Dear User, thank you for visiting our site. In the following of this page we describe how the site is managed with reference to the processing of personal data of users who consult it.
WHY THIS NOTICE
This is an information also made pursuant to art. 13 of the D.lgs. n. 196/03 (Code on the protection of personal data) and art. 13 and 14 of the European Regulation 679/2016 (hereinafter also referred to as “GDPR”) to those who interact with the web services directly provided by the Company. The information is provided for this site and not for other websites that may be accessed by the user via links. The information is based on recommendation no. 2/2001 that the European authorities for the protection of personal data, meeting in the Group established by art. 29 of Directive 95/46/EC, adopted on 17 May 2001 to identify certain minimum requirements for the collection of personal data on-line. and, in particular, the manner, timing and nature of the information that the data controllers must provide to users when they link to web pages, regardless of the purpose of the link. We therefore invite you to read our Privacy Policy, as set out below. The Privacy Policy and Standards used for the protection of personal data are based on the following principles:
Data controller
The data controller is the company whose references are indicated in the footer of this site.
Principle of responsibility
The processing of personal data is managed over time by persons responsible within the company’s organization.
Principle of transparency
Personal data is collected and subsequently processed according to the principles expressed in this Privacy Policy. At the time of any conferment of data, a brief but complete information is provided to the interested party, as provided for by art. 13 of the D.lgs. n. 196/03 and art. 13 and 14 of the GDPR.
COLLECTION PRINCIPLE
Personal data is processed in a lawful and correct manner; it is recorded for specific, explicit and legitimate purposes; it is relevant and does not exceed the purpose of processing; it is kept for as long as necessary for the collection purposes.
PRINCIPLE OF PURPOSE OF USE
The purposes of processing personal data are made known to the data subjects at the time of collection. Any new processing of data, if extraneous to the stated purposes, are activated prior to new information to the interested party and possible request for consent, when required by D.lgs. n. 196/03 and by GDPR. In any case, personal data are not communicated to third parties or disseminated without the prior consent of the interested party, except in the cases expressly indicated by art. 24 of the D.lgs. n.196/03 and the GDPR.
PRINCIPLE OF VERIFIABILITY
Personal data is accurate and updated over time. They are also organized and stored in such a way that the data subject is given the opportunity to know what data has been collected and recorded, as well as to check its quality and request the possible correction, integration, deletion for violation of law or opposition to processing and to exercise all other rights, pursuant to and within the limits of art. 7 of the D.lgs. n. 196/03 and art. 15 and ss. of the GDPR, at the addresses indicated in the Informative ex art. 13 of D.lgs. n. 196/03 and ex art. 13 and 14 of the GDPR on the Company’s website.
Principle of safety
Personal data are protected by technical, computer, organisational, logistical and procedural security measures against the risk of destruction or loss, even accidental, and unauthorised access or processing. These measures are regularly updated according to technical progress, the nature of the data and the specific characteristics of the treatment, constantly monitored and verified over time. Third parties that carry out any type of support activities for the provision of services requested by the Company, in relation to which they perform personal data processing operations, are designated by the latter as Data Processors and are contractually bound to comply with the measures for the security and confidentiality of processing. Third parties that carry out any type of support activities for the provision of services requested by the Company, in relation to which they perform personal data processing operations, are designated by the latter as Data Processors and are contractually bound to comply with the measures for the security and confidentiality of processing. The processing related to the web services offered by this site take place at the Company, and possibly at the headquarters of the Data Processors and are handled by persons in charge of the processing responsible for managing the requested services, marketing activities – If requested by the user – to data retention activities and occasional maintenance operations.
The data communication strategy
The personal data provided may be disclosed to third parties in order to comply with legal obligations, in execution of orders from public authorities entitled to do so or even to assert or defend a right in court. If necessary in relation to particular services or products requested, personal data may be communicated to third parties who carry out, as independent controllers of the processing, functions closely related to and instrumental in the provision of services or the supply of products. Without communication, these services and products could not be provided. Personal data will not be disclosed, unless the service requested requires it.
Data provided voluntarily by the user
The types of personal data collected and processed on this site are those necessary for the provision of the various services provided. The data collected are processed in paper, automated and telematic ways and with logic strictly related to the purposes of processing. Your phone number and e-mail address may also be used to provide you with the services. It is therefore clear that, if such data are not provided, services requiring the use of these tools cannot be provided. The possible voluntary sending of e-mail to the addresses indicated in the site entails the acquisition of the sender’s address as well as any other information contained in the message; Such personal data will be used only for the purpose of performing the service or performance requested.
Navigation data
It is useful to know that the software procedures of the site acquire, in the course of their normal operation, some personal data whose transmission is implied in the use of internet communication protocols. Although the information is not intended to be associated with identified users, by its nature, if combined with other data held by third parties (e.g. your internet service provider), it may allow identification of users. This data category includes the IP addresses or domain names of computers used by users connecting to the site, the addresses in URL (Uniform Resource Locator) notation of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the state of the answer given by the server (good end, error, etc.) and other parameters related to the user’s operating system and computer environment. These data are used only for anonymous statistics on the use of the site and to check its proper functioning. The Data Controller and, depending on the service requested, the designated Processors keep, for a limited period according to the legal regulations, the trace (LOG) of the connections/navigation carried out in order to respond to any requests from the judicial authority or other public body entitled to request such a track for the determination of possible responsibilities in case of computer crimes. Except as specified for the navigation data, the user is free to provide or not the personal data requested in the registration form to the services. On this form, however, some data may be marked as mandatory; it must be understood that such data is necessary for the provision of the requested service. If these data are not provided, the requested service cannot be provided. At the time of any conferment of data, as provided for by art. 13 of D.lgs. n. 196/03 and art. 13 and 14 of the GDPR, the data subject is provided with a brief but complete and transparent information on the purposes and modalities of processing, the mandatory or optional nature of the provision of data, the consequences of not providing, on subjects or categories of subjects to whom personal data may be communicated and the scope of dissemination of the same, on the rights set out in art. 7 of the D.lgs. n. 196/03 and art. 15 et seq of the GDPR (access, integration, update, correction, deletion for violation of law, opposition to processing, etc.), on the identity and location of the Data Controller and the Data Processors. The interested party is therefore called to express his informed consent, free, expressed in a specific and documented form provided by law, where required by the same. If the conferment of personal data takes place in successive stages, supplements to the information already provided and new consents for processing required by the Privacy Code and GDPR may be provided.
SECURITY MEASURES TAKEN TO PROTECT THE DATA COLLECTED
The Company uses “secure” architectures and technologies to protect personal data against improper disclosure, alteration or misuse. The protection activated in relation to personal data is aimed, in particular, at minimizing the risks of destruction or loss, even accidental, of data, unauthorized access or treatment not allowed or not in accordance with the purposes of the collection. These security measures obviously meet the minimum requirements indicated by the Legislator (Technical Specification on minimum safety measures referred to in art. 33 to 36 of D.lgs. n. 196/03). The persons to whom the personal data relates have the right at any time to obtain confirmation of the existence or not of the same data and to know its content and origin, verify its accuracy or request its integration or update, or rectification (art. 7 of the D.lgs. n. 196/03 and art. 16 of the GDPR). Pursuant to the same article, the data subject has the right to request the deletion, transformation into anonymous form or blocking of data processed in violation of law, as well as to oppose in any case, for legitimate reasons, their processing. Requests should be addressed to the company’s contact details indicated in the footer of the site.
