Privacy policy

We respect the privacy of the User and are committed to protecting it through compliance with this privacy policy (hereinafter "Policy”).

Pursuant to Articles 13 and 14 of EU Regulation 679/2016 (hereinafter also only “GDPR”), Gabel Industria Tessile spa (hereinafter also only the “Company” or the “Controller”), as “Controller” of the processing, provides information regarding the use of any personal data provided by the Users who consult and/or interact with web services accessible electronically starting from the address: www.gabelgroup.it corresponding to the home page of the Company's official website (hereinafter “Website”).
The information is provided only for the Site in question and not for other websites that may be consulted by the User via links and is addressed to Users of this Site. The Site may contain links to sites, services, and other Internet resources attributable to third parties. In this case, the Owner is in no way responsible for the contents, security and usability of these sites and resources, nor verifies the policy, nor issues guarantees regarding the protection of privacy and personal data by said third parties.
By accessing and using the Website and the Services, you acknowledge that you have read, understood and agreed to be bound by the terms of this Policy.
In compliance with the obligations dictated regarding the protection of personal data, this Site respects and protects the confidentiality of Users.

1. Holder of personal data
The Data Controller is:
Gabel Industria Tessile spa, (CF and P.IVA 00185790185), with registered office in Rovellasca via XX Settembre n. 35, in the person of the legal representative pro tempore (telephone number 02964771 - email: This email address is being protected from spambots. You need JavaScript enabled to view it.).
The list of persons authorised for processing and those responsible for processing, is kept at the Owner's premises and made available at the request of the interested party.


2. Personal data subject to processing
The Company will only collect and process personal data voluntarily provided by Users of this Site. Users may browse the Site without having to provide personal data, except for browsing data, as specified below. Each User of the Site may choose to provide the Owner with limited personal data as required in order to obtain information about our services. Once registered, the personal data collected will only be used for the services indicated in the available Information.
The Company does not deliberately collect, through the Site, sensitive or judicial personal data.
Sensitive data, pursuant to Article 4 of European Regulation GDPR 679/2016, includes personal data capable of revealing racial and ethnic origin, religious, philosophical, or other beliefs, political opinions, membership in religious, philosophical, political, or trade union parties, unions, associations, or organizations, as well as personal data capable of revealing health status and sexual life. Judicial data, again pursuant to Article 4 of European Regulation GDPR 679/2016, includes personal data capable of revealing the provisions referred to in Article 3, paragraph 1, letters a) to o) and r) to u), of Presidential Decree No. 313 of 14 November 2002, regarding criminal records, the registry of administrative sanctions dependent on crimes and the related pending charges, or the status of defendant or suspect under articles 60 and 61 of the Code of Criminal Procedure. We recommend that you do not provide such information through our Site.
The Company may collect for the purposes described in this Policy the following categories of personal data:
-IP address of the User's device, unique identifiers of the User's mobile device, length of stay on the Site, services used, links and messages activated, browser characteristics (type, language, installed plug-ins, etc., cookies, etc.);
-identification and contact data obtained during contractual or pre-contractual relationships with the Company such as, for example, first name, surname, company name where it contains personal data, emails and other contact details;
-information contained in the submitted application, in order to request information about our products and services, request updates on the latest news, request collaborations and partnerships;
-information on online purchases such as, for example, products and their price;
-information about the browser used or browsing behavior;
-information provided by the User or published in a public place, on the Company's social media pages or website.

3. Purpose of the treatment
The User's personal data will be processed for the following purposes:

a) browsing this Website and in particular for:
-activities aimed at the functioning of the Site. The system acquires in the course of normal operation certain personal data whose transmission is implicit in the use of Internet communication. This category of data includes the IP addresses or domain names of the computers and terminals used by Users, the addresses in URI/URL (Uniform Resource Identifier/Locator) notation of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (good purpose, error, etc.) and other parameters relating to the operating system and the user's computer environment;

b) contact the User in response to the request sent through the sections “Hospitality - Catalogue” and “Contacts” and in particular for:
-validate, manage and respond to a question or request;
-satisfy product information requests, offers, and quotes;
-send informational materials or other communications;
-inform you of changes to the Site or updates to services;
-offer the best possible service and improve the User experience;
-allow the User/Applicant to exercise his rights;

