Information notice in accordance with articles 13 and 14 of Regulation (EU) 2016/679 (“GDPR”)

In accordance with articles 13 and 14 of Regulation (EU) 2016/679, AIMUW S.p.A. (hereinafter also “the Company”) is required to provide certain information regarding the use of the personal data collected and any other information that can be associated with a person, directly or indirectly, and that is present on the site. The processing of your data will be carried out in a lawful, correct and transparent manner, taking into account the sector’s regulations, with particular reference to Recommendation n. 2/2001 of the Group established by art. 29 of Directive no. 95/46/EC, concerning the minimum requirements for collecting data online in the EU and Directive 2009/136/EC, amending Directive 2002/58/EC (so-called e-Privacy Directive), concerning the processing of personal data and the protection of privacy in the electronic communications sector.

Optional provision of data and purpose

The Company specifies that your data will be processed exclusively for the purpose of fulfilling your requests for information. The provision of your data is optional; authorisation to disclose the data to third parties, where requested, is also optional. It should be noted, however, that refusal to provide the requested data will result in the impossibility of processing and, consequently, of responding to your requests. Any consent given may be revoked at any time, without affecting the lawfulness of the processing carried out before revocation.

Protection of personal data

 

The voluntary sending of e-mails to the e-mail addresses indicated on our website entails the consequent acquisition of the sender’s e-mail address, which is necessary in order to reply to requests. Any other personal data included in the message will be acquired as well. This also applies to the handling of user complaints and their feedbacks. The user is also free to provide his or her personal data via online forms and contact forms, where applicable: the use of such data for the aforementioned purposes by the Company will only take place after the sender has given his or her consent.
Your data will be processed by means of manual, computerised and telematic systems, in any case with logic strictly related to the purposes themselves, according to criteria of security and confidentiality, for the time strictly necessary to achieve the purposes for which the data were collected. After said time the data will be deleted or transformed into anonymous form, unless their further storage is necessary to comply with legal obligations or to comply with orders issued

by public authorities and/or supervisory bodies.
The Company also guarantees the adoption and observance of specific security measures to prevent the loss of data, any unlawful or incorrect use thereof, and unauthorised access. The Company adopts all appropriate technical and organisational measures to guarantee the integrity and security of the information and of personal data collected on the site and processed by it. No data transmission over the Internet, however, can be completely guaranteed; consequently, the Company is not able to ensure or guarantee the security of the information transmitted by online users. This entails that data transmission takes place at the user’s own risk.

Browsing data – types of data processed

 

The IT systems and software procedures used to operate this website acquire, during their normal operation, certain personal data, the transmission of which is implicit in the use of Internet communication protocols.
This information is not collected in order to be associated with identified interested parties, but by its very nature could allow users to be identified, through processing and association with data held by third parties. This category of data includes: the IP addresses or domain names of the computers used by users who connect to the site, the URL (Uniform Resource Locator) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and IT environment. This data is used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning. Cookies are not used to transmit information of a personal nature.

Scope of communication

 

Without prejudice to the communications and dissemination carried out in compliance of legal obligations and of the existing relationship, the data may be communicated, within the scope of the aforementioned purposes, to the following entities:

  • Public Bodies and/or Authorities and/or Public Administrations;
  • subjects to whom the communication of your personal data is necessary or in any case necessary for the performance of the requested practice or service;
  • parties carrying out activities related to personnel selection and management (in relation to user requests in the ‘Work with Us’ section);
  • parties performing information technology services and documentation archiving services;
  • parties that provide consultancy, control, audit and certification services for the activities carried out by the company;
  • companies belonging to the same group to which the Company belongs or, in any case, parent companies, subsidiaries or associated companies, pursuant to Article 2359 of the Italian Civil Code.

The subjects belonging to the categories listed above operate independently as separate data controllers, or as data processors appointed for this purpose by the Company.
The data may also be known, in connection with the performance of assigned tasks, by company personnel, including interns, temporary workers, consultants, and employees of external companies, all of whom are specifically appointed as data processors, or as persons in charge of the processing, while no data acquired herein is disseminated..

Rights of the data subject

 

With regard to the data provided, the data subject may exercise the rights provided for in Articles 15 to 22 of the Regulation in order to obtain:

  1. confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to the personal data and the following information;
  2. rectification of inaccurate personal data and supplementation of incomplete personal data;
  3. the erasure of personal data concerning him or her, in the cases envisaged by the Regulation
  4. limitation of processing, in the cases provided for by the Regulation;
  5. the communication of any rectification or erasure of personal data or restriction of processing to each recipient to whom the personal data have been disclosed, unless this proves impossible or involves disproportionate
  1. the receipt, in a structured, commonly used and machine-readable format, of the personal data which he or she has provided to the Controller, and the transmission of those data to another controller, and this at any time, including upon termination of any relationship with the Controller.

The Data Subject also has the right to object at any time to the processing of personal data concerning him/her: in such cases, the Data Controller is obliged to refrain from any further processing, except in the cases permitted by the Regulation. We also inform you that we do not use automated decision-making processes, including profiling.
Requests may be submitted to the Data Protection Officer by ordinary mail sent to the Data Controller’s head office or by e-mail sent to: privacy@aimuw.it

The data subject also has the right to lodge a complaint with the Italian Data Protection Authority

 

Data Controller and Data Protection Officer

 

We inform you that:

  • The Data Controller is AIMUW S.p.A.;
  • The Data Protection Officer, appointed by the Data Controller, can be reached at: privacy@aimuw.it .