This page outlines the operating methods of this website in reference to the personal data processing of users who navigate the website. The personal data will be processed in compliance with the guidelines set out by the European Data Protection Regulation 2016/679/EU and by any other national law, provision or authorisation of the competent authority related thereof. According to said regulation, said processing shall be inspired by principles of correctness, lawfulness, transparency while protecting your confidentiality and rights.
The informative statement is provided only for this website and not for any other websites that the user may access through links.
Information regarding identified or identifiable persons can be gathered while navigating the website. The Data Controller is Venturi Acciai srl, as represented by its pro tempore legal representative with head office located in Via della Meccanica, 19 Postcode 37139, Z.I. Del Basson Verona Tel.:+39 045-8510088 e-mail: e-mail:firstname.lastname@example.org
PLACE OF DATA PROCESSING and DISCLOSURE
The processing associated with the web services of this website take place at the above premises of the Company and are managed by the staff of the Company or by external persons, duly appointed, to conduct maintenance and proper updating tasks. The personal data gathered from the web services will not be disclosed or disseminated.
The personal data provided by users that forward requests for services or information is used only to carry out the service or the requested assignment or to provide the requested information and are disclosed to third parties duly appointed only in case it is necessary.
TYPE OF INFORMATION PROCESSED
The information systems and the software procedures set out to run this website collect information during the website’s standard operation and the disclosure of several information is implied in the use of internet communication protocols.
This information is not gathered to be associated with identified data subjects; however, due to their nature it could identify users when they are processed and associated with data possessed by third parties.
The data collected includes IP addresses and computer domain names used by users who log on to the website, URI (Uniform Resource Identifier) addresses of accessed resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the code number indicating the status of the response given by the server (success, error, etc.) and other parameters relating to the user’s operating system and IT environment.
This data is processed in this website for the time strictly necessary and for the sole purpose of collecting anonymous statistical information relating to the use of the website and to ensure its proper operation. The data could be used to ascertain liability in case of alleged computer-related crimes to the detrimental of the website. For this data and solely for the above purposes, a consent is not required.
Information provided voluntarily by the user
The optional, expressed and voluntary provision of email to the addresses indicated on this website or filling out the forms of the specific sections with mandatory and optional fields results in the subsequent acquisition of information and address of the recipient which are necessary to comply with the service and information requests. For this data and solely for the above purposes, a consent is not required.
No personal data of users is acquired by the website.
Cookies are not used to retain personal information. The so-called persistent cookies are not used (namely systems for tracking users).
The use of the so-called session cookies that are not permanently stored on the user’s PC and disappear after the browser’s closing is strictly limited to the transfer of identification details (consisting of random numbers generated by the server) and are needed to allow a secure and efficient browsing of the site.
The so-called session cookies used in this site avoid the need to use other technical information which may compromise the privacy of the user’s browsing and do not allow for the collection of the user’s identification personal data.
OPTIONAL PROVISION OF DATA
Apart from what was mentioned for browsing data, the user can freely provide personal data to request services or information. Failure to provide the information may result in the inability to fulfil the request.
DATA PROCESSING METHODS
Personal data is processed by the Data Controller and by Data Processors duly appointed to ensure the proper fulfillment of the specified purposes using electronic means, as well as manual means, including the use of security measures aimed at guaranteeing the confidentiality of the personal data and preventing undue access by unauthorised persons. The Data Controller does not rely on automated processes, including profiling, to pursue the purposes set out in this informative statement.
The Data Controller shall keep the personal data for the time necessary to pursue the above purposes and in any case for no more than 2 years following the acquisition of the data for the purposes specified therein.
RIGHTS OF THE DATA SUBJECT
In compliance with articles 15 through 22 of the GDPR, the Data Subject has the right to request the Data Controller access to his/her personal data, or to rectify, erase or restrict the processing, as well as the right to object to their processing, in addition to the right to request the portability of the data.
The request can be made by email, by fax or by registered letter with the following subject: “request by the Data Subject” specifying in the request the right which the Data Subject intends to exercise (the right to erasure, rectification, portability and the right to be forgotten), along with a valid email address or certified email address where to be contacted.
The Data Controller or whoever is in charge, shall fulfil the request within 30 days after receipt. If the reply were to be complex, the time could extend to an additional 30 days after notifying the Data Subject in due course.
Whenever you wish to exercise your rights, you have the right to lodge a complaint with the supervisory authority, corresponding to the National Privacy Data Protection Authority with head office located in Palazzo Monte Citorio 121, Rome.
INFORMATIVE STATEMENT – TECHNICAL AND SESSION COOKIES
Cookies are small text files that send information to their terminals (normally browsers) where information is saved to then be transferred to the same website during another visit by the same user. Cookies are used to authenticate information, monitor sessions and save specific information regarding users who access the servers and are normally present in the browser of any users in a very high number.
The cookies present on the website www.venturiacciai.it:
These functions are divided into different categories:
Below, a list of the types of cookies used in the website www.venturiacciai.it:
These are required for the proper operation of certain areas in the website and include persistent cookies, as well as session cookies. Without these cookies, the website or certain parts of it, may not work properly. Therefore, they are always used, regardless of the user’s preferences.
They are used to gather information on the use of the website.
The Data Controller uses said information for statistical analysis to improve the website and simplify its use, as well as to monitor its proper operation.
This type of cookies gather information in an aggregate and anonymous manner on the activities of users who navigate the website www.venturiacciai.it.
