Privacy policy

USERS OF THE WEBSITE INFORMATION

This information is provided, pursuant to art. 13 of Regulation (EU) no. 2016/679 for the Protection of Personal Data (“General Data Protection Regulation”, hereinafter “GDPR”), to those who connect to this website (hereinafter, the “Site”), owned and managed by BRAVO SRL. It has the purpose of describing the processing of navigation data of users who consult the Site and/or who use the functions and services made accessible through the Site itself (e.g. newsletter services, contact form). This disclosure is provided only for those who interact with the Site owned by BRAVO SRL but not also for other websites owned by third parties that may be consulted by users via specific links. Users are invited to read this information carefully before submitting any type of personal information and/or filling out any electronic form on the Site.

• 1) Identity of the Owner
The Data Controller is BRAVO SRL, with registered office in VIA CANAVERE 11 – SAVIGLIANO. The Data Controller can be contacted at the e-mail address info@bravosrl.it or by writing to the registered office of the company listed above.

• 2) Type of data processed
The personal data processed through our Site are as follows:
a. Navigation data
The information regarding the processing of navigation data and the so-called “cookies” are visible in the cookie policy section.
b. Data provided voluntary by the interested party
BRAVO SRL will process this data in compliance with the applicable legislation, assuming that they refer to the user or to third parties who have expressly authorized him to provide them on the basis of an appropriate legal basis which legitimizes the processing of the data question. In this case, the User acts as an independent data controller, assuming and legal obligations and responsibilities, and confers the widest indemnity with respect to any objection, claim, request for compensation for damage from treatment, etc. that should reach BRAVO SRL from third parties whose personal data have been processed through the use of the services of the Site in violation of the rules on the protection of applicable personal data.

• 3) Purpose of the treatment
With the exception of navigation data and any cookies, the personal data that Users communicate via the Website and other contact channels may be processed for the following purposes:
a.Respond to (or provide updates on) questions and requests for information or quotes; fulfil the requested services and any additional services resulting from the sale of the products or other services of the Owner; possibly fulfil the legal and tax obligations of the Owner. 
b. Allow the User to register on the Site and manage their personal account if provided for by the Site.
c. Pursue legitimate interests, such as defence in court, or the communication of special events relating to the products/services requested by the User, or direct marketing (and related processing activities, such as profiling, to the extent that is related to such direct marketing).
d. Building customer loyalty, also through newsletters and marketing operations.
The User’s personal data will not be used for different and additional purposes to those described in this Information, except by informing the User in advance and, where necessary, obtaining your consent.

• 4) Legal basis of the treatment
The legal basis for the processing for the purposes indicated in points 3a) and 3b) above are the need to execute the contract to which the User is a party, or the pre-contractual measures adopted at your request, or to fulfil a legal obligation to which the Owner is subject. The legal basis for the processing for the purposes indicated in point 3c) above is the need to pursue the legitimate interests of the Data Controller. The legal basis for the processing for the purposes indicated in point 3d) above is the User’s consent.

• 5) Recipients of the data
The collected data will not be disclosed and may be communicated, as well as to subjects who have the right and interest to access the User’s personal data by law or secondary and/or community regulations, to internal staff at the Owner as well as to companies, associations or professional firms that have to provide goods or services to the Owner, such as, for example, IT or cloud service providers.

• 6) Data transfer
The Data Controller does not transfer the personal data of the interested party to third countries or to international organizations. However, it reserves the right to use cloud services; in which case, the service providers will be selected among those who provide adequate guarantees, as required by art. 46 GDPR 679/16.

• 7) Data communication
The communication of data marked with an asterisk on any forms on the Site is necessary: failure to provide it will make it impossible for the Data Controller to provide what is requested by the User. However, the communication of data without conferment may not allow to provide or communicate what has been requested.

• 8) Data retention
The data collected will be kept, starting from their receipt/update, for the time strictly necessary to achieve the purposes indicated above and in any case in compliance with the terms of the law. If the Personal Data are processed for two different purposes, they will be kept until the purpose with the longer term expires; however, the Personal Data will no longer be used for that purpose whose retention period has expired. Once this period has elapsed, the data will be cancelled and/or made anonymous so as not to allow, even indirectly or by linking other databases, to identify the interested parties, without prejudice to the need to keep the data to meet the obligations established by the applicable legislation in force also after the cessation of the processing operations.

