REGULATORY REFERENCES
• European Directive 2002/58/CE – concerning “the processing of personal data and the protection of privacy in the electronic communications sector “
• EU Regulation 2016/679 of 27 April 2016, on the protection of individuals with regard to the processing of personal data and on the free movement of such data.
THE DATA CONTROLLER AND PURPOSE OF DATA PROCESSING
The Data Controller is SPIC Srl (VAT 01675170243), with registered office in Via Sile, 20 – 31033 Castelfranco Veneto (TV) – Italy.
Following use of this website, data relating to identified or identifiable persons may be processed.
DATA PROCESSING LOCATION AND RETENTION PERIOD
The processing connected to the web services of this website takes place on the servers of SPIC Srl. The personal data collected may be communicated to authorised third-parties for activities strictly related and instrumental to the operation of the service, such as management of the computer system, or for processing by other companies for the same purposes, appointed as Data Processors pursuant to Chapter 28 of the GDPR. Personal data are processed with automated tools for the time strictly necessary to achieve the purposes for which they were collected.
TYPES OF DATA PROCESSING
Internet browsing data
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the communication protocols of the Internet. This information is not collected to be associated with identified data subjects, however, by their very nature, could, through processing and association with data held by third parties, allow them to be identified. This category of data includes IP addresses or domain names of computers used by web users connecting to the website, URI (Uniform Resource Identifier) of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the response from the server (successful, error, etc..) and other parameters regarding the operating system and computer environment. These data are used only to obtain anonymous statistical information on the use of the website and to check its correct functioning and are deleted immediately after processing. The data could be used to ascertain responsibility in the event of hypothetical computer crimes against the website, apart from this possibility, the data on web contacts do not stored for more than seven days. The website uses technical and section cookies to ensure its functionality. These cookies do not collect information about your browsing activities
Data provided voluntarily by the user
The optional, explicit and voluntary submission of personal data by the user in the registration forms / collection of personal data on this website involves the subsequent acquisition of the data provided by the sender, necessary for the provision of the requested service. Specific information will be progressively reported or displayed on the pages of the website prepared for particular services on request.
Anonymous or aggregated data
Anonymisation is configured as a treatment that aims to prevent the identification of the interested party.
Anonymous data does not fall within the scope of data protection legislation. We collect, process and share aggregated data such as statistical or demographic data for different purposes. The aggregated data may result from personal data provided by the user but are not considered personal data as, as specified, they do not allow either directly or indirectly the identification of the interested party. This data will also be used to improve the quality of our existing products/services, to develop new functionalities, as well as for further general research purposes (for example, to verify the frequency with which a particular product/service is used; the percentage of users accessing a specific website function etc.). Since these data do not allow the identification of a natural person, they are not considered personal data and will be shared with third parties, controlled or partners.
LINKS TO OTHER WEBSITES
This website may contain links or references to access other websites, such as social network Facebook, Instagram, Google+, Twitter e Pinterest. By clicking on the appropriate links you can for example share our contents. The Company does not control the monitoring cookies or technologies of other websites to which this Policy does not apply.
OPTIONAL PRIVISION OF DATA
Apart from that specified for browsing data, the user is free to provide personal data contained in the application forms or indicated in contacts to request the sending of informative material or other communications. Failure to provide them may make it impossible to obtain the information requested.
PROCESSING MECHANISMS OF DATA
Personal data are processed, also through the use of automated tools. Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access. The Owner has adopted all the security measures required by law and based on the main international standards, has also taken additional security measures to minimize the risks related to the confidentiality, availability and integrity of personal data collected and processed.
SHARING, COMMUNICATION AND DISCLOSURE OF DATA
The personal data collected may be communicated to authorised third-parties for activities strictly related and instrumental to the operation of the service, such as management of the computer system, or for processing by other companies for the same purposes. The personal data provided by users who request dispatch of informative material (brochures, informative material, etc.) are used for the sole purpose of performing the service or provision requested and are communicated to third parties only if this is necessary. for this purpose (companies that provide enveloping, labeling and shipping services). Apart from these cases, personal data will not be disclosed unless stipulated by contract or by law, or unless specifically requested by the interested party.
In this regard, personal data may be transmitted to third parties, but only and exclusively in the event that:
a) explicit consent is given to share the data with third parties;
b) there is a need to share information with third parties in order to provide the requested service;
c) this is necessary in order to comply with requests from Court or Public Security Authorities.
No data deriving from the web service is disclosed.
RIGHTS OF DATA SUBJECTS
The subjects to whom the personal data refer have the right at any time to obtain confirmation of the existence or otherwise of such data and to know its content and origin, verify its accuracy or request its integration or updating, or correction (art. 7 of Legislative Decree 30 June 2003, n. 196, and Articles 15 to 22 of EU Regulation 2016/679). Pursuant to the same article 7 of the Legislative Decree of 30 June 2003, number 196 and articles 15 and following of EU Regulation 2016/679 you have the right to request cancellation, transformation into anonymous form or blocking of data processed in violation of the law, and to oppose in any case, for legitimate reasons, to their processing.
Transfer of data abroad extra UE
In cases where the transfer, processing or access to personal data is required by parties based outside the European Union, the Owner obtains the necessary guarantees to transfer the data in accordance with the provisions of Chapter V of the GDPR (verifying, for example, any decision on adequacy envisaged by the Guarantor for Personal Data Protection, verifying the possible certification of the third party to the Privacy Shield or, alternatively, stipulating specific standard contractual clauses for the data protection).
CHANGES TO THESE PRIVACY POLICIES
SPIC Srl periodically verifies its privacy and security policies and, if necessary, reviews them in relation to changes in legislation, organization or dictated by technological developments. In case of policy changes, the new version will be published on this page of the website.
QUESTIONS, COMPLAINTS, SUGGESTIONS AND EXERCISE OF RIGHTS
Anyone interested in further information, contributing their own suggestions or forwarding complaints or objections regarding the Company’s privacy policies or the way in which the owner processes personal data, as well as to assert his rights under the legislation regarding the protection of personal data, can contact the data controller by writing to SPIC Srl (VAT 01675170243), with registered office in Via Sile, 20 – 31033 Castelfranco Veneto (TV) – Italy, or by sending an e-mail to privacy@spicsrl.it.
LAW AND JURISDICTION
The interpretation and execution of these conditions are governed by Italian law. The Court of Treviso (Italy) will be exclusively competent for any controversy related to these conditions. The Owner reserves the right to take legal action in any Court even abroad, to protect its interests and enforce its rights.