In this section, in accordance with the new European legislation introduced by the EU Regulation 679/2016 and with Italian legislation (Legislative Decree no. 196/2003), information is provided regarding the processing of personal data of users who consult the pages of the site internet efebia.com (hereinafter: “Site”) or who use the services provided on the same arrangement.
The information is provided exclusively for the Site and not for other websites possibly consulted by the user through the links on the Site.
Data controller
The Data Controller of the personal data of users of the Site efebia.com is the company Efebia Srl (hereinafter also “Efebia”), with headquarters in Milan (Mi) in Via Nicola Antonio Porpora 63, Postcode: 20131, VAT number: 10580110962.
***
A - Type of data processed
I. Identifying data
In accordance with the new European legislation introduced by EU Regulation 679/2016 and with the Italian legislation (Legislative Decree no. 196/2003), consultation of the Site may result in processing of data capable of directly or indirectly identifying a natural person such as: name, surname, e-mail address, telephone number, IP address.
The Site does not require the interested party to provide so-called “particulars”, that is, as provided for by the GDPR (art. 9), personal data revealing racial origin or ethnicity, political opinions, religious or philosophical beliefs, or membership union, as well as genetic data, biometric data intended to uniquely identify a natural person, data relating to health or sexual life or sexual orientation of the person. In the event that the requested service requires the treatment of such data, the interested party will receive specific information in advance and will be asked to give explicit consent.
II.Navigation data
Navigation data is data acquired automatically by systems and programs responsible for the operation of the Site and are necessary for the use of web services (e.g. IP addresses, browser used, name of the site through which it was made access).
Such data is acquired even in the absence of registration on the Site or request for information.
The navigation data is used exclusively in an aggregate manner to process anonymous statistics on consultation of the Site and to check that they are correct operation and do not allow the interested users to be identified, furthermore being deleted immediately after anonymous processing.
They can, however, be used to ascertain responsibility in the event of crimes cyber attacks carried out to the detriment of the website.
III. Data provided voluntarily by the user
Personal data provided voluntarily by the user (such as name, surname, e-mail address) for the purpose of contacting members of the Site, are used for the sole purpose to respond to requests made by the interested party and to comply with the obligations of law.
The legal basis of these treatments is the fulfillment of the services inherent to the request for information and contact and/or sending of informative material and compliance of legal obligations.
The information that users of the Site decide to make public through the services and the tools made available to them are provided by the user knowingly and voluntarily, exempting the Site from any liability regarding any violations of laws. It is up to the user to verify that they have permission to enter personal data of third parties or content protected by national and international regulations.
IV. Data collected through analytical cookies
These cookies are used to track the user's browsing preferences and for collection of statistical data. The user can deactivate these cookies by accessing the settings of your browser.
***
B - Purpose of processing
The personal data collected is used to:
- obtain information anonymous statistics on the use of the web portal;
- to check the correct functioning of the web portal;
- the ascertainment of responsibility in case of hypothetical computer crimes against the site web;
- compliance with any other legal obligation not included in the previous purposes.
The communication of data can only be carried out following a request from the party of the Judicial Authority within the terms of the law.
***
C - Legal basis of processing
I. Performance of a contract
Legal basis for the processing of personal data is the fulfillment of services relating to consultation of the Site, compliance with legal obligations and the legitimate interest of the Site in carrying out processing necessary for these purposes.
II. Consent of the interested party
The optional, explicit and voluntary sending of electronic mail, messages or any type of communications addressed to the contact details indicated on this web portal entails the subsequent acquisition of the sender's address or any other personal data that will be used to respond to requests. This processing takes place on the basis of consent of the interested party.
It is ensured that such processing will be based on the principles of lawfulness, correctness, transparency, adequacy, relevance and necessity referred to in the art. 5, paragraph 1 of the GDPR. Specific summary information will be progressively reported or displayed in the site pages designed for particular services on request.
III. Compliance with legal obligations
The processing of personal data may take place without the consent of the interested party in this case in which the Owner must fulfill a legal obligation.
***
D - Method and duration of treatment
Personal data are processed through IT tools and in accordance with the EU Regulation no. 679/2016 and Legislative Decree no. 196/2003.
The storage of the processed data will last for the time necessary for the purposes described in this information and, therefore, for the minimum time necessary or up to one explicit request of the interested party and in any case in compliance with the time limits imposed by law.
The Owner undertakes to adopt all appropriate security measures to prevent loss and alteration of personal data, as well as any illicit or non-illicit use authorized by them.
The data will be processed exclusively by subjects authorized by the Data Controller, including data controllers, representatives and public entities for the fulfillment of the obligations established by law, which carry out the respective processing activities in their capacity of autonomous owners.
The subjects authorized by the Data Controller who could process the data include: for example: commercial and legal department collaborators, as well as service providers third party technicians, hosting providers and IT companies (this list is not from be considered mandatory). The processed data will not, however, be disclosed to recipients indeterminate.
The security of the information collected cannot be guaranteed from possible attacks hackers and, in general, from violation of the security regulations put in place for the data protection.
In the event of attacks or violations, however, they will be communicated to the interested parties e to the competent authorities according to the law.
***
E - Place of processing
The processing relating to the web portal services is carried out by identified personnel and expressly designated according to the specific purposes of the services requested e subscribed.
