Information notice pursuant to Art. 13 of the Regulation (EU) 2016/679 (“GDPR”)
Information when personal data are collected from the data subject
According to Regulation (EU) 2016/679 (General Data Protection Regulation) we provide you with the due information concerning the processing of the collected personal data. This information is not valid for other web sites which might be visited through links contained in all the web sites of data controller’s domain name. The data controller shall not be considered responsible for third parties’ web sites.
1. SUBJECTS OF THE PROCESSING
DATA CONTROLLER, pursuant to art. 4 and 24 of the Regulation (EU) 2016/679, is Eurovetro Srl in person of its legal representative –Via Cadorna, 5 – 22100 –Como (CO)
2. PERSONAL DATA THREATED
personal data means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person (C26, C27, C30 Reg. UE 679/2016)
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of internet communication protocols. These pieces of information are not collected to be associated with identified interested parties, but, through elaborations and associations with data held by third parties, due to their own nature, may allow the user’s identification.
This data category shall including IP addresses or computers’ domain names used by users who surf the present website, the URI-mapped addresses (URI stands for Uniform Resource Identifier) of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the reply given by the server (successful, error, and so on) and other parameters related to the operating system and to the computing environment of the user.
These data are exclusively used in order to obtain anonymous statistics related to website’s use and to control the correct functioning. These data are immediately delete after processing.
The User's Personal Data may be used by the Data Controller for legal defense in judgment or in the preparatory phases of the judgment, in order to defense Data Controller’s rights in case of improper use of this website or to solve matters related to an improper use of services provided by the Data Controller.
The data could be used to determine the responsibility in case of computer crimes against the website.
The User's Personal Data may be treated with additional methods and objectives related to system maintenance.
Data provided voluntarily by the user
Sending explicit voluntary and optional emails to the addresses listed on the present website entails the subsequent acquisition of the sender email address , necessary to reply to the user’s request, and also of any other personal data.
For more information about cookies used in this site take a look to the Cookies policy by clicking on the following link
3. PURPOSES AND LAWFULNESS OF THE PROCESSING
Your personal data shall be processed in accordance to the requirements for the lawfulness of processing set forth by Art. 6 of the Regulation (EU) 2016/679 for the following purposes:
- to visit the website (art.6 f);
- to answer to your contact request and to send you the required information (art.6 f);
-for administrative and accounting activities in general. (art.6 f). Data processing for administrative and accounting purposes are those related to organizational, administrative, financial and accounting activities regardless of the nature of data processed. In particular, internal organizational activities, those following contractual obligations’ fulfilment and information activities are related to these purposes
4. RECIPIENTS OR CATEGORIES OF RECIPIENTS OF PERSONAL DATA
Personal data provided by you may be communicated to recipients, appointed pursuant to art. 28 of the Regulation EU 2016/679, which shall process your data as processors and/or persons acting under the authority of the Controller and the Processor, in order to perform agreements or related purposes.
Your data may be first shared with companies contractually involved with Eurovetro Srl within the European Community, order to comply with contractual obligations or related purposes. Your data may be also communicated to recipients part of the following categories:
- entities that provide services for the management of the information system used by Eurovetro Srl and the telecommunications networks, including e-mail service, newsletter service and website service management;
- firms or companies which provide assistance and advice;
- competent authorities who enforce the law and/or regulations promulgated by public bodies, on request.
The above mentioned entities shall act as Data Processor or may perform their tasks fully independently, as if they were the Data Controller. The list of potential Data processors is constantly updated and it is available at Eurovetro Srl headquarters. Any further communication or data diffusion shall be possible only with your explicit prior consent.
5. DATA TRANSFER TO A THIRD COUNTRY AND/OR INTERNATIONAL ORGANISATION
Your personal data will not be transferred to a third Country. If the personal data will be transferred to a third Country within or outside the European Union, subject to the limits and conditions set forth by art. 44 and subsequent articles of the Regulation EU 2016/679, in order to comply with purposes related to the transfer. The data subject may obtain a copy of such data by writing an email to the address firstname.lastname@example.org
6. DATA RETENTION PERIOD OR RELEVANT CRITERIA
The processing shall be carried out in automated and / or manual manner, with methods and tools aimed at ensuring the best security and confidentiality, by persons specifically appointed to do so.
According to the provisions set forth in art. 5 par. 1 lett. e) of the Regulation EU 2016/679, collected personal data shall be kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed. Data retention period depends on the purposes:
- to visit the current internet website (temporary);
- request for contact, information and appointment reservation (1 year maximum);
- discharge of obligations laid down by agreements, by laws and administrative and accounting activities (10 years maximum unless otherwise specified by law);
The Data Subject can receive information regarding the criteria of the retention period contacting email@example.com
7. NATURE OF UNDERWRITING AND REFUSAL
With exception of what above specified concerning navigation data, the User is free to provide personal data.
The provision of personal data for purposes pointed in paraghaph 3 of this document is necessary to perform the function be able to use the services offered by data Controller. The non submittal of personal data may the result the impossibility to obtain the required services.
8. DATA SUBJECT’S RIGHTS
You may exercise your rights pursuant to articles 15, 16, 17, 18, 19, 20, 21, 22 of the Regulation EU 2016/679, by contacting the data Controller, by writing to firstname.lastname@example.org
You have the right, at any time, to request the data Controller to access, rectify, cancel your personal data or limit their processing. Furthermore, you have the right to object, at any time, to the processing of your data (including automated processing, e.g. profiling) and to the portability of your data.
Without prejudice to any other administrative and judicial appeal, if you believe that the processing of your data violates the provisions of Regulation EU 2016/679, pursuant to art. 15 letter f) of the aforementioned Regulation EU 2016/679, you have the right to lodge a complaint with the Data Protection Authority and, with reference to art. 6 paragraph 1, letter a) and art. 9 paragraph 2, letter a), you have the right to withdraw the consent given at any time.
In case of request of data portability the Controller shall provide you with your personal data in a structured, commonly used and machine-readable format, subject to the provisions set forth in paragraphs 3 and 4 of art. 20 of Regulation EU 2016/679.
Upgrade date: May 25th 2018