This page describes how the site is managed with regard to the processing of personal data of users who consult it, as well as the methods and purposes of the processing of personal data.
This information is also provided pursuant to art.13-14 Reg.to EU 2016/679 to those who interact with the web services accessible electronically from the address: www.esiste.com.
The information is provided only for the website in question and not also for other websites that may be consulted through our links, for which Esiste S.r.l. is in no way responsible.
Esiste S.r.l. as the Data Controller of your personal data, pursuant to and for the purposes of the EU Reg. 2016/679 – GDPR, hereby informs you that the aforementioned legislation provides for the protection of data subjects with respect to the processing of personal data and that such processing will be based on the principles of fairness, lawfulness, transparency and protection of your privacy and your rights.
Your personal data will be processed in accordance with the legislative provisions of the above-mentioned legislation and the confidentiality obligations provided therein.
The Data Controller of personal data collected through this Site is Esiste S.r.l, P.IVA 08691910015 with registered office in Turin, Via Amedeo II, 24P.IVA 08691910015 email address firstname.lastname@example.org
Purpose of processing and legal basis
Data processing will be carried out to:
– give the possibility to access the public and/or reserved sections of the site;
– give execution to the activation and maintenance of any services subscribed online;
– execute the obligations required by laws or regulations;
– the protection of the Owner in judicial proceedings;
– send informative material of a commercial nature;
– allow constant monitoring of the effectiveness of the proposed service.
However, it is always possible to ask the Data Controller to clarify the concrete legal basis of each processing and in particular to specify whether the processing is based on law, required by a contract or necessary to conclude a contract
TYPES OF DATA PROCESSED
The computer systems and software procedures used to operate this website acquire, in the course of their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified interested parties, but by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and computer environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct operation and are deleted immediately after processing. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site.
Data voluntarily provided by the user
The „Contact“ form made available on this website has the sole purpose of allowing visitors to the site to contact, should they wish, the company Esiste S.r.l. to make an appointment or formulate a request by sending them an email. Processing related to personal data collected through the email address takes place mainly at the aforementioned company and is carried out by the data controller Esiste S.r.l.
We also inform you that the personal data referring to you will be processed in accordance with the methods indicated in Art. 5 of GDPR 679/2016 which provides that the data shall be processed lawfully, fairly and transparently with respect to the data subject; collected for specified explicit and legitimate purposes and subsequently processed in a manner that is not incompatible with those purposes; adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed; accurate and, if necessary, updated kept in a form which permits identification of data subjects for a period of time not exceeding the achievement of the purposes for which they are processed; processed in such a way as to ensure adequate security of personal data, including protection, by appropriate technical and organizational measures, against unauthorized or unlawful processing and accidental loss, destruction or damage. The purpose of the collection and processing of personal data is exclusively to be able to possibly re-contact the user through the references sent through the forms and, to process any requests contained in the message sent by the user.
CONSEQUENCES OF REFUSAL TO PROVIDE DATA
Apart from what has been specified for navigation data, the user is free to provide personal data contained in the request forms, mailing list subscription or otherwise indicated in contacts to request the sending of informative, technical or commercial material or other communications. Failure to provide them may result in the impossibility of obtaining what has been requested.
METHODS OF PROCESSING
The data are processed mainly with electronic and computer tools and stored both on computer media and on paper media as well as on any other type of suitable media, in accordance with the modalities set out in Articles 6, 32 of the GDPR and through the adoption of the appropriate security measures provided. to prevent the loss of data, illegal or incorrect use and unauthorized access.
We inform you that in order to provide a complete service our portal may contain links to other websites, not managed by us. We are not responsible for errors, content, cookies, publications of illicit moral content, advertisements, banners or files that do not comply with current regulations and compliance with the Privacy regulations by sites operated by us to which we refer. In order to improve the service offered, immediate reporting of malfunctions, abuses or suggestions to the e-mail address: email@example.com is appreciated.
Your data will be processed only by personnel expressly authorized by the Data Controller.
SUBJECTS TO WHOM PERSONAL DATA MAY BE COMMUNICATED
The personal data related to the processing in question may also be communicated to subjects to whom the right to access your personal data is recognized by law or secondary and/or EU regulations. In addition, some data may be communicated and disseminated to Internet operators that Esiste S.r.l. uses to manage its domains. The dissemination of the collected data is not foreseen.
DATA RETENTION PERIOD
We would like to inform you that, in compliance with the principles of lawfulness, purpose limitation and data minimization, in accordance with Article 5 of the GDPR, personal and special data will be kept, including in digital format, for a maximum of 36 months from the completion of the contact form or from the last activity with which you show interest in us (e.g., access, registration, updating). In case of business collaboration we will keep your data longer in order to comply with existing contractual and legal obligations
Data may be transferred within the European Union, where Esiste or its suppliers are based or have their servers in those countries. Data will not be transferred outside the European Union.
RIGHTS OF DATA SUBJECTS
EU Reg. 2016/679: Arts. 15, 16, 17, 18, 19, 20, 21, 22 – Rights of the Data Subject
1 The data subject has the right to obtain confirmation of the existence or non-existence of personal data concerning him/her, even if not yet recorded, and its communication in an intelligible form.
2 The data subject has the right to obtain information about
a. the origin of the personal data;
b. the purposes and methods of processing;
c. the logic applied in case of processing carried out with the aid of electronic instruments;
d. of the identification details of the data controller, data processors and the representative designated pursuant to Article 5, paragraph 2;
e. of the subjects or categories of subjects to whom the personal data may be communicated or who may become aware of the data in their capacity as designated representative in the territory of the State, managers or appointees.
3 The interested party has the right to obtain:
a. the updating, rectification or, when interested, the integration of data;
b. the cancellation, transformation into anonymous form or blocking of data processed in violation of the law, including those that do not need to be kept in relation to the purposes for which the data were collected or subsequently processed;
c. certification that the operations in letters a) and b) have been brought to the attention, also as regards their content, of those to whom the data were communicated or disseminated, unless this requirement proves impossible or involves a manifestly disproportionate to the protected right;
d. the portability of the data.
4 The data subject has the right to object, in whole or in part:
a. for legitimate reasons to the processing of personal data concerning him/her, even if pertinent to the purpose of collection;
b. to the processing of personal data concerning him/her for the purposes of sending advertising or direct sales material or for carrying out market research or commercial communication
In order to exercise the rights listed above, the interested party should make a written request by e-mail. The e-mail should be addressed to: firstname.lastname@example.org
Finally, it remains the right of the interested party to apply to the Privacy Guarantor, including through the filing of a complaint, where deemed necessary, for the protection of his or her personal data and rights.
Information not contained in this policy
Further information in relation to the processing of Personal Data may be requested at any time from the Data Controller using the contact details indicated.