Information pursuant to article 13 of Regulation (EU) 2016/679
TYPES OF PERSONAL DATA PROCESSED
The personal data gathered and processed via the website are as follows:
Like other websites, this website acquires some personal data the transmission of which is required by internet communications protocols. This category of data includes IP addresses or the domain names of the computers used to connect to the website, addresses in URI notation (Uniform Resource Identifier) of the requested resources, the time of the request, how the request was sent to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and IT environment of the user. This is information that is not gathered for the purposes of associating it with a user but by their very nature could be processed and associated with other data held by third parties to identify the user. This data, required for the purpose of using website services, is used only to derive anonymous statistical information on the use of the website and to ensure its proper functioning. Where required, the Personal Data of the User may be used to defend the Data Controller in legal actions or during the phases leading to legal action in relation to the improper use of the website or its services by the User, including ascertaining responsibilities in the event of IT crimes against the website.
DATA PROVIDED BY THE USER
This is data provided voluntarily by the user in the various fields to be filled in on the website; first name and family name, email address. The optional, explicit and voluntary sending of messages to the contact addresses given on the website involve the acquisition of the sender data required to respond and of all the personal data included in the communications.
THE PURPOSES AND LEGAL BASIS OF PROCESSING
The personal data provided shall be processed in compliance with the conditions for lawfulness set out in article 6 of the GDPR 2016/679 for the following purposes:, , for the purpose of deriving anonymous statistical information on the use of the website and to ensure its proper functioning. These data are gathered on the basis of the consent of the user expressed by the persistent surfing of the website (conclusive behaviour); Where required, the Personal Data of the User may be used including ascertaining responsibilities in the event of IT crimes against the website or the improper use of the website or its services by the User. In this case the basis for processing is the legitimate interest of the Data Controller; (indicating FIRST NAME, FAMILY NAME, EMAIL ADDRESS) requesting contact, with the provision of the information required, therefor for purposes arising from the performance of the contract to which you are party or to carry out pre-contractual measures at your request; until your refusal, related to the consulting services provided by the Firm. In this case, the data requested (email address) are gathered on the basis of the of the user, which is provided by filling in the request form. For the sake of thoroughness, pursuant to article 7 of Regulation 679/2016, the user may revoke consent at any moment, in a manner that is no more complicated than the way in which it was given.
Processing shall be carried out using manual, IT and telematic instruments according to a logic strictly related to the purposes for which they were gathered and in compliance with the and all the other principles enshrined in article 5 of Regulation 679/2016. In particular, in compliance with the , for which specific security measures are adopted to prevent the loss, improper or unlawful use of data as well as unauthorised access to the data.
NATURE OF PROVIDING DATA AND THE CONSEQUENCES OF REFUSING TO REPLY
Apart from the information provided regarding surfing data, the user is free to provide personal data in order to gain access to the services provided on this website. Failure to provide the data required to fill in the contact form or form for subscription to the newsletter means that access to the requested services cannot be provided.
COMMUNICATION AND DISSEMINATION
DATA STORAGE PERIOD OR CRITERIA USED TO DETERMINE THAT PERIOD
Pursuant to article 5 paragraph 1 subsection e) of the Regulation, personal data shall be stored in a form that enables those involved to be identified for no longer than the time required to achieve the purposes for which the data were gathered. The storage of personal data therefore depends on the purpose of processing the data: : surfing data are not kept for more than seven days and are deleted immediately after aggregation; including ascertaining responsibilities in the event of IT crimes against the website or the improper use of the website or its services by the User, the Data Controller shall retain your Personal Data for the period allowed by Italian law in order to safeguard its interests, as established by current regulations in civil and criminal law; for a : one month; to : until you object. If your personal data are stored due to a statutory requirement, they shall be retained for the period established by the law.
THE RIGHTS OF DATA SUBJECTS
Users (involved in processing) have a number of rights under articles 15, 16, 17, 18, 19, 20, 21 and 22 of the Regulation. They are:
- the right of to one’s own personal data (after obtaining confirmation that the Data Controller does process these data);
- the right to obtain the and of one’s own personal data;
- the right to obtain the of one’s own personal data;
- the right to obtain the processing of one’s own personal data in certain conditions;
- the right to one’s own personal data in a commonly used structured format and to them to another Data Controller;
- the right to personal data processing for reasons related to one’s personal situation;
- the right to refuse the application of an ;
- the right to be notified if one’s personal data are seriously ;
- the right to at any time;
- the right to to a Supervisory Authority.
Those who believe that their personal data have been processed in violation of the Regulation may make a claim to the Data Protection Supervisor, as specified in art. 77 of the Regulation and may take the claim to the relevant Courts (art. 79 of the Regulation).
UPDATING THIS INFORMATION