PRIVACY POLICY - PRIVACY INFORMATION
INFORMATION ON THE PROCESSING OF PERSONAL DATA PURSUANT TO ART. 13 OF REGULATION (EU) 2016/679
The Company Elenos s.r.l., in the person of its legal representative on a temporary basis, via Amendola n.9, Poggio Renatico (FE), P.Iva 00415540384, Pec elenossrl@pec.elenos.com, as Data Controller, pursuant to the Regulation ( EU) 2016/679 intends to protect privacy and Personal Data in the performance of its business.
We therefore invite you, before transmitting any personal data to the Data Controller, to read this Information carefully: it contains important information on the processing of your Personal Data. "Personal Data" means any information relating to an identified or identifiable natural person (data subject); an identifiable natural person is one who can be identified, directly or indirectly, with particular reference to an identifier such as personal data, an identification number, location data, an online identifier or one or more characteristic elements of his physical identity , physiological, genetic, psychic, economic, cultural or social.
This Policy:
- is understood to be made for the site www.elenos.com and constitutes an integral part of the aforementioned site;
- is provided, pursuant to and for the purposes of Article 13 of the Regulation, to those who use the web services of the Data Controller, by consulting or using the services made available through the Site.
The Data Controller can be contacted for any information or request at the address: elenossrl@pec.elenos.com
This disclosure is intended to allow users to learn about the privacy policy adopted by the Data Controller and how personal information is processed when using the www.elenos.com website, as well as to give consent to the free and informed processing of Personal Data , in compliance with the provisions of the Regulation and in compliance with the principles of lawfulness, correctness, transparency, purpose limitation and conservation, data minimization, accuracy, integrity and confidentiality.
1. Data controller
The Data Controller carried out through the Website is Elenos s.r.l., in the person of its legal representative, via Amendola n.9, Poggio Renatico (FE), P.Iva 00415540384, Pec elenossrl@pec.elenos.com
2. The Personal Data being processed
Following navigation of the Site, we inform you that the Data Controller will process your Personal Data which may consist of an identifier such as a name, an identification number, an online identifier or one or more characteristic elements of your physical, economic, cultural identity or company capable of making the interested party identified or identifiable.
Other Personal Data freely provided by the interested parties could be processed. Any sensitive data, pursuant to art. 9.1 Reg. 2016/679/EU should not be processed without the prior explicit consent given by the interested party.
to. Navigation data
The computer systems and procedures used to operate the Site acquire, during their operation, some Personal Data whose transmission is implicit in the use of Internet communication protocols. This is information that is not collected to be associated with identified interested parties, but which by their very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users who connect to the Site, the addresses in URI (Uniform Resource Identifier) notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user's IT environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the Site and to check its correct functioning, to identify anomalies and/or abuses, and are canceled immediately after processing. The data could be used to ascertain responsibility in the event of hypothetical computer crimes against the site or third parties: except for this eventuality, the data on web contacts do not currently persist for more than seven days.
b. Data provided voluntarily
We may process personal and/or contact data such as name, surname, email and telephone.
If the interested party communicates Personal Data of third parties, he must ensure - assuming all responsibility for it - that this particular hypothesis of treatment is based on an appropriate legal basis pursuant to art. 6 of the Regulation, which legitimizes the Data Controller to receive such data and to carry out the processing operations of the same.
3. Purpose of the treatment
The data processing we intend to carry out can have the following purposes:
4. Basis of legitimacy and mandatory or optional nature of the processing
The legal basis for the processing of Personal Data for the aforementioned purposes is art. 6.1.b) of the Regulations as the treatments are necessary for the provision of the Services or for the response of requests from the interested party. The provision of Personal Data for these purposes is optional but failure to provide it would make it impossible to activate the Services provided by the Site.
The purpose referred to in section 3, letter c) represents a processing of Personal Data carried out pursuant to art. 6.1.c) of the Regulation, for fulfillment of a legal obligation. Once the Personal Data has been provided, the processing is indeed necessary to fulfill a legal obligation to which the Data Controller is subject. The processing for the purposes referred to in section 3, letter d) would be carried out pursuant to art. 6.1.f) of the Regulation.
5. Recipients of Personal Data
Your Personal Data may be shared, for the purposes referred to in section 3 above, with:
- to. subjects who typically act as external data processors pursuant to art. 28 of the Regulation e.g. persons, companies or professional firms that provide assistance and consultancy to the Data Controller in accounting, administrative, legal, tax, financial and debt collection matters relating to the provision of the Services; subjects with whom it is necessary to interact for the provision of the site Services; subjects delegated to carry out technical maintenance of IT tools and network systems; the list of external data processors who process data can be requested from the Data Controller.
- b. subjects, bodies or authorities, independent data controllers, to whom it is mandatory to communicate your Personal Data pursuant to the provisions of the law or orders from the authorities;
- c. persons authorized by the Data Controller to process Personal Data pursuant to art. 29 of the Regulation necessary to carry out activities strictly related to the provision of the Services, who are committed to confidentiality or have an adequate legal obligation of confidentiality (e.g. employees)
6. Data Retention
The Personal Data processed will be kept for the time strictly necessary to achieve those same purposes in compliance with the principles of minimization and limitation of conservation pursuant to art. 5.1.e) of the Regulation. In any case, the Data Controller will process the Personal Data for the time necessary to fulfill contractual and legal obligations.
Further information regarding the data retention period and the criteria used to determine this period can be requested by writing to the Data Controller.
7. Rights of data subjects
Pursuant to articles 15 and following of the Regulation, each interested party has the right to request, at any time, access to their Personal Data, the rectification or cancellation of the same, the limitation of treatment in the cases provided for by art. 18 of the Regulation, obtain the data concerning him in a structured format, commonly used and readable by an automatic device, in the cases provided for by art. 20 of the Regulation. At any time, he can revoke the consent given; propose a complaint to the competent supervisory authority (for Italy the Guarantor for the Protection of Personal Data), if it considers that the processing of data is contrary to current legislation.
You can formulate a request for opposition to data processing by expressing the reasons that justify the opposition: in such cases, the Data Controller will evaluate the request, rejecting it only in the presence of prevailing mandatory obligations that legitimize the processing by prevailing over the rights and freedoms of the interested.
All requests must be addressed to the Data Controller in writing, to the contact details available on the Site and indicated in this information.
8. Changes
This privacy policy is subject to changes when the applicable legislation is changed or updated or in the event of significant changes regarding the type of data processed and the methods of treatment. The Data Controller suggests that interested parties regularly read this information in order to be aware of any changes; will provide specific communications in the presence of particularly significant changes that may affect the type of data processed and the methods of treatment, this to safeguard the rights and freedoms of the interested parties.
OPTIONAL PRIVACY POLICY - PRIVACY INFORMATION (for commercial purposes)
Data processing for commercial and promotional purposes
The Customer also gives his consent for his personal data to be used directly by the Data Controller for commercial, promotional and marketing purposes, including the automated processing of his tastes and preferences to receive increasingly better and personalized services.
This consent is optional.