Privacy Policy

Who we are

Our website address is: https://cmclift.co.uk. transitioning to https://cmclift.co.uk in 2022.

CMC UK

Registered office in Worthing, West Sussex

As Data Controller of personal data, in accordance with EU Regulation 2016/679 “European Regulation”, we inform you that at the company headquarters and at branch offices (local offices), the processing of your personal data is carried out in full compliance with the aforementioned regulations, guaranteeing respect for fundamental freedoms and the dignity of the data subject, in particular protecting privacy and data protection. Please note that the information relates to personal data provided by the data subject or his delegates, and any data requested in the future, compatibly with the purposes indicated below, obtained directly from them or through computerized systems in the public domain where the data subject has released his own information to be subsequently contacted by potential customers.

In accordance with article13 of the Code and the Regulations, we provide the following information:

Processing Modalities

Data processing can be carried out with the aid of paper and / or through the use of computer systems and related electronic equipment (even remote with appropriate protection and security systems), by persons in charge and specifically trained in security and data processing, for the purposes described below. Additional processing for different purposes will be subject to appropriate information with relative consent if due in relation to mandatory standards.

Purposes

Administrative, accounting and fiscal management of the company (invoicing, work organization, etc.)

Operational and logistics management, internal and external. (delivery and/or collection of products, communications on the status of work)

Supply of services, materials, manufacturing, specialized services (incomplete list: consulting, supply of materials, facilities, professional services, technical, logistics, training, etc.)

Management of any disagreements between parties (complaints, contractual breaches between parties)

Storage of technical/administrative documentation (related to legal commitment, fiscal and contractual documentation, contractual and warranty communications on the supplied)

sending regular promotional sales commissions

send birthday wishes and / or wishes for holidays and / or celebrations

Personal Data Communications

The data in our possession will be processed by authorized personnel, assigned to these functions, in order to pursue the purposes listed above, based on the relationships between the parties. The organization also asks other personnel (external to the company) for specific activities related to particular professional and/or technical roles, involving data processing. They are appointed as external managers of the treatment and therefore subject to the legal obligations that the current legislation places on this figure.

The target groups are:

INTERNAL

Employees of the company or partners under different contractual forms, under the direct control of the Owner.

EXTERNAL

Tax consultancy studies (accountants, tax consultants, etc.), Consultancy studies in general.

Authorized workshops (for maintenance, warranty interventions, etc.), Insurance companies.

Financial companies (loans, financing, leasing, long-term rental).

Equipment manufacturing companies.

Consultancy company for special benefits (tax break check).

Communication to external parties of the company will be carried out within the strict limits of the need to respond to customer requests and the correct achievement of company purposes. Clearly, remaining subject to legal obligations. Therefore, not all the subjects of the above categories may process the data, but only the internal or external figures appointed to perform a compulsory treatment.

Data transfer to a third country or international organisations

Normally, for the purposes described above, the data controller does not transfer data to a third country or to an international organization. Except for the exhibition of non-sensitive information during auditing carried out by customers or certification bodies on behalf of the same organization, bound to the secrecy and strict security protocols of data and information, in accordance with Italian and European Union cogent regulations.

Obligation (or not) of contribution

The processing of personal data is allowable only after the transfer of data by the interested party.

This transfer can be optional or mandatory under the laws that are applicable in relation to the objectives pursued.

Due to the principle of the “necessity” of the data (thus excluding the request for data not strictly necessary), the interested party is informed that, for the purposes indicated, his refusal to provide the data will in fact prevent to carry out the planned treatments. Making the services provided for in the relationship between the parties or the fulfilment of legal obligations impracticable.

Data retention

The preservation of the collected data, considering the rights of the interested party as indicated below, is extended to the time necessary to complete the order, assignment or service requested, as well as any preservation of data provided for guarantees and finally by state or European regulations (e.g. retention of tax documents). Information that is no longer necessary or to be kept, by virtue of regulations or to protect the interested party, will be destroyed or returned if these are original documents, without storing copies. Further information on the retention periods can be requested from the data controller and its contacts through the communication channels indicated in this statement.

Profiling and automated processes

Personal data processing is carried out without the intervention of systems or automated processes that can affect data processing and on the rights of the interested party, nor is the profiling of the interested party needed.

