This document describes the management methods of the website www.linfanet.it (“Site”), with reference to the processing of personal data of users (“User/Users”) who consult it.
It is information provided pursuant to art. 13 of Legislative Decree no. 196/2003, the so-called Personal Data Protection Code (“Privacy Code”) and article 13 of EU Regulation 679/2016 (“GDPR”), to all those who visit the Site and/or interact with the LINFA web services accessible through the Site.
The information is provided only for the Site and not for other websites that may be consulted by the User through links on the Site.
1. Data Controller
The data controller of your personal data is LINFA S.r.l., with registered office in Via della Repubblica, 3
18110 Imperia IM, mail info@linfanet.it, (hereinafter “LINFA” or “Owner”).
2. Types of data processed
2.1 Navigation data
The computer systems and software procedures used to operate the Site acquire, during their normal operation, some personal data whose transmission is implicit in the use of internet communication protocols.< br />This is information that is not collected to be associated with identified subjects, but which by their very nature could allow users to be identified.
This category of data includes (i) IP addresses or names domain name of the computers used by users who connect to the Site, (ii) the URI (Uniform Resource Identifier) notation addresses of the requested resources, (iii) the time of the request, (iv) the method used to submit the request to the server, (v) the size of the file obtained in response, (vi) the numerical code indicating the status of the response given by the server (successful, error) and (vii) other parameters relating to the operating system and the user’s computer environment.
These data are used for the sole purpose of obtaining anonymous statistical information on the use of the Site and to check its correct functioning and are canceled immediately after processing.
2.2 Cookies
We use cookies on the site, for more information read the dedicated information:
2.3 Data provided voluntarily by the user
The Data Controller processes personal, identifying and non-sensitive data (by way of example, but not limited to, name, surname, address, telephone, email, etc. – hereinafter, “personal data” or even data) communicated by the User when registering on the web pages of the Site or on the Owner’s registration form, completing and sending a contact form to the Owner or, in any case, any other request.
The User assumes responsibility for third party data published or shared through the Website and guarantees to have the right to communicate or disseminate them, freeing the Data Controller from any liability towards third parties.
3. Purpose and legal basis of the processing
The processing of the User’s personal data by the Owner is aimed at:
- pursue, in accordance with art. 6.1, lett. f) of the GDPR, its own legitimate interest, consisting in guaranteeing the security of the Site and of the information exchanged on it, i.e. the ability of this Site to resist, at a given level of security, unforeseen events or unlawful or malicious acts which compromise the availability, authenticity, integrity and confidentiality of personal data stored or transmitted and the security of the related services offered or made accessible;
- allow the User to send requests for information and the Owner to provide the User with any response to the requests made;
- make it possible to register and authenticate the User;
- for marketing purposes only with your specific and distinct consent in accordance with art. 23 and 130 Privacy Code and art. 7 of the GDPR: sending newsletters, commercial communications and/or advertising material on the Controller’s products and services by email;
- allow the Data Controller to receive the User’s personal data through Facebook, and others and other social networks for which the user may provide contact details;
- to exercise the rights of the Data Controller, for example the right of defence;
- to fulfill the obligations established by law, by a regulation, by community legislation or by an order from the Authority.
The purposes referred to in letters c), d) and e) will be pursued only after the User has given his specific consent and free consent to such processing, it being understood the possibility for the latter to always request the exclusion of some automated or traditional methods of communication.
4. Consequences of a possible refusal to answer
Apart from what is specified with reference to navigation data, which are necessary in order to allow the correct functionality of the Site, to cookies, in relation to which please read the related cookie policy, Users are free to provide their personal data to formulate requests for information and to register on the Site. Failure to provide data will make it impossible to obtain what is requested and to use the LINFA service.
5. Processing methods
Personal data is processed with computerized and automated systems, such as e-mail, databases, spreadsheets, web services for the time necessary to achieve the purposes for which they are collected.
It is specified, in particular, that the User’s personal data are processed by subjects duly appointed to carry out these tasks, constantly identified and/or appointed, suitably instructed and made aware of the constraints imposed by law, as well as through the use of security measures to ensure the protection of your privacy and to avoid the risk of loss or destruction, unauthorized access, processing that is not permitted or does not comply with the aforementioned purposes.
