Privacy Policy, full version for web site users

Information on the treatment of the personal data art. 13-14 European regulation 2016/679

Updated on 15/05/2018

Data Controller.
According to the law and to the European regulation, the Data Controller is:

ILSA SPA
Via Ferrovia, 31 Z.I.
31020 CASTELLO ROGANZUOLO DI SAN FIOR (TV)
Tel: 0438/4905
Fax: 0438/400791
P.I.: 02061090268

in the person of its present legal representative. We inform you that the aforementioned legislation provides for the protection of the user imposed for the processing of personal data and that this treatment will be based on principles of correctness, lawfulness, transparency and protection of your privacy and your rights in compliance with the provisions of Regulation 679/2016 and Legislative Decree No 196/2003 679/2016 and Legislative Decree No 196/2003.

Concerned Subjects.
Users of the website www.ilsaspa.com

Type of processed data:

Purpose of processing.
Purpose of processing: in particular, your data will be processed for the following purposes related to the implementation of obligations related to legislative or contractual obligations:

The processing of functional data for the fulfilment of these obligations is necessary for a proper management of the relationship and their conferment is mandatory to implement the purposes indicated above. The Data Controller also states that any non-communication, or incorrect communication, of one of the mandatory information may cause the Data Controller's inability to guarantee the adequacy of the processing itself.

Methods of treatment.
Your personal data may be processed as follows:

The temporary processing of data occurs in Anonymous Form.The processing is carried out in accordance with modalities established by Article 6, 32 of the GDPR and through the adoption of the appropriate security measures.

Communication of personal data:
The collection of personal data acquired in anonymous form through the use of cookies for the operation of the website is documented in the cookie policy available directly at the link at the bottom of the website pages (footer). Your personal data, voluntarily entered on this web site will be processed and managed for the purposes and performance of the services necessary for the correct management of your request, with guarantee of protection of the rights of the interested party. Your data will be processed only by personnel expressly authorized by the Data Controller and, in particular, by the following categories of employees within the company:

In the event that personal data require the completion of a service that involves the sending of electronic, informative, promotional communications, in accordance with the conditions and authorizations issued by the interested party, the company may use external services of third parties specialized in management of the service itself. In this case, the Data Controller has the responsibility of exactly specifying the terms of the service and has to request consent under the terms of this regulation.

Disclosure of personal data:
Your personal data will not be disclosed in any way.

Retention period.
Please note that, in compliance with the principles of lawfulness, purpose limitation and data minimization, pursuant to art. 5 of the GDPR, the retention period of your personal data is:

Cookies management:
For more details see the extensive information on the management of cookies shown in the footer on the homepage: www.ilsaspa.com
If you have any doubts or concerns about the use of cookies, you can block or disable them by activating the configuration on your browser which will allow you to refuse the installation of all cookies or some of them.
For an overview of the action modes for the most common browsers, you can visit www.cookiepedia.co.uk
Targeted ads from Advertising Companies can be blocked. This option interrupts the use and collection of some data by these companies not influencing the cookie setting.
For more information or individual opt-out please visit www.youronlinechoices.eu.

Data subject’s rights:
You have the right to obtain from the Data Controller the erasure (right to be forgotten), the limitation, the update, the modification, the portability, the opposition to the processing of your personal data, as well as in general you can exercise all rights provided from articles 15, 16, 17, 18, 19, 20, 21, 22 of the GDPR.

  1. The interested party has the right to obtain confirmation of the existence or not of personal data concerning him / her, even if not yet registered, and their communication in intelligible form.
  2. The interested party has the right to obtain the indication:
    1. of the origin of personal data;
    2. of the purposes and methods of treatment;
    3. of the logic applied in case of treatment carried out with the aid of electronic instruments;
    4. of the identifying details of the Data Controller, of the responsible and of the designated representative according to article 5, paragraph 2;
    5. the subjects or the categories of subjects to whom the personal data may be communicated or who can learn about them as managers, agents or appointed representative in the territory of the State.
  3. The interested party has the right to obtain:
    1. updating, rectification or, when interested, integration of data;
    2. the cancellation, transformation into anonymous form or blocking of data processed unlawfully, including data whose retention is unnecessary for the purposes for which the data were collected or subsequently processed;
    3. the certification that the operations referred to in letters a) and b) have been brought to the attention, also with regard to their content, of those to whom the data have been communicated or disseminated, except in the case in which this fulfilment is impossible or involves a use of means manifestly disproportionate to the protected right;
    4. data portability.
  4. The interested party has the right to object, in whole or in part:
    1. on legitimate grounds, to the processing of personal data, even though they are relevant to the purpose of the collection;
    2. to the processing of personal data for the purpose of advertising or direct sales or for carrying out market research or commercial communication.

Right of complaint:
The data subject has the right to lodge a complaint with the competent supervisory authority and to appeal to the competent courts of the Member States in accordance with Article 79. Competent authority: www.garanteprivacy.it

Profiling
For the purposes and types of data collected from this website, the absence of an automated decision-making process, including the profiling referred to in Article 22, paragraphs 1 and 4, is confirmed.

Further information
For any further need, request for information or clarification, please contact our office directly at the telephone numbers and / or email addresses below (footer area).