Privacy disclaimer

The purpose of this document is to inform Users of the Personal Data collected by the website spareparts.socage.it/ (following
"Application").

The Data Controller, as subsequently identified, may modify or simply update, in whole or in part, this Information by informing Users. The changes and updates will be binding as soon as they are published on the Application.

The User is therefore invited to read the Privacy Policy at each access to the Application.

In the event of non-acceptance of the changes made to this Privacy Policy, the User is required to cease using this Application and may request the Data Controller to remove his / her Personal Data.

Personal Data collected by the Application

The Data Controller collects the following types of Personal Data:

Content and information voluntarily provided by the User

• Contact data and contents: are those Personal Data that the User voluntarily provides to the Application during its use, such as for example personal data, contact details, access credentials to services and / or products provided, personal interests and preferences and other personal content, etc.
• Sensitive data: Personal data that reveal racial or ethnic origin, political opinions, religious or philosophical beliefs, union membership, as well as genetic data, biometric data intended to identify in a way unique to a natural person, Data relating to the health or sexual life or sexual orientation of the person.

Failure by the User to provide Personal Data, for which there is a legal, contractual obligation or if they constitute a necessary requirement for the use of the service or for the conclusion of the contract, will make it impossible for the Owner to provide all or part of its services.

The User who communicates to the Data Controller of third parties is directly and exclusively responsible for their origin, collection, treatment, communication or diffusion.

Data and content acquired automatically when using the Application

• Technical data: The computer systems and software procedures used to operate this Application may acquire, during their normal operation, some Personal Data whose transmission is implicit in the use of the protocols of internet communication. This is information that is not collected to be associated with identified Users, but which by its very nature could, through processing and association with Data held by third parties, allow users to be identified. This category includes the IP addresses, or the domain names used by the Users who connect to the Application, the URI (Uniform Resource ldentifier) ??addresses of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained, etc.
• Usage data: Data relating to the use of the Application by the User may also be collected, such as, for example, the pages visited, the actions performed, the functions and the services used. < / li>
• Geolocation data: the Application can collect Location data, which can be precise or inaccurate. The precise position data can be GNSS data (Global Navigation Satellite System, for example GPS), in addition to the Data that identify the closest repeater, the Wi-Fi and bluetooth hotspots, communicated when enabling products or functions based on the location.

Personal data collected through cookies or similar technologies

No personal data of Users is acquired by the Application with these technologies.

We do not use cookies to transmit personal information, nor do we use persistent cookies of any kind, or systems for tracking Users.

The use of session cookies (which are not stored permanently on the User's computer and disappear when the browser is closed) is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to allow safe and efficient exploration of the Application.

The session cookies used in this Application avoid the use of other IT techniques that are potentially detrimental to the confidentiality of Users' browsing and do not allow the acquisition of the User's personal identification data.

Purpose

The Personal Data collected can be used for the execution of contractual and pre-contractual obligations and for legal obligations as well as for the following purposes:

• support and contact with the User
• viewing content from external platforms
• archiving, hosting and backend infrastructure management
• user database management
• statistics only with anonymous data by communicating the data to www.google.com/privacy
• monitoring, analysis and tracking of User behavior by communicating the Data to www.google.com/privacy
• profiling of characteristics, behaviors, choices of the User to provide personalized services or promotions by communicating the Data to www.google.com/privacy , www.mailup.it/ information-privacy /
• sending emails or newsletters and managing mailing lists by communicating the Data to www.mailup.com/information-privacy/
• design and / or implementation of commercial communication campaigns by communicating the Data to www.mailup.en/ information&privacy/
• remarketing and behavioral targeting by communicating the Data to www.google.com/privacy, www.mailup.it/informativa-privacy/
• communication for own promotional and commercial purposes by communicating the Data to www.mailup.it/information-privacy/

Processing methods

The processing of Personal Data is carried out using IT and / or telematic tools, with organizational methods and with logic strictly related to the purposes indicated.

In some cases, subjects involved in the organization of the Data Controller (such as, for example, personnel management staff, sales staff, system administrators, etc.) or external subjects (such as companies) may also have access to Personal Data. IT, service providers, couriers, hosting providers, etc.). Said subjects, if necessary, may be appointed Data Processors by the Data Controller, as well as accessing Users' Personal Data whenever necessary and will be contractually obliged to keep Personal Data confidential.

The updated list of Managers can be requested via email at [email protected] .

Legal basis of the processing

The Data Controller processes Personal Data relating to the User if one of the following conditions exists:

• the User has given consent for one or more specific purposes
• the processing is necessary for the pursuit of the legitimate interest of the owner or third parties

In any case, it is always possible to request the Data Controller to clarify the concrete legal basis of each treatment.

Location

The Data are processed at the Data Controller's operating offices and in any other place where the parties involved in the processing are located. For further information, contact the Data Controller at the following email address [email protected] or at the following postal address Via Respighi Ottorino, 113/115, 41122 MODENA (MO), Italy.

