PRIVACY POLICY of the website www.ateliersantoro.it
GENERAL AND SPECIFIC INFORMATION ON TECHNICAL COOKIES
WHY THIS INFORMATION NOTICE?
Pursuant to (EU) Regulation 2016/679 (hereinafter referred to as the ‘Regulation’), this page contains information on the methods used for the processing of data of Atelier Santoro website (www.ateliersantoro.it) users.
This privacy policy does not apply to websites, pages or online services that can be reached via any hyperlinks published on Atelier Santoro website but for which the owner of this website is not responsible.
This page also contains information on the technical cookies used to operate the website and to provide the requested services, according to the indications provided by the Italian Data Protection Authority in the Guidelines on cookies and other tracking tools of 10 June 2021.
DATA CONTROLLER
The Data Controller is ATELIER SANTORO srl – Via Rauscedo 20 – 33100, UDINE; VAT number 02430710307, email info@ateliersantoro.it , registered email (PEC) ateliersantoro@pec.it (hereinafter referred to as ‘Atelier Santoro’).
DATA PROCESSING METHODS – PURPOSES FOR PROCESSING
Data voluntarily provided by users:
Contact form
Voluntarily sending emails to the addresses provided on this website results in the acquisition of your email address – which is required to reply to your requests – as well as of any other personal data included in the message (name, surname, email address, telephone, address).
Asking Atelier Santoro to send information material also results in the acquisition of your email address, which is required to meet your requests.
After processing your request, the Data Controller refrains from further processing your data, unless otherwise expressly indicated by the interested party.
Data provided by users in order to receive marketing and promotional communications
If you previously gave your consent, your personal data (name, surname, address, email, telephone) will be processed for marketing, information and promotional purposes, with automated (for example, newsletters, emails, SMS, instant messaging applications, other notification systems, etc.) and non-automated systems (for example, ordinary mail, telephone communications, etc.), as well as for statistical surveys.
Your personal data, therefore, may be processed for marketing purposes only if you have given your consent and until such consent is revoked. The right to object to the processing of your personal data remains unaffected.
COOKIE POLICY
Technical cookies
The Data Controller provides this specific information on cookies according to the indications provided by the Italian Data Protection Authority in the Guidelines on cookies and other tracking tools of 10 June 2021.
Cookies are small text files stored on your computer by your web browser when visiting some web sites. Cookies allow to store information on visitor preferences, improve the functionality of a website, simplify navigation by automating certain procedures (e.g., login, website language, etc.) and for statistical analyses of the use of the website or to collect information on the type of device used for website navigation.
Unless otherwise specified, Cookies or other tracking tools are used by this website or by the owners of third party services used by this website only for purposes strictly related to the provision of the service requested by Users and for the website functionality.
Therefore, use of technical cookies is strictly limited to what is necessary for the secure and efficient navigation of the Website.
In particular, this Website uses the following technical cookies:
– _________ retention period: ________
– _________ retention period: _______
The Data Controller does not use third-party cookies, that is, cookies from a domain other than the one being visited by you, for advertising and marketing purposes.
Purposes for processing: These data, necessary for the use of web services, are only processed for the purpose of providing the services offered and making it possible to use them.
Lawful basis: According to current legislation, use of technical cookies does not require your consent, as they are necessary for the website to function and for providing the requested services and cannot be switched off in our systems. Therefore, the lawful basis for processing your data is your explicit request to access the contents of the Website.
Specific data processing methods: Technical cookies cannot be disabled in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. Storage of session cookies in your terminal or browser is under your control, being retained in the service logs for the retention period mentioned above. You can set your browser to block or alert you about these cookies, but, if you do so, some parts of the Website will not work.
Mandatory or optional nature of data provision and consequences of any refusal.
Your personal data are provided on a voluntary basis. The information and contact details that you provide by sending an e-mail and/or by filling out the registration form are used to answer your questions or to meet your requests, for the period of time necessary for this purpose.
LAWFUL BASES FOR PROCESSING DATA
The processing of your personal data for the purposes specified in this information notice is based on one or more of the following lawful bases: consent: consent is the legal basis for sending the newsletter and for marketing activities, therefore, only with your explicit consent, we will collect your personal information and contact details, for the purpose of providing you with information on our activities, sending promotional, information and/or advertising material, as well as other periodic or occasional communications, by post or over the phone and/or electronic communications, as well as for statistical surveys; legal obligation: when strictly necessary, we will process your personal data to comply with a legal obligation; legitimate interests: if and provided that use by the data controller does not affect your rights, your data will be processed on the basis of a legitimate interest of the data controller, such as, for example, exercising its rights or the rights of the Joint Controllers, with particular reference to judicial defensive rights.