• 9) Rights of the interested party
At any time, the User may exercise the following rights against BRAVO SRL pursuant to articles 15 and 22 GDPR:
a. access your Personal Data held by the Data Controller;
b. request its rectification and/or cancellation (“oblivion”);
c. request the limitation of treatment;
d. request Data portability;
e. object, at any time, for reasons related to his particular situation, to the processing of personal data concerning him pursuant to article 6, paragraph 1, letters e) or f), including profiling on the basis of these provisions;
f. object, at any time, if the personal data are processed for direct marketing purposes, to the processing of personal data concerning him carried out for these purposes, including profiling to the extent that it is connected to such direct marketing.
The User also has the right to freely revoke any consent given at any time. The treatments carried out in accordance with the consent given and the related legal effects will in any case remain valid even after the possible revocation of the consent. To exercise these rights, report problems or request clarifications on the processing of personal data, the User can send an email to the email address info@bravosrl.it, specifying the subject of the request. In any case, the User has the right to lodge a complaint with the component Supervisory Authority, which in Italy is identified with the Guarantor for the Protection of Personal Data, if he believes that the processing of his personal data is contrary to the law applicable.

• 10 Changes and Updates
This information may be subject to changes and/or additions, also as a consequence of the update of the applicable legislation. The updated information will be available on the website www.bravosrl.it, in the Privacy section. BRAVO SRL therefore invites the User to visit this section regularly to take note of the most recent and updated view of the Privacy Policy.

CUSTOMER INFORMATION

Dear Customer, 
with this document we intend to provide you with the information pursuant to art. 13 of regulation (EU) no. 2016/679 for the Protection of Personal Data (“General Data Protection Regulation”, hereinafter GDPR).

• Identity of the Owner
The Data Controller is BRAVO SRL, in the person of its pro tempore legal representative, with registered office and processing office in VIA CANAVERE 11 – SAVIGLIANO. The Data Controller can be contacted at the e-mail address info@bravosrl.it or by writing to the registered office of the company listed above. The Data Controller guarantees the security, confidentiality and protection of the personal data in its possession, at any stage of the processing process. The personal data collected is used in compliance with the principles of lawfulness, correctness, transparency and relevance and in compliance with the GDPR.

• Purpose of the treatment
Your personal data will be processed for the following purposes:
a. execution of obligations deriving from a contract to which you are a party of to fulfil, before or after the execution of the contract, your specific requests;
b. organisational, administrative, accounting and commercial management of the contract;
c. fulfilment of obligations established by law, by a regulation, by community legislation or by an order of the Authority;
d. internal statistical analyses;
e. sending promotional offers, commercial initiatives, advertising material and/or information messages relating to the activity, products and services of BRAVO SRL through automated processes (such as email, text messages, and the like) as well as traditional means (such as telephone contact through an operator, sending paper mail) as well as allowing the Company to conduct any market research, surveys on the quality of services and customer satisfaction;
f. soft spam
We also remind you that on the basis of current legislation, BRAVO SRL may use the e-mail coordinates you provide when purchasing one of our services and/or performance and/or products to offer you products, services and performance similar to those you purchased. However, if you do not wish to receive such communications, you can give notice at any time by sending the request to the email address info@bravosrl.it or by using the link on the email communication you received. BRAVO SRL, in this case, will interrupt the aforementioned activity without delay.

• Legal basis of the treatment
The legal basis of the data processing for the purposes indicated above consists in executing a contract of which you are a part or the pre-contractual measures adopted at your request or in following up on a legal obligation or in protecting one of our legitimate interests (e.g. pursuit of statutory purposes or, if necessary, to exercise and/or defend the rights of the company in the court). The provision of data for the fulfilments required and sanctioned by law is mandatory; for the rest, the provision of data is optional but necessary; therefore, your refusal will make it impossible for the Data Controller to follow up on the established relationship, its punctual execution and assistance services.
The processing for marketing purposes will be carried out on the basis of your consent. To this end, the provision of data is optional; however, any refusal to give consent will make it impossible to receive promotional initiatives and offers.

