Our Privacy Policy.

Information on the processing of personal data pursuant to art. 13 General Data Protection Regulation – Reg. EU 2016/679 This information is provided pursuant to art. 13 of the European Regulation 2016/679 (“Regulation”), which establishes rules relating to the protection of individuals with regard to the processing of personal data, as well as rules relating to the free circulation of such data. This information only concerns the site www.ceph-support.eu (the “Site”) and does not concern other sites, even if they can be consulted through any links on the Site.

1. Data processed
Personal and identification data

Personal data means any information relating to a natural person, identified or identifiable, even indirectly, by reference to any other information. In particular, these personal data may be collected: name, surname, e-mail address, physical address, telephone number, curriculum vitae). Sensitive data are generally not processed through the Site (i.e. those relating to religious beliefs, trade union membership, sexual preferences and the others indicated by art.9 of the Regulations) and therefore we ask all users not to include them already in the sending a contact through the Site, or in other forms of interaction provided by the Site. If it is necessary to process data of this type, we will request the consent of the interested party / user in advance.

Navigation data

The computer systems and software procedures used to operate the Site acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This is information that is not collected to be associated with identified interested parties, but which by their very nature could, through processing and association with data held by third parties, allow users to be identified.

This category of data includes, by way of example, the IP addresses or domain names of the computers used by users who connect to the Site, the time of the request, the method used to submit the request to the server, the size of the file obtained in response. , the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the IT environment of the interested party / user.

Data provided voluntarily by the interested party / user

The sending (always optional and at the discretion of the interested party / user) of e-mails to the e-mail addresses indicated on the Site and / or or through other interactions with the Site itself entails the subsequent acquisition of the sender’s address, necessary to respond to requests. , as well as any other personal data entered by the interested party / user. Specific information could be presented on the pages of the Site in relation to particular services provided by the owner.

2. Purpose of the processing and its lawfulness

The processing of personal data is based on principles of correctness, lawfulness and transparency, protecting the privacy and rights of users and in compliance with the company privacy policy. The purposes for which the personal data collected through the Site are used include:

PURPOSE

Management and execution of pre-contractual and contractual obligations, by way of example the management of contact requests or spontaneous applications through the Site.

LEGAL BASIS

Processing permitted as necessary for the execution of a contract of which the interested party is a party or for the execution of pre-contractual measures adopted at the request of the same – art. 6.1. (B) of the Regulations.

PURPOSE

Fulfillment by the owner of the obligations established by the applicable Italian and European legislation, including, by way of example, the management of tax and accounting obligations.

LEGAL BASIS

Processing admitted as necessary to fulfill a legal obligation to which the data controller is subject – art. 6.1. (C) of the Regulations.

PURPOSE

Direct marketing activities by sending communications or material (eg by e-mail) with respect to products / services similar to those already provided by the owner to the interested party / user.

LEGAL BASIS

Processing admitted as necessary for the pursuit of a legitimate interest of the data controller – art. 6.1. (F) of the Regulations. The legitimate interest of the data controller is identified in the promotion of their business through direct marketing – see Recital no. 47 of the Regulation.

Each interested party / user remains free to provide personal data in e-mails sent to the e-mail addresses on the Site, or through other interactions with the Site itself. Failure to provide the data required for the management of the request or application through the Site, however, will make it impossible for us to follow up on the request.

3. Processing methods

The processing of personal data is carried out using paper and IT tools in compliance with the provisions on the protection of personal data and, in particular, with the appropriate technical and organizational measures referred to in art. 32.1 of the Regulations, and with the observance of any precautionary measures that guarantee their integrity, confidentiality and availability.

4. Categories of recipients

Personal data may be communicated, in close relation to the purposes indicated above, to the following subjects or categories of subjects:

Personal data may be communicated, in close relation to the purposes indicated above, to the following subjects or categories of subjects:

b) to professionals and third-party companies with which the owner collaborates, if necessary for the operation of the Site, or for the management of the request / application sent through the Site.

As regards paragraph b), we undertake to rely exclusively on subjects who provide adequate guarantees regarding data protection, with their appointment as Data Processors pursuant to art. 28 of the Regulation. Upon request to the owner, the complete list of Data Processors will be made available.

Personal data will not be transferred outside the European Union or to international organizations.

5. Retention period

Personal data are kept in the archives of the owner and are kept for a maximum period of 10 (ten) years starting from the last interaction with the interested party / user, in consideration of the limitation period of any claims arising from the contact between owner and interested party / user, required by law.

6. Rights recognized to the interested party

At any time, the interested party / user can assert the rights provided for in Articles from 15 to 22 of the Regulations, or the right to request:

• access to personal data, or to know their personal data stored by the owner, the purposes for which they are processed, their origin and other information provided for by art. 15 of the Regulation;

• the correction of personal data in case of inaccuracy of the same;

• the cancellation of personal data (so-called ‘right to be forgotten’);

• the limitation of the processing of personal data, or the right to obtain the suspension of the processing of personal data for the period necessary to verify the request for correction of personal data, or in the other cases provided for by art. 18 of the Regulation.

Furthermore, it is up to the interested party / user:

• the right to data portability, ie the right to receive personal data in a structured format, commonly used and readable by an automatic device – also by requesting its direct transfer to another owner;

• the right to lodge a complaint with the Privacy Guarantor, or with the Supervisory Authority of the place where you reside, work or where the violation has occurred, if you believe that the processing of personal data has occurred in violation of the Regulations.

7. Plugins for Facebook, Twitter and other Social Networks

Some pages of the Site may contain social network plug-ins (eg Facebook, LinkedIn, Twitter, Google+). By clicking on these plug-ins – which are recognizable with the same symbol of the social network of reference – the browser connects directly to the servers of the social network and another browser page or tab is opened, connected to the social network. In the event that the interested party / user, when he clicks on the plug-in, is connected to his social account (connection that can remain active even if the social network page is closed, typically if returning to the social network address, the interested party / user is already logged in with their account), some personal data may be associated with the social account. Further information on the collection and use of data by social networks in general, as well as on the rights and methods available to protect the privacy of the interested party / user in this context, can be found directly on the social network pages. If the interested party / user does not wish to associate the visit to our site with their social account, they must log off from the social network before visiting it.

8. Changes to the Privacy Policy

The owner reserves the right to modify, update, add or remove parts of this privacy policy at its discretion and at any time. In order to facilitate the verification of any changes / updates, the information will contain an indication of the update date.

9. Identity and contact details of the Data Controller

The data controllers are:

CORSINVEST S.r.l., with registered office in (25011) Calcinato (BS), Via San Germano 31, Tel. 0309980754, e-mail gdpr@corsinvest.it.

For requests pursuant to this Privacy Policy or simple clarifications: refer to the contacts mentioned above.
It is specified that the interested party / user may exercise their rights pursuant to the Regulations and the Privacy Policy towards each data controller.

Updated: May 28, 2018