Privacy Policy

PRIVACY POLICY FOR THE PROCESSING OF PERSONAL DATA

Fernus Frères S.r.l.
Address: Via del Monte, 10 – 40126 Bologna – ITALY
VAT Number: 032799530376 – R.E.A. 0277057 – BO REG. IMP. 006-35194
Tel: ++39051221776
Fax: ++39051221384
Certified Email (PEC): montres.perseo@pec.it

Information on the Processing of Personal Data

Fernus Frères S.r.l., headquartered at Via del Monte, 10, 40126 Bologna, Italy, VAT No. 032799530376. Dr. Francesco Fernus, as the Data Controller, informs you, pursuant to Art. 13 of Legislative Decree 196/2003 (the “Privacy Code”) and Art. 13 of EU Regulation 2016/679 (the “GDPR”), that your data will be processed in accordance with the following terms and purposes:

Object of Processing
The Data Controller processes personal data, including identifying information (such as name, surname, business name, address, phone number, email, bank and payment references) – hereinafter, “personal data” or simply “data” – provided by you upon entering into contracts for the purchase of goods.

Purpose of Processing
Your personal data is processed for:

A) Without your express consent (per Art. 24 (a), (b), (c) Privacy Code and Art. 6 (b), (e) GDPR), for the following Service Purposes:

  • To conclude contracts for services provided by the Data Controller;
  • To fulfill pre-contractual, contractual, and fiscal obligations resulting from ongoing relationships with you;
  • To comply with obligations required by law, regulation, EU norms, or an order by the authorities (such as in anti-money laundering regulations);
  • To exercise the rights of the Data Controller, for example, the right to defense in legal proceedings.

B) Only with your specific and distinct consent (per Art. 23 and 130 Privacy Code and Art. 7 GDPR), for Marketing Purposes:

  • To send you, via email, postal mail, SMS, and/or phone calls, newsletters, commercial communications, and/or advertising material regarding products or services offered by the Data Controller, and for service satisfaction surveys;
  • To send you, via email, postal mail, SMS, and/or phone calls, third-party commercial and/or promotional communications (such as from business partners, insurance companies, and other companies).

Please note that if you are already a customer, the Data Controller may send you communications related to its own services and products similar to those you have already purchased, unless you choose to opt out (per Art. 130, paragraph 4 of the Privacy Code).

Data Processing Methods
Your personal data will be processed through operations as outlined in Art. 4 of the Privacy Code and Art. 4(2) GDPR, specifically: collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, usage, interconnection, blocking, communication, erasure, and destruction of data. Data is processed both manually and electronically. The Data Controller will process your personal data for as long as necessary to fulfill the purposes outlined above, and in any case, for no more than 10 years from the termination of the service relationship for Service Purposes, and no more than 2 years from data collection for Marketing Purposes.

Data Access
Your data may be accessible for the purposes listed in sections 2.A) and 2.B):

  • To employees and collaborators of the Data Controller;
  • To third-party companies or other entities (for example, banks, professional firms, consultants, insurance companies for insurance services) performing outsourcing activities on behalf of the Data Controller, as external data processors.

Data Disclosure
Without the need for express consent (per Art. 24 (a), (b), (d) Privacy Code and Art. 6 (b), (c) GDPR), the Data Controller may disclose your data for the purposes listed in section 2.A) to supervisory bodies (such as IVASS), judicial authorities, insurance companies for insurance services, as well as to those entities to whom data disclosure is required by law to fulfill these purposes. These entities will process the data as independent data controllers. Your data will not be disclosed.

Data Transfer
Personal data is stored on paper, hard drives, and servers managed by Sistemi S.p.A. The Data Controller assures that the data transfer will comply with applicable legal provisions through the signing of standard contractual clauses.

Nature of Data Provision and Consequences of Refusal
Providing data for the purposes in section 2.A) is mandatory. Without it, we cannot provide the services described in 2.A). Providing data for the purposes in section 2.B) is optional. You may refuse to provide data or subsequently deny permission for processing of already provided data; in such cases, you will not receive newsletters, commercial communications, and promotional material. However, you will still be entitled to the services in 2.A).

Data Subject Rights
As a data subject, you have the rights under Art. 7 of the Privacy Code and Art. 15 GDPR, specifically:

i. To confirm the existence or non-existence of your personal data and its intelligible communication;
ii. To obtain details on:

  • a) the source of personal data;
  • b) the purposes and methods of processing;
  • c) the logic involved if processing is carried out electronically;
  • d) the identity of the Data Controller, processors, and appointed representatives;
  • e) the entities or categories to whom personal data may be disclosed.

iii. To request:

  • a) updates, rectifications, or, if in your interest, data integration;
  • b) deletion, anonymization, or blocking of data processed in violation of the law;
  • c) verification that those to whom the data has been disclosed were informed of the actions taken, unless it proves impossible or disproportionate.

iv. To object, entirely or partially:

  • a) on legitimate grounds, to the processing of personal data, even if relevant to the purpose of collection;
  • b) to the processing of personal data for advertising or direct sales or for carrying out market research or commercial communication.

You may also exercise rights outlined in Art. 16-21 GDPR (rights to rectification, erasure, restriction, data portability, opposition), and the right to lodge a complaint with a Supervisory Authority.

Exercise of Rights
You can exercise these rights at any time by sending:

  • A registered letter with return receipt to Fernus Frères S.r.l., Via del Monte, 10-40126 Bologna (BO);
  • An email to the PEC address: montres.perseo@pec.it.

Data Controller, Processor, and Designated Persons
The Data Controller is Fernus Frères S.r.l., Via del Monte, 10, 40126 Bologna (BO), VAT No. 032799530376, represented by Dr. Francesco Fernus, born in Bologna on 11/05/1984, tax code FRNFNC84E11A944O. Dr. Francesco Fernus is also the appointed Data Processor. All documentation, including the data processing register, is kept at the headquarters.