For the processing in question, the Data Controller may avail itself of the help of external companies, consultants, consortia, suppliers of software and operating services, through staff identified and appointed, within the scope of the intended purposes and in such a way as to guarantee the maximum data security and confidentiality. In other cases the personal data collected is not will be disclosed to third parties, unless the interested party expressly consents, with the exception of cases in which communication to third parties is necessary to fulfill obligations imposed by laws, regulations or provisions of supervisory authorities, or results essential to protect the rights of other users or the website itself.
Personal data will be processed and stored exclusively for the above purposes indicated and to store and store them securely on remote servers managed by providers industry leaders that ensure compliance with high standards of protection in this field of processing of personal data.
This may involve transferring your data to non-EU countries, where they may have headquarters all or part of the aforementioned servers. The processing and storage of data by of the aforementioned providers will be towards an "suitable" third country pursuant to the decision taken by the European Commission, including in particular the adequacy decision of Privacy Shield protection or certification (USA), or on the basis of a constraint contractual or standard contractual clauses approved by the European Commission, or of binding corporate rules approved through the specific procedure referred to in art. 47 GDPR.
For data transfer to non-EU countries, as a rule, there is no need to wait the national authorization of the Guarantor. However, the authorization of the Guarantor will still be necessary if an owner wishes to use specific contractual clauses, not recognized as adequate by European Commission decision or agreements administrative agreements stipulated between public authorities.
F - Rights of interested parties
Subject to the processing, the interested party may exercise, at any time, the following rights:
- obtain confirmation of the existence or otherwise of the same data and, if so, know its content and origin;
- verify its accuracy, request the rectification of inaccurate data, the integration of data incomplete or the updating of outdated data;
- obtain the limitation of processing, where one of the hypotheses provided for in Article 18 GDPR occurs;
- request the deletion of data processed in violation of the law, or in the presence of one of the other conditions provided for by article 17, paragraph 1, letter. a), b), c), e) and f) GDPR;
- to oppose in any case, for legitimate reasons, their processing, or to oppose the processing in the other cases provided for by article 21, paragraphs 2 and 3 and 22 GDPR;
- revoke your freely given consent to the processing of data at any time personal for the purposes specified below;
- to obtain the release of the personal data being processed in a compatible format with standard computer applications, to allow transfer to others platforms of your choice, without impeding the direct transmission of data processed to another Data Controller, where such direct transmission is technically feasible (so-called right to data portability).
Requests relating to the exercise of the aforementioned rights should be addressed to the Owner via e-mail (info@efebia.com).
In the event of failure or partial response from the Data Controller to the aforementioned requests, the interested party will have the right to lodge a complaint with the Data Protection Guarantor personal (www.garanteprivacy.it)or judicial appeal within the terms and according to the methods established pursuant to the articles. 77 e ss. EU Regulation 2016/679 (GDPR).
G - Information updates
Future regulatory updates could lead to changes to the current information, uploaded to the Site on 04.14.2020
In case of modification, the Owner will notify it on the Site.
Cookies
Cookies are a sort of identification token used by applications web server side to archive and retrieve information long term on client sidee (via information transmitted to the PC, tabletor other computer equipment used by the user).
Cookies are stored in the browser file directory of the user, so as toallow browsing, authentications (e.g. password, username), collection of statistical data relating to the sites, as well as to monitor and profile users.
The use of cookies and similar technologies by the Site occurs in accordance with the national and European legislation, as well as in compliance with the Provision of 8 May 2014, entitled “Identification of simplified methods for the information and acquisition of consent for the use of cookies” of the Italian Privacy Guarantor.
The Site uses the following cookies:
Technical cookies. Technical cookies are not stored permanently on the user's device. These cookies are used to allow users to browse safely and efficiently of the Site. These cookies do not allow the identification of interested users and their use does not require consent.
Indeed, such cookies are often useful, because they can make the navigation and use of the web, because for example they intervene to facilitate some authentication procedures to restricted access areas or when a site web automatically recognizes the language of use.
Analytical cookies.These cookies are used to track the user's browsing preferences and for data collection statistics. The user can disable these cookies by accessing their browser settings.
Please refer to the individual browser links:
Third party cookies
The Site also uses third-partysocial network plugincookies parts, in order to allow you to share contents on different social networks. They allow the user to interact via social networks (e.g.: "share" function on Facebook). These cookies can be deactivated viayour browser options (see the links reported above).
Social network cookies are not necessary for navigation. For more information on the policies for the use of cookies by Social Networks, you can consult the respective privacy and cookie policies:
Facebook: https://it-it.facebook.com/about/privacy/
Google: http://www.google.com/intl/it/policies/privacy/
Twitter: https://twitter.com/it/privacy
Instagram: https://help.instagram.com/1896641480634370?ref=ig
YouTube: https://support.google.com/youtube/answer/7671399?p=privacy_guidelines&hl=it
Finally, we inform you that the Site uses the "Google Analytics" analysis service provided from the company Google Inc.. This service uses cookies to obtain statistical data in relating to the use of the website. In this case the personal data that is collected are stored by Google as independent data controller.
For more information visit https://support.google.com/analytics/topic/2919631?hl=it&ref_topic=1008008
The Site does not use cookies for advertising or profiling purposes for marketing purposes.