Privacy Policy
This information was updated in compliance with the current legislation regarding the protection of personal data pursuant to EU Regulation 2016/679 (GDPR) and Legislative Decree 196/2003.
Which personal data are collected?
GPAT Srls collects personal information when it is provided directly by the user or through the use of our website, for example:
-
Information about user and company when creating an account for our site. This includes the name, e-mail address and other contact details of the user / company.
-
Information on transactions, billing and deliveries, in case a product or service has been purchased.
-
Register of user interactions with us, such as requesting a technical clarification, reporting a problem or otherwise. These data are used for the sole purpose of providing the requested service.
-
We may also record some details about how our website is used, for example the unique ID of the device used, the IP addresses and the operating system, clicks on advertising banners, products searched, products purchased, and information downloaded. The sent marketing emails could also automatically detect if the e-mail was received or opened and if a link contained in the marketing materials was used. We use this information to measure our performance, but also to personalize our promotional messages and advertisements.
How are personal data collected used?
Depending on how you use the GPAT Srls website, the interactions you have made, and the authorizations provided, we will use your personal information for the purposes indicated below:
-
To process the order entered and / or provide the services purchased.
-
To manage the online account.
-
To manage and respond to questions or complaints presented to our team.
-
To improve and manage the GPAT Srls site and monitor its use.
-
To send marketing messages and show targeted advertisements, having user consent or being otherwise authorized.
-
To comply with legal and regulatory obligations.
At the basis of our processing of personal information, we find the following legal motivations, as part of the data protection law:
-
Data processing is necessary to enforce a contract with the user or take the necessary preliminary steps to enforce a contract (for example, if a purchase has been made, we use personal data to process the payment and process the order).
-
It is in the legitimate interest of GPAT Srls and of the user company when the user makes orders on behalf of the company.
-
Because we have obtained your consent, for example when we have been contacted for a question, when optional information has been added to your account profile and if you have consented to receive marketing material.
-
It is a legitimate interest of GPAT Srls as an e-commerce provider to maintain, improve and promote its products and services.
With whom GPAT Srls shares personal information?
GPAT Srls shares the information with selected third parties in order to carry out its activities:
-
Hosting service providers: e-commerce and e-mail management are hosted at the servers of the chosen hosting service provider.
-
Government Authorities: when the goods must be delivered in a Country that requires to share the recipient's information with the customs authorities, also when said request comes from the Italian border authorities.
-
Checking creditworthiness and possible fraud: we may share information with credit rating agencies and with third parties involved in the detection and fight against fraud. This check could be carried out, for example, by the on-line bank that deals with credit card payment transactions.
GPAT Srls may also disclose personal information if it considers that such action is necessary to protect the rights, property or personal safety of GPAT Srls, its customers or employees or the public or when otherwise authorized by law.