There are no more items in your cart
Italiano
Deutsch
Français
Español
Dear user,
we inform you that the processing of your personal data will be carried out in compliance with the current privacy legislation and will be based on the principles of fairness, lawfulness, transparency, and data protection. To this end, in compliance with the provisions of article 13 of the European Regulation 2016/679 (GDPR), we provide you below with general information regarding the processing of personal data carried out through this website; further specific information will be provided where necessary directly on the web pages where data collection will take place to provide you with any type of service. This information refers exclusively to the data of those who interact with the services accessible starting from the home page https://www.mondokart.com/it/ and does not extend to other websites that may be reached by the user through links on the site.
The data controller is Mondokart Racing Spa with registered office at Via Carlo Osma, 2 - 20151 Milan and operational at Via Grassina, 9 - Pogliano Milanese. In accordance with the GDPR, the data controller has appointed an internal data protection officer, whom you can contact to request explanations regarding this Information or exercise the rights provided for by the regulations on personal data protection described in the following text. To contact the internal data protection officer, you can use one of the following means:
by email: [email protected]
by ordinary mail: Via Grassina, 9 - Pogliano Milanese
For any communication, you must include your contact details in the request, essential to identify and contact you.
Types of data processed:
Navigation data
The computer systems and software procedures used to operate this website acquire, during their normal operation, some data whose transmission is implicit in the use of Internet communication protocols.
This category of data includes IP addresses or domain names of the computers used by users who connect to the site, URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user's operating system and computer environment.
These are information that is not collected to be associated with identified interested parties, as the data is used solely for the purpose of obtaining anonymous statistical information about the use of the site and to check its correct functioning, but by their very nature could, through processing and associations with data held by third parties, allow users to be identified.
Please note that the data may be used by competent authorities for the investigation of responsibility in the event of hypothetical computer crimes.
Cookies
The site uses cookies to improve the user's browsing experience. For more information on the types of cookies used, their purposes, and how to disable them, you can consult the specific section.
Data provided voluntarily by the user
To access some services reserved for users, it is necessary to register and enter some personal data. The provision of some identifying data is necessary in order to authenticate and verify the legitimacy of access, at various levels of restricted areas, to the subjects accessing them. The optional, explicit and voluntary sending of e-mails to the addresses indicated on this site will result in the subsequent acquisition of the sender's address, necessary to respond to requests, as well as any other personal data included in the message. Specific summary information will be progressively reported or displayed, where necessary, on the pages of the site prepared for specific services upon request.
Purpose of the processing
The data provided by you may be processed for:
the performance of strictly necessary operations to provide services and/or information requested by you, (browsing the site pages, registering for restricted areas, assistance and follow-up, appointment requests, information requests via e-mail, etc.);
the provision of technological services (mailing lists, newsletters, remote or on-site assistance and maintenance, etc.), also by third parties specifically authorized;
activities imposed by laws, regulations or provisions in force and applicable to services and performances offered through the site;
statistical analysis on aggregated data related to the site's performances;
evaluations regarding the site's usage by users;
optimization of the commercial offer also through focused and selected analysis;
On the pages of the site where your personal data is explicitly collected, you will find additional specific privacy information, as well as the methods for obtaining your consent when the data controller relies on this legal basis for processing.
Legal basis
The processing of your personal data will be carried out on the basis of one or more of the following conditions. In particular, the processing carried out for the above purposes, concerning:
point 1 and point 2, have as legal basis the need to respond to your information request or to carry out your requests to receive a service directly available through the site: therefore, it is a voluntary or strictly necessary provision of data connected to a pre-contractual and/or contractual phase or functional to respond to a specific request; as such, the data collected each time is mandatory and, if you do not intend to provide it, the service cannot be provided or the request cannot be answered;
point 3, will have as legal basis the need to comply with a legal obligation such as the obligation to implement security measures required by specific laws in the banking/financial/insurance sector applicable for certain services provided through the site and as such these data and related treatments are mandatory;
point 4, since these are anonymized data, data from which it is not possible to re-identify, even indirectly, a natural person, these data are no longer personal data, therefore the related treatments are exempt from the application of privacy regulations and a particular legal basis is not necessary.
