Last updated on: 25/05/2018
pursuant to art. 13 and 14 of EU Regulation No. 2016/679 and Legislative Decree no. 196 of 30/06/2003
EU Reg. no. 2016/679 and Legislative Decree no. 196 of 30/06/2003 “Personal Data protection Code” provide for the personal data processing protection of persons and other entities. Specifically, Reiser s.r.l. is required to provide certain information on the use of the Data Subject’s personal data.
Processing will be based on the principles of fairness, lawfulness, transparency and protection of the Data Subject’s privacy and rights.
This information statement, valid for the collection of data via the web portal www.reiser.it, acknowledges Recommendation no.2/2001 of European Data Protection Authorities on minimum requirements for the collection of data online throughout European Union territory.
The Data Controller is Reiser S.r.l., based in via Monte Grappa, 33 – 20020 Lainate (MI).
PURPOSES OF PROCESSING
During normal operation, the IT systems and software procedures used to power this website acquire some personal data, the transmission of which is implicit in the use of Internet communication protocols.
This data category includes IP addresses or domain names of computers and terminals used by users, the URIs/URLs (Uniform Resource Identifier/Locator) of requested resources, request times, the method used to submit requests to the server, the size of the file obtained in response, the numerical code specifying the status of the response provided by the server (successful, error, etc.) and other operating system and the computerised environment parameters of users.
These data, necessary for the use of web services, are also processed with the purpose of:
- obtaining statistical information on the use of services (most visited pages, number of visitors per time band or per day, geographical area of provenance, etc.);
- checking the correct operation of services provided.
METHOD OF PROCESSING
Processing is carried out with the use of electronic and automated means.
Requested data will be suitable for the achievement of aforementioned purposes, processing will be pertinent and limited to said purposes. Specific security measures are adopted to prevent the loss of data, illegal or incorrect usage thereof and any unauthorised access.
Analytical/performance cookies. These enable us to recognise and count the number of visitors, and to understand how visitors browse our website as they use it. For legitimate purposes, this helps us to improve website operation, ensuring for example that users can easily find what they are looking for. We use the following analytical cookies:
_pk_id Duration: 13 months. Function: This cookie identifies Visitors and enables us to count the number of visitors to the website.
_pk_ref Duration: 6 months. Function: This cookie identifies the Source of Traffic. It enables us to collect information on visitor provenance (organic search, link on another website, online campaign, etc…).
_pk_ses Duration: 30 minutes. Function: this cookie identifies the length of time spent browsing on the website
viewed_cookie_policy Duration: 12 months. Function: this cookie is used to record confirmation that visitors have read this information statement on the website.
Profiling/advertising cookies. REISER does not use any kind of own- or third-party profiling cookies whatsoever.
ACCESSIBILITY OF DATA
In the Data Controller’s structure, data are accessible to Company Management and IT service staff. Said persons are authorised and suitably trained to carry out processing.
Data may be made accessible to external entities with whom Reiser works and has appointed as “Data Processor”, for example, for the processing of data required for assessing the potential of job vacancy applicants.
RECIPIENTS OR CATEGORIES OF RECIPIENTS
Said data may be disclosed or distributed in cases provided for by regulatory or administrative provisions.
All aforementioned data will be conserved for the purposes specified in this information statement and at least for the period of requested service validity, or if applicable, within deadlines established by the law.
Browsing data will not persist for more than seven days and are immediately deleted following aggregation (unless required by Judicial Authorities for the determination of crimes).
Processing referred to herein does not include an automated decision-making process, including profiling, as specified in article 22, paragraphs 1 and 4 of EU Regulation 2016/679.
RIGHTS OF THE DATA SUBJECT
The Data Subject may contact the Data Controller to exercise their rights, as provided for in articles 15 to 22 of EU Regulation 2016/679 and quoted here below:
the right to submit a request to the Data Controller for access to personal data (art. 15);
the right to submit a request to the Data Controller for the rectification of personal data (art. 16);
the right to submit a request to the Data Controller for the erasure of said data (art. 17);
the right to submit a request to the Data Controller for the restriction of the processing of data concerning them (art. 18)
the right to data portability (art. 20);
the right to object to processing (art. 21)
the right with reference to automated decision-making processes (art. 22).
The Data Subject also has the right to submit a complaint to the Personal Data Protection Authority.