1. Data controller
This Site is owned by CO.ME.T s.r.l. VAT Reg. No./Tax ID IT04787000282, based in 35030 Saccolongo (PD) Italy, via Luigi Einaudi, 72/74, e-mail address email@example.com (hereinafter referred to as the "Data Controller").
The Data Controller knows the importance of maintaining the confidentiality, integrity and security of the personal data of Data Subjects and is committed to protecting the data of every natural person with respect for their identity, the dignity of every human being and fundamental freedoms guaranteed by the Constitution in accordance with European Regulation 2016/679 ("GDPR") on the protection of natural persons with regard to the processing of personal data and on the free movement of such data ("Personal Data").
2. Types of data processed
a. Browsing data The computer systems and procedures used to operate our Site acquire, during viewing of the Site itself, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with any user of the services, but given their nature could, when processed and matched to other data, allow for identifying you. This category of data includes IP addresses and the domain names of the computers used by users connecting to the Site, the URL addresses of the resources requested, the time of the request, the size of the file obtained from the server, the numerical code indicating the status of the response given by the server and other parameters such as the operating system and your computer environment.
b. Contact data provided by you The provision of your personal data is optional, but it is necessary so that the data controller can satisfy your needs in relation to the way the Site works. In all cases, before proceeding with activation of a specific service, appropriate information will be provided on the pages relating to the individual services offered and, where necessary, consent will be obtained for the collection and processing of your personal data. The failure to provide or providing partial or inaccurate personal data, necessary for the performance of the service requested (marked with *) make it impossible to perform the service, while the failure to provide or providing partial or inaccurate optional personal data not necessary, has no consequence.
3. Interactions and information acquired through social networks and external platforms
In the event a service is installed for interacting with social networks, these sites may collect data on traffic relating to the pages it is installed on, whether you use the service or not. In order to make more people aware of us we use the plug-ins of the social networks Facebook, LinkedIn and Google+ on our website in accordance with Art. 6 c. 1, letter f of the GDPR. The underlying advertising purpose must be considered a legitimate interest in accordance with the GDPR. Responsibility for data protection-compliant operation must be guaranteed by the respective provider.
The +1 button and social network widgets of Google+ (Google Inc.): The +1 button and social network widgets of Google+ are services for interacting with the Google+ social network, provided by Google Inc.
Personal data collected: Cookies and Browsing Data.
Facebook Like button and social network widgets (Facebook, Inc.): the "Like" button and social network widgets of Facebook are services for interacting with Facebook, provided by Facebook, Inc.
Personal data collected: Cookies and Browsing Data.
We integrate these plug-ins using the so-called 2 click method.
4. Purposes and legal basis of data processing
The personal data provided will be processed in compliance with the conditions of lawfulness ex Art. 6 of Reg. EU 2016/679, for the following purposes:
5. Data security
We use SSL (Secure Socket Layer) in combination with the highest level of encryption supported by your browser. This is usually 256-bit encryption. If your browser does not support 256-bit encryption, 128-bit v3 technology is used instead. If any page of our website is transmitted in encrypted form, it is indicated by display of the lock or padlock symbol in your browser's lower status bar. We also take appropriate technical and organisational security measures to protect your personal data from accidental or intentional manipulation, partial or total loss, destruction or unauthorised access. Our security measures are continuously improved as we keep up with technological developments.
6. Automated decisions
The Data Controller declares that he does not make any automated decisions that might influence the Data Subject. All decision-making processes associated with the purposes of processing described above are carried out with human intervention.
7. Processing methods
Personal data are processed using automated electronic means and devices only for the period of time that is strictly necessary to achieve the purposes for which such data have been gathered. Specific security measures are used to prevent the loss or unlawful or incorrect use of the data, as well as unauthorised access thereto.
8. Who processes personal data and to whom they are communicated
Your processed personal data will only be known by the subjects expressly authorised by the data controller, i.e. be shared with recipients, who will process your data in their capacity as independent processors or data controllers. Precisely, your data will be shared with:
9. Transfers of personal data abroad
Your personal data will not normally be transferred to countries outside the European Union. If there is any need to transfer them to a country outside the EU, the data will be transferred to third countries, international organisations for which the European Commission has intervened with an adequacy decision (Art. 45 Reg. EU 2016/679).
10. Storage period
Personal data collected will be kept in a form that permits identification of data subjects for a period of time not exceeding the purposes for which the personal data were processed. In particular, the storage of the personal data provided depends on the purpose of the processing:
11. Rights of the data subject
As the data subject, you have the right at all times to ask the Data Controller for access to your Personal Data (Art. 15), rectification (Art. 16) or erasure (Art. 17) of the same, or restriction of processing (Art. 18) and to object to their processing based on legitimate interest (Art. 21) to ask for portability of your data (Art. 20) and to lodge a complaint with a supervisory authority (Art. 77).
As the Data Subject, you have the right to withdraw your consent to the processing of your Personal Data at any time, without prejudice to the lawfulness of the processing based on the consent given prior to withdrawal of consent (Articles 6 and 9). In the event of a request for data portability, the Data Controller will provide the Data Subject with personal data in a structured, commonly used and readable format, by automatic means, without prejudice to paragraphs 3 and 4 of Article 20 of the GDPR.
In order to exercise your rights or for any request or need relating to this notice, you should contact us at the e-mail address: firstname.lastname@example.org.