Information on the processing of data pursuant to Articles 13 and 14 of EU Regulation 679/2016
Pursuant to articles 13 and 14 of EU Regulation 679/2016, CoMETA S.p.A., in its capacity as data controller of the personal data of persons who access the home page of the website www.cometaspa.com
and/or register on the website www.cometaspa.com
in order to receive newsletters updating the company's activities, provides the following information to interested parties.
The information is provided only for the aforementioned CoMETA S.p.A. website and not for other websites that may be consulted by the user via links.
The data owner
Following consultation of this site, data relating to identified or identifiable persons may be processed.
The holder of their treatment is CoMETA S.p.A. with registered office in Via Leonardo Da Vinci n. 116, Barberino Tavarnelle - Florence - Italy - Tel: +39 055 8070303 - Technical Assistance: +39 895 898 9550 - Fax: +39 055 8070505 - Tax Code, VAT and Florence Companies Register n. 05048340482 - REA Florence n. 515462 - AEE Register IT18010000010150 - firstname.lastname@example.org
The Data Protection Officer (RPD - DPO Data Protection Officier) is Dr. Davide Candia, who can be contacted at email@example.com
Types of data processed
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.
This information is not collected to be associated with identified data subjects, but by its nature could, through processing and association with data held by third parties, there are links for the removal of cookies for each type of device used (PC, Tablet, Smatphone), allow users to be identified.
This category of data includes IP addresses or domain names of the computers used by users who connect to the site, URI (Uniform Resource Identifier) addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc..) and other parameters relating to the operating system and computer environment of the user.
This data is used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and is deleted immediately after processing. The data could be used to ascertain responsibility in the event of hypothetical computer crimes to the detriment of the site.
With the exception of this possibility, data on web contacts do not currently persist for more than seven days.
Data provided voluntarily by the user
The optional, explicit and voluntary sending of e-mails to the addresses indicated on this site entails the subsequent acquisition of the sender's address, necessary to respond to requests, as well as any other personal data included in the message.
In the same way, registration on the site by filling in the appropriate form with the user's name, surname and e-mail address, in order to receive updates on the company's activities through newsletters, involves the collection and subsequent processing by the owner of said personal data only for the purposes indicated therein.
It is excluded the processing of sensitive or judicial data which, if provided by the user, will be deleted.
Place of data processing
No data deriving from the web service is disclosed. The personal data provided by users who request information are used solely for the purpose of performing the service or provision requested and are communicated to other areas within CoMETA S.p.A. or to other public or private entities only if this is necessary to provide the information requested or for legal obligations.
No personal data of users is acquired by the site. Cookies are small text strings that the sites visited by the user send to the user's terminal (usually to the browser), where they are stored and then retransmitted to the same sites the next time the same user visits, for various purposes (here http://www.cometaspa.com/t:cookie/
you can find adequate information).
Cookies are not used for the transmission of information of a personal nature, nor are so-called persistent cookies of any kind used, i.e. systems for tracing users.
The use of so-called session cookies (which are not permanently stored on the user's computer and disappear when the browser is closed) is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to enable the safe and efficient exploration of the site.
The so-called session cookies used in this site avoid the use of other computer techniques potentially prejudicial to the confidentiality of user navigation and do not allow the acquisition of personal identification data of the user.
The use of permanent cookies is strictly limited to the acquisition of statistical data relating to access to the site. The portal makes use of a market product for the detection of access to its site. It uses permanent cookies in order to collect statistical information on "unique visitors" (different people) to the site. These cookies, defined as "Unique Visitor Cookies", contain an alphanumeric code that identifies the browsing computers, without however any collection of personal data.
Each page of the site also contains a portion of code, aimed at collecting statistical data on the use of the site, also in this case without any collection of personal data.
and Microsoft Windows Explorer).
Optional provision of data
Apart from that specified for navigation data, the user is free to provide any personal data requested in specific pages or areas of the site or indicated in contacts with CoMETA S.p.A. to request information material or other communications.
In any case, failure to provide such data may make it impossible to obtain what has been requested, i.e. prevent you from using all the functions of this website.
Personal data are processed by automated tools for the time strictly necessary to achieve the purposes for which they were collected.
In particular cases, we do not exclude the possibility that they may also be processed in paper format due to the need to carefully respond to users' requests, i.e. for security purposes and to protect a right in court.
Specific security measures are observed to prevent the loss of data, unlawful or incorrect use and unauthorised access.
Rights of the interested parties
At any time, you may exercise, in accordance with Articles 15 to 22 of EU Reg. 679/2016, the right to:
- ask for confirmation of the existence or not of your personal data;
- request access to your personal data and information relating to them, obtain information on the purposes of processing, the categories of personal data, the recipients or categories of recipients to whom the personal data have been or will be communicated and, where possible, the period of storage (art. 15 GDPR);
- ask the data controller for access to personal data and the rectification or erasure of such data or the limitation of processing concerning him/her or to object to its processing (Articles 16-17-18 GDPR);
- to obtain the portability of the data, i.e. to receive them from a data controller, in a structured format, in common use and readable by automatic device, and to transmit them to another data controller without hindrance (art. 20 GDPR);
- oppose the processing at any time and also in the case of processing for direct marketing purposes (art. 21 GDPR);
- oppose an automated decision-making process concerning natural persons, including profiling (Articles 21-22 GDPR);
- revoke consent at any time without prejudice to the lawfulness of processing based on consent given before the revocation (Art. 7 GDPR);
- lodge a complaint with the competent supervisory authority (art. 77 GDPR), referring to the Data Protection Supervisor (http://www.garanteprivacy.it).
The modalities for the exercise of all rights are established, as a general rule, in Articles 11 and 12 of EU Regulation no. 2016/679. The deadline for the written reply to the interested party - also of refusal - is one month (including the right of access). It is up to the data controller to establish, after the first copy or for manifestly unfounded or excessive requests, the economic contribution to be requested from the data subject for the rights of access, issue of copies, rectification, portability, limitation of processing and deletion of data.
How to exercise the rights of the interested party
The interested party may confer in writing, proxy or power of attorney to natural persons, entities, associations or bodies, representing him/her, for the exercise of his/her rights.
The interested party may exercise his/her rights by sending an e-mail to firstname.lastname@example.org
The interested party also has the right to complain to the Privacy Authority, which can be contacted at the following addresses: email@example.com – firstname.lastname@example.org
In order to guarantee the effective exercise of the rights of the interested party, CoMETA S.p.A. adopts suitable measures to facilitate access to personal data by the interested party and to simplify the procedure and reduce the time required to reply to the applicant.
Retention times for user data
Personal data will be kept until the conclusion of the contractual relationship and for the time necessary to achieve the above mentioned purposes or in accordance with applicable law. Users residing in the European Economic Area may contact us for more details on our retention periods in relation to their personal data. By virtue of a legitimate and lawful interest, CoMETA S.p.A. may store the user's personal data in a form made anonymous and no longer referable to the user, for statistical purposes and without time limits.