ADVISORY NOTE ON THE PROCESSING OF PERSONAL DATA PURSUANT TO GDPR 2016/679
This advisory note governs the processing of personal data which is done by our company within this website in compliance with current legislation regarding the protection of personal data and specifically EU Regulation 2016/679 (hereinafter the “GDPR”)
Controller (in terms of processing personal data): EMILOS S.R.L.
Offices: Via della Costituzione, 6, 42025 Cavriago RE, Italy
Contact details: tel 0522-575010, e-mail email@example.com
The Controller is liable towards you for the legitimate and correct use of your personal data and may be contacted for any information or request regarding such processing.
Advisory Note on Privacy
This page outlines the ways that the site is managed with reference to the processing of personal data belonging to the users who access the site.
This advisory note has been prepared pursuant to the new GDPR 2016/679 regarding the protection of personal data of the users who interact with the web services which are accessible remotely from the address: https://www.emilos.eu.
This advisory note only covers the site in question and no other website, even if other websites are accessible through links. The information provided below covers, in a particular way, the collection of personal data from the internet, aiming to identify the minimum measures that need to be adopted, regarding the people affected, to ensure the integrity and lawfulness of these practices.
The place where personal data is processed
Processing connected with the web services available on this site is carried out at the offices mentioned above and is done solely by employees, collaborators or personnel duly appointed to perform the processing, or by any other appointee duly assigned, even occasionally, to perform maintenance operations. No data deriving from the web services will be communicated or divulged to another party. Personal data provided by a user who makes a request for informational material to be sent to him/her is only used to provide the service or to fulfil the request and this data is sent to third-parties only in the event in which this is necessary for these purposes.
Data, purposes and legal basis for processing personal data
The information systems and computer programs used to operate the site collect certain personal information, the transmission of which is implicit in the use of internet communication protocols (e.g. the IP address or domain name of the computer used by a user to access the site, URI (Uniform Resource Identifier) addresses, the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code of the status of the response sent by the server
– OK, error, etc. – and other parameters regarding the user’s operating system and computing environment). Although this regards information which is not collected in order to be associated to an identified data subject, by the information’s very nature, through processing and through associating it with data held by third parties, it may be possible to identify a user.
This data is used solely to collect statistical information – which is not associated to any user-identifying data – about how the site is used and to check that it is functioning properly and such information is deleted immediately after being processed. Data could be used to ascertain liability in the case of a computer crime against the Site.
The optional, explicit and voluntary sending of your personal data (first name, last name, email address, personal details, bank details ) to any address indicated on this site, or by completing a form requesting a quotation or requesting more information about our services, leads to the subsequent acquisition of the sender’s address, which is needed to respond to the request, as well as any other personal data that might be included in the user’s message.
Recipients of personal data and transferring personal data outside of the European Union
Your personal data will not be communicated to any third party nor resold for any reason whatsoever. Your personal data will not be transferred to any non-EU country or any international organisation. Personal data may be processed by formally appointed external Processors (a list of such processors is available upon request) who belong to the category of subjects who support the Controller in providing the services offered through this site (e.g.: software developers, website managers).
Methods of processing personal data
Your personal data is processed with automated tools for the time strictly necessary to achieve the aim(s) for which the information was collected, except in the case that the information is required in other processing by the same Controller. Specific security measures have been implemented to prevent any loss of data and any illicit or improper use of the data in compliance with the obligations regarding minimum security measures.
In any case, should consent to processing be revoked, personal data will no longer be processed.
We also advise you of the following rights you have and which the Controller shall respect:
The right to request access to the personal data that concerns you (art.15).
The right to request that the personal data that concerns you be rectified (art.16) or erased (art.17).
The right to restrict (art.18) or to oppose the processing of the personal data that concerns you (art.21).
The right to have the personal data that concerns you made portable (art.20).
The right to revoke the consent provided for one or more specific purposes, at any time, without prejudice to the processing carried out prior to the consent being revoked (which might require deletion).
The right to lodge a complaint with a Supervisory Authority. In Italy, this is the Italian Data Protection Authority (Garante per la protezione dei dati personali) (art.77).
Exercising any of the rights indicated in this advisory note including, in particular, the right to have data erased and the right to revoke consent given must be done by emailing the Controller directly at: firstname.lastname@example.org