Said cookies are installed directly by the Data Controller as they are used for operational purposes and for analysis (“cookie analytics”) and their installation does not require express consent, but only information on the existence of said instruments.
How can technical and analytical cookies be disabled?
It is emphasised that for this type of cookies consent does not have to be explicit. They can be blocked as specified in the following paragraphs, but this operation could hinder the use of certain parts of the website.
In compliance with article 12 and the following articles of the GDPR, the user may object to the storing of this type of cookies, in the manners specified hereafter. The operating methods, as well as the options to limit or block the cookies, may be adjusted by modifying the settings on the user’s Internet browser. Most Internet browsers are initially set to accept cookies automatically; however, the user may change these settings and block cookies or be warned every time cookies are sent to his/her device. There are various ways to manage cookies by referring to the instruction manual or help screen on the browser on how to set or change the configurations.
In fact, the user is able to change the predefined configuration and disable cookies (namely block them permanently) by setting the protection level to the highest level. Below the path to follow to manage cookies from the following browsers:
If the user uses devices different among them to view and access the Websites (for example, computers, smartphones, tablets, etc.), the user must ensure that each browser on each device is set to reflect his/her own preferences with regards to cookies. To delete cookies from the Internet browser on smartphones or tablets, the user must refer to the device’s user manual.
(DATA PROTECTION AUTHORITY’S TECHNICAL INSTRUCTIONS)
Frequently Asked Questions
Cookies are small text files that websites visited by users forward to their terminals where they are saved to then be transferred back to said websites on the next visit. The so-called “third party” cookies are set by a website other than the one that the user is visiting. This because on each website, there could be elements (images, maps, sounds, specific links to webpages of other domains, etc.) which reside on different servers than the visited website.
Cookies are used for different purposes: information authentication, monitoring of sessions, saving information on specific configurations regarding users who access the server, saving preferences, etc.
These are cookies that are used to navigate or provide a service requested by the user. They are not used for additional purposes and are normally installed directly by the owner of the website. Without using said cookies, certain tasks may not be carried out and would be more complex or less secured, such as for example home banking tasks (view account statements, bank transfers, payments of bills, etc.), where cookies identifying and maintaining the identification of the user in the sessions are essential.
No, the Data Protection Authority (see provision of 8 May 2014) stated that cookies can be classified as technical cookies if used to optimise the website directly by the owner of the website which may gather information in aggregate form on the number of users and on how they visit the website. At these conditions, the same rules on the informative statement and consent set out for technical cookies apply to analytics cookies.
These are cookies used to trace the user’s navigation in the network and to create profiles on his/her taste, habits, options, etc. These cookies are used to transfer advertising messages to the user’s terminal based on the preferences already expressed by the user during his/her online navigation.
It depends on the purposes for which said cookies are used and therefore on whether they are “technical” cookies or “profiling” cookies.
The installation of technical cookies does not require the consent of users while providing the informative statement is required (article 13 of the Privacy Protection Code). Profiling cookies can however be installed on the user’s terminal only if the latter expressed his/her consent after being informed through the simplified methods.
As established by the Data Protection Authority in the provision specified in question 4, the informative statement must be set on two levels.
When the user accesses a website (the home page or any other page), a banner shall immediately appear containing the “brief” informative statement, the consent request to use the cookies and a link to access the “extended” informative statement. In this page, the user may get additional, detailed information on cookies and choose what specific cookies to authorise.
The banner must be big enough to cover part of the contents of the webpage that the user is viewing. It must be able to be removed only with the user’s active intervention, namely by selecting an element in the underlying page.
The banner must specify that the website uses profiling cookies and possible “third party” cookies which allow for advertising messages to be sent based on the user’s preferences. It must contain the link to the extended informative statement and indication that the user can withdraw consent using said link to install any cookies. It must specify that if the user chooses to proceed by “skipping” the banner, consent to use the cookies is implied.
To keep track of the acquired consent, the owner of the website may rely on a special technical cookie, a system that is not particularly invasive and that does not require an additional consent. Given the presence of said “documentation”, the brief informative statement does not have to be re-proposed on the second visit of the user to the website, notwithstanding the possibility for the latter to withdraw the consent or modify the options at any time and easily, for example by accessing the extended informative statement through a link present on each page of the website.
No, the owners of the website can always use other methods with respect to those envisaged by the Data Protection Authority in the above-mentioned provision, as long as the chosen methods meet all the validity requirements of the consent required by law.
It must include all the elements envisaged by law, including a summary description of the characteristics and purposes of the cookies installed by the website and allow the user to select/unselect individual cookies. It must include the updated link to the informative statements and to the third party consent forms with which the data controller has taken out agreements for the installation of cookies through its own website. It must have a reference to the user’s possibility of choosing options on the cookies even by changing the settings of the used browser.
The owner of the website who installs the profiling cookies. As for third party cookies installed through the website, the obligations on the informative statement and consent apply to third parties, but the owner of the website, as technical intermediary between them and the users, must include in the “extended” informative statement, the updated links to the informative statements and consent forms of said third parties.
The profiling cookies that normally remain over time, are subject to notification obligation while cookies that have different purposes and that fall within the technical cookie category, do not have to be notified to the Data Protection Authority.
The Data Protection Authority has set out a transitory period of one year, effective as of the publication of the provision in the Official Gazette, to allow those interested to comply accordingly. Said period will end on 2 June 2015.