IQ Order
IQ Order combines orders and payments in a single application
4Pay
Table payment for your customers. To be done completely independently.
4Order
the solution for ordering from home, work, the beach, or school and receiving orders directly at the checkout
4Delivery
The online order management service
4Menu
The digital menu for your restaurant. As simple as scanning a QR code.
4Stock
The solution for keeping your warehouse under control
Digital Receipt
Paper receipts become digital and smart
Business Intelligence
The ideal tool for a comprehensive overview of your business
Electronic Invoicing
Complete management of the entire billing cycle integrated into 4CloudOffice
4Loyalty
The solution for managing your restaurant's loyalty program
Privacy Policy
1. Scope of application of European Regulation 2016/679 of the European Parliament and of the Council
The Regulation applies “to the processing of personal data carried out in the context of the activities of an establishment by a controller or processor in the Union, regardless of whether the processing takes place in the Union” and, in the following paragraph 2, that the Regulation applies “to the processing of personal data of data subjects who are in the Union, by a controller or processor not established in the Union, where the activities relate to: (a) the offering of goods or services to such data subjects in the Union, irrespective of whether a payment by the data subject is required; or (b) the monitoring of their behavior where that behavior takes place within the Union.”.
2. Why a Privacy Policy?
This document describes how the site is managed with regard to the processing of personal data of users who consult it.
This information is provided pursuant to Chapter III of Regulation (EU) 2016/679 to those who interact with the web services offered by Labware Spa, accessible electronically from the Internet address http://www.labware.it/. .
This privacy policy applies only to this website and not to other websites that may be consulted by the user via links. The information is also based on Recommendation No. 2/2001 that the European authorities for the protection of personal data, gathered in the Group established by Art. 29 of Directive No. 95/46/EC, adopted on May 17, 2001 to identify certain minimum requirements for the collection of personal data online, and, in particular, the methods, timing, and nature of the information that data controllers must provide to users when they connect to web pages, regardless of the purpose of the connection.
The Recommendation and a summary description of its purposes are available on the website of the Italian Data Protection Authority.
2. The data controller
Following consultation of this website, data relating to identified or identifiable persons may be processed.
The data controller is
Labware Inc.
3 Enzo Ferrari Street
62012 Civitanova Marche (Mc)
VAT number 01424730438
Contact details Tel. 0733 829696 Email info@labware.it
3. Place of data processing
The processing operations connected to the web services of this site take place at the premises of Labware Spa or at third-party hosting companies appointed by the same and are carried out only by technical staff in charge of processing, or by persons in charge of occasional maintenance operations.
No data derived from the web service is communicated or disclosed to third parties except in accordance with legal obligations.
4. Types of data processed
Browsing data
During normal operation, the IT systems and software procedures used to operate this website acquire some personal data whose transmission is implicit in the use of Internet communication protocols.
This information is not collected to be associated with identified data subjects, but by its very nature could, through processing and association with data held by third parties, allow users to be identified.
This category of data includes IP addresses or domain names of computers used by users connecting to the site, URI (Uniform Resource Identifier) addresses of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user's operating system and IT environment. etc.) and other parameters relating to the user's operating system and IT environment.
This data is used solely to obtain anonymous statistical information on the use of the website and to check its correct functioning, and is deleted immediately after processing. The data could be used to ascertain responsibility in the event of hypothetical computer crimes against the website: except for this possibility, the data on web contacts does not currently persist for more than seven days.
Data provided by the user
The optional, explicit, and voluntary sending of emails to the addresses indicated on this website entails the subsequent acquisition of the sender's address, which is necessary to respond to requests, as well as any other personal data included in the message.
Specific information pursuant to Chapter III of Regulation (EU) 2016/679, with any request for consent to processing, will be provided or linked to via links on the pages of the website set up for the collection of personal data.
5. Cookies
See the Cookies Policy with all the information and details required by law at http://www.labware.it/it/cookies/. .
6. Optional nature of data provision
Apart from what has been specified for navigation data, users are free to provide personal data contained in the various forms on the website, in accordance with the instructions provided in the relevant information notices pursuant to Chapter III of Regulation (EU) 2016/679.
7. Processing methods
Personal data is processed using automated tools for the time strictly necessary to achieve the purposes for which it was collected.
Specific security measures are observed to prevent data loss, illicit or incorrect use, and unauthorized access.
8. Rights of data subjects
One of the fundamental rights of the data subject guaranteed by European Regulation 679/2016 is undoubtedly the right of access, which is governed by Art. 15, where it is established that the data subject has the right to obtain from the data controller confirmation as to whether or not personal data concerning him or her are being processed and, if so, access to the data and the following information:
a) the purposes of the processing;
b) the categories of personal data concerned;
c) the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular if they are recipients in third countries or international organizations;
d) where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period;
e) the existence of the right of the data subject to request from the controller rectification or erasure of personal data or restriction of processing of personal data concerning him or her or to object to such processing;
f) the right to lodge a complaint with a supervisory authority;
g) if the data are not collected from the data subject, all available information on their origin;
h) the existence of automated decision-making, including profiling, and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.
The controller shall provide the data subject with information on the action taken on a request for access, in accordance with Articles 15 to 20, without undue delay and at the latest within one month of receipt of the request. That period may be extended by up to two further months, if necessary, taking into account the complexity of the request and the number of requests.
Where an extension is applied, the data subject shall be informed of the reasons for the delay within one month of receipt of the request. If the data subject submits the request in electronic form, the information shall be provided in electronic form where possible, unless otherwise specified by the data subject.
Other rights of the data subject include:
the right to rectification, whereby the data subject has the right to obtain from the controller the rectification of inaccurate personal data concerning him or her without undue delay. Taking into account the purposes of the processing, the data subject has the right to have incomplete personal data completed, including by means of providing a supplementary statement.
The data subject has the right to obtain from the controller restriction of processing where one of the following applies:
a) the data subject disputes the accuracy of the personal data, for the period necessary for the controller to verify the accuracy of such personal data;
b) the processing is unlawful and the data subject opposes the erasure of the personal data and requests the restriction of their use instead;
c) although the data controller no longer needs it for processing purposes, the personal data is necessary for the data subject to establish, exercise, or defend legal claims;
d) the data subject has objected to processing pursuant to Article 21(1), pending verification of whether the legitimate grounds of the controller override those of the data subject.
If the processing is limited, personal data shall be processed, except for storage, only with the consent of the data subject or for the establishment, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.
With the recognition of the right to erasure and to be forgotten, the data subject must have the right to request that their personal data that is no longer necessary for the purposes for which it was collected or otherwise processed be erased and no longer processed, when they have withdrawn their consent or objected to the processing of personal data concerning them, or when the processing of their personal data is otherwise not in compliance with the Regulation.
This right is particularly relevant if the data subject gave consent when they were a minor, and therefore not fully aware of the risks involved in the processing, and subsequently wishes to delete this type of personal data, particularly from the Internet.
Finally, Article 20 of the Regulation introduces a new right compared to the previous legislation, namely the right to data portability, whereby the data subject has the right to receive, in a structured, commonly used and machine-readable format, the personal data concerning him or her provided to a controller, and has the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, where:
a) the processing is based on consent pursuant to Article 6(1)(a) or Article 9(2)(a), or on a contract pursuant to Article 6(1)(b); and
b) the processing is carried out by automated means.
Document updated on June 26, 2018