• Methods of treatment
The processing of your personal data is carried out both with paper and electronic/IT/telematic tools/supports by means of the operations indicated in art. 4 n.2) GDPR and precisely: collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and destruction of data.

• Recipients of the data
Your personal data will not be disclosed and disseminated and will not be disclosed to indeterminate subjects, in any possible form, including that of making them available or simple consultation. Such data may instead be processed by subjects placed under the authority of the Data Controller and/or by collaborators expressly authorized and who have received adequate operating instructions, again for the purposes indicated above. Without prejudice to the communications made in fulfilment of legal and contractual obligations, your data may be disclosed to subjects entitled to access it by virtue of the provisions of the law, regulations, community legislation, as well as, where necessary for the pursuit of the above specific purposes and in the strictly necessary limits, to subjects who have to provide goods or services to the Data Controller, such as, by wat of example: credit institutions, companies and insurance businesses; legal, administrative, tax or marketing consultants who assist the company in carrying out its activities; IT or cloud service providers; any agents, subcontractors and/or sub-suppliers engaged in activities related to the execution of the Contract with the Owner; subsidiaries, investee or associated companies; and this, always in compliance with the GDPR and for the pursuit of the aforementioned purposes.

• Data transfer
The Data Controller does not transfer your personal data to third countries or to international organizations. However, it reserves the right to use cloud services; in which case, the service providers will be selected from among those who provide adequate guarantees, as required by art. 46 GDPR.

• Data retention
Your collected data will be kept, starting from their receipt/update, for the time strictly necessary to achieve the purposes indicated above and in any case in compliance with the terms of the law. After this period, the data will be cancelled and/or made anonymous so as not to allow, even indirectly or by linking other databases, to identify the interested parties, without prejudice to the need to keep the data to meet the obligations set forth by the applicable legislation in force also after the cessation of the processing operations. In case of treatment based on consent, your data will be kept until you revoke the consent given and, subsequently, for the time strictly necessary to guarantee the exercise of the rights of the company, even in the court. The retention period will be determined on the basis of the evaluation of the single transaction and, in any case, it will take place in compliance with the principles of necessity, purpose, relevance, minimization and non-excess of the GDPR.

• Rights of the interested party
At any time, you may exercise the following rights against BRAVO SRL pursuant to articles 15 and 22 GDPR:
a. right of access to your personal data;
b. right of rectification or cancellation;
c. right to limitation of treatment;
d. right to portability;
e. right of opposition.
You also have the right to freely revoke the consent given at any time. The treatments carried out in accordance with the consent given and the related legal effects will in any case remain valid event after the possible revocation of the consent. To exercise these rights, report problems or ask for clarifications on the processing of your personal data, you can send an email to the email address info@bravosrl.it specifying the subject of the request. In any case, you have the right to lodge a complaint with the competent supervisory authority, which in Italy is identified with the Guarantor for the Protection of Personal Data, if you believe that the processing of your personal data is contrary to the applicable law.

• Changes and updates

This information may be subject to changes and/or additions, also as a consequence of the update of the applicable legislation. The updated information will be available on the website www.bravosrl.it, in the privacy section.

SUPPLIERS INFORMATION

Dear Supplier, 
with this document we intend to provide you with the information pursuant to art. 13 of regulation (EU) no. 2016/679 for the Protection of Personal Data (“General Data Protection Regulation”, hereinafter GDPR).

• Identity of the Owner
The Data Controller is BRAVO SRL, in the person of its pro tempore legal representative, with registered office and processing office in VIA CANAVERE 11 – SAVIGLIANO. The Data Controller can be contacted at the e-mail address info@bravosrl.it or by writing to the registered office of the company listed above. The Data Controller guarantees the security, confidentiality and protection of the personal data in its possession, at any stage of the processing process. The personal data collected is used in compliance with the principles of lawfulness, correctness, transparency and relevance and in compliance with the GDPR.

