Ditta Arnaldo Castelli - Privacy Policy

PRIVACY POLICY

Directive 2002/58 / EC - relating to the "processing of personal data and the protection of privacy in the electronic communications sector" Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regarding the processing of personal data, as well as the free movement of such data and which repeals Directive 95/46 / ec (General Data Protection Regulation).

THE DATA CONTROLLER
Following consultation of this site, data relating to identified or identifiable persons may be processed. The "owner" of their treatment is the company Arnaldo Castelli, with registered office via Pontaccio 12 / A, 20121 Milan.

PLACE OF DATA PROCESSING and STORAGE TIMES
The treatments connected to the web services of this site take place at the aforementioned headquarters of the Data Controller and are only handled by personnel expressly authorized by this, or by any third party suppliers in charge of occasional maintenance operations, appointed as Data Processors pursuant to Article 28 of the GDPR.
The collected data will be stored - for each type of data processed - exclusively for the time necessary to fulfill the specific purposes indicated in the specific summary information displayed on the pages of the site and prepared for particular services.

TYPES OF DATA PROCESSED
Browsing data The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This is information that is not collected to be associated with identified interested parties, but which by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users who connect to the site, the addresses in URI (Uniform Resource Identifier) notation of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user's computer environment.
These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and are deleted immediately after processing. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site: except for this eventuality, at present the data on web contacts do not persist for more than seven days.

Data voluntarily provided by the user
The optional, explicit and voluntary sending of personal data by the user in the registration forms on this site entails the subsequent acquisition of the data provided by the sender, necessary for the provision of the requested service. Specific summary information will be progressively reported or displayed on the pages of the site set up for particular services on request.

LINKS TO OTHER WEBSITES
This site may contain links or references for access to other sites, such as the social networks Facebook, Instagram, Google+, Twitter and Pinterest. By clicking on the appropriate links, for example, you can share our content. We inform you that the Data Controller does not control the cookies or other monitoring technologies of these websites to which this Policy does not apply.

OPTIONAL DATA SUPPLY
Apart from what is specified for navigation data, the user is free to provide his personal data. However, their absence can make it impossible to obtain what is requested.

PROCESSING METHODS AND STORAGE TIMES
Personal data are processed, also with the aid of automated tools, for the time strictly necessary to achieve the purposes for which they were collected. Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access.
The Data Controller has adopted all the minimum security measures required by law and inspired by the main international standards, it has also adopted additional security measures to minimize the risks relating to the confidentiality, availability and integrity of the personal data collected and processed.

SHARING, COMMUNICATION AND DISCLOSURE OF DATA
The collected data may be transferred or communicated to other companies for activities strictly connected and instrumental to the operation of the service, such as the management of the IT system.
The personal data provided by users who request dispatch of informative material (brochures, informative material, etc.) are used only to perform the service or provision requested and are communicated to third parties only if this is the case. necessary purpose (companies that provide enveloping, labeling, shipping services). Except for these cases, personal data will not be disclosed unless required by contract or by law, or unless specific consent is requested from the interested party. In this sense, personal data may be transmitted to third parties, but only and exclusively in the event that:
a) there is explicit consent to share data with third parties;
b) there is a need to share information with third parties in order to provide the requested service;
c) this is necessary to fulfill requests from the judicial or public security authorities.
No data deriving from the web service is disclosed.

RIGHTS OF THE INTERESTED PARTIES
The legislation for the protection of personal data expressly provides some rights for the subjects to whom they refer (so-called interested party). In particular, pursuant to articles 15 and ss. of Regulation (EU) 2016/679, each interested party has the right to obtain confirmation of the existence or not of data concerning him, to obtain an indication of the origin and purposes and methods of treatment, updating, rectification, integration of data and their cancellation if processed in violation of the law or if one of the reasons specified in Article 17 of Regulation (EU) 2016/679 exists.
The interested party also has the right to lodge a complaint with a supervisory authority if he believes that the rights indicated here have not been recognized.

CHANGES TO THESE PRIVACY POLICIES
The Data Controller periodically checks its privacy and security policy and, if necessary, reviews it in relation to regulatory, organizational or dictated changes in technological evolution. In case of modification of the policies, the new version will be published on this page of the site..