Data Controller

The figure identified under the Code and the EU Regulation as Data Controller to whom it is possible to forward any requests and exercise the rights guaranteed to the interested party pursuant to article 15 to 22 of EU Regulation 2016/679 is: privacy@cmclift.co.uk

Data Protection Manager (DPM)

The figure identified under the Code and the EU Regulation as Data Controller to whom it is possible to forward any requests and exercise the rights guaranteed to the interested party pursuant to article 15 to 22 of EU Regulation 2016/679 is: privacy@cmclift.co.uk

Rights of the interested party (art. 7 rules and art. da 15 a 22 Reg. UE)

The interested party may exercise the following rights, considering any particular obligation to which the organization is subjected to comply pursuant to the EU Code and Regulation and other laws regulating the management of particular personal data:

The interested party has the right to obtain confirmation of the existence or not of personal data concerning its, even if not yet registered, and their communication in an intelligible form.

The interested party has the right to obtain the indication of:

the origin of personal data and categories;

the purposes and methods of the processing, as well as the duration of the conservation

the logic applied in case of treatment carried out with the aid of electronic instruments;

the identification details of the holder, managers and designated representative;

subjects or categories of subjects to whom personal data may be communicated or who may become aware of them in the territory of the State, European Union or third countries, and to receive information about adequate guarantees on the transfer and treatment

The interested party has the right to obtain:

updating and correcting. That is, when interested, integration of data;

cancellation (right to be forgotten), transformation into anonymous form or blocking of processed data. Including those that do not need to be kept for the purposes for which the data were collected or subsequently processed, with the exception of legal obligations or the protection of the data subject and in particular in the case of illegal processing;

certification that the operations in letters a) and b) have been brought to the attention of those to whom the data have been communicated or disseminated. Except in the event that such an operation is impossible or involves a use of means clearly disproportionate to the protected right.

The interested party has the right to oppose or to limit, totally or partially:

for legitimate reasons, to the processing of personal data concerning him

to the processing of personal data concerning him, referring to automated processes or deriving from profiling (contractual obligations stipulated between the parties), with regard to marketing purposes and the like.

The interested party also has the right to:

complain to the competent personal data protection authority;

if not collected directly from the data subject, any available information about their sources;

receive a copy of the data stored within the limits of the protection of the rights and freedoms of others;

request data portability, where the nature of the processing makes it technically feasible. Further information can be obtained from the data controller or by consulting the articles of the above reference standards.

Consent to Cookies

The CMCLIFT UK website uses cookies to run the content management system and to collect data on anonymous visitors.

What are cookies?

A cookie is a small file of letters and numbers placed on your computer after browsing a website.

More information on cookies is available on the internet at wikipedia.org/wiki/Cookie.

Why do we use cookies?

Cookies are an integral part of modern websites. They allow us to distinguish visitors anonymously and to record their traffic.

By acquiring this data we can ensure and improve the navigation on the site.

The acquisition of cookies helps users navigate

Which cookies do we use?

We specifically use the following cookies:

Cookies strictly necessary for the operation of the site.

ASP.NET_SessionId (description: to access the reserved area of ​​the site)

WSLNews.Language (description: to memorize the chosen language of the site)

__CSRFCOOKIE (description: cross-site request forgery security cookies)

cc_social (description: to store consent to the processing of cookies)

cc_analytics (description: to store consent to the processing of cookies)

cc_necessary (description: to store consent to the processing of cookies)

Information cookies.

It is used to store the user’s choice on the information of cookies.

INFORMATIVACOOKIE

Third-party cookies (Google analytics) to perform anonymous statistics on access to the site.

_ga (google analytics – duration: 2 years – Description: Used to distinguish users)

_gat (google analytics- duration: 10 minutes – Description: Used to throttle request rate)

By using the website, the user accepts that we can put these types of cookies on your device.

Select the cookies used by Google Analytics.

Disclaimer to cookies

If you are uncomfortable with the use of cookies, most browsers now allow users to block such use. This varies from browser to browser, see Managing cookies below.

However, if you choose to block cookies you may not be able to access certain sections of the site, and browsing may be compromised. Alternatively, you can always delete cookies from your system at the end of the visit to our site.

Cookies management

You can change the browser settings to manage cookies.

At this link you will find the specific instructions for the management of cookies.

For information on how to manage cookies you can also consult the help of your browser.

If you want to avoid all Google Analytics cookies, we recommend installing the Google Analytics Opt-Out Browser Add-On (Browser add-on for deactivating Google Analytics)

Please note that installing Google Analytics Opt-Out Browser Add-On or blocking cookies may compromise the use of this (and other) websites.

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with

If you request a password reset, your IP address will be included in the reset email.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments will be checked through an automated spam detection service.