Privacy policy

Privacy Policy pursuant to Article 13 of European Regulation 679/2016 (GDPR)

FILANTE Motors S.r.l. (VAT no. 11173950962), represented by its pro tempore legal representative, with registered office at Via I. Newton, 9, 20016 Pero (MI), as Data Controller, informs you that in compliance with Legislative Decree 196/2003 and European Regulation 679/2016 (the "GDPR") governing the protection of personal data and its free movement, your personal data will be processed in accordance with the aforementioned legislation, adhering to the principles of fairness, lawfulness, proportionality of interests, and transparency, as well as the protection of your privacy and rights, for the purposes, methods, and durations specified below.

1. Purposes, Methods, and Legal Bases of Data Processing

This privacy policy applies exclusively to the online activities of this website and is valid for visitors/users of the site. It does not apply to information collected through channels other than this website. The purpose of this privacy policy is to provide maximum transparency regarding the information the site collects and how it is used.
Your personal data will be processed solely for purposes strictly related, instrumental, and necessary to fulfill obligations arising from relations with our Company. Specifically:
Personal data processing is carried out through the operations indicated in Legislative Decree 196/2003 and Article 4(2) GDPR, namely: collection, recording, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, erasure, and destruction.
Personal data processing will be performed electronically by the Controller, the Processor(s), and authorized personnel (data processors), observing all precautionary measures to ensure security and confidentiality. Data will not be profiled or subject to automated decision-making processes. Data will be stored with the Controller and designated Processors. In all cases, your personal data will be stored and processed within the European Economic Area and transferred outside it only with your explicit consent.
If you provide comments and/or personal data to request information and/or specific services (e.g., commercial inquiries, portal registration, newsletter subscription), such data is considered voluntarily provided by you when requesting the service. By posting a comment or other information, you expressly accept this privacy policy.

This site may process some personal data based on the Controller’s legitimate interests under Legislative Decree 196/2003 and Article 6 of Regulation 679/2016. Received data will be used exclusively to provide the requested service and only for the duration necessary for service delivery.
Information users choose to publish via the site’s services/tools is provided knowingly and voluntarily, exempting this site from liability regarding legal violations. Users must verify they have permission to enter third-party personal data or content protected by national/international laws.
Data collected during site operation is used solely for the above purposes and retained strictly as long as necessary. Under no circumstances will site-collected data be disclosed to third parties except upon legitimate judicial request or as required by law.

2. Nature of Data Collection and Consequences of Non-Provision

Like all websites, this site uses log files storing automatically collected information during user visits, including:

  • IP address.
  • Browser type and device parameters.
  • Internet Service Provider (ISP).
  • Visit date/time.
  • Visitor referral/exit pages.
  • Click count (if applicable).

This automated data is processed exclusively in aggregate form to verify site functionality, for security purposes, and for the Controller’s legitimate interests under applicable law. For security (anti-spam filters, firewalls, virus detection), automatically logged data may include personal data (e.g., IP address), which may be used per applicable laws to block attempts to damage the site or harm users. Such data is never used to identify/profile users, only to protect the site and its users.
By using/accessing this site, visitors/users explicitly approve this privacy policy and consent to their personal data being processed as described, including potential disclosure to third parties if necessary for service provision.
Providing data and consent to collection/processing is optional; however, withholding consent may prevent certain services from being provided and impair site navigation. Consent for marketing/advertising purposes (e.g., promotional emails) is optional and requires explicit opt-in via this website.

3. Timelines and Durations

The Controller, Processors, and authorized personnel will process personal data for the time necessary to fulfill the above purposes and, in any case, for no more than 10 years after the termination of the relationship (where required by law). For data provided to receive commercial communications/newsletters, data will be processed until deletion is requested.

4. Communication and Disclosure of Data

Your personal data may be communicated to fulfill contractual obligations or requested services for the above purposes, including:
a) Individuals/entities (e.g., legal/administrative/tax consultants, auditors, couriers, data centers, IT consultants, suppliers) where disclosure is necessary;
b) Banks for payment management;
c) Factoring/debt collection agencies;
d) Our authorized employees/collaborators within their duties;
e) SMTP providers for newsletters.

The DPO (if appointed), and names/number of Processors may change. Updated information is available at: www.swapa.com / Email: swapa.eu@outlook.com .

5. Data Subject Rights

By emailing swapa.eu@outlook.com you may exercise your rights under GDPR 679/2016, including:

  • Confirmation of whether your data is being processed;
  • Access to intelligible copies of your data;
  • Details on: data origin, purposes, processing logic, Controller/Processor identities, recipients, data categories, retention periods/criteria, automated decision-making;
  • Rectification, integration, or erasure of unlawful/inaccurate data;
  • Proof that rectification/erasure was communicated to recipients (where feasible);
  • Data portability (request via above contacts);
  • Erasure ("right to be forgotten") per GDPR Art. 17(1)(a–f);
  • Processing restriction per GDPR Art. 18(1)(a–d).

You may object to data processing:

  • For legitimate reasons related to your situation;
  • For direct marketing/market research;
  • Under GDPR Art. 6(1)(e)/(f), including profiling.

If processing relies on consent, you may withdraw it anytime via above contacts. You may also lodge complaints with the Supervisory Authority. Rights may be exercised via email, or registered mail.