Published: May 24th, 2018
In compliance with the obligations deriving from national legislation (Legislative Decree 30 June 2003 No. 196, Code for the protection of personal data) and Community, (European Regulation for the protection of personal data No. 679/2016, GDPR) and subsequent changes, this site respects and protects the privacy of visitors and users, putting in place every effort possible and proportionate to not infringe the rights of users.
Legal Data Treatment Base
This site processes data based on consent. With the use or consultation of this site visitors and users explicitly approve this privacy statement and consent to the processing of their personal data in relation to the methods and purposes described below, including any disclosure to third parties if necessary for the provision of a service.
The provision of data and therefore consent to the collection and processing of data is optional, the user can refuse consent, and may revoke at any time a consent already provided (by email at: email@example.com). However, denying consent may make it impossible to provide certain services and the browsing experience on the site may be compromised.
Starting from 25 May 2018 (date of entry into force of the GDPR), this site will process some of the data based on the legitimate interests of the data controller.
Data collection and purposes
Like all websites, this site also makes use of log files in which information collected in an automated manner is kept during user visits. The information collected could be the following:
– internet protocol address (IP);
– type of browser and device parameters used to connect to the site;
– internet service provider name (ISP);
– date and time of the visit;
– web page of origin of the visitor (referral) and exitpage;
– clicks number.
The above information is processed in an automated form and collected in an exclusively aggregated form in order to verify the correct functioning of the site, and for security reasons (from 25 May 2018 such information will be treated according to the legitimate interests of the owner).
For security purposes (spam filters, firewalls, virus detection), the automatically recorded data may possibly also include personal data such as IP address, which could be used, in accordance with applicable laws, in order to block attempts at damage to the site itself or to cause damage to other users, or in any case harmful activities or constituting a crime. Such data are never used for the identification or profiling of the user, but only for the purposes of protection of the site and its users (from 25 May 2018 such information will be treated according to the legitimate interests of the owner).
The data received will be used exclusively for the provision of the requested service and only for the time needed to provide the service. The information that users of the site deem to make public through the services and tools made available to them, are provided by the user knowingly and voluntarily, exempting this site from any liability regarding any violation of laws. It is up to the user to verify that they have permission to enter personal data of third parties or contents protected by national and international standards.
The data collected by the site during its operation are used exclusively for the purposes indicated above and kept for the time strictly necessary to carry out the activities specified. In any case, the data collected from the site will never be provided to third parties, for any reason, unless it is a legitimate request by the judicial authority and only in the cases provided by law.
The data used for security purposes (block attempts to damage the site) are kept for 7 days.
Place of data treatment
The data collected by the site are processed at the headquarters of the Data Controller, and at the data center of the Web Hosting. Web hosting (Edita s.r.l. – Via Flaminia 138 – 47923 Rimini), which is responsible for processing data, processing data on behalf of the owner, is located in the European Economic Area and acts in accordance with European standards.
Session cookies are essential in order to distinguish between connected users, and are useful to avoid that a required feature can be provided to the wrong user, as well as for security purposes to prevent cyber attacks on the site. Session cookies do not contain personal data and last only for the current session, ie until the browser is closed. No consent is required for them.
The functionality cookies used by the site are strictly necessary for the use of the site, in particular they are linked to an express request for functionality by the user (such as Login), for which no consent is required.
Instructions for disabling cookies can be found on the following web pages:
Third parties Cookies
This site also acts as an intermediary for third-party cookies, used to provide additional services and features to visitors and to improve the use of the site, such as buttons for social media, or video. This site has no control over the cookies of third parties, entirely managed by third parties. As a result of this information on the use of these cookies and their purposes, as well as on how to disable them, are provided directly by third parties to the pages indicated below.
On the basis of a specific agreement with Google, which is designated as the data controller, the latter undertakes to process the data according to the requests of the Data Controller (see at the end of the information), given through the software settings. Based on these settings, the advertising and data sharing options are disabled.
More info about Google Analytics Cookies on this page: Google Analytics Cookie Usage on Websites.
User can selectively disable the collection of data by Google Analytics by installing on their browser this Google plug-in (opt out).
cookie: test_cookie .doubleclick.net it is not a permanent cookie, but is used to check if the user’s browser supports cookies.
Social Network Plugin
The collection and use of the information obtained by means of the plugin are governed by the respective privacy policies of the social networks, to which reference is made.
Transfer of data to non-EU countries
This site may share some of the data collected with services located outside the European Union area. In particular with Google, Facebook and Microsoft (LinkedIn) through social plugins and the Google Analytics service. The transfer is authorized based on decisions of the European Union and the Guarantor for the protection of personal data, in particular the decision n. 1250/2016 (Privacy Shield), therefore no further consent is required. The companies mentioned above guarantee their adherence to the Privacy Shield.
This site processes the data of users in a lawful and correct manner, adopting the appropriate security measures to prevent unauthorized access, disclosure, modification or unauthorized destruction of data. Processing is carried out using IT and / or telematic tools, with organizational methods and with logic strictly related to the purposes indicated. In addition to the owner, in some cases, may have access to the data categories of employees involved in the organization of the site (administrative, commercial, marketing, legal, system administrators) or external subjects (as suppliers of third-party technical services, postal couriers, hosting providers, IT companies, communication agencies).
According to the European Regulation 679/2016 (GDPR) and national legislation, the user can, in the manner and within the limits provided by law, exercise the following rights:
- confirmation of the existence of personal data concerning him / her (right of access);
- to know its origin;
- to receive intelligible communication;
- to have information about the logic, the methods and the purposes of the processing;
- to request the updating, rectification, integration, cancellation, transformation into anonymous form, blocking of data processed in violation of the law, including those no longer necessary for the pursuit of the purposes for which they were collected;
- in cases of consent-based processing, receive only the cost of any support, its data provided to the holder, in a structured and readable form by a data processor and in a format commonly used by an electronic device;
- to file a complaint with the Supervisory Authority (Privacy Guarantor – link to the Guarantor page);
- as well as, more generally, exercise all the rights that are recognized by the current provisions of the law.
Requests should be addressed to the Data Controller.
In the event that the data are processed on the basis of legitimate interests, the rights of data subjects are guaranteed (with the exception of the right to portability that is not provided for by the regulations), in particular the right to oppose the treatment that can be exercised by sending a request to the data controller.
Holder of the processing of personal data
The data controller holder, under the laws in force, is the site administrator, Paolo Mazza, CEO at Alberto Gestioni SRL, via Libro del Paradiso 1 – 40068 – San Lazzaro di Savena (BO), who can be contacted via email at: firstname.lastname@example.org
The web hosting (Edita Srl – Via Flaminia 138 – 47923 Rimini – Tel. 0541 790882 – Fax 0541 790676 – email@example.com – P.Iva 02195340407), is appointed as data controller, processing the data on behalf of the owner. Edita Srl is located in the European Economic Area and acts in accordance with European standards
(policy privacy Edita Srl).
Google is appointed data controller, processing data on behalf of the owner (Google Analytics).