• Purpose of the treatment
Your personal data will be processed for the following purposes:
a. execution of obligations deriving from a contract to which you are a party of to fulfil, before or after the execution of the contract, your specific requests;
b. administrative-accounting obligations, such as accounting and treasury management as well as invoicing (for example, the verification and registration of invoices), in compliance with the requirements of current legislation;
c. fulfilment of obligations established by law, by a regulation, by community legislation or by an order of the Authority.
Your data will not be used for purposes other than those described in this statement unless you have been informed in advance and, where necessary, obtained your consent.

• Legal basis of the treatment
The legal basis of the data processing for the purposes indicated above consists in executing a contract of which you are a part or the pre-contractual measures adopted at your request or in following up on a legal obligation or in protecting one of our legitimate interests (e.g. pursuit of statutory purposes or, if necessary, to exercise and/or defend the rights of the company in the court). The provision of data for the fulfilments required and sanctioned by law is mandatory; for the rest, the provision of data is optional but necessary; therefore, your refusal will make it impossible for the Data Controller to follow up on the established relationship, its punctual execution and assistance services.

• Methods of treatment
The processing of your personal data is carried out both with paper and electronic/IT/telematic tools/supports by means of the operations indicated in art. 4 n.2) GDPR and precisely: collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and destruction of data. The Data Controller does not carry out treatments consisting of automated decision-making processes on the data of customers who are natural persons or of natural persons who operate in the name and on behalf of customers who are legal entities.

• Recipients of the data
Your personal data will not be disclosed and disseminated and will not be disclosed to indeterminate subjects, in any possible form, including that of making them available or simple consultation. Such data may instead be processed by subjects placed under the authority of the Data Controller and/or by collaborators expressly authorized and who have received adequate operating instructions, again for the purposes indicated above. Without prejudice to the communications made in fulfilment of legal and contractual obligations, your data may be disclosed to subjects entitled to access it by virtue of the provisions of the law, regulations, community legislation, as well as, where necessary for the pursuit of the above specific purposes and in the strictly necessary limits, to subjects who have to provide goods or services to the Data Controller, such as, by wat of example: credit institutions, companies and insurance businesses; legal, administrative, tax or marketing consultants who assist the company in carrying out its activities; IT or cloud service providers; any agents, subcontractors and/or sub-suppliers engaged in activities related to the execution of the Contract with the Owner; subsidiaries, investee or associated companies; and this, always in compliance with the GDPR and for the pursuit of the aforementioned purposes.

• Data transfer
The Data Controller does not transfer your personal data to third countries or to international organizations. However, it reserves the right to use cloud services; in which case, the service providers will be selected from among those who provide adequate guarantees, as required by art. 46 GDPR.

• Data retention
Your collected data will be kept, starting from their receipt/update, for the time strictly necessary to achieve the purposes indicated above and in any case in compliance with the terms of the law. After this period, the data will be cancelled and/or made anonymous so as not to allow, even indirectly or by linking other databases, to identify the interested parties, without prejudice to the need to keep the data to meet the obligations set forth by the applicable legislation in force also after the cessation of the processing operations. In case of treatment based on consent, your data will be kept until you revoke the consent given and, subsequently, for the time strictly necessary to guarantee the exercise of the rights of the company, even in the court. The retention period will be determined on the basis of the evaluation of the single transaction and, in any case, it will take place in compliance with the principles of necessity, purpose, relevance, minimization and non-excess of the GDPR.

• Rights of the interested party
At any time, you may exercise the following rights against BRAVO SRL pursuant to articles 15 and 22 GDPR:
a. right of access to your personal data;
b.right of rectification or cancellation;
c. right to limitation of treatment;
d. right to portability;
e. right of opposition.
You also have the right to freely revoke the consent given at any time. The treatments carried out in accordance with the consent given and the related legal effects will in any case remain valid event after the possible revocation of the consent. To exercise these rights, report problems or ask for clarifications on the processing of your personal data, you can send an email to the email address info@bravosrl.it specifying the subject of the request. In any case, you have the right to lodge a complaint with the competent supervisory authority, which in Italy is identified with the Guarantor for the Protection of Personal Data, if you believe that the processing of your personal data is contrary to the applicable law.

• Changes and updates
This information may be subject to changes and/or additions, also as a consequence of the update of the applicable legislation. The updated information will be available on the website www.bravosrl.it, in the privacy section.