Donati S.rl. , as Data Controller, hereby notifies users who consult and/or interact with this website of the information concerning processing of the personal data of identified or identifiable subjects as required by Art. 13 of Legislative Decree no. 196/2003 (Italian Personal Data Protection Code) and illustrates the website’s data processing management procedure.
PLACE OF DATA PROCESSING
The processing operations relative to the web services offered by this website are carried out at the company premises and are conducted by the technical personnel of the office in charge of processing or, on an occasional basis, by other persons in charge of maintenance operations. Processing may be carried out by external companies which collect data relative to accesses and to navigation to ensure the good function of the services and the site sections which require identification of the user; the information collected may be used for the purposes of technical management of the website and for statistical analyses regarding website use.
Personal data supplied by users who submit requests for information material (catalogues, answers to queries, contact requests) are used solely in relation to the service requested and are communicated to third parties only if it is strictly necessary to do so in order to satisfy users’ requests (e.g., sending any materials requested).
CATEGORIES OF PROCESSED DATA
Navigation Data
During normal operation, the IT systems and the software procedures implemented for operation of this website acquire some personal data the transmission of which is an inherent feature of Internet communication protocols.
Such data are not collected for the purpose of relating them to identified data subjects (data matching). However, due to their very nature, such data could be so processed and associated with data held by third parties in a manner that could permit user identification.
This data category includes IP addresses and/or the domain names of the computers used by any users who access this website, the addresses in URI (Uniform Resource Identifier) notation, the time of accesses, the method used for submitting a request to the server, the returning file size, a numerical code indicating the status of server response (completed, error, etc.), and other parameters related to the user's operating system and computer environment.
These data are used only for extracting anonymous statistical information on website use and to check correct operation of the website; they are erased immediately after being processed for these purposes. The data could be used to establish liability in case of computer crimes committed against the website; except for this circumstance, all data regarding web contacts are retained for no longer than seven days.
Data Provided Voluntarily by Users
Facultative, explicit and voluntary email communications to the addresses given on this website will result in acquisition of the sender’s address, which is required in order to respond to the request, as well as of any additional personal data which may be contained in the message.
Specific summary information is reported or displayed progressively on the website pages on which particular services are offered and/or said pages explain the purposes for which the relative personal data will be processed. Where required, specific consent requests are included.
COOKIES
This website makes use of Google Analytics, a web traffic analysis service supplied by Google, Inc. (‘Google’). Google Analytics makes use of cookies, text files placed on users’ computers to permit the tracking service to analyse that ways in which users use the website. The information about site use generated by the tracking cookies (including the user’s IP address) is transmitted to and stored on the Google servers in the U.S. Google uses this information to track and examine individual users’ website use, to generate reports on website activity for the website operators and to provide other services relative to the activity of the website and to Internet use. Google may also transfer this information to third parties where such transfer is required by law or in the case that third parties process the information in question on Google’s behalf. Google will not associate any user’s IP address with any other data held by Google. A users may refuse to accept the cookies by selecting the appropriate setting on his/her browser, but refusing cookies can make it impossible to fully benefit from the functions/services offered by the website. By using this website, the user consents to processing of his/her data by Google in the manners and for the purposes explained above.
NON-OBLIGATORY NATURE OF PROVISION OF PERSONAL DATA
Aside from the navigation data as explained above, users are free to not provide personal data via the request forms or during contacts with the company offices for requesting delivery of information material or other communications.
Nevertheless, failure to provide such data will make it impossible for the user to obtain the material/services requested.
DATA PROCESSING METHODS
Users’ personal data are processed by paper-based methods, IT technologies and automated means for the time strictly necessary to achieve the purposes for which the data was collected. Specific security measures are implemented to prevent loss of data, unlawful and/or inappropriate use and unauthorised access.
WEBSITE SECURITY MEASURES
Our website management adopts specific security measures to guarantee secure user access and to protect the information contained in the website itself against risks of loss and/or destruction, accidental and otherwise. The antivirus software used by the website is updated periodically in order to prevent data losses due to attacks by computer viruses. Please keep in mind that although the website implements appropriate antivirus systems, it is recommended that users also install antivirus systems on their devices. On request, for accessing the reserved section of the website, user companies are assigned an identification code and a password; in order to avoid unlawful use, access, etc., said passwords are generated in such a manner as to not contain references easily trackable to the associated users. We recommend that users store their password in a safe and secure manner.
USER RIGHTS
Below is an excerpt from Art. 7 of Legislative Decree no. 196/2003 (Italian Personal Data Protection Code) setting forth the rights of the data subject regarding the personal data held by us. The data subject has the right:
- to obtain confirmation as to whether or not personal data concerning him/her exist, regardless of their being already recorded, and communication of such data in intelligible form; to be informed of the source of the personal data, of the purposes and methods of processing and of the logic applied to processing if the latter is carried out with the help of electronic means;
- to obtain erasure, anonymization or blocking of data that have been processed unlawfully, including data whose retention is unnecessary for the purposes for which they have been collected or subsequently processed;
- to obtain updating, rectification or, where interested therein, integration of the data;
- to object, in whole or in part, on legitimate grounds, to the processing of personal data concerning him/her, even though they are relevant to the purpose of the collection.
The rights referred to in Section 7 of the Italian Personal Data Protection Code may be exercised by making a request to the data controller, indicated below.
DATA CONTROLLER AND DATA PROCESSOR
The list of entities approved for special processing may be consulted by making a request to our offices. The Data Controller responsible for processing of users’ personal data is Donati S.r.l. - Via Francesca Nord, 50 - 56010 Vicopisano (PI) ITALY - Tel. +39 050 796022.
