Pursuant to Section 13 of Italian Legislative Decree No. 196 of 30.6.2003 we inform you that your data are stored in the electronic data base belonging to the data controller, Z GROUP S.r.l. The Data processor is the Administrative Office. The updated list of all persons in charge of processing may be requested in writing from the Administrative Office of the company’s operating headquarters at Malalbergo, località Altedo – Bologna.
DATA PROCESSING LOCATION
Data processing related to the web services supplied by this site takes place at the aforementioned operating headquarters of the company and is exclusively carried out by the technical staff of the office in charge of processing or by persons carrying out occasional maintenance work.
The personal data supplied by users sending requests for information material (info, newsletters, etc) are exclusively used for the purpose of supplying the service requested and shall only be communicated to third parties if necessary for the purpose of service supply (delivery service, etc), pursuant to Section 130, paragraph 4 of the Privacy Code, Italian Legislative Decree no. 196/2003. E-mail addresses supplied in the context of our previous commercial relationships shall only be used to send communications or advertising material. Data may be communicated in Italy and/or abroad exclusively for the aforementioned purposes and consequently only processed for such purposes by third parties: our network of agents; factoring companies; banks; debt collection agencies; credit insurance companies, commercial information companies, professionals and consultants, companies operating in the transport sector, etc. Your data may also be used by our company, by bodies and external companies linked to it (METALNOVA s.r.l., QUARTA DIMENSIONE s.r.l., FENEXTRA s.r.l.), as well as by independent third-party data controllers for the forwarding of administrative-accounting, commercial and promotional material.
TYPES OF DATA PROCESSED
The electronic systems and software procedures involved in the running of the site acquire personal data whose transmission is implicit in the use of web communication protocols.
This information is not collected to be associated to any identified person, but, through processes and associations with data owned by third parties, by its own nature might lead to the identification of users.
This data category includes IP addresses and computer domain names used by users linking to the site, URI (Uniform Resource Identifier) addresses of the resources requested, time of request, method used to submit the request to the server, size of the file received in reply, numerical code indicating the server response status (Successful completion, error, etc.) and other parameters relative to the user’s operating system and computer environment.
This data is only used to obtain anonymous statistical information on the use of the site and to check that it is working properly, and is cancelled immediately after processing. Data may be used to establish responsibility in the event of hypothetical computer crimes to the detriment of the site: in all other circumstances web contact data is not stored for over seven days.
Data supplied voluntarily by user
The optional, explicit and voluntary dispatch of emails to the addresses indicated in the site will lead to the subsequent acquisition of the sender, necessary to respond to requests, as well as of any other personal data that may be included in the message.
Concise summaries will be displayed in the website pages handling specific services supplied on request.
OPTIONAL PROVISION OF DATA
With the exception of the navigation data (see above), users are free to provide their personal data by filling in the information request forms in the site in order to contact the various offices concerned and/or receive information material or other communications. The failure to provide such data could make it impossible for users’ requests to be met. For the sake of completeness, it should be pointed out that in some cases (not included in the day-to-day management of this site), the Authority may request news and information in compliance with section 157 of Italian legislative decree no. 196/2003 in order to control personal data processing. In such cases, the refusal to reply could incur administrative penalties.
Personal data are processed using automatic instruments only for the time strictly necessary for the attainment of the purposes for which they have been collected. Specific security measures are observed to prevent data loss, unlawful or improper use of data and unauthorised access.
RIGHTS OF THE DATA SUBJECT
Data subjects supplying their personal data have the right to obtain confirmation of the existence or otherwise of such data and to be informed of data content and origin, check its accuracy and request for data to be completed, updated or amended or rectified (section 7 of Italian legislative decree no. 196/2003).
Under this same article they have the right to request the erasure, the transformation into anonymous form or blocking of data processed unlawfully, as well as refusing, for legitimate motives, to allow such data to be processed. Such requests must be made to the data controller. Under Section 7 of the aforementioned legislative decree, you have the right to know, update, rectify, or cancel your data and to exercise all further rights provided for, by means of a request made in writing to Z GROUP s.r.l., Ufficio Amministrativo, Malalbergo loc. Altedo, via Bignami 5/A-5/B or by sending an e-mail to firstname.lastname@example.org.
The on-line privacy information must be easily accessible and appear in the website entry page (for example, by means of clear links from the homepage to pop-up texts).
As far as security measures are concerned, section 32 of the new privacy code requires providers of electronic communication services accessible to the public to adopt appropriate security measures for the risks existing in order to guarantee the safety of the services supplied and the completeness of navigation data.
Leaving aside privacy legislation, it should be pointed out that the Italian legislative decree 9.4.2003 no. 70 introduced a series of obligations for online businesses and electronic payment services with regard to information to be supplied to users