PRIVACY POLICY OF THIS WEBSITE

 

 

PRIVACY POLICY OF THIS WEBSITE
Information on the processing of personal data (art. 13 GDPR 2016/679))

1. WHY THIS NOTICE
This page describes the processing of personal data, carried out by the writer, in respect of all form of data subjects, and with the intention of expressing the Company Policy adopted to ensure compliance with the provisions of GDPR 2016/679, Legislative Decree 196/2003, National Measures for this matter, Guidelines by European Data Protection Board as well as EU Directives relating to the protection of data of natural persons.
This information is provided pursuant to art. 13 of EU Regulation 2016/679 towards those who establish any form of relationship with the writer, the latter represented first by this web address:

https://www.rareinsight.it/

The Privacy Policy of this website does not refer to other treatments carried out or described as a result of browsing Internet sites through links that may be present on the website above.

 

2. DATA CONTROLLER
The Data Controller is BluPhytal srl, registered office in via Licinio Ferretti 5/a, 43126 Parma.

 

3. TYPES OF PROCESSED DATA

3.1 CONTACT DETAILS
The optional, explicit and voluntary sending of personal data necessary for the request of contact through the forms on this site, or through any e-mail addresses listed on this site, involves the subsequent acquisition of data only necessary to respond to requests made.

 

Purpose and legal
basis of the processing
(GDPR Art. 13, n. 1, let. c)

  

These data are used for the only purpose of responding to requests for information sent through the forms
Communication scope
(GDPR Art.13, n. 1, let. e, f)		  

Data are processed exclusively by internal staff, duly authorized and trained to the treatment (GDPR Art. 29) and will not be disclosed to external parties, disseminated or transferred to non-EU countries. Only in the event of an investigation may be made available to the competent authorities.
Processing methods
(GDPR C. 39)		  

Personal data are processed by automated tools for the time strictly necessary to achieve the purposes for which they were collected. Specific security measures are observed to prevent data loss, illegal or incorrect use and unauthorized access.
Data retention period
(GDPR, Art.13, n. 2, let. a)		 Data are usually kept for short periods, exclusively to satisfy the requests received.

Conferment
(GDPR, Art.13, n. 2, let. f)		  

Data are optionally provided by the interested parties.
Lawfulness
(GDPR, Art. 6 n. 1)		  

The treatment is necessary to respond to requests received, so the consent is expressed through the completion of the form.

 

3.2 DATA FOR REFERENTS OF CLIENT COMPANIES, REFERENTS OF SUPPLIER COMPANIES
The personal data communicated by the indicated subjects, or collected by the writer during the development of the activities deriving from contractual relationships, derive from the necessity of execution of the activities organized between the parties.

Purpose and legal basis
of the processing
(GDPR Art.13, n. 1, let. c)		 Data are collected and used in order to:

–          conclude contractual/professional relationships,

–          fulfil the pre-contractual, contractual and tax obligations deriving from existing relationships, as well as manage the necessary communications connected to them;

–          fulfil the obligations established by law, by a regulation, by community legislation or by an order of the Authority;

–          exercise a legitimate interest as well as a right of the Data Controller (for example: the right of defence in court, the protection of credit positions; the ordinary internal needs of an operational, managerial and accounting nature).
 

Communication scope
(GDPR Art.13, n. 1, let. e, f)

  

Data are processed exclusively by internal staff, duly authorized and trained to the treatment (GDPR Art. 29) and will not be disclosed to external parties, disseminated or transferred to non-EU countries.
 

Processing methods
(GDPR C. 39)

  

Personal data are processed by automated tools and paper. Specific security measures are observed to prevent data loss, illegal or incorrect use and unauthorized access.
 

Data retention period
(GDPR, Art.13, n. 2, let. a)

  

Data are usually kept for short periods of time, strictly necessary for the fulfilment of contractual or regulatory obligations.
 

Conferment
(GDPR, Art.13, n. 2, let. f)

  

Data are requested by the writer for the purposes indicated.
 

Lawfulness
(GDPR, Art. 6 n. 1)

  

The treatment is necessary for the establishment of contractual relations, and therefore consent is not required.

 

3.3 BROWSING DATA
Computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the communication protocols of Internet. This information is not collected to be associated with identified interested parties, but by their very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of computers used by users who connect to the site, URI (Uniform Resource Identifier) of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the response from the server (successful, error, etc.) and other parameters regarding the operating system and computer environment.

Purpose and legal
basis of the processing
(GDPR Art.13, n. 1, let. c)		 These data are used only to obtain anonymous statistical information on the use of the site and to check its correct functioning and they are deleted immediately after processing. Data could be used to ascertain responsibility in case of hypothetical computer crimes against the site.
 

Communication scope
(GDPR Art.13, n. 1, let. e, f)

  

Data are processed exclusively by internal staff, duly authorized and trained for the treatment and are not disclosed to external parties, disseminated or transferred to non-EU countries. Only in case of investigation, they may be made available to the competent authorities.
Processing methods
(GDPR C. 39)		 Personal data are processed with automated tools.
Specific security measures are observed to prevent data loss, illegal or incorrect use and unauthorized access.
 

Data retention period
(GDPR, Art.13, n. 2, let. a)

  

Data is typically retained for short periods of time, with the exception of any extensions related to investigative activities.
 

Conferment
(GDPR, Art.13, n. 2, let. f)

  

Data are collected automatically from the interested parties and for the purposes indicated above.
 

Lawfulness
(GDPR, Art. 6 n. 1)

  

The processing is necessary to fulfil a legal obligation, and therefore consent is not required.

 

3.4 COOKIE
The description of the type of cookies used, their management of use and purpose, is referred to the paragraph “Cookie Policy” in the document published on this website at https://www.rareinsight.it/cookie-policy/

 

4. RIGHTS OF THE INTERESTED PARTY (GDPR artt. 15-22)

At any time, the interested party may exercise the right to

  • request confirmation of the existence or otherwise of their personal data.
  • obtain information about the purposes of the processing, the categories of personal data, the recipients or categories of recipients to whom the data have been or will be communicated and, when possible, the period of storage.
  • obtain the rectification and erasure of data.
  • obtain the limitation of processing.
  • obtain the portability of the data, i.e. receive them from a data controller, in a structured, commonly used and machine-readable format, and transmit them to another data controller without hindrance.
  • to object to the processing at any time and also in the case of processing for direct marketing purposes.
  • oppose an automated decision-making process concerning natural persons, including profiling.
  • to lodge a complaint with the Italian Data Protection Authority.

Requests should be addressed to the Data Controller by writing to [email protected]

Every effort will be made to make the functionality of this site as interoperable as possible with the automatic privacy control mechanisms available in certain products used by users.

 

5. DATA PROTECTION OFFICER:
The figure of Data Protection Officer (DPO) has not been identified, as the writer does not process data of natural persons falling under the definition of art.37 European Regulation GDPR 2016/679.

Considering that the state of improvement of automatic control mechanisms does not currently make them free from errors and malfunctions, it should be noted that this document, published at https://www.rareinsight.it/privacy-policy-of-this-website/ is the “Privacy Policy” of this site that will be subject to updates.