Privacy Policy

Privacy Policy (Status: March 2025)

1. Purpose of this Privacy Policy

1.1 This website privacy policy (this “Privacy Policy”) describes which personal data are processed when you visit our website www.barettino.eu (our “Website”) and how Barettino Srl (“we”) processes these data as the data controller.

1.2 This Privacy Policy is addressed to every visitor of our Website (“data subject” or “you”).

1.3 We process your personal data in accordance with the EU General Data Protection Regulation (“GDPR”) and applicable national data protection laws. Unless otherwise defined in this Privacy Policy, the terms used have the same meaning as in the GDPR.

2. Data Controller

The data controller within the meaning of the GDPR is:

Barettino Srl
Via F. Crispi 9
39100 Bolzano
Email: office@barettino.eu

A voluntary data protection officer has not been appointed. A statutory data protection officer is not required.

3. Which Personal Data We Collect and for Which Purposes

3.1 When you use our Website, we may process personal data that you voluntarily provide to us, for example via our contact form.

3.2 You may also visit our Website without actively providing information about yourself. In this case, we only process certain data that your browser transmits to our Website server, such as technical connection data.

3.3 The following sections explain how we process personal data on our Website and for which lawful purposes these data may be used.

3.4 Contact Form

3.4.1 If you actively communicate with us, we process the personal data that you voluntarily provide. This applies in particular to our contact form.

3.4.2 If you choose to contact us via the contact form provided on our Website, the personal data you submit (name, email address, phone number, message) will be processed in order to respond to your enquiry, fulfil your request, or otherwise communicate with you. These data are stored and used exclusively for the purpose of handling your enquiry and for related technical administration.

Legal basis: Article 6 paragraph 1 lit b GDPR performance of pre contractual or contractual obligations.

3.4.3 Some of the data requested in connection with the contact form may be marked as mandatory. You are not obliged to provide these data. However, without providing this information, we may not be able to process your enquiry or provide our services.

3.5 Log Files

3.5.1 You may visit our Website without actively providing personal data. In this case, we collect certain data that your browser transmits to our Website server, such as technical connection data in log files.

3.5.2 Our log files contain the following information: date and time of access to our Website, type, version and settings of your web browser, your operating system and service provider, requested pages and files, the website visited prior to accessing our Website (referrer), and your IP address. The IP address is a number assigned to your device that enables communication within a network using the Internet Protocol. IP addresses may qualify as personal data, as they may allow identification of a user under certain circumstances.

3.5.3 The processing of log files is necessary to ensure the functionality, stability and security of our Website. They may also be processed for forensic investigations in the event of a security incident or for the creation of user statistics. For statistical purposes, IP addresses are used only in anonymised form.

Legal basis: Article 6 paragraph 1 lit f GDPR legitimate interest in maintaining the functionality, stability and security of our Website.

3.6 Cookies

This Website does not use cookies.

4. Recipients of Your Personal Data

4.1 For the purposes described above, we may disclose your personal data to the following recipients:

IT service providers who provide hosting, maintenance and security services for our Website.

If disclosure is required due to legal obligations or for the assertion, exercise or defence of legal claims, personal data may also be disclosed to competent authorities such as supervisory, regulatory or law enforcement authorities, courts, or other third parties advising us in this context, such as lawyers or forensic experts.

5. How Long We Store Your Data

5.1 Log files are generally stored for a period of 30 days. Beyond this period, log files are stored only for the purpose of investigating irregularities or security incidents in our systems.

5.2 In general, we store personal data only for as long as necessary to fulfil the purpose for which they were collected. In any case, data are stored for the duration of our contractual or service relationship with you. Beyond this period, personal data are stored to comply with statutory retention obligations, for example tax and commercial law retention requirements of up to seven years. Where necessary, data may also be stored for as long as potential legal claims against us have not yet become time barred, which in certain cases may be up to 30 years.

5.3 Once there are no legitimate reasons for further storage, personal data will be deleted or anonymised.

6. Your Rights as a Data Subject

6.1 Under the statutory conditions, you have the following rights in relation to your personal data:

the right to obtain confirmation as to whether personal data concerning you are being processed and to receive copies of such data
the right to request rectification, completion or deletion of personal data that are inaccurate or unlawfully processed
the right to request restriction of processing
the right to object to the processing of your personal data under certain circumstances or to withdraw consent previously given
the right to receive the personal data you have provided in a structured, commonly used and machine readable format and to transmit those data to another controller

6.2 We do not process personal data for the purpose of making decisions based solely on automated processing, including profiling, that produce legal effects concerning you or similarly significantly affect you within the meaning of Article 22 GDPR.

6.3 To exercise any of the rights listed above, please contact us using the contact details provided above. You also have the right to lodge a complaint with a supervisory authority if you believe that your data protection rights have been violated. For Austria, the competent authority is the Austrian Data Protection Authority.

7. Updates to This Privacy Policy

7.1 We may update this Privacy Policy to reflect legal, technical or business changes. If we make material updates, we will take appropriate measures to inform you of the changes. The date of the last update can be found at the beginning of this Privacy Policy.

8. Notice

8.1 The Website may contain links to third party websites. We have no control over the content or data protection practices of these websites. Please review the respective privacy policies of the websites you visit.

 

Contact

Message*
!

Thank you very much for your message. We will contact you as soon as possible.