Privacy Policy
PRIVACY POLICY REGARDING THE PROTECTION OF PERSONAL DATA
Pursuant to art. 13 of Regulation (EU) 2016/679
In compliance with the provisions pursuant to and for the purposes of Article 13 of Regulation (EU) 2016/679 Allegrini S.p.A., in its capacity as Data Controller, represented by its pro-tempore legal representative, hereby informs you of the purposes and methods of processing of the personal data collected, their scope of communication and dissemination, as well as the nature of their provision.
- TYPE OF DATA PROCESSED
The IP addresses or the domain names of computers used by users who connect to the Website, URI (Uniform Resource Identifier) addresses for the requested resources, the time of the request, the method used to make the request to the server, the size of the file received in response, the numerical code indicating the status of the response provided by the server (successful, error, etc.), other parameters relating to the operating system and the user’s computing environment, information regarding the user’s behaviour on the Website and the pages that have been visited or searched for, in order to select and provide specific messages to the Website user, and the data
regarding navigation data held by the Website, for example via the use of cookies. When processing personal data that can directly or indirectly identify you, our aim is to observe a principle of strict necessity. For this reason, we have configured the Site in such a way that the use of personal data is kept to a minimum, and in such a way as to limit the processing of personal data that enable us to identify you to only when this is strictly necessary, or at the request of the authorities or the police (such as, for example, for data relating to traffic and your time on the Website or your IP address) or to ascertain responsibility in case of hypothetical computer crimes to the detriment of the
Website. In some sections of the Site, certain personal data will be requested. The data collected
and processed will be used to respond to your requests.
- PURPOSE OF PROCESSING, LEGAL BASIS AND PERIODS OF STORAGE
a. profiling and profile marketing: o legal basis: your optional and free consent, revocable at any time. Please refer to the specific information relating to the Service that will be made available to the interested party on a case-by-case basis, and to the specific “Cookie Information” section.
o storage: until revocation of consent and in any case no later than 5 years.
b. prevention and suppression of fraud/abuse/fraudulent activities carried out through the website:
o legal basis: legitimate interest of the Data Controller. o storage: personal data are stored for a maximum of 180 days and are subsequently deleted or rendered anonymous.
c. establishment, exercise or defence of the legal rights of the Data Controller: o legal basis: legitimate interest of the Data Controller. o storage: personal data will be stored for the duration of the complaint and/or the out-of-court and/or judicial proceedings until the time limit for
legal action and/or appeals has expired. - METHODS AND DATA SECURITY
Your personal data will be processed with automated tools in accordance with the principles of necessity and proportionality, avoiding the processing of personal data if the operations can be carried out with anonymous data or by other means. We have adopted specific security measures to prevent the loss or the unlawful or incorrect use of personal data and unauthorised access to the same, but please remember that it is essential for the security of your data that your device is equipped with tools such as constantly updated antivirus software and that your internet connection provider guarantees the secure transmission of data through the use of firewalls, spam filters and
similar measures. - COMMUNICATION AND DISTRIBUTION
The data may be communicated to third parties for the carrying out of activities functional to the structure, such as website maintenance and management and, more generally, by all employees, including those of third parties (suppliers of services, infrastructures, information technology and the like) who are involved in website management and supervision and are duly appointed as data processors. In this case, their use by third parties will take place in full compliance with the principle of correctness and with the provisions of law.
The transfer of data to countries outside the EU is not provided for. If said transfer is required, data subjects will be informed pursuant to article 13 paragraph 1) letter f) of Regulation (EU) 2016/679 and in accordance with the same. Data will not be disclosed. - RIGHTS OF DATA SUBJECTS
Rights as specified in articles 15, 16, 17, 18, 20, 21 and 22 of Regulation (EU) 2016/679.
We hereby inform you that as data subject, in addition to the right to file a complaint with a supervisory authority, you also have the rights listed below, which you can enforce through written request to the Data Controller as indicated in point 1.
Article 15 – Right of access
Article 16 – Right to rectification
Article 17 – Right to erasure (right to be forgotten)
Article 18 – Right to restriction of processing
Article 19 – Obligation of notification regarding rectification or erasure of personal data
or restriction of processing
Article 20 – Right to data portability
Article 21 – Right to object
Article 22 – Right not to be subject to automated individual decision-making, including
profiling
In order to exercise the rights provided for in Articles 15 et seq. of European Regulation 2016/679, you must write to Allegrini S.p.A., at the address vicolo Salvo D’acquisto, 2, to the attention of the Data Controller. - DATA CONTROLLER AND PROCESSORS
The data controller is Allegrini S.p.A., with registered offices at vicolo Salvo D’acquisto, 2, e-mail privacy@allegrini.com. An updated list of external data processors may be consulted by submitting a written request to the aforementioned Data Controller.