors and those authorised to process data as well as system administrators from among the people who work within its organisational structure and under its liability.
2.3. FLODRAULIC GMBH can grant external parties who provide sufficient guarantees to implement adequate technical and organizational measures and for which the processing of data as external Processors is used for data processing or even for portions thereof. , by virtue of the data processing contract that the Joint Data Controllers have decided to adopt.
2.4. The purpose of FLODRAULIC GMBH is to process all personal data both in the paper and computer archives of each Joint Data Controller, which is better listed in the Registry of the processing activities of each Joint Data Controller, as well as all data that will be acquired in the future.

3. PRINCIPLES TO BE RESPECTED
FLODRALIC GMBH undertakes to comply with the following personal data protection principles:

  • comply with the principles of lawfulness, correctness, transparency, limitation, data minimization, accuracy, conservation limitation, integrity and confidentiality as well as accountability as indicated in Article 5 of the GDPR;
  • comply with the conduct standards according to the joint data control agreement according to Article 26 GDPR;
  • plan training interventions, instruct and update employees regarding data processing and the security measures adopted;
  • consider and treat as secret all information relating to the processing of personal data and related documentation, not to disclose them, or use them for purposes other than those provided in this privacy policy, including through its employees and/or collaborators involved in the processing activities, in accordance with the security plan;
  • maintain the secrecy of personal data collected and/or known and/or processed and/or used by virtue of the Joint Data Control relationship established with the other Joint Data Controllers;
  • implement all the appropriate technical and organisational security measures to guarantee the complete protection of personal data collected, processed, and used as part of the Joint Data Control relationship;
  • keep all the documentation certifying the data breach occurred and keep a special data breach register that specifies the cause, place, type of personal data violated, effects and consequences of the violation and the joint data controller's action plan, as well as motivating and documenting, case by case, decisions made to delay the notification procedure or not to proceed with the notification, nor to the communication to the data subjects;
  • verifying the correct keeping and updating of the lists of data managers, authorised people and system administrators, of Processing activity registers and Data breach registers;

4. TYPE OF DATA PROCESSED
a. Browsing data
The computer systems and software procedures used to operate the websites identified above acquire, in normal operation, some personal data that are then implicitly transmitted in the use of Internet communication protocols. This is information that by its nature could, through associations and processing with data held by third parties, allow users/visitors to be identified (e.g. IP address, computer domain names used by users/visitors connecting to the website etc.). This data is used only exclusively in an aggregate and anonymous manner and to check the correct functioning of the website. This data could be used to ascertain liability in the event of computer crimes against the website.

In summary, the main purposes of the cookies mentioned are:
• Identify yourself when you log in to our websites. In this way we can provide you with product recommendations, view personalised content, recognise you, and provide other functions and personalised services.
• Provide you with content, including advertising.
• Keep track of the preferences you indicate. In this way we can respect your prefer-ences.
• Conduct research and analysis to improve the content, products and services FLODRAULIC GMBH.
• Prevent fraudulent activities.
• Improve security.

b. Data provided voluntarily by the user / visitor
If the users / visitors of the website send their personal data to access certain services, or to make requests by e-mail, they are aware, as specially informed, that this involves the acquisition by FLODRAULIC GMBH of the data provided and the address of the sender. This data will be processed in the manner and for the purposes indicated in the corresponding policy.

c. Data relating to employees
For each company, to be considered in relation to its employees an independent Data Controller, both common data (personal data, domiciles, bank accounts, CVs) and particular data (data relating to health, trade union membership) are processed.

d. Data relating to customers and suppliers
Common data (e-mail, contact details, tax data) is processed.

e. Cookies
Cookies are packets of information sent by a web server, e.g. the website to the user's internet browser, the latter is automatically stored on the computer and returned to the server each time the website is accessed. For any other information on the features, type and methods of use, disabling cookies on the website, read the information contained in the “Cookie Policy” specific to each website.

5. PURPOSE AND LEGAL BASIS OF THE PROCESSING
Personal data is processed to:
5.1. conclude contracts with the Data Controllers and manage the related relationships in the pre-contractual, contractual, fiscal and accounting phases; (the legal basis of the aforementioned processing is the fulfilment of contractual and legal obligations to which the Data Controller is subject).
5.2. Direct marketing activities to customers already acquired for the direct sale of the Data Controller’s products and/or services (sending of newsletters, information activities, market research, advertising communications); (the legal basis of this processing is the legitimate interest).
5.3. direct marketing activities for new customers; (the legal basis of the aforementioned treatment is consent).

6. PROCESSING METHOD AND DATA STORAGE PERIOD
Data processing will be carried out by means of the operations indicated in Article 4, No. 2 of the GDPR in manual form, using IT and telematic instruments. The data will be recorded, processed and stored in our paper and electronic archives.
The data will be processed by authorised people.
For the activities referred to in Article 6.1., Personal data will be stored until processing of the same is no longer needed for the purpose for which they were collected and, in any case, no later than 10 years from the termination of the contractual relationship.
For the activities referred to in Articles 6.2. and 6.3., personal data will be stored until processing is no longer needed for the purpose for which it was collected and, in any case, no later than 2 years after acquisition.

7. RECIPIENTS OF DATA PROCESSING
The data may be made accessible to FLODRAULIC GERMANY'S employees and/or collaborators in their capacity as people authorised to process the data or data processors.
The data may be communicated for the obligations imposed by the law or for the correct execution of the contractual relationship, for example to social security, welfare and insurance bodies, trade associations, tax and labour offices, other Group companies, professional legal assistance offices, commercial, tax, auditing companies, banks and credit institutions.
The data will not be disclosed to undetermined subjects.

8. NATURE OF THE PROVISION
The disclosure of data is mandatory for the purposes referred to in Article 6.1.; therefore, any refusal to provide data or incorrect communication of data results in the objective impossibility of managing pre-contractual and contractual relationships.
The communication of data for the purposes referred to in Articles 6.2. and 6.3. is optional; therefore, the data subject can decide to grant the data or exercise, even subsequently, the right of opposition pursuant to Article 21 of the GDPR.
In this case, the personal data will no longer be the object of direct marketing (and therefore you will no longer receive newsletters, advertising communications, etc.) but will continue to be entitled to the services referred to in Article 6.1.

9. METHODS FOR EXERCISING RIGHTS
According to Article 26, paragraph 3, GDPR, the data subject may exercise his/her rights with and against FLODRAULIC GMBH. In exercising his/her rights, the data subject may contact, at his/her choice, FLODRAULIC GMBH from among the joint data controller, by sending a written communication to the company's registered office or by sending an e-mail to the following address germanyprivacycommittee@lfeholdings.com , which is a contact point for the data subjects.

10. CHANGES TO THE POLICY
This privacy policy may be subjected to updates

Updated on July 2023