Informativa sulla privacy
Dear user, in accordance with the legislative decree 30th June 2003, n.196 and subsequent changes concerning data protection (herein the “rules”), Vertis SGR SpA (herein the “company”) needs to provide you with all the information about the use of your personal data, being a data controller.
This policy also refers to the people who carry out technical and organisational tasks for data protection on behalf or in favour of the company, as mentioned in paragraph 1.
- Purposes and methods of data protection
The company protects those data that the user provides when signing up on their website.
The data are protected by the company:
a. to fulfil legal obligations;
b. to reply to the user’s queries, as well as to send informative material.
The company works with third parties that carry out control functions or consulting activities for the company itself.
The company and their third parties use electronic and automated tools for data protection while guaranteeing data security and confidentiality. Personal data are only used within the time frame that is necessary to achieve the purposes for which they were collected.
Providing your personal data is optional, but it can be useful to sign up and submit queries.
- Navigation data
The computer systems and the software used collect some personal data, the transmission of which is implicit in the use of Internet communication protocols TCP/IP.
These data are not collected to associate them with identified users. However, due to their nature, they could be used to identify the users through the data processing of third parties.
“IP addresses” belong to this category, as well as the domain names of the users’ computers, URI addresses (Uniform Resource Identifier) of the requested resources, the time of request, the method used to submit the request to the web server, the file size obtained in response, the numeric code indicating the status of the server response (good, error and so on) and other parameters related to the operating system and the computer environment. Thanks to these data, the company gain anonymous statistical information about the use and correct functioning of their website. Such data can also be used to detect liability for hypothetical cybercrime through the website to the detriment of the company. Apart from this case, all data do not persist for more than a few days.
- Categories of data
As per the indicated purposes, personal data (name, surname, company, email) inserted by the user when signing up are protected. The company does not need to protect those data that the law defines as “sensitive” (e.g health status, political and trade union opinions, religion) and/or judicial. Consequently, we kindly ask you not to provide the company with this kind of data.
- Categories of individuals to whom data can be communicated as they are in charge of data protection.
Due to the purposes described in this policy, the company may need to communicate their own personal data to individuals that carry out technical and organisational tasks for data protection on their behalf or in their favour, as mentioned in paragraph 1.
The recipients of the communication described in this policy operate autonomously, as they are data controllers or have been designated as data controllers by the company.
Those who are responsible for data protection have access to the company’s personal data to carry out their own tasks. In particular, the company’s employees and partners in the Administrative, Management, Compliance and Risk Management areas and the CEO can become aware of the company’s personal data, as well as the individuals appointed by the company for data protection. For more information about the individuals who are aware of personal data, you can send an email to the email address provided in paragraph 7.
The data voluntarily provided by the users will in no case be communicated or disclosed to third parties.
- Rights mentioned in article 7 of the Legislative Decree 30th June 2003, n. 196
a. a confirmation of the existence/non-existence of their personal data, even if they have not signed up yet, and their communication in an intelligible form;
b. information about the origin and use of personal data, as well as data protection via electronic tools;
c. information about the identity of data controllers and all the individuals to whom personal data may be communicated as they are responsible for data protection;
d. cancellation, transformation into an anonymous form of data or blocking of personal data processed in violation of the law, as well as any kind of update concerning personal data.
The user is entitled to object to data protection for legitimate reasons, despite being relevant to the purpose of data collection. They can also object to data protection for advertising, sales, market research and commercial purposes.
- Data controllers
Vertis SGR SpA is the data controller and is registered to n. 110 of the register of SGR, with a registered office in Naples, via Francesco Caracciolo n. 17. The requests concerning the rights mentioned in article 7 of the Legislative Decree can be sent to the email address firstname.lastname@example.org. The requests concerning the identity of the other people who are responsible for data protection on behalf of the company, as well as the requests mentioned in paragraph 6, letters a), b) and c) may also be formulated verbally.