Owner and Responsible for Treatment
The owner of the treatment is RSA Montebuono, in the person of its legal representative, based in Via Maglianese, 6 Montebuono (RI), Italy, email firstname.lastname@example.org.
Types of processed data
Visiting and consulting the Site does not generally involve the collection and processing of the user’s personal data except for the browsing data and cookies as specified below. In addition to the so-called “navigation data” (see below), personal data voluntarily provided by the user may be processed when the user interacts with the features of the Site or asks to take advantage of the services offered on the Site. In accordance with the Privacy Code, the Company may also collect your personal data from a third party in the course of your business.
Navigation data and cookies
The processing of personal data of users who visit the Site is limited to the browsing data, that is, those for which transmission to the Site is necessary for the operation of the computer systems responsible for the management of the Site and communication protocols Internet. For example, this category includes the IP addresses or domain of the computer that is used to visit the Site and other parameters related to the operating system that you use to connect to the Site. The Company collects these and other data (such as, for example, the number of visits and time spent on the Site) only for statistical purposes and anonymously in order to control the operation of the Site and improve its functionality. This is information that is not collected to be associated with other information about users and to identify users; however, such information by its very nature may enable the identification of users through processing and associations with data held by third parties. The browsing data is immediately deleted after treatment anonymously but can be used by the Company to ascertain and identify the perpetrators of any cybercrimes committed against the Site or through the Site. Save this eventuality, the navigation data described above is only temporarily retained in accordance with applicable regulations.
Cookies are small files stored on the hard drive of the user’s computer. There are two macro-categories of cookies: technical cookies and profiling cookies.
Technical cookies are required for the proper functioning of a website and to allow the user to navigate; without them, you may not be able to view pages correctly or use some services.
Profiling cookies are responsible for creating user profiles in order to send advertisements in line with the preferences expressed by the user during browsing.
Cookies can also be classified as:
- “session” cookies, which are deleted immediately when the browser closes;
- “persistent” cookies, which remain within the browser for a certain period of time. They are used, for example, to recognize the device that connects to a site by facilitating authentication operations for the user;
- “own” cookies, generated and managed directly by the subject of the website on which the user is browsing;
- “third-party” cookies, generated and managed by individuals other than the website manager on which the user is browsing.
The types of cookies used on the Site
The Site uses the following types of cookies:
(i) own, session and persistent cookies, necessary to allow navigation on the Site, for internal security and system administration purposes;
(ii) third-party, session and persistent cookies, which are required to allow the user to use multimedia elements on the Site, such as images and videos;
(iii) persistent third-party cookies used by the Site to send statistical information to the Google Analytics system, through which the Company can carry out statistical analysis of accesses/visits to the Site. The cookies used only pursue statistical purposes and collect information in aggregate. Through a pair of cookies, one of which is persistent and the other session (expiring when the browser closes), Google Analytics also saves a log with the start times of the visit to the Site and exit from it. You can prevent Google from detecting data through cookies and processing the data by downloading and installing the browser plug-in from the following address: https://tools.google.com/dlpage/gaoptout?hl=it
(iv) persistent third-party cookies used by the Site to include buttons on its pages of some social-networks (Facebook, Twitter and Google). By selecting one of these buttons, the user can post on their personal page of the relevant social network the contents of the website of the Site they are visiting.
How to disable cookies from browser settings
Please note that disabling cookies may still limit the ability to use the Site and prevent you from fully benefiting from the features and services on the Site.
The following are how cookies are managed in the main browsers.
Retention of personal data
Personal data is stored and processed through company-owned IT systems and managed by the Company or third-party technical service providers; For more details, please refer to the “Personal Data Accessibility Scope” section below. The data is processed exclusively by specifically authorised personnel, including personnel in charge of extraordinary maintenance.
Purpose and mode of treatment
The Company may process your common and sensitive personal data for the following purposes: users’ use of services and features on the Site, handling requests and reports from your users, sending newsletters, etc.
Personal data is processed both in paper and electronic form and entered into the company’s information system in full compliance with the Privacy Code, including security and confidentiality profiles and inspired by the principles of fairness and legality of treatment . In accordance with art. 11 of the Privacy Code, the data is kept and stored for a period of time no longer than necessary to achieve the specific purposes pursued from time to time.
Security and quality of personal data
The Company is committed to protecting the security of your personal data and complies with the security provisions of applicable law to prevent data loss, unlawful or unlawful use of data and unauthorized access to with particular but not exclusive reference to Exhibit B of the Privacy Code (Technical Discipline regarding minimum security measures). In addition, the information systems and computer programs used by the Company are configured to minimize the use of personal and identifying data; these data are processed only for the achievement of the specific purposes pursued from time to time. The Company uses multiple advanced security technologies and procedures to help protect users’ personal data; for example, personal data is stored on secure servers located in secure and controlled access locations. You can help the Company to update and keep your personal information correct by communicating any changes to your address, qualification, contact information, etc.
Personal data accessibility scope
Your personal data is accessible within the Company to the staff in charge of the treatment which, in relation to your duties, you need to process it in order to comply with your requests relating to the use of the services and features on the Site and in any case for the purposes described above. Except for the above, your personal data is not disclosed to third parties, individuals or legal entities, nor is it disclosed in any way.
Nature of data delivery
The provision of certain personal data by you is required to allow the Company to manage communications, requests received by you or to contact you to follow up on your request. This type of data is marked with the asterisk symbol [-] and in this case the award is mandatory to allow the Company to follow up on the request which, at the end of the year, cannot be fulfilled. In contrast, the collection of other data not marked with an asterisk is optional: failure to mention it will not result in any consequences for the user.
You may exercise the rights recognized by art at any time. 7 of the Privacy Code, including the right to obtain confirmation of the existence or otherwise of personal data concerning it, verify its content, origin and accuracy, request its integration, update, rectification, deletion, anonymous transformation, blocking data processed in violation of the law, opposition to the processing of data for legitimate reasons.
For any request relating to the processing of personal data by the Company, to exercise the rights recognized by the Privacy Code, and to know the updated list of persons to whom the data is accessible, you may contact the Responsible for the treatment at the contact details mentioned above.