Privacy Policy

This statement is made pursuant to Art. 13 of Reg. EU 2016/679 (European General Data Protection Regulation) to users (hereinafter "Data Subjects") of our website www.cometplast.com (hereinafter the "Site") in compliance with the provisions of Directive 2002/58/EC, as updated by Directive 2009/136/EC, on Cookies and the provisions of the Measure of the Data Protection Supervisor dated 08 May 2014 on personal data protection as regards cookies. For more information on the cookies used, see the cookie policy.

1. Data controller

This Site is owned by CO.ME.T s.r.l. VAT Reg. No./Tax ID IT04787000282, based in 35030 Saccolongo (PD) Italy, via Luigi Einaudi, 72/74, e-mail address info@cometplast.com (hereinafter referred to as the "Data Controller").

The Data Controller knows the importance of maintaining the confidentiality, integrity and security of the personal data of Data Subjects and is committed to protecting the data of every natural person with respect for their identity, the dignity of every human being and fundamental freedoms guaranteed by the Constitution in accordance with European Regulation 2016/679 ("GDPR") on the protection of natural persons with regard to the processing of personal data and on the free movement of such data ("Personal Data").

2. Types of data processed

a. Browsing data The computer systems and procedures used to operate our Site acquire, during viewing of the Site itself, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with any user of the services, but given their nature could, when processed and matched to other data, allow for identifying you. This category of data includes IP addresses and the domain names of the computers used by users connecting to the Site, the URL addresses of the resources requested, the time of the request, the size of the file obtained from the server, the numerical code indicating the status of the response given by the server and other parameters such as the operating system and your computer environment.

b. Contact data provided by you The provision of your personal data is optional, but it is necessary so that the data controller can satisfy your needs in relation to the way the Site works. In all cases, before proceeding with activation of a specific service, appropriate information will be provided on the pages relating to the individual services offered and, where necessary, consent will be obtained for the collection and processing of your personal data. The failure to provide or providing partial or inaccurate personal data, necessary for the performance of the service requested (marked with *) make it impossible to perform the service, while the failure to provide or providing partial or inaccurate optional personal data not necessary, has no consequence.

3. Interactions and information acquired through social networks and external platforms

In the event a service is installed for interacting with social networks, these sites may collect data on traffic relating to the pages it is installed on, whether you use the service or not. In order to make more people aware of us we use the plug-ins of the social networks Facebook, LinkedIn and Google+ on our website in accordance with Art. 6 c. 1, letter f of the GDPR. The underlying advertising purpose must be considered a legitimate interest in accordance with the GDPR. Responsibility for data protection-compliant operation must be guaranteed by the respective provider.

  • The +1 button and social network widgets of Google+ (Google Inc.): The +1 button and social network widgets of Google+ are services for interacting with the Google+ social network, provided by Google Inc.
    Personal data collected: Cookies and Browsing Data.
    Place of processing: USA - Privacy Policy

  • Facebook Like button and social network widgets (Facebook, Inc.): the "Like" button and social network widgets of Facebook are services for interacting with Facebook, provided by Facebook, Inc.
    Personal data collected: Cookies and Browsing Data.
    Place of processing: USA - Privacy Policy

  • LinkedIn button and LinkedIn social network widgets (LinkedIn, Inc.): the LinkedIn button and LinkedIn social network widgets are LinkedIn social networking interaction services provided by LinkedIn, Inc.
    Personal data collected: Cookies and Browsing Data.
    Place of processing: USA - Privacy Policy

We integrate these plug-ins using the so-called 2 click method.

4. Purposes and legal basis of data processing

The personal data provided will be processed in compliance with the conditions of lawfulness ex Art. 6 of Reg. EU 2016/679, for the following purposes:

  • for obtaining statistical information on use of our Site with your browsing data. These will be used only for the purpose of - legitimate interest, as a legal basis for the processing;
  • management of any request made by the data subject to be contacted, by sending the information requested by you, if any - legitimate interest, as a legal basis for processing;
  • for promotional activities of the Data Controller, newsletters, market researches or other researches and direct sales for receiving - by automated means, e-mail, fax, SMS (Short Message Service) or other types of messages, as well as by telephone calls via operator and paper in the post - informative material, for surveying the degree of satisfaction, promotional, commercial and advertising material or related events and initiatives, by the Data Controller - voluntary, unconditional and always revocable consent is the legal basis for the processing.

5. Data security

We use SSL (Secure Socket Layer) in combination with the highest level of encryption supported by your browser. This is usually 256-bit encryption. If your browser does not support 256-bit encryption, 128-bit v3 technology is used instead. If any page of our website is transmitted in encrypted form, it is indicated by display of the lock or padlock symbol in your browser's lower status bar. We also take appropriate technical and organisational security measures to protect your personal data from accidental or intentional manipulation, partial or total loss, destruction or unauthorised access. Our security measures are continuously improved as we keep up with technological developments.

6. Automated decisions

The Data Controller declares that he does not make any automated decisions that might influence the Data Subject. All decision-making processes associated with the purposes of processing described above are carried out with human intervention.

7. Processing methods

Personal data are processed using automated electronic means and devices only for the period of time that is strictly necessary to achieve the purposes for which such data have been gathered. Specific security measures are used to prevent the loss or unlawful or incorrect use of the data, as well as unauthorised access thereto.

8. Who processes personal data and to whom they are communicated

Your processed personal data will only be known by the subjects expressly authorised by the data controller, i.e. be shared with recipients, who will process your data in their capacity as independent processors or data controllers. Precisely, your data will be shared with:

  • subjects that provide services related to the management of the information system and telecommunications networks, including e-mail, newsletters and that look after management of the site used by the data controller;
  • firms, or companies in the context of assistance and consulting services;
  • third parties who collaborate with the Data Controller for direct marketing activities;
  • competent authorities for the fulfilment of legal obligations and/or provisions of public bodies.

9. Transfers of personal data abroad

Your personal data will not normally be transferred to countries outside the European Union. If there is any need to transfer them to a country outside the EU, the data will be transferred to third countries, international organisations for which the European Commission has intervened with an adequacy decision (Art. 45 Reg. EU 2016/679).

10. Storage period

Personal data collected will be kept in a form that permits identification of data subjects for a period of time not exceeding the purposes for which the personal data were processed. In particular, the storage of the personal data provided depends on the purpose of the processing:

  • browsing of our Site (see the cookie policy);
  • for request to be contacted, to receive our newsletters or promotional messages in general by e-mail, your Personal Data will be processed by the Data Controller in relation to the purposes stated; the processing of personal data will be for the time strictly necessary to achieve the purposes for which they were collected and in order to ensure the confidentiality and security of the same;
  • different period provided for in certain notices.

11. Rights of the data subject

As the data subject, you have the right at all times to ask the Data Controller for access to your Personal Data (Art. 15), rectification (Art. 16) or erasure (Art. 17) of the same, or restriction of processing (Art. 18) and to object to their processing based on legitimate interest (Art. 21) to ask for portability of your data (Art. 20) and to lodge a complaint with a supervisory authority (Art. 77).

As the Data Subject, you have the right to withdraw your consent to the processing of your Personal Data at any time, without prejudice to the lawfulness of the processing based on the consent given prior to withdrawal of consent (Articles 6 and 9). In the event of a request for data portability, the Data Controller will provide the Data Subject with personal data in a structured, commonly used and readable format, by automatic means, without prejudice to paragraphs 3 and 4 of Article 20 of the GDPR.

In order to exercise your rights or for any request or need relating to this notice, you should contact us at the e-mail address: info@cometplast.com.

DATA CONTROLLER