PERSONAL DATA AND NAVIGATION DATA
1. CATEGORIES OF PERSONAL DATA PROCESSED BY THE DATA CONTROLLER
2. PURPOSES AND LEGAL BASIS OF THE PROCESSING
The data and cookies received from you will be processed by BUOIROSSI SRL exclusively with the methods and procedures necessary to provide you with the requested services and for the further purposes for which you have given your consent In particular, all the information we collect will be used to: - Understand how our Platform is used and consequently be able to continuously improve our Platform and services and other offerings. In the event that you have consented to a particular use of your data, we will process it on the basis of your consent. You can revoke such consent at any time by contacting us (see the following section " 7 - RIGHTS OF THE INTERESTED PARTY"). We also process your information to the extent necessary for the performance of a contract with you or to the extent necessary for our legitimate interests in operating, protecting and improving our business. Communications for market surveys or commercial information on products and promotional initiatives may be made by postal mailing, electronic mail, telemarketing, sms, mms. We inform you that some activities may be implemented through suppliers, specifically appointed as data processors, including those residing outside the European Union.
3. DIFFUSION, COMMUNICATION AND SUBJECTS THAT ACCESS DATA
Your personal data will not be diffused, but may be communicated where necessary for the provision of the service to third parties (such as third party technical service providers, postal couriers, hosting providers, IT companies) appointed, if necessary, as Data Processors by BUOIROSSI SRL for tasks of a technical or organizational nature instrumental to the provision of services. Access to data is also allowed to categories of BUOIROSSI SRL employees involved in the organization for data processing (administrative, sales, marketing, customer service, system administrators). An updated list of the persons in charge can always be requested from the Data Controller. This is without prejudice to the right of communication to third parties if you have given specific and optional consent. In addition, we may share your personal data with third parties in connection with the potential or actual sale or restructuring of our company or any of our assets, in which case personal data held by us about our customers may be among the transferred assets. We will respond to requests to disclose personal information when required to do so by law or when we believe that disclosure is necessary to protect our rights and/or comply with a judicial proceeding, court order, request from the legislature, or any other legal process to which we are subject.
4. TRANSFER OF DATA ABROAD
Your personal data will be processed by BUOIROSSI SRL within the territory of the European Union. If for technical and/or operational reasons it is necessary to use subjects located outside the European Union, or it is necessary to transfer some of the data collected to technical systems and services managed in the cloud and located outside the European Union, the treatment will be regulated in accordance with the provisions of Chapter V of the Regulation and authorized under specific decisions of the European Union. All necessary precautions will therefore be taken in order to guarantee the most complete protection of personal data, basing such transfer: a) on adequacy decisions of the third country recipients expressed by the European Commission; b) on adequate guarantees expressed by the third party recipients pursuant to art. 46 of the Regulation; c) on the adoption of binding corporate rules.
5. DURATION OF PROCESSING AND STORAGE OF PERSONAL DATA
In accordance with the provisions of Art. 5.1 e) of the GDPR, BUOIROSSI SRL will process the data you provide for the period necessary to achieve the purposes for which they were collected. Generally, we keep your personal data for one year from the end of our relationship or from the last contact, unless otherwise prescribed by local legislation. In some cases it may be necessary for us to retain your personal data for a longer period, for example if we are required to do so for legal, tax or financial reasons.
It is very important for BUOIROSSI SRL to ensure the highest possible security of all personal data associated with our users. To this end, we have implemented security measures to protect personal data from accidental or unlawful destruction, accidental loss, modification, disclosure or unauthorized access. We would advise you, for the protection of your personal data outside the limits of our control, to protect the device(s) with which you access our Site or Platforms (e.g., with an up-to-date anti-virus system) and to verify that your Internet provider takes appropriate measures to secure data transmission over the network (e.g., firewalls and spam filters). While we take reasonable protective measures, we cannot guarantee that the personal data you provide will be 100% secure, nor that no data breach will occur. By using this Site, you accept the security implications inherent in online transactions and you will not attribute any data breach to BUOIROSSI SRL that is not due to negligence.
7. RIGHTS OF THE INTERESTED PARTY
BUOIROSSI SRL guarantees that you can exercise your rights under the GDPR at any time. Specifically, you can exercise the following rights: - Right of access, rectification and cancellation: you have the right to access and receive a copy of all your personal data in our possession, to request the correction of any inaccuracy in the data concerning you and to request the cancellation of your personal data in certain circumstances. You have the possibility to consult and modify your personal data yourself on the site or you can contact us by email at email@example.com. You will be able to delete your personal data held by BUOIROSSI SRL if one of the reasons provided by the GDPR exists. - Right to restrict processing to only some personal data, if one of the reasons provided by the GDPR exists. If personal data is subject to such limitations, we will process it only with your consent or for the establishment, execution or defense of a legal action. - Right to withdraw consent: where applicable, you have the right to withdraw your consent to data processing at any time. If you no longer wish to receive electronic marketing communications via you can send an email to firstname.lastname@example.org or by clicking on the "unsubscribe" link contained in all marketing emails sent by BUOIROSSI SRL - Right to object to processing, justified on the basis of legitimate interests: where the processing of personal data is based on legitimate interests, you have the right to object to such processing. In case of opposition, it is our duty to stop the processing unless we can prove the existence of overriding legitimate interests that prevail over your interests, rights and freedoms or we do not need to process the data for the establishment, execution or defense of a judicial action. In cases where we rely on legitimate interests as a justification for processing, we believe we can demonstrate such overriding legitimate interests, but we will consider each case on its own merits. - Right to portability: you will be able to request and receive all of your personal data processed by the Controller, in a structured, commonly used and machine-readable format or request transmission to another controller, if technically feasible. - Right to oppose in whole or in part to the processing of data in automatic or semi-automatic mode for profiling purposes. The exercise of these rights may be exercised by notifying the Data Protection Officer (DPO) whose contact details are indicated in the relevant section of this policy. In addition, you always have the right, if you believe that the processing of your personal data violates the legislation in force, to complain to the Authority for the Protection of Personal Data, which can be contacted at email@example.com or through the site http://www.gpdp.it.
8. RESPONSIBLE FOR DATA PROTECTION
BUOIROSSI SRL has appointed, pursuant to art. 37 of the GDPR, a Data Protection Officer (DPO) and to whom you can refer for all requests concerning the privacy of its users and customers. To exercise the rights guaranteed to you, you can - write to the following address: DPO Office c/o Via Cavour 32, Alessandria 15121 - call the following number +39 0131 517171 and ask for the Data Protection Officer - send an email to: firstname.lastname@example.org
9. LAST UPDATE