Dear User, we thank you for visiting our site.
In the remainder of the page we describe you the modalities of management of the site in reference to the treatment of the personal data of the users that consult it. This is an information notice also pursuant to art. 13 of Legislative Decree n. 196/03 (Code regarding the protection of personal data) and art. 13 and 14 of European Regulation 679/2016 (hereinafter also “GDPR”) to those who interact with the web services directly provided by the Company.
The data controller is the Company where references are indicated in the footer of this site.
PRINCIPLE OF RESPONSIBILITY
The processing of personal data is managed over time by managers identified within the company organization.
PRINCIPLE OF TRANSPARENCY
PRINCIPLE OF RELEVANCE OF THE COLLECTION
Personal data is processed lawfully and fairly; they are registered for specific, explicit and legitimate purposes; the purposes of the processing are relevant and not excessive; they are kept for the time necessary for the purposes of collection.
PRINCIPLE OF PURPOSE OF USE
The purposes of processing personal data are disclosed to interested parties at the time of collection. Any new processing of data, if unrelated to the declared purposes, is activated upon new disclosure to the interested party and any request for consent, when required by Legislative Decree n. 196/03 and the GDPR. In any case, personal data are not disclosed to third parties or disseminated without the prior consent of the interested party, except in the cases expressly indicated by art. 24 of Legislative Decree n.196 / 03 and from the GDPR.
Personal data is accurate and updated over time. They are also organized and stored so that the interested party is given the opportunity to know, if he wishes, what data has been collected and recorded, as well as to check its quality and request any correction, integration, cancellation for violation of the law or opposition to processing and to exercise all other rights, pursuant to and within the limits of art. 7 of Legislative Decree n. 196/03 and art. 15 and ss. of the GDPR, at the addresses indicated in the Information pursuant to art. 13 of Legislative Decree n. 196/03 and ex art. 13 and 14 of the GDPR present on the Company’s website.
PRINCIPLE OF SECURITY
Personal data is protected by technical, IT, organizational, logistic and procedural security measures, against the risks of destruction or loss, even accidental, and of unauthorized access or unauthorized processing.
These measures are periodically updated based on technical progress, the nature of the data and the specific characteristics of the treatment, constantly monitored and verified over time. Third parties that carry out support activities of any kind for the provision of the services requested by the Company, in relation to which they carry out processing operations of personal data, are designated by these latter as Data Processors and are contractually bound to respect measures for the security and confidentiality of treatments. The identity of these third parties is disclosed to users.
The Company also assumes no responsibility for:
- the rules and methods for managing the personal data of other websites, accessible from our pages through links and references;
- the contents of any e-mail services, web spaces, chat forums provided to users.
The processing operations connected to the web services offered by this site take place at the Company, and possibly at the offices of the Data Processors and are handled by the persons in charge of processing the services required, the marketing activities – where requested by the user – to data storage and occasional maintenance operations.
SCOPE OF DATA COMMUNICATION
The personal data provided may be communicated to third parties in order to fulfill legal obligations, in execution of orders coming from public authorities legitimated to do so or to assert or defend a right in court. If necessary in relation to particular services or products requested, personal data may be communicated to third parties who carry out, as independent data controllers, functions strictly connected and instrumental to the provision of services or supply of products. Without communication, these services and products could not be provided. Personal data will not be disclosed, unless the requested service requires it.
DATA PROVIDED VOLUNTARILY BY THE USER
The types of personal data collected and processed on this site are those necessary for the provision of the various services provided. The data collected is processed on paper, automated and electronically and with logic strictly related to the purposes of the processing. To offer you the services your phone number can also be used, your e-mail address. It is therefore clear that, if these data are not provided, you will not be able to be provided with those services that require the use of these tools. Any voluntary sending of electronic mail to the addresses indicated on the site involves the acquisition of the sender’s address as well as any other information contained in the message; such personal data will be used for the sole purpose of performing the service or provision requested.
It is useful to know that the software procedures of the site acquire, during their normal operation, some personal data whose transmission is implicit in the use of internet communication protocols. Although information is not intended to be associated with identified users, by their nature, if associated with other data held by third parties (for example, its internet service provider), it could allow the identification of users. This category of data includes IP addresses or domain names of computers used by users connecting to the site, URL notation addresses (Uniform Resource Locators) of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numeric code indicating the status of the response given by the server (success, error, etc.) and other parameters relating to the operating system and the user’s IT environment. These data are used only for the purpose of anonymous statistics on the use of the site and to check its correct functioning. The Data Controller and, depending on the service requested, the designated Data Controllers retain, for a limited period according to the law, the tracing (LOG) of the connections / navigations carried out to respond to any requests coming from the judicial authority or from another public body entitled to request this route for ascertaining any responsibility in case of computer crimes. Apart from that specified for navigation data, the user is free to confer or not the personal data requested in the service registration form. On this form, however, some data may be marked as mandatory; it must be understood that these data are necessary for the provision of the requested service. If these data are not provided, the requested service cannot be provided.
At the time of any data transfer, according to the provisions of art. 13 of Legislative Decree n. 196/03 and by art. 13 and 14 of the GDPR, the interested party is provided with a brief but complete and transparent information on the purposes and methods of processing, on the mandatory or optional nature of providing data, on the consequences of failure to provide data, on the subjects or categories of subjects to whom personal data may be communicated and the scope of dissemination of the data, on the rights referred to in art. 7 of Legislative Decree n. 196/03 and art. 15 and ss of the GDPR (access, integration, updating, correction, cancellation for violation of the law, opposition to the treatment, etc.), on the identity and on the headquarters of the Owner and of the Data Processors. The interested party is therefore called to express his informed, free consent, expressed in a specific and documented form in the form required by law, where required by the same. If the transfers of personal data take place in successive phases, additions to the previously disclosed information may be provided and new consents to the processing required by the Privacy Code and the GDPR must be requested.
SAFETY MEASURES TAKEN FOR THE PROTECTION OF COLLECTED DATA
The Company uses “safe” architectures and technologies to protect personal data against undue disclosure, alteration or improper use. The protections activated in relation to personal data are aimed, in particular, at minimizing the risks of destruction or loss, even accidental, of data, unauthorized access or processing that is not permitted or does not comply with the purposes of collection. These security measures obviously meet the minimum requirements indicated by the Legislator (Technical Regulations regarding the minimum security measures pursuant to articles 33 to 36 of Legislative Decree No. 196/03). The subjects to whom the personal data refer have the right at any time to obtain confirmation of the existence of the same data and to know its content and origin, verify its accuracy or request its integration or updating, or rectification (Article 7 of Legislative Decree No. 196/03 and Article 16 of the GDPR). Pursuant to the same article, the interested party has the right to request cancellation, transformation into anonymous form or blocking of data processed in violation of the law, as well as to oppose in any case, for legitimate reasons, to their treatment. Requests should be sent to the Company’s contact details indicated in the website footer.