Dear Client, Unopiù S.p.A. single-member private limited liability company has great respect for User privacy. Data that will be communicated by the User through the Site will be treated with the greatest attention and with all the tools to guarantee security, in full respect of the current norms for data protection. We wish to inform you that the “European Regulation 2016/679 concerning the protecion of the individual and the processing of personal data, as well as of the free circulation of that data” (from now on “GDPR”) foresees the protection of the individual in regard to the processing of personal data as a fundamental right.
In accordance with article 13 of the GDPR, therefore, we inform you that:
A. CATEGORY OF DATA: the object of the processing can be your personal data such as:
- Data collected automatically: Computer systems and applications dedicated to the functioning of this site detect, during normal functioning, some data (whose transmission is implicit in the use of Internet communication protocols) potentially associated to identifiable users. Among the collected data are IP addresses and the names of computer dominions accessed by users who connect to the site, addresses in URI notation (Uniform Resource Identifier) of the requested resources, the method used to make the request of the server, the dimension of the obtained requested file, the numeric code indicating the state of the reply from the server (succesful, error, etc.,) and other parameters concerning the operative system, the browser and the computer system used by the user, the name of the internet service provider (ISP), date and time of visit, visitor web page and exit.
- Plug-in. Plug-in. The site also incorporates plug-in and/or buttons for social network, in order to provide easy sharing of the content on your favourite social network and a quick connection with this data.
Through plug-ins for social network (Google, Facebook, Twitter) we can collect your personal information, for example when you use Social Login to register your account and access our web site more quickly. We only collect what is strictly necessary which is usually limited to the name of the user, name and surname and e-mail address. Anyway the information we receive depends entirely on the authorizing services and options making them available.
B. DATA CONTROLLER: the data controller is Unopiù S.p.A. single-member private limited liability company with legal headquarters in Via Pontaccio, 9 – 20121 Milano (MI) and Operational Headquarters in S.S. Ortana Km. 14,500 – 10138 Soriano nel Cimino (VT), VAT number 05516670964, contactable by phone at 0761.7581 or e-mail address email@example.com
C. SOURCE OF PERSONAL DATA: The personal data in possession of the Controller are collected directly from the interested person.
D. PURPOSE AND LEGAL BASIS OF DATA PROCESSING: The purpose for processing your data and the legal basis:
- For data collected automatically, the legal basis is the legitimate interest of the controller and the purpose is to guarantee and improve the web navigation experience.
- For data furnished voluntarily by the user: the legal basis is the consent and, to send mail to our addresses, the purpose is to be able to send answers to the specific questions posed by the user; for forms the purpose is indicated in the specific policy.
For cookies and plug-in: consult the specific cookies policy.
E. RECIPIENTS OF DATA: within the relevant limits of the purpose of data processing, your data may be communicated to partners, consultancy companies, private businesses, suppliers of third party technical services, hosting providers, computer companies, communication agencies,….
F. TRANSFER OF DATA TO THIRD COUNTRIES: the transfer of your data to third countries is not foreseen.
G. CONSERVATION PERIOD: based on the limitation principles of conservation (art.5 GDPR) periodic checks are carried out on the obsolescence of conserved data in relation to the purpose for which they were collected. In particular: data collected automatically are processed for a period of time no longer than necessary for the sole purpose of extracting statistical information on the use of the site and to check its functioning, also for the purpose of security or based on expiry established by law. Data supplied voluntarily by the user are conserved for a period of time no longer than is necessary to fullfill the purpose or based on expiry established by law.
H. THE RIGHTS OF THE INDIVIDUAL: the individual always has the right to ask the Controller for access to his personal data, the rectification or cancellation of same, processing limitation or the option to oppose processing, to request the portability of data, to revoke agreement to processing in claiming these and other rights foreseen by the GDPR through simple communication to the Controller. The individual can also present a complaint to a control authority.
I. CONFERMENT OBLIGATION OR OTHERWISE: the communication of data is obligatory during navigation on our website for points D.1 and D.2 for the above-mentioned purposes, to allow the correct delivery of the service. The conferment of consent of your data for point D.3 is optional and in no way compromises the delivery of services.
J. DATA PROCESSING PROCEDURE: Personal data supplied by you, will become the object of processing operations in accordance with the above-mentioned legislation and the confidentiality obligations of the Controller. The data will be processed with both computer tools and on paper or any other suitable means (e.g. cloud systems, archive and conservation digital replacement systems, …) in accordance with suitable technical and organizational security measures foreseen by the GDPR.
K. FINAL NOTE AND UPDATING PROCEDURES: the policy is specifically for the present internet site and not for other possible websites consulted by the user through links contained in the present site. The policy may undergo changes due to the introduction of relevant new norms, the user is thus invited to periodically check the present page to keep up to date on any recent legislative changes. Previous versions of the present policy can always be requested from the Data Controller.
L. AUTOMATED DECISIONAL PROCESSES: automated decisional processes are foreseen.