Security measures

The treatment is carried out according to methods and with suitable tools to guarantee the security and confidentiality of the data, having the owner adopted adequate technical and organizational measures that guarantee, and allow to demonstrate, that the treatment is carried out in compliance with the regulations. for reference.

Data retention period

The Data Controller will process the Personal Data for the time necessary to fulfill the purposes connected with the execution of the contract between the Data Controller and the User no longer than 10 years from the termination of the relationship with the User and in any case until fulfillment of the limitation period foreseen by the regulations in force.

When the processing of Personal Data is necessary for the pursuit of a legitimate interest of the Owner, the Personal Data will be kept until such interest is satisfied.

If the processing of Personal Data is based on the User's consent, the Data Controller can keep the Personal Data until it is revoked.

Personal Data may be kept for a longer period if necessary to fulfill a legal obligation or by order of an authority.

All Personal Data will be deleted upon expiry of the retention period. At the end of this term, the right of access, cancellation, rectification and the right to data portability can no longer be exercised.

Automated decision-making processes

All data collected will not be subject to any automated decision-making process, including profiling, which can produce legal effects for the person or which can significantly affect them.

User Rights

Users can exercise certain rights with reference to the Data processed by the Owner. In particular, the User has the right to:

• withdraw consent at any time;
• to object to the processing of their Data;
• access your data;
• verify and request correction;
• obtain the limitation of the treatment;
• obtain the cancellation of their Personal Data;
• receive your data or have it transferred to another holder;
• lodge a complaint with the supervisory authority for the protection of personal data and / or act in court.

To exercise their rights, Users can direct a request to the owner's contact details indicated in this document. Requests are made free of charge and processed by the Data Controller as soon as possible, in any case within 30 days.

Data Controller

The Data Controller is socage SRL, with registered office in Via Respighi Ottorino, 113/115, 41122 MODENA (MO), Italy, Fiscal Code & VAT number 03703160360, e-mail address [email protected] , PEC address [email protected] , telephone + 39 059.912 1211.

^{Last updated: 28/02/2019}

COOKIE POLICY

This Cookie Policy describes the cookies and other tracking tools used by the MySocage portal, operated by Socage S.r.l. – Via della Chimica, 23 – 41012 Carpi (MO), Italy – [email protected].

This policy is issued pursuant to EU Regulation 2016/679 (GDPR).

1. What are cookies

Cookies are small text files stored on the user’s device when browsing a website. They allow the site to recognise the browser on subsequent visits and provide personalised features. There are first-party cookies (set directly by the site visited) and third-party cookies (set by domains other than the one visited).

2. Necessary technical cookies (no consent required)

Name	Type	Duration	Purpose
ci_session	First party	Session / persistent	Authenticated user session management (CodeIgniter). Without this cookie access to the reserved area is not possible.
cookie_policy_accepted	First party	365 days	Stores the user’s cookie consent choice (accepted / declined) to avoid repeated display of the banner.
csrf_cookie_name	First party	Session	Security token protecting against CSRF (Cross-Site Request Forgery) attacks on site forms.

3. Third-party services

3.1 Google Fonts — consent required

To display typographic characters, the site may contact Google LLC (USA) servers via Google Fonts (fonts.googleapis.com / fonts.gstatic.com). This connection transmits the user’s IP address and browser information (User-Agent) to Google. This service is activated only if the user accepts cookies via the on-site banner; if declined, fonts are served using the browser’s default typefaces with no connection to Google servers.
Google Privacy Policy: policies.google.com/privacy

3.2 Google reCAPTCHA v2 — legitimate interest (security)

Some site forms use Google reCAPTCHA v2 (Google LLC, USA) to distinguish human users from automated bots. The service transmits the user’s IP address and a validation token to Google. No profiling cookies are set. The legal basis for this processing is the data controller’s legitimate interest in service security (Art. 6.1.f GDPR).
Google reCAPTCHA Privacy: policies.google.com/privacy

3.3 SocageIoT WebService — essential functionality

The portal connects in real time to SocageIoT servers (socageiotws.com), operated by Socage S.r.l., via WebSocket protocol to receive telemetry data from aerial work platforms (position, status, operational parameters). This connection is technically indispensable for the core service functionality and does not involve the use of cookies. Data transmitted relates exclusively to the telemetry of registered devices.

3.4 Mailjet — transactional email

For sending transactional emails (system notifications, password reset, operational communications), the site uses the Mailjet service (Sinch, Sweden/France). Processing occurs server-side only and does not install cookies in the user’s browser. Data processed is limited to the recipient’s email address and message content.
Mailjet Privacy Policy: mailjet.com/legal/privacy-policy

4. Managing consent

On first access a banner allows the user to accept or decline non-essential third-party cookies (Google Fonts). The choice is stored for 365 days via the cookie_policy_accepted cookie. Consent can be modified or withdrawn at any time by clicking the “Cookie Policy” tab on the page edge.

5. User rights

Regarding personal data processed through the described services, users have the right of: access (art. 15), rectification (art. 16), erasure (art. 17), restriction (art. 18), portability (art. 20), objection (art. 21) and complaint to the supervisory authority.

To exercise these rights: [email protected]

Last updated: March 2026