c) manage requests for the purchase of products and services and requests for collaborations and partnerships received through the Site section “Contacts” and in particular for:
-execution of the contract and/or pre-contractual measures;
-receive, validate, and manage requests for purchase orders for products and services and requests for collaboration and partnerships for the possible establishment of the contractual relationship;
-execute purchase requests, provide products and services, and establish collaborations and partnerships;
-provide any third parties with the necessary information for the exclusive purpose of the contractually agreed obligations;
-process payments;
-communicate with the User regarding his orders, products, services and related promotional offers;
-receive and manage any goods changes or returns and refunds after purchase;

d) prevent and detect unauthorized use of the Site, as well as potential fraud committed against the User and the Company and in particular for:
-activate mechanisms necessary to prevent and detect improper use of the Site, together with possible attempts at fraud against the User and the Company;
-in the event of a fraudulent transaction or detection of anomalous behavior indicating an attempted fraudulent use of the Company's features, products, or services, block the transaction or delete the account;
-establish liability in the event of hypothetical cyber crimes against the site;

e)for legal, administrative and audit purposes and in particular for:
-fulfilment of obligations under law, regulations, Community legislation or an order of the Authority, for example, accounting and budgetary, anti-money laundering, antitrust obligations, as well as obligations in customs matters (including storage in one's customs warehouses), tax, health, labour and security, etc.);

f) assert or defend a right in judicial, extrajudicial or administrative proceedings.

4. Legal basis
In accordance with art. 6 of Reg. EU 679/2016, the conditions of lawfulness (legal basis) for the processing of Users' personal data are as follows:

-regarding the treatments referred to in letters a), d) and f): legitimate interest of the data controller, in compliance with art. 6 letter f) GDPR;
-regarding the treatments referred to in letters b) and c): execution of the contract or pre-contractual measures, in compliance with art. 6 letter b) GDPR;
-regarding the treatments referred to in letter e): legal obligation, in compliance with art. 6 par. 1 letter c).

The provision of personal data is necessary for the establishment and correct fulfillment of the Contract, as well as to correctly fulfill the obligations set forth in current legislation. Therefore, any refusal by the interested party to provide personal data, in whole or in part, in pursuit of the indicated purposes, will result in the impossibility of establishing or implementing the Contract or of correctly carrying out the obligations set forth in the current rules.

5. Methods of processing personal data
In relation to the purposes described above, the processing of personal data takes place using manual, IT and telematic tools, in any case, in order to guarantee the security and confidentiality of the data themselves. Collection, recording, storage, organization, processing, selection, extraction, comparison, interconnection, communication, blocking, erasure, destruction is permitted. Still with regard to data security, specific security measures are observed to protect personal data and prevent its loss and/or destruction, improper and/or unauthorized use, improper and/or unauthorized access, disclosure and modification, and in general unlawful use.

6. Period of retention of personal data
The User's personal data will be processed:
-regarding personal, contact, accounting, and payment data relating to the conclusion of the contract: for the period strictly necessary to fulfill the contract and in any case no later than the 31st of December of the tenth year following the exhaustion of the contractual obligations, except for the receipt of documents interrupting the statute of limitations or the existence of the conditions for suspending the statute of limitations; or, in any case, for the different period provided by law for proof of compliance with legal or tax obligations or the period necessary to allow the Company to potentially protect its rights in judicial, administrative proceedings or in any case before a Public Authority);
-as for navigation data: for the period relating to the navigation session;
-relating to personal and contact data released on the occasion of the contact request: for the period not exceeding 5 years from their collection by the Owner.
In any case, the data processed will be kept for the duration of any out-of-court and/or judicial proceedings, until the deadlines for obtaining judicial protections and/or appeal actions have been exhausted. Verification of the obsolescence of the data retained in relation to the purposes for which they were collected is carried out periodically and, once the aforementioned retention periods have expired, the data are deleted or anonymized.


7. Recipients of personal data and the possibility of transferring personal data to third countries
The User's personal data may be communicated to:
-authorized processing persons and processors pursuant to art. 28 GDPR;
-companies, producers, distributors, suppliers, commercial partners of the Owner within the limits necessary to carry out the activities covered by the negotiating reports and/or requests of the interested party;
-third parties exclusively for accounting, tax, legal, insurance needs, or in the event of checks by police bodies or if required by law;
-financial administrations, public bodies, judicial authorities, law enforcement;
-credit recovery company;
-companies that detect financial risks and carry out fraud prevention activities;
-supervisory and supervisory authorities;
-judicial and/or public safety authorities;
-any business partners of the Owner involved in the contractual relationship;
-data protection officer (DPO).

