Homepage/Privacy policy

Privacy Policy Notice

Dear User,
in accordance with EU Regulation 679/2016 (GDPR), Legislative Decree 196/2003 (Privacy Code), as amended, and the provisions of the Italian Data Protection Authority (GPDP), we hereby provide information regarding the processing and protection of personal data.

This information is provided in compliance with data protection legislation, and data processing will follow principles of fairness, lawfulness, transparency, and confidentiality.

By entering data into the contact form/panel for information requests or for subscribing to services or products, users voluntarily provide their personal data to MURGESI.

1. IDENTITY AND CONTACT DETAILS OF THE DATA CONTROLLER
The Data Controller is MURGESI S.R.L., VAT ID IT06009010726, headquartered at S.P. 230 KM 32,150, 76014 SPINAZZOLA BT, Italy – BARLETTA-ANDRIA-TRANI, tel. +39 08083682244, email info@murgesi.com, hereinafter referred to as “Data Controller” or “MURGESI”.

2. PURPOSES AND LEGAL BASES OF PERSONAL DATA PROCESSING
The personal data of users browsing energiapop.it are used for specific purposes (the purpose is the goal for which the personal data is processed) and according to EU Regulation 679/2016. The processing must always be based on a legal ground, as described below:

  • USE OF WEBSITE SERVICES
    • PURPOSE: proper and complete execution of the assigned task:
      • proper and complete execution of the assigned task;
      • smooth website navigation;
      • use of services and/or products on the website;
      • response to messages;
      • download of informational materials;
      • compliance with regulatory obligations;

LEGAL BASIS: the processing is necessary for pre-contractual measures or contractual obligations; providing data is mandatory to establish the relationship and provide the service.

  • INFORMATIONAL ACTIVITIES ABOUT PRODUCTS AND SERVICES
    • PURPOSE: to occasionally receive, also via newsletter, information and communications regarding the products sold and services provided.
    • LEGAL BASIS: the processing is based on the legitimate interest of the Data Controller, balanced with the interests, rights, and freedoms of the data subject. Users are informed, at the time of data collection and with each communication sent, of their right to object at any time in a simple and accessible manner.

3. DISCLOSURE AND RECIPIENTS OF PERSONAL DATA
Data provision is a contractual obligation and a requirement for the contract. Failure to provide data will prevent the establishment of the relationship and service provision.
Data will not be disseminated but may be shared with third parties solely for purposes related to the professional engagement and who perform technical or organizational tasks on behalf of the Data Controller.
Such parties have been appointed as External Data Processors under Article 28 of EU Regulation 679/2016 through a written agreement.

4. DATA RETENTION PERIOD AND CRITERIA USED TO DETERMINE IT
Personal data will be stored in accordance with applicable laws for no longer than necessary for the purposes for which they were collected and processed.
In compliance with the principles of proportionality, minimization, and necessity, personal data will be kept in a form allowing identification of the data subject for a period not exceeding the purposes for which they were processed, taking into account:
– the need to continue storing the data for agreed services or to protect the Data Controller’s legitimate interest;
– and the existence of legal or contractual obligations requiring data retention for specific periods.

5. RIGHTS OF THE DATA SUBJECT AND RIGHT TO COMPLAIN TO THE SUPERVISORY AUTHORITY
The data subject may at any time exercise their rights by contacting the Data Controller as indicated above:

  • withdrawal of consent;
  • access to personal data;
  • correction of personal data;
  • deletion (so-called right to be forgotten) of personal data;
  • restriction of data processing;
  • objection to data processing;
  • data portability;
  • complaint to the Data Protection Authority if they believe their rights have been violated by the Data Controller or a third party.

6. METHODS AND PLACE OF PERSONAL DATA PROCESSING
Personal data is processed using paper and electronic tools, stored in databases with security measures to prevent data loss, unlawful use, and unauthorized access.
Personal data may be processed at the company’s offices by employees managing the site and by subjects authorized as Data Processors.
Additional data may be requested if needed to provide further requested services.
Processing for “information on services” will be done using remote communication techniques such as email.

7. FINAL INFORMATION
MURGESI reserves the right to partially or fully change this Privacy Policy or to update its content (e.g., due to changes in applicable law). The Data Controller will publish updates on this website; you are encouraged to check this page periodically to stay informed of your rights.