Privacy Policy

 

  1. Information on processing of personal data 

    In compliance with articles 13 (for data collected from the data subject) and 14 (for data not collected from the data subject) of Regulation (EU) 2016/679 (GDPR), users of this website are given the following information, which refers exclusively to the processing carried out through this website and not through other websites possibly visited through links from the present, for which it is suggested to read the relative information given by the respective owners.

  2. Data controller, Responsible person of data protection 

    The holder of the treatment is: Tiziano Codiferro, Via Dante Alighieri, 49, 59016 Poggio A Caiano – Prato, telefono 347 763 3625 email info@codiferro.it 

    The owner has the right to appoint as responsible for the processing of personal data managed for the purposes of technical assistance, maintenance, technical management and like of this website, a web agency whose references can be communicated following a request to the above addresses. The owner and the manager process the users’ data also thanks to their own internal representatives, specifically designated and provided with instructions for the correct processing of personal data, even orally.

  3. Purpose of treatment
    • rendered to users of the web services offered by the site;
    • cookie management,
    • sending communication;
    • application of potential profiles.
    • Personal data of website users, as described above, will be processed in the ways and in the forms prescribed by the GDPR, for the performance of the website’s own features, with particular – but not exclusive – reference to the procedures described therein for data collection, contact form, possible registration process, profile applications in the peoples careers section.
  4. Browsing data 

    Computer system and software procedures for this website running acquired, during their normal excercise, some personal data whose transmission is implicit in the use of the Internet communication protocols. This is information that is not collected to be associated with identified interested parties, but which by their nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes IP addresses or domain names of the computers used by users connecting to the site, the addresses in the Uniform Resource Identifier (URI) notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (success, error, etc.) and other parameters relating to the operating system and the user’s computer environment. The collected data could be used to ascertain responsibility in case of any computer crimes against the site.In particular, the personal data provided to the holder will be used to pursue the following aims:

    • to follow up the specific requests addressed to the owner by the user through the website and its communication tools (contact form, request for information and similar);
    • to the possible sending of communication and disclosures related to the sector in which the owner works, with specific consent given by the user through by ticking the related box;
    • for informative communication related to the owner’s services, following the information request via email or filling the contact form or through other communication tools;
    • for additional reasons or reasons related to the above ones or falling within the aim of the website’s activities.

    The optional sending of data, explicit or volunteer, as requested in some sections of this website has the aim to give the effect to the user requests (indicative example and not exhaustive: when requesting information or clarifications by writing to the e-mail addresses on the site on the home page or internal pages or when you spontaneously send curriculum vitae in order to propose yourself as candidates, or when making direct calls or sending faxes to the numbers always present in the “contacts” section).

    The treatment of data provided on a generic basis will be carried out, even after an automatic collection, for the sole purpose of assessment and control of website access. This also applies to technical cookies, to be considered as session cookies, of functionality or analytics that have the requirements specified by the guarantor.  In particular, regarding this last, it is clarified that they can be assimilated to technical cookies where these are made and used directly from the website. This website uses Google Analytics and Google Tag Manager to track the user interaction. For these cookies, the website, in accordance to clarifications of the guarantor. For these cookies, the website, in accordance with the clarification of the guarantor, has provided for the anonymization of IP addresses and the data processing amendment: the collection and use of the mentioned navigation data (without prejudice to the anonymisation of the IP addresses), allow the monitoring of the website’s progress and allow the improvement the service offered, offering the user a better browsing experience.

    Google Analytics and Google Tag Manager detect data such as geographical location, device, Internet browser and operating system, none of this information personally identifies the user. It is sent to the appropriate cookie policy for further information.

  5. Contact/booking forms, e-mail links, optional and/or mandatory information and data provision and consequences 

    The user decides to contact us using the contact form on our website or email link, none of the data provided will be stored by this website neither an email link, none of the data provided will be stored by this website neither transfer to third parties and/or processed by them (V. section 6.0). Data will be stored in an email and send to us through SMTP protocol (Simple Mail Transfer Protocol). Our server are protected by TLS (known as SSL), that is, the email content is encrypted using 256-bit SHA-2 encryption before being sent over the Internet. The email is then decrypted by our local computers and devices. The provision of data through the website form or communications transmitted on a voluntary basis by the same user, is always optional; however, in case of failure to provide the data marked as mandatory within the request forms, the website is not able to provide the user with the service requested from time to time.

  6. Legal treatment base 
    • Consent
    • Fulfillment of a contractual obligation or social contact
    • Information

    Personal data treatment is based on right of, fulfillment of contract obligation and social contact, or where necessary, on consent through the free and conscious filling of the appropriate information fields on the dedicated form.

  7. Legitimate interest of the owner 

    The processing of personal data is also based on the legitimate interest of the owner, such as the exercise of his rights in the context of the information society and with regard to the application of the profiles requested.

  8. Possible recipients of personal data

    The data may be communicated to companies connected, connected or controlled by the owner, as well as to consultants, or also to third parties who operate, also in the name and on behalf of the owner, for the execution of services related to the purposes indicated in this statement, both intra-EU and non-EU (in the latter case, it will only be subjects belonging to the Privacy Shield protocol).Navigation data and the like (for which reference is made above), will be communicated to the respective third parties concerned, where these do not directly manage them as data controllers.
  9. Retention period 

    The data provided by the interested party will be kept until the express revocation of the consent by the interested party, through action taken on their browser, through cookies cleaning, or express request and/or otherwise expressed.The browsing data will be kept for the technical time necessary for the functions to be performed.

  10. Rights of the interested party

    Rights (artt. 15-22 GDPR):

    • access
    • correction
    • cancellation
    • limitation
    • portability

    Forms and terms of exercise: art. 12 GDPR

    Via e-mail info@codiferro.it

    Each interested party has the access right, correction, cancellation (oblivion), limitation, of receipt of notification in the event correction, cancellation, limitation opposition and Ciascun interessato ha diritto di accesso, di rettifica, di cancellazione (oblio), di limitazione, di ricezione della notifica in caso di rettifica, cancellazione o limitazione, di portabilità, di opposizione e not to be the subject of an automated individual decision, including profiling, pursuant to art. from 15 to 22 of the GDPR. These rights can be exercise in the terms and forms specified in the art. 12 GDPR, through written communication sent to the owner via email to info@codiferro.it

    The owner will answer as soon as possibile and within one month from the request receipt.

    It is possible to revoke this consent at any time by:

    • sending an email to the owner’s address: info@codiferro.it;
    • expressed communication at the headquarters of the owner.
  11. ComplaintsEach interested party has the right to lodge a complaint pursuant to art. 77 and following in the GDPR to a supervisory authority, which for the Italian State is identified in the Guarantor for the Protection of Personal Data.

    The forms, methods and terms for proposing complaints are foreseen and governed by the national legislation in force.

    The complaint is without prejudice to administrative and jurisdictional actions for the Italian State may alternatively propose to the same Guarantor or to the Court.