Privacy Policy

Information provided pursuant to art. 13 of EU Regulation 2016/679 (for the sake of Regulation) - to users who access the site www.ies-italia.it

The information includes:

the nature of the personal information processed;

the purposes and legal bases of the processing of personal information (Article 13.1.c and 13.1.d of the Rules);

the identity and contact details of the data controller (Article 13.1.a and 13.1.b of the Rules);

any third parties in the processing activities (Article 13.1.e and 13.1.f of the Rules);

the retention period of personal information (Article 13.2.a of the Rules);

the nature of the provision of data and the consequences of any refusal (Article 13.2.e of the Rules);

the rights of users (Article 13.2.b, 13.2.c and 13.2.d of the Rules).

DATA PROCESSING HOLDER

The data controller is IES Italia S.r.l., via Canonica 29, Milano. C/F: 07580910961.

Your contact details are: info@ies-italia.it

TYPES OF DATA PROCESSED, LEGAL BASIS AND PURPOSE OF THE TREATMENT

Navigation data

The site collects some personal data whose transmission is implicit in the use of Internet communication protocols. This is information that is not collected to be associated with identified interested parties, but which by their very nature could, through processing and association with data held by third parties, allow the user to be identified. This category of data includes IP addresses or domain names of the computers used by the user who connects to the site, the addresses in URI (Uniform Resource Identifier) ​​notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (success, error, etc.) and other parameters relating to the operating system and the user's computer environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site.

Data provided voluntarily by the user

The optional, explicit and voluntary sending of messages using the 'Contact us' service on the website or sending e-mails to the company's address, involves the subsequent acquisition of the sender's address, necessary to respond to requests, as well as any other personal data included in the request. The legal basis of this treatment is art. 6.1.b of the Regulations, ie the execution of measures requested by the user.

Register to the site

Registering an account involves entering some personal data that must be true and accurate. The data to be entered must be clearly indicated, the other data are entered voluntarily and the non-inclusion does not involve any consequence. The user is invited to keep this data updated by accessing the personal account. The legal basis of this treatment is art. 6.1.b of the Regulations, ie the execution of measures requested by the user. The user who chooses to activate the account via social media must be aware that the site can collect some data that the user has already provided to this social media (eg e-mail address and public profile). The data controller has no control over social media and does not establish the privacy settings of the social media. The user must therefore refer to the privacy policy of the social media he uses.

Newsletter and commercial communications

The user can voluntarily choose to receive newsletters and commercial communications. The site requests explicit and free consent before undertaking such promotional initiatives and may ask the user for additional information in order to create personalized and more relevant communications. The user can always easily revoke his consent which is the legal basis of this processing (article 6.1.a of the Rules).

Business Orders

In case of order, the site asks the user to provide personal data for the essential purpose of providing the service or the goods purchased, including the post-sales phase (eg delivery tracking, assistance services, customer satisfaction) and the activities to prevent fraud and improper use of the site. The legal basis for processing is the fulfillment of contractual obligations (Article 6.1.b of the Rules). For payments, the site makes use of third-party providers and does not retain bank information belonging to the user. The data controller has no control over the provider of this type of service and the user must therefore refer to the privacy policy and terms of service of that provider.

Profiling

The purpose of profiling is to propose products, services and initiatives more appropriate to the preferences, habits and interests of users. Personal data may be used for remarketing, retargeting or profiling purposes also through third parties (eg social networks). As for the users of the site, it is in the legitimate interest of the site to process personal data to offer more interesting and personalized services, improving the performance of the site itself.

Minors

The site invites parents and all those who supervise minors to instruct them on how to process personal data on the Internet in a safe and responsible manner. Minors must not transmit personal data to the site without the consent of their parents. The site undertakes not to intentionally collect the personal data of minors, not to use them in any way and not to communicate them to third parties.

Cookies

For more information visit the specific page.

DATA SHARING AND TRANSFER

The owner can transfer the personal data of the user to third parties qualified as data processors or data processors to perform technical or commercial operations necessary to perform the services related to the best management of the site (for example couriers and postal operators; advertising, commercial and social media, IT service providers, payment service providers, customer support service providers). In such cases, data communication is essential to meet contractual obligations and to improve site performance. The owner commits himself through data processing agreements so that the managers manage the data in an appropriate and secure way. The user can request the list of managers using the e-mail of the data controller. In addition, the owner may be required to share the personal data of the user when required by law or by an order of public authority or to protect a right or a right of third parties. The owner does not transfer data outside the European Union.

Third-party sites

This information does not apply to other sites or platforms to which the site can connect (eg banners, advertisements and other links to third-party sites or platforms) to which reference is made by reading the relative privacy policy.

SECURITY MEASURES

Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access

DATA CONSERVATION PERIOD

The holder stores personal data for the time necessary to provide the requested services to the user or to fulfill legal or tax obligations or for the minimum period required by law. In order to determine the appropriate period of storage of personal data memorized by the site on user's consent, the holder also takes into consideration the following criteria: the specific purposes specified in the information for which the site stores personal information; the type of relationship in progress with the user (how often the user accesses his account, if the user makes requests via contact form, if the user continues to receive newsletters or commercial communications, how often he surfs the site , etc.); any specific request by the user to delete their data or to withdraw consent; the legitimate commercial interest of the data controller. The site will delete or promptly make anonymous personal data whose memorization is no longer necessary according to the law.

DATA CONFERENCE

Apart from what is specified for navigation data, the user can freely give his / her data through the contact form or to receive promotional communications or to purchase goods or services and their non-conferment may result in the impossibility to obtain required. Within the various forms it is always specified which data are mandatory to be able to give feedback to what requested by the user.

RIGHTS OF THE INTERESTED

The user has the right to receive confirmation regarding the possible existence of his personal data processed by the data controller.

In this case, in accordance with the Rules, the user has the right to:

be informed about the collection and use of personal information;

access his personal information at no cost;

obtain the correction or completion of inaccurate or incomplete personal information;

obtain the cancellation of personal information;

under specific conditions, obtain the limitation or cancellation of his personal information;

obtain and re-use his personal information for his own purposes between different services when the treatment is based on a contract or consent and is performed automatically ('the right to data portability');

under specific conditions, oppose the processing of his personal information;

the right to complain about the collection and processing of personal information to the competent Guarantor;

the right to withdraw consent to the processing of personal data at any time saves the lawfulness of the treatment carried out up to that time on the basis of the consent revoked.

For any information, the user is invited to consult the website of the Authority for the protection of personal data - www.garanteprivacy.it - ​​where he will find a section dedicated to these rights.

CHANGES TO THE INFORMATION

Any changes to this information will be published on the site. The user is invited to check for any updates or changes.

In case of any discrepancy between the terms of this privacy policy, the italian version shall prevail.