Privacy Policy

Last update: March 2021

What does this Privacy Policy apply to?

This Privacy Policy applies to the personal data collected by Prometeon Tyre Group S.r.l. – in its quality of data controller – (hereinafter “Prometeon”, “we”, “us” or “our”, as appropriate) about you through the website www.prometeon.com (hereinafter the “Website”) or through any other means, owned or used by Prometeon, that links to this Privacy Policy.

What personal data do we collect?

We may collect the following data:

(1) Contact details such as email address;

(2) Device information such as device identifiers, settings and network information collected through the cookies installed on the Website;

(3) Any other information voluntarily provided by you.

How do we collect your personal data?

You provide us with most of the data we collect, when you use and / or view the Website.

For which purposes and on what legal basis do we process your personal data?

We may process your personal data to:

(1) Answer your questions and fulfil your information requests;

(2) Comply with legal or regulatory obligations to which we are subject;

(3) Exercise or defend legal claims in judicial procedures;

How do we store your personal data?

We securely store your data at our service providers’ data centers in the European Economic Area (“EEA”), adopting all reasonable necessary measures to keep it safe

How long do we keep your personal data?

We keep your personal data as long as it is necessary for the purposes for which they were collected or as long as we are required to keep them in accordance with applicable laws and regulations.

How can you contact us?

You can contact us by writing an email at [email protected].

With whom your personal data is shared?

To enable or support us in providing the services requested, we may need to share your personal data with:

(1) Prometeon Group Companies;

(2) Third party service providers. (in particular: hosting providers and IT security service providers)

Third party service providers, which act as processors, are bound by data protection obligations aimed at ensuring an adequate level of protection to your personal data.

We may also disclose your personal data to courts, law enforcement agencies or governmental authorities, or authorized third parties, if and to the extent we are required or permitted to do so by law or by court orders.

Furthermore, in the event we intend to sell or transfer ownership or control of any or all of our business, operations or services to a third party, we reserve the right to disclose your personal data to a potential buyer both before and after the purchase. In the event the sale does not go through, we will require the potential purchaser to not use or disclose your personal data in any manner whatsoever and to completely erase the same.

We inform you that some of the processors to which we disclose your personal data may be established outside the EEA. If your personal data is transferred outside the EEA, we will take steps to ensure that your personal data continue to be protected in compliance with this Privacy Policy, subject to the applicable laws there.

Your rights under the data protection law

You have the right to ask us to:

(1) be informed on the purposes and methods of the processing of your personal data; 

(2) access to your personal data; 

(3) rectify incomplete, inaccurate or out-of-date data; 

(4) delete your personal data; 

(5) restrict the processing of your personal data, where applicable; 

(6) object to the processing, wholly or partly, where applicable;

(7) obtain the portability of your personal data, where applicable;

(8) withdraw your consent, where applicable;

(9) lodge a complaint with the competent national data protection authority.

You may exercise any of the rights above by writing an email at [email protected].

Links to other websites

The Website may contain links to external websites. If you click on any of these links, you will be directed to a website not covered by this Privacy Policy.

Changes to the Privacy Policy

We may review this Privacy Policy at our own discretion. Make sure to check the latest version available on the Website regularly.

INFORMATION ON THE PROCESSING OF PERSONAL DATA - CUSTOMER SERVICE ACTIVITIES

Pursuant to UK General Data Protection Regulation (hereinafter also "UK GDPR"), Prometeon Tyre Group UK Ltd. (hereinafter the "Company" or the "Data Controller") intends to inform you about the processing of your personal data in the context of the activities provided by the Customer Service.  

Categories of processed data, purpose and legal basis of the processing

In order to manage your request for assistance, the Company will process your common personal data such as your name, surname, e-mail address, telephone number, company name. Personal data will be used in order to process and verify the status of orders, complaints, availability of goods and more generally in providing support and assistance to customers. The provision of your personal data is free and optional, although failure to provide it will make it impossible to provide the requested service. The processing is necessary for the performance of a contract to which you are a party.

Method of processing

Your personal data will be collected and recorded by the Data Controller and the persons appointed by the Data Controller (hereinafter referred to as "Persons in Charge of Processing Personal Data") on paper and/or computer media in a manner strictly related to the purposes indicated above and in such a way as to ensure the security and confidentiality of the same. Your personal data will be stored in full compliance with the security measures provided for by the regulations on the protection of personal data and will be kept for as long as is necessary for the management of your report, complaint, request for assistance, as well as, at its end, for the time provided for by the regulations on the retention of documents for administrative, accounting and tax purposes.

Communication of data

Your personal data may be communicated

- to third parties in fulfilment of obligations provided for by laws, regulations or other national or community provisions, or following provisions issued by Authorities empowered to do so and/or in compliance with requests by supervisory and control Authorities

- to subsidiary and associated companies;

- to other companies and entities, which will act as autonomous data controllers, joint data controllers and data processors in compliance with the provisions of the UK GDPR and other applicable regulations in force, in the context of relations aimed at entering into commercial or corporate agreements.

Personal data will be processed within the United Kingdom. The Controller shall provide adequate safeguards in case of transfer of your personal data to a third country or international organisation. 

Rights of the data subject

Under the UK GDPR, you have the right to:

(1) be informed about the purposes and means of the processing of your personal data;

(2) access your personal data;

(3) rectify incomplete, inaccurate or outdated data;

(4) delete your personal data;

(5) restrict the processing of your personal data, where applicable under the UK GDPR;

(6) object to the processing, in whole or in part, where applicable under the UK GDPR;

(7) obtain portability of your personal data, where applicable under the UK GDPR;

(8) withdraw consent;

(9) lodge a complaint with the competent national data protection authority.

You may exercise the above rights by writing to [email protected].