PRIVACY POLICY

DATA CONTROLLER

Following visits to this site, the data of identified or identifiable persons may be processed.

The data controller is ARCOBALENO LTD with legal and operative headquarters in Via Virgilio n. 57/b a CASTEL GOFFREDO (MN) with P.IVA e CF 01480770203 acting as controller and Nerina Gatti is the Data Protection Officer. 

GENERAL INFORMATION

This page describes how to manage the site in relation to the processing of personal data of users who consult it.

This notice is also provided pursuant to EU Regulation 2016/679 to those who interact with web services accessible by telecommunication means from the address of the home page of the official website.

This Privacy Policy refers only to this website and not to other websites accessed by the User via the links found therein.

LOCATION OF THE PROCESSING

The processing related to the web services of this website takes place at the above-mentioned registered office and is only managed by the technical staff of the Office appointed to do so, or, if applicable, by those appointed to perform occasional maintenance operations.

No data obtained from the web service will be communicated or disseminated.

The personal data provided by users who forward requests for informative material are only used for the purpose of providing the requested service or activity.

TYPES OF DATA PROCESSED

Navigation data, the computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of the Internet communication protocols (log files).

These data are not collected to be associated with identified data subjects, but which by their very nature could, through processing and association with data held by third parties, enable the identification of the Users.

This category of data includes the IP addresses or domain names of the computers used by Users who connect to the site, the addresses in the Uniform Resource Identifier (URI) notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the User’s IT environment. These data are only used in order to source anonymous statistical data about the use of the website and to monitor the correct functioning of the same, and they are erased one month after processing.

The user’s data could be used to ascertain liability in case of potential cyber crimes committed to the detriment of the website: except in this case, currently, the data regarding the web contacts are not retained for longer than approximately one month.

Data provided voluntarily by the user

The optional, explicit and voluntary sending of electronic mail to the addresses indicated on this site entail the subsequent acquisition of the sender’s address, necessary for replying to requests, as well as any other personal data included in the message.

In case of voluntary unsubscription to newsletter, the email address will be saved in a company database, accessible only by password-protected login, to staff appointed to the task of processing such data. The e-mail address will be used to send newsletter  for periodic updates. User may unsubscribe at any time or enforce all the rights mentioned in “Rights of the interested parties” paragraph.

Specifiche informative di sintesi verranno progressivamente riportate o visualizzate nelle pagine del sito predisposte per particolari servizi a richiesta.

Specific summarized information is reported or displayed on the pages of the site set up for particular services on request.

COOKIES

No personal data of users is acquired by the site in this regard. We do not use cookies to transmit personal information, nor persistent cookies of any kind, or systems for tracking users are used. The use of session cookies (which are not stored permanently on the user’s computer and disappear when the browser is closed) is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) which are essential to allow the safe and efficient navigation of the site. The so-called session cookies used on this site avoid the use of other technologies that could compromise the privacy of users’ browsing and do not allow the acquisition of personal identification data.

OPTIONAL PROVISION OF DATA

Apart from that specified for navigation data, the user is free to provide personal data.

Failure to provide such data may make it impossible to obtain what has been requested.

PROCESSING MODALITIES

The personal data are processed using automated means for the time strictly necessary to fulfill the purposes for which they have been collected.
Specific security measures are implemented to prevent the loss of data, as well as any unauthorized access to and/or unlawful or inappropriate use of the same.

COMMUNICATION AND DISSEMINATION OF THE DATA

The data collected for aims above-mentioned in paragraph 1  shall be communicated and/or disseminated,  as far as they have specific competence, to  public and private entities, person and/or legal entities and having commercial purposes and/or the management of information systems, including external parties who carry out specific tasks on behalf of the subscribed.

RIGHTS OF DATA SUBJECTS

Conforming to EU Regulation 679/2016 you have the following rights:

1.                The interested party has the right to obtain confirmation on the existence or not of personal data regarding him/her, even if not registered, and for this data to be communicated in a

readable format.  

2.                The interested part has the right to obtain indications:

a)      on the origin of the personal data;

b)      on the aims and methods of processing;

c)       on the logic applied in the case of processing using auxiliary electronic tools;

d)      on the identication details of the data processor or the person responsible for the data;

e)      the parties and categories of parties to whom the data may be communicated or who may come into contact with the data in their role of appointed representative within the national territory, managers or those responsible for the data.

3.                The interested party has the right to obtain:

a)      the updating, correction or rather, when necessary, the integration of their data;

b)      the cancellation, transformation in anonymous form or the blocking of data processed in violation of the law, including data which is not necessary in relation to the aims of the data collected or subsequently processed;

c)       written proof that the operations referred to in letters a) and b) have been made known, even with regard to their content, to those who received notification of the data or to whom it was transmitted, excepting cases in which such requirements would be impossible or would lead to the use of means that are out of proportion with respect to the rights being protected.

4.                The interested party has the right to oppose, wholly or partially:

a)      the handling of their personal data, for legitimate reasons, even if pertinent to the aim of the data collection;

b)      the processing of their personal data with the purpose of sending publicity or direct sales or for market research or commercial material.

5.             Right to erasure, that is the right to obtain from the controller the erasure of personal data concerning him, the data controller ensures that data will be delected in any way after 10 years from last data processing.

6.             The right to object to the data processing concerning him, at any time for specific personal reasons.

7.             The right to withdraw consent at any time or to lodge a complaint with a supervisory authority.

DATA RETENTION PERIOD

The data are kept for a minimum period of time linked to the purpose of the processing, and in any case for a period of no more than 5 years, a data processing that goes beyond the related deadline, must be preceded by a new information and be submitted , where requested, to the consent of the interested person.