PRIVACY POLICY
LEGAL REFERENCES
- Directive 2002/58/EC – relating to the “processing of personal data and the protection of privacy in the electronic communications sector.”
- Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data, as well as on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, GDPR).
DATA CONTROLLER
Following the consultation of this website, data relating to identified or identifiable persons may be processed. The “Controller” of such processing, pursuant to Regulation (EU) 2016/679 (General Data Protection Regulation, GDPR), is Italmatic S.r.l., located at Via dell’Artigianato 8/A, 20060 Cassina De’ Pecchi (MI), Italy.
LOCATION OF DATA PROCESSING AND RETENTION TIMES
Processing related to the web services of this site takes place at the aforementioned headquarters of the Controller and is carried out exclusively by personnel expressly authorized by the Controller or by any third-party providers engaged for occasional maintenance, who are appointed as Data Processors pursuant to Article 28 of the GDPR. The collected data will be retained— for each type of data processed—solely for the time necessary to fulfill the specific purposes indicated in the respective summaries displayed on the website pages prepared for specific services.
TYPES OF DATA PROCESSED
Browsing Data
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.
These data are not collected to be associated with identified individuals but, by their nature, could allow user identification through processing and association with data held by third parties.
This category of data includes IP addresses or domain names of the computers used by users connecting to the site, URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response provided by the server (successful, error, etc.), and other parameters related to the user’s operating system and IT environment.
These data are used solely to obtain anonymous statistical information about the use of the site and to ensure its proper functioning, and are deleted immediately after processing. The data could be used to ascertain responsibility in case of hypothetical cyber crimes against the site: except for this possibility, web contact data do not persist for more than seven days.
Data Provided Voluntarily by the User
The optional, explicit, and voluntary sending of personal data by users through registration forms on this site involves the subsequent acquisition of the data provided by the sender, necessary to deliver the requested service. Specific summaries of information will be progressively displayed or provided on the pages of the site prepared for particular services upon request.
OPTIONAL DATA PROVISION
Except for the navigation data specified above, users are free to provide their personal data. However, failure to provide such data may result in the inability to fulfill the user’s requests.
METHODS OF PROCESSING
Personal data are processed, including with the use of automated tools. Specific security measures are observed to prevent data loss, unlawful or incorrect use, and unauthorized access. The Controller has adopted all minimum security measures required by law, and by adhering to the main international standards, has also adopted additional security measures to minimize risks to the confidentiality, availability, and integrity of the personal data collected and processed.
SHARING, DISCLOSURE, AND DISSEMINATION OF DATA
The collected data may be transferred or communicated to other companies for activities strictly connected to and instrumental for the operation of the service, such as the management of the IT system.
Personal data provided by users submitting requests for informational materials (brochures, information material, etc.) are used solely to perform the requested service or provision and are communicated to third parties only if necessary for this purpose (companies providing enveloping, labeling, and mailing services).
Outside of these cases, personal data will not be communicated unless required by contractual or legal provisions, or specific consent is obtained from the data subject.
In this context, personal data may be transmitted to third parties only and exclusively in the following cases:
a) Explicit consent is provided for sharing data with third parties;
b) It is necessary to share the data with third parties to perform the requested service;
c) It is required to comply with requests from Judicial or Public Security Authorities.
No data derived from the web service is disseminated.
RIGHTS OF DATA SUBJECTS
The regulations on personal data protection expressly provide certain rights for the data subjects (referred to as the “data subject”). In particular, pursuant to Articles 15 and following of Regulation (EU) 2016/679, each data subject has the right to obtain confirmation of the existence of their data, to access the origin and purposes of the processing, to request the updating, correction, integration, or deletion of data if processed unlawfully, or for any of the reasons specified in Article 17 of Regulation (EU) 2016/679.
CHANGES TO THIS PRIVACY POLICY
The Controller periodically reviews its privacy and security policies and, where appropriate, revises them in response to regulatory, organizational, or technological developments. In case of changes to the policies, the new version will be published on this webpage.
QUESTIONS, COMPLAINTS, SUGGESTIONS, AND EXERCISING OF RIGHTS
Anyone interested in obtaining more information, contributing suggestions, or lodging complaints or objections regarding our privacy policies and how our company processes personal data, as well as exercising their rights under data protection regulations, may contact the Data Controller by writing to Italmatic S.r.l., Via dell’Artigianato 8/A, 20060 Cassina De’ Pecchi (MI), Italy.