As for the lawful basis for the use of technical cookies, please refer to the cookie policy section.
PROVIDING PERSONAL DATA IS OPTIONAL
Providing personal data for the purposes above is always optional, and we will always remind you of the possibility to withdraw your consent if you no longer wish to receive such communications.
PLACE OF DATA PROCESSING AND DATA PROCESSORS
Any data processing associated with the web services of this website takes place at the headquarters of the Data Controller and is only carried out by technical staff specifically appointed for this purpose. Maintenance activities can be carried out by subjects expressly appointed by the Data Controller. Any personal data deriving from the web service can be stored in data centres in the European Union.
No data deriving from the web service is disclosed or disseminated to third parties, unless required by law or strictly necessary for meeting your requests.
You can get the list of data processors by sending a specific request to the email address of the Data Controller.
PROCESSING METHODS
Any personal data will be processed by Atelier Santoro via automated tools or manually and retained for the period of time required to achieve the purposes for which they were collected.
RETENTION PERIOD
Any personal data collected for the purposes described above will be retained for the period of time required to achieve the purposes for which they were collected, and, in any case, for the period of time allowed by Italian legislation to protect the interests of the Data Controller. Such retention period may vary according to the specific purpose for which your personal data were collected:
- personal data used to respond to requests for information and personal data provided to enrol in training courses will be retained for the period of time required to achieve these specific purposes and then erased according to the relevant technical procedures and terms, without prejudice to any rights to protect the interests of the Data Controller in relation to such data processing;
- personal data collected and processed for marketing purposes will be retained for two (2) years, after which they will be permanently deleted or made anonymous.
- technical cookies: please, refer to the relevant section.
Any data processing associated with the execution of training contracts between the Data Controller and the interested party are regulated by separate information notice, provided at the time of registration confirmation.
CATEGORIES OF RECIPIENTS TO WHOM YOUR PERSONAL DATA MAY BE DISCLOSED OR WHO MAY BECOME AWARE OF YOUR DATA
To achieve the purposes mentioned above, or if necessary or required by law or by authorities with the power to impose it, the Data Controller reserves the right, where strictly necessary for the purposes specified above, to disclose your persona data to external parties dealing with: hardware and software maintenance and provision of IT services in general, system and database administration services, hosting and cloud computing services, advertising services, newsletter delivery services, provision of advertising material or promotional communications. These subjects will be appointed as Data Processors, and will be contractually obligated to comply with legal requirements on the protection of personal data and not to use or disclose your personal data, unless required for the provision of their services. The updated list of external data processors can be made available to the interested party on request.
Your personal data may also be disclosed, for the performance of the assigned activities, to the staff of the Data Controller, specifically appointed and instructed on the correct processing of personal data (authorised/appointed persons).
Your personal data will not be disclosed to any other person or organisations; Atelier Santoro does not transfer, sell or disclose your personal data.
TRANSFER OF YOUR PERSONAL DATA TO NON-EU COUNTRIES/ORGANISATIONS
Any personal data collected by the data controller through the forms available on the website are stored in data centres in the European Union. Any other navigation data whose transmission is implicit in the use of internet communication protocols may be transferred abroad (both EU and non-EU countries) – for the purposes mentioned above – in accordance with the applicable legal provisions and with an adequate level of protection of your rights, as established by the European Commission, or with the implementation of other appropriate measures, such as, for example, the Standard Contractual Clauses adopted by the European Commission.
YOUR RIGHTS
Pursuant to (EU) Regulation 2016/679 (GDPR) and with reference to the data processed by the Data Controller through this website, you can – under the conditions and within the limits defined by current legislation, exercise the following rights:
– right to obtain a copy of your personal data, as well as other supplementary information (right of access); – right to revoke your consent and to object, in certain circumstances, to the processing of your personal data – right to receive a copy of your personal data; right to obtain information on the processing of your personal data, processing methods and purposes for data processing; – right to have your personal data updated, rectified, completed, erased, made anonymous, or blocked when processed in violation of the law – including personal data no longer necessary for achieving the purposes for which they were collected; as well as all the rights that are currently granted by law (articles 15 et seq. of the Regulation).
Any requests can be sent to the Data Controller: ATELIER SANTORO srl – Via Rauscedo 20, 33100, UDINE – VAT 02430710307, email info@ateliersantoro.it , registered email (PEC) ateliersantoro@pec.it .
RIGHT TO LODGE A COMPLAINT
If you think your data protection rights have been breached, you have the right to lodge a complaint with the national Data Protection Authority, Piazza Venezia 11 – 00187, Rome, or to take legal action.
Information notice of 7.10.2021