For the pursuit of the above purposes, the personal data of Users will be processed in the European Union and will be transferred to non-EU territory, only in the terms and with the guarantees provided by the Privacy Regulation and, in particular, pursuant to Articles 44 – 49 of the GDPR.
It should be noted, in particular, that such data will not be disseminated and will be processed by entities duly responsible for carrying out these tasks, constantly identified and/or appointed, appropriately instructed and informed by the constraints imposed by law, as well as through the use of security measures aimed at ensuring the protection of its confidentiality and avoiding the risks of loss or destruction, unauthorized access, of treatments that are not permitted or do not comply with the above purposes.

8. Minors 16 years old
The Company does not allow browsing to minors under the age of 16 for the purpose of protecting their personal data and information, especially in an online environment. Therefore, the Company does not deliberately collect or maintain personal data relating to minors.

9. Right of access to personal data and complaint methods
Please note that, with reference to the personal data provided, the User holds the following rights pursuant to Articles 15 to 22 of the GDPR:
-withdraw your consent to the processing of your Personal Information. To the extent that the legal basis for processing personal information is consent, the User has the right to withdraw such consent at any time. The revocation does not affect the lawfulness of the processing carried out before the revocation;
-be subjected to lawful, correct and transparent treatment (art. 6 GDPR);
-obtain confirmation that personal data is being processed or not and, in this case, obtain access to personal data - including a copy thereof - and communication of, among other things, the following information: purpose of processing, categories of personal data processed, recipients to whom these have been or will be communicated, data retention period, (right of access - Article 15 GDPR;
-obtain, without undue delay, the rectification of inaccurate personal data and/or the integration of incomplete personal data (right to rectification - Article 16 GDPR);
-obtain, without unjustified delay, the deletion of personal data (right to deletion – art. 17 GDPR);
-receive personal data in a structured, commonly used, and machine-readable format, if processing is based on consent and carried out by automated means (right to data portability - Article 20 GDPR);
-file a complaint with the Data Protection Authority, following the procedures and instructions published on the Authority's official website (art. 77 GDPR) if you believe there is a problem in the way personal data is managed.
The data subject may request a copy of the personal data being processed and may exercise his or her rights in the following ways
- by email: sending a request to the Company at the following email address: This email address is being protected from spambots. You need JavaScript enabled to view it.;
- by ordinary mail, to the company's registered office (Gabel Industria Tessile spa).
When contacting the Data Controller, the data subject must make sure to include his/her name, e-mail address, postal address and/or telephone number/s, to be sure that the same can handle your request correctly.
The Company will comply with such requests, revocations or objections as required by applicable data protection rules at the latest within one month of receipt of the request. This period could be extended by up to two months depending on the complexity or number of requests and the Company will explain to you the reason for the extension.

10. Personal Data Protection Officer (DPO)
The Company has appointed a Personal Data Protection Officer (DPO) and, pursuant to Article 37 of the GDPR, has appointed Francesco Tagliabue, with a firm in Como, Piazzale Gerbetto no. 6. The details that allow you to quickly contact the Owner and communicate directly and effectively with him, including the email address, are the following: mail This email address is being protected from spambots. You need JavaScript enabled to view it. - pec: This email address is being protected from spambots. You need JavaScript enabled to view it. - tel.+39.031.262591 – fax. 031.279179.

11. Changes
The Owner reserves the right to modify this Policy at any time and at its own discretion. The User will not receive proactive communications from the Owner regarding any changes. An updated version of this Policy will be effective immediately upon the publication of the new Policy, unless otherwise specified. The continued use of the Site by the User after the effective date of the updated Policy will constitute his consent to such changes. However, without the User's consent, the Owner will not use the User's personal information in a substantially different way than stated at the time of collecting the Personal Information.


Effective date 01/11/2025

 

© Gabel industria tessile Spa a socio unico
Sede legale: Via XX Settembre, 35 - 22069 Rovellasca (Como)
C.F. e P.IVA 00185790185 Capitale sociale i.v.: 15.000.000 €
Iscrizione Registro delle Imprese di Como n.00185790185

https://istituzionale.gabelgroup.it/en/skin/4O4.php

X
SHOP ONLINE:
GABEL: