This Site and any services provided through the Site are reserved to persons that are at least eighteen years old. Therefore, the Data Controller does not collect any personal data of people under 18 years of age. At the users’ request, the Data Controller will erase without delay any and all personal data collected concerning people under 18 years old.
1 Category of data processed:
The data that will undergo this processing operation are the following:
a) All personal data the transmission of which is implicit in the use of Internet communication protocols, which the information systems and the software procedures used for the Site operation acquire during their normal running: the IP addresses or domain names of the computers utilized by Users, the Uniform Resource Identifier (URI) addresses of the requested resources, the time of request, the method used to submit the request to the server, the size of the file obtained in response, the numeric code of the status of the service response (successful, error, etc.) and other parameters regarding the operating system and the IT environment of the User;
b) Identifying personal data (e.g. first name, last name, e-mail address, phone, country, firm name, position, IP address, log file, etc.);
2. Purposes of the processing
The Users’ personal data will be processed lawfully by the Data Controller in accordance with Article 6 of the Regulation for the following purposes:
c) Registration to the newsletter: After having freely given their consent, the Users will periodically receive a newsletter from the Data Controller containing relevant information and news regarding the industry, the Data Controller’s activities or offers, promotions and commercial opportunities submitted by the Data Controller.
a) Administrative-accounting purposes, i.e. to carry out organizational, administrative, financial and accounting activities, such as internal organizational activities and activities instrumental to compliance with pre-precontractual and contractual obligations.
b) Legal obligations, i.e. to comply with obligations laid down by the law, by a competent authority, by any applicable regulation or legislation and to assess responsibility and culpability for any cybercrime offences against the Site.
c) Performance of a contract, if processing is necessary for the performance of a contract with the User and/or or in order to take precontractual steps;
However, it is always possible to ask the Data Controller to clarify the specific legal basis for each processing activity and in particular to specify whether the processing activity is based on the law, provided for in a contract or needed to close a contract.
The provision of the personal data for the above-stated purposes is optional but necessary as any failure to provide them will entail the impossibility for the User to make his or her request to the Data Controller.
The personal data that are necessary to pursue the purposes set out in point 2) are marked with an asterisk on the request form.
3. Data processing method and storage period
The Data Controller will process the Users’ personal data with manual and IT means, in accordance with logics strictly connected to the purposes, in order to ensure the data security and confidentiality.
The personal data of the Users of the Site will be stored for the time strictly necessary to pursue the primary purposes stated in point 2) above or, however, for the time necessary in order to protect the interests both of the Users and of the Data Controller under the Italian civil law.
4. Scope of disclosure and dissemination of the data
Furthermore, third parties may come to know the Users’ personal data as said third parties may process personal data on behalf of the Data Controller in the capacity as “External Data Processors”, with said third parties being, by way of example, providers of IT and logistic services instrumental to the Site operation, providers of outsourced or cloud computing services, advisors and consultants.
The Users have the right to obtain a list of any data processors appointed by the Data Controller, making the relevant request to the Data Controller with the methods set out in point 6) below.
5. Transfer of the data
The data collected for the above-stated purposes will not be transferred to countries not belonging to the EU. Nevertheless, the Data Controller reserves the right to use cloud services and, in this case, the providers of the services will be selected amongst those who ensure appropriate safeguards in accordance with Article 46 of Regulation (EU) 2016/679.
6. Rights of the data subjects
The Users will be able to exercise their rights under the Applicable Legislation by getting in touch with the Data Controller using the following methods:
The Site Users have the following rights:
Lastly, the data subject has the right to lodge a complaint with the Italian Data Protection Authority (Garante per la protezione dei dati personali) under Article 13(2) and Article 77 of the GDPR.
The Italian supervisory authority is the Italian Data Protection Authority Garante per la protezione dei dati personali, with headquarters at Piazza Venezia 11, 00186 – Rome, Italy (http://www.garanteprivacy.it/).