Points 5, 6, will be based on his informed and free consent, which will be requested in specific pages of the website and preceded by our specific information or cookie policy (cookie policy section). In this case, the provision of data is absolutely free, and in the absence of his consent, the data will not be collected and used for such purposes in any way. Where the data controller may rely on another legal basis (legitimate interest, public interest...), a specific and detailed Information will be provided.
Processing methods, security measures, and retention times
All data will be processed mainly in electronic format. Personal data as well as any other possible information that can be directly or indirectly associated with a specific user are collected and processed applying technical and organizational security measures to ensure an adequate level of security, taking into account the state of the art and implementation costs, or, where applicable, security measures prescribed by specific regulations such as, for example not exhaustively: measures provided by applicable measures issued by the Guarantor Authority for the protection of personal data or by specific regulations and will only be accessible to specifically authorized personnel. With regard to the aspects of personal data protection, you are invited, pursuant to art. 33 of the GDPR, to report to the data controller any circumstances or events from which a potential “personal data breach” may arise in order to allow an immediate evaluation and the adoption of possible actions to counteract such event, by sending a communication to [email protected]. It is reminded that a personal data breach means "a security breach that accidentally or unlawfully leads to the destruction, loss, alteration, unauthorized disclosure, or access to transmitted, stored, or otherwise processed personal data". The measures adopted by the data controller do not exempt the user/customer from paying attention to the use, where required, of passwords/PIN of adequate complexity, which must be periodically updated and carefully guarded and made inaccessible to others, in order to prevent improper and unauthorized use. The personal data processed will be kept in a form that allows the identification of the data subjects for a period not exceeding the achievement of the purposes for which they are processed (for example, data related to assistance requests are kept for a limited period to resolve the reported issue), except for the need to keep them for a longer period following requests from competent authorities in the prevention and prosecution of crimes or, in any case, to assert or defend a right in court.
Categories of recipients of personal data
Depending on the operation or service, customer/user data may be communicated by the data controller to specialized companies to which technical and organizational tasks are entrusted that will process the data as autonomous data controllers or appointed data processors (e.g. website maintenance companies). The data may also be communicated to those subjects to whom such communication must be made in compliance with an obligation provided for by law, by a regulation or by EU legislation, as well as as a result of a provision of the Authority.
Transfer of data outside the EU
The personal data of the customer/user may be transferred to third countries outside the European Union under one of the following conditions: that it is either a third country deemed adequate pursuant to art. 45 of EU Regulation 2016/679 or a country for which the data controller provides adequate or appropriate guarantees regarding data protection pursuant to art. 46 and 47 of said EU Regulation, always provided that data subjects have actionable rights and effective recourse means, or that one or more of the derogations under art.49 of said EU Regulation paragraph 1 letters a) - g) are applicable from time to time.
Rights of Data Subjects
In relation to the processing of his/her personal data carried out through this website, at any time, as a data subject, you may exercise the rights provided for by the GDPR, where applicable. In particular, you may:
access your personal data, obtaining evidence of the purposes pursued by the data controller, the categories of data involved, the recipients to whom they can be communicated, the applicable retention period, the existence of automated decision-making processes, including profiling, and, at least in such cases, significant information on the logic used, as well as the importance and potential consequences for the data subject, if not already indicated in the text of this Privacy Policy;
promptly obtain the correction of inaccurate personal data concerning you;
in cases provided for by the law, obtain the deletion of your data;
obtain the limitation of processing or object to it, when permitted under the applicable law provisions for the specific case;
in cases provided for by the law, request the portability of the data that you have provided to the controller, i.e. receive them in a structured, common and machine-readable format, and also request to transfer such data to another controller, if technically feasible;
if you deem it appropriate, file a complaint with the supervisory authority.
For data processing for which the legal basis is consent, you can always revoke it and in particular exercise the right to object to direct marketing. To exercise your rights, simply contact Mondokart Racing Spa referring to the contact details provided at the beginning of this Privacy Policy. For further information on your rights and on privacy regulation in general, we invite you to visit the website of the Italian Data Protection Authority, available at www.garanteprivacy.it
