PERSONAL DATA SECURITY POLICY NOTICE
The purpose of the privacy notice is to provide maximum transparency regarding the information that the site collects and how it is used.
This document is an integral part of the website www.novellimpianti.com and has been written in compliance with the obligations deriving from national and European legislation (Legislative Decree 30 June 2003 No. 196, Code for Personal Data Protection, and subsequent amendments) (European regulation for personal data protection No. 679/2016, GDPR).
In particular, this site does not publish advertisements, does not use data for the purpose of sending advertising, but makes use of third-party services in order to improve the use of the site, third parties that may collect user data and then use it to send personalized advertisements on other sites. For example, this site uses YouTube videos in some cases, which are set so as not to send cookies (and therefore not to collect data) until the user starts the video. You can see, in fact, that instead of the video there is only a placeholder. The site also uses social plugins to simplify the sharing of articles on social networks. These plugins are configured to send cookies (and therefore eventually collect data) only after the user has clicked. For further information, please read the complete notice below.
LEGAL BASIS OF PROCESSING
This site processes data mainly based on user consent.
By using or consulting the site visitors and users approve of this privacy notice and consent to the processing of their personal data in relation to the methods and purposes described below, including any disclosure to third parties if necessary for the provision of a service. Through the communication or service request forms, further consents regarding the specific purpose of the service are collected.
The provision of data and therefore the consent to the collection and processing of data is optional, the User may refuse consent, and may revoke at any time a consent already provided (by writing directly to the Data Controller).
PURPOSE OF PROCESSING
The processing of data collected by the site, in addition to the purposes related to the service and and necessary to provide the service, is aimed at the following purposes:
– Statistics (analysis)
Data and information collection in an exclusively aggregate and anonymous form in order to verify the correct functioning of the site. None of this information is related to the physical person-user of the site, and it does not allow identification in any way. Consent is not necessary.
Data and information collection in order to protect the security of the site (spam filters, firewall, virus detection) and Users and to prevent or unmask fraud or abuse to the damage of the website. The data is recorded automatically and may also include personal data (IP address) that could be used, in accordance with applicable laws, in order to block attempts to damage the site itself or to harm other users, or to block otherwise harmful or criminal activities. This data is never used for the identification or profiling of the User and are periodically deleted. Consent is not necessary.
– Accessory activities
Communicate the data to third parties who perform functions necessary or instrumental to the operation of the service, and to allow third parties to perform technical, logistical and other activities on our behalf. Providers only have access to the personal data that is necessary to perform their duties, and they agree not to use the data for other purposes, and are required to process personal data in accordance with applicable regulations.
This site collects user data in two ways.
1) Data collected in an automated way
While Users are browsing, the following information can be collected that is stored in the site’s server (hosting) log files:
– IP address;
– browser type;
– parameters of the device used to connect to the site;
– Internet service provider name (ISP);
– date and time of visit;
– origin and exit web page of the visitor;
– possibly the number of clicks.
This data is used for statistical and analysis purposes only in aggregate form. The IP address is used exclusively for security purposes and is not crossed with any other data.
2) Data provided voluntarily
the site may collect other data in case of voluntary use of services by users, such as communication services (contact and promotional information forms), and it will be used exclusively for the provision of the requested service.
PLACE OF PROCESSING
The data collected by the site is processed at the headquarters of the Data Controller, and at the Serverplan S.r.l. data centre that is responsible for the processing of data. It processes data on behalf of the controller, it is located in the European Economic Area and acts in accordance with European standards.
DATA CONSERVATION PERIOD
The data collected by the site during its operation is kept strictly for the necessary time to carry out the activities specified. At the expiry date the data will be deleted or anonymised, unless there are further purposes for its storage. The data (IP address) used for site security purposes (block attempts to damage the site) is kept for 7 days.
TRANSFER OF DATA COLLECTED TO THIRD PARTIES
The data collected from the site is generally not provided to third parties, except in specific cases: legitimate request by the judicial authorities and only in the cases provided by law; if it is necessary for the provision of a specific service requested by the User; for the execution of security checks or site optimization.
DATA TRANSFER IN COUNTRIES OUTSIDE THE EU
This site does not share data collected with services located outside the European Union
This site uses the following cookie categories:
2) analysis cookies, used directly by the site operator to collect information, in aggregate form, on the number of users and how they visit the site. They are similar to technical cookies if the service is anonymized.
3) profiling and marketing cookies, used exclusively by third parties other than the owner of this site to collect information on the behavior of users during browsing, and on interests and consumption habits, also in order to provide personalized advertising.)
The user can select which cookies to authorize through the appropriate procedure set up in the “Settings related to cookies”, as well as authorize, block or delete (in whole or in part) cookies through the specific functions of their browser: however, in the case in which all or some of the cookies are disabled, it is possible that the user will not be able to consult the Site or that certain services or certain functions of the Site will not be available or will not work properly and / or the user may be forced to modify or manually enter some information or preferences each time they visit the Site.
The data of visitors / users is processed lawfully and correctly, by adopting appropriate security measures to prevent unauthorized access, disclosure, modification or unauthorized destruction of data. We are committed to protecting the security of personal data during its transmission, using the LET’S ENCRYPT software, which encrypts the information in transit. Processing is carried out using IT and / or telematic tools, with organizational methods and with logic strictly related to the purposes indicated. In addition to the Controller, in some cases, some categories of employees involved in the site organization or external subjects (such as third-party technical service providers, hosting providers) may have access to the data.
According to European Regulation 679/2016 (GDPR) and art. 7 of the Lgs.D. 30 June 2003, n. 196, the User can, in accordance with the procedures and within the limits established by current legislation, exercise the following rights:
– oppose in whole or in part, for legitimate reasons, the processing of personal data concerning them for the purpose of sending advertising or direct sales material or for carrying out market research or commercial communication;
– request confirmation of the existence of personal data concerning them (right of access);
– know its origin;
– receive intelligible communication;
– have information about the logic, the methods and the purposes of the processing;
– request the updating, rectification, integration, cancellation, transformation into anonymous form, blocking of data processed in violation of the law, including that no longer necessary for the pursuit of the purposes for which it was collected;
– in cases of consent-based processing, receive only at the cost of eventual support, their data provided to the Controller, in a structured and readable form by a data processor and in a format commonly used by an electronic device;
– the right to file a complaint with the Supervisory Authority (Garante Privacy);
– as well as, more generally, exercise all the rights that are recognized by the current provisions of the law.
Requests should be addressed to the Data Controller or the Data Protection Officer (DPO).
The Data Controller in accordance with the laws in force is Novelli Refrigerazione Industriale S.r.l.s. Via Catone, 15, 00192 Rome, Rea Number RM-1563364, VAT / CF: 15016441006, Pec: email@example.com and can be contacted at the e-mail address firstname.lastname@example.org
Serverplan S.r.l., is responsible for the processing, processing the data on behalf of the Controller and is located in the European Economic Area and acts in accordance with European standards.