6. Communication and dissemination of data
In any case, the communication of data to companies expressly appointed to carry out certain services in the context of the activity carried out by the Data Controller and/or, in general, in his favor, which will operate as data controllers, is reserved independent and/or responsible for the treatment, as well as the communication and/or dissemination of data requested, in accordance with the law, by police forces, judicial authorities, information and security bodies or other public entities for purposes of defense or of State security or the prevention, detection or repression of crimes.
The data are not subject to disclosure.
The updated list of Managers can always be requested from the Data Controller.
7. Data Transfer
Management and storage takes place on servers located within the European Union at the company Register.it. In any case, it is understood that the Data Controller, if necessary, will have the right to move the location of the servers to Italy and/or the European Union and/or non-EU countries. In this case, the Data Controller ensures from now on that the transfer of data outside the EU will take place in compliance with the applicable legal provisions by stipulating, if necessary, agreements that guarantee an adequate level of protection and/or by adopting the standard contractual clauses envisaged by the Commission European.
8. Rights of the interested party
Pursuant to art. 7 of the Privacy Code and articles 15 et seq. of the GDPR, the User has the right to obtain:
- confirmation of the existence or not of personal data concerning you, even if not yet registered, their communication in an intelligible form and access to them;
- a copy of your personal data;
- the rectification of your possibly inaccurate personal data;
- the erasure of your personal data;
- the limitation of the processing of your personal data;
- in a structured format, commonly used and readable by an automatic device, the personal data that you have provided us or that you yourself have created – excluding the judgments created by the Data Controller and/or by the persons in charge pursuant to art. 4 of the Privacy Code / by persons authorized to process data in the name and on behalf of the Data Controller pursuant to art. 4 of the GDPR – and to transmit them, directly or through the Data Controller, to another data controller (so-called right to data portability);
- the indication:
- of the origin of the personal data;
- of the categories of personal data processed;
- of the purposes and methods of processing;
- of the logic applied in case of treatment carried out with the aid of electronic instruments;
- of the identification details of the Data Controller and of any managers;
- of the retention period of your personal data or of the criteria useful for determining this period;
- of the subjects or categories of subjects to whom the personal data may be communicated or who can learn about them as designated representative in the territory of the State, managers or appointees pursuant to art. 4 of the Privacy Code / persons authorized to process data in the name and on behalf of the Data Controller pursuant to art. 4 of the GDPR;
- updating, rectification or, when interested, integration of data;
- transformation into anonymous form or blocking of data processed unlawfully, including data whose retention is unnecessary for the purposes for which the data were collected or subsequently processed;
- the attestation that the operations referred to in letters a) and b) have been brought to the attention, also as regards their content, of those to whom the data have been communicated or disseminated, except in the case in which this fulfillment proves impossible or involves the use of means that are manifestly disproportionate to the protected right.
- The User also has the right to object, in whole or in part:
- for legitimate reasons, to the processing of personal data concerning you, even if pertinent to the purpose of the collection;
- to the processing of personal data concerning you for the purpose of sending advertising material or direct sales or for carrying out market research or commercial communication.
To exercise the aforementioned rights, Users can send a communication to the e-mail address of the Owner, as per the previous art. 1, indicating in the subject “Privacy exercise of rights”.
We inform you, lastly, that if you believe that your rights have been violated by the Data Controller and/or a third party, you have the right to lodge a complaint with the Guarantor for the Protection of Personal Data and/or other competent supervisory authority under the GDPR.
9. Duration of processing and retention of personal data
The User’s personal data will be processed by the Data Controller only for the period of time necessary to achieve the purposes of the processing referred to in the previous article 3, after which they will be kept only in execution of the legal obligations in force on the matter, for purposes of administrative type and/or to assert or defend one’s right, in the event of disputes and pre-litigation.
The user can always request the interruption of treatment or the cancellation of data.
10. Changes
This document constitutes the Site’s Privacy Policy which may be modified and/or updated at any time. If the Data Controller intends to process the Users’ personal data for purposes other than those provided for in the previous art. 3, undertakes to provide Users, prior to this further processing, with adequate information regarding these different purposes and to carry out this further processing in compliance with current legislation.
11. Complaints
Lastly, we inform you that if you believe that your rights have been violated by the Data Controller and/or a third party, you have the right to lodge a complaint with the Guarantor for the Protection of Personal Data and/or other competent authorities. competent control pursuant to the Regulation. To this page http://www.garanteprivacy.it/home/urp
*** *** ***
This Privacy policy was updated on 02/14/2023. Any updates will always be published on this page.