This document describes how to manage the website www.inda.ai (“Site”), concerning the processing of personal data of users (“User / Users”) who consult it.
It is a disclosure according to art. 13 of Legislative Decree no. 196/2003, so-called Code regarding the protection of personal data (“Privacy Code”) and Article 13 of EU Regulation 679/2016 (“GDPR”), to all those who visit the Site and/or interact with Intervieweb Srl web services, accessible through the Site.
The information is provided only for the Site and not for other websites that may be consulted by the User through links on the Site.
The data controller of your data is Intervieweb S.r.l., with registered office in Turin, via Sebastiano Valfrè, 16, email email@example.com, (from now on “Intervieweb” or “Owner”).
The computer systems and software procedures used to operate the Site acquire, during their regular operation, some personal data whose transmission is implicit in the use of internet communication protocols.
This information is not collected to be associated with identified subjects, but which by their very nature could allow users to be identified.
This category of data includes (i) the IP addresses or domain names of the computers used by users who connect to the Site, (ii) the URI (Uniform Resource Identifier) addresses of the requested resources, (iii) the time of the request, (iv) the method used to submit the request to the server, (v) the size of the file obtained in response, (vi) the numerical code indicating the status of the response given by the server (successful, error) and (vii ) other parameters relating to the operating system and the User’s IT environment.
These data are used for the sole purpose of obtaining anonymous statistical information on the use of the Site and to check its correct functioning and are deleted immediately after processing.
The Data Controller processes personal, identifying and non-sensitive data (by way of example, but not limited to, name, surname, address, telephone, email, etc. – hereinafter, “personal data” or even data) communicated by the User on the occasion registration on the web pages of the Site or the request form for the Owner’s newsletter, the order and / or purchase of products online through the Site, the compilation and sending of a contact form to the Owner or, in any case, any other request .
The processing of the User’s data by the Owner is aimed at:
a) pursue, by art. 6.1, lett. f) of the GDPR, its legitimate interest, consisting in guaranteeing the security of the Site and the information exchanged on it, i.e. the ability of this Site to resist, at a given level of protection, unforeseen events or illegal or malicious acts that compromise the availability, authenticity, integrity and confidentiality of the personal data stored or transmitted and the protection of the related services offered or made accessible;
b) allow the User to send requests for information and the Owner to provide the User with any feedback to the claims made;
c) for marketing purposes only with your specific and express consent following art. 23 and 130 of the Privacy Code and art. 7 of the GDPR: sending of newsletters, commercial communications and/or advertising material on the Controller’s products and services via e-mail, including through telephone calls with a commercial operator
d) to allow the online application and process it;
e) to exercise the rights of the Owner, for example, the right of defence;
f) to fulfill the obligations established by law, by a regulation, by community legislation or by an order of the Authority.
Intervieweb S.r.l. may send the User commercial communications relating to the Controller’s services and products similar to those you have already used unless the User disagrees as indicated in art. 130 paragraph 4 of the Privacy Code.
Personal data are processed with manual, computerized and automated systems for the time necessary to achieve the purposes for which they are collected.
It is specified, in particular, that the User’s personal data are processed by subjects duly appointed to carry out these tasks, identified continuously and/or fixed, appropriately trained and made aware of the constraints imposed by law, as well as through the use of security measures to guarantee the protection of your privacy and to avoid the risks of loss or destruction, of unauthorized access, of processing that is not permitted or does not comply with the purposes mentioned above.
In any case, the communication of data to companies expressly appointed to perform certain services in the context of the activity carried out by the Data Controller and/or, in general, in his favour, which will operate as independent owners and / o data processors, as well as the communication and/or dissemination of data requested, by the law, by police forces, judicial authorities, information and security bodies or other public entities for defence or security purposes of the State or prevention, detection or repression of crimes.
The data are not subject to disclosure.
The updated list of Managers can always be requested from the Data Controller.
7. Data transfer
Management and storage could also take place on servers located outside the European Union. In any case, it is understood that the Data Controller, if necessary, will have the right to move the location of the servers to Italy and/or the European Union and/or non-EU countries. In this case, the Data Controller ensures from now on that the transfer of non-EU data will take place in compliance with the applicable legal provisions by stipulating, if necessary, agreements that guarantee an adequate level of protection and/or adopting the standard contractual clauses provided by the Commission. European.
According to art. 7 of the Privacy Code and art. 15 and ss. of the GDPR, the User has the right to obtain:
1. confirmation of the existence or not of personal data concerning you, even if not yet registered, their communication in an intelligible form and access to them;
2. a copy of your data;
3. the correction of your data that may be inaccurate;
4. the cancellation of your data;
5. the limitation of the processing of your data;
6. in a structured format, commonly used and readable by an automatic device, the personal data that you have provided us or that you have created yourself – excluding the judgments made by the Data Controller and/or by the persons in charge according to art. 4 of the Privacy Code / by the persons authorized to process the data in the name and on behalf of the Data Controller according to art. 4 of the GDPR – and to transmit them, directly or through the Data Controller, to another data controller (so-called right to data portability);
7. the indication:
a) the origin of personal data;
b) the categories of personal data processed;
c) of the purposes and methods of the processing;
d) the logic applied in case of processing carried out with the aid of electronic tools;
e) the identity of the Owner and any managers;
f) the retention period of your data or the criteria useful for determining this period;
g) the subjects or categories of subjects to whom the personal data may be communicated or who can learn about them as appointed representative in the State, managers or agents according to art. 4 of the Privacy Code/persons authorized to process data in the name and on behalf of the Data Controller according to art. 4 of the GDPR;
h) updating, rectification or, when interested, integration of data;
i) the transformation into anonymous form or the blocking of data processed in violation of the law, including those that do not need to be kept for the purposes for which the data were collected or subsequently processed;
j) the attestation that the operations referred to in letters a) and b) have been brought to the attention, also as regards their content, of those to whom the data have been communicated or disseminated, except in the case in which this fulfillment is proves impossible or involves the use of means that are manifestly disproportionate to the protected right.
a) for legitimate reasons, to processing personal data concerning you, even if pertinent to the purpose of the collection;
b) to the processing of personal data concerning you to send advertising or direct sales material or for carrying out market research or commercial communication.
To exercise the rights mentioned above, Users can send a communication to the e-mail address of the Owner, referred to in the prior art. 1, indicating “Privacy – the exercise of rights”.
Finally, we inform you that if you believe that your rights have been violated by the Data Controller and/or a third party, you have the right to complain with the Guarantor for the Protection of Personal Data and/or other competent supervisory Authority in the strength of the GDPR.
The Data Controller will process the User’s data only for the period necessary to achieve the purposes of the processing referred to in the previous article 3, after which they will be kept only in the execution of the legal obligations in force on the subject, for administrative and / or to assert or defend one’s right, in the event of disputes and pre-litigation.
Finally, we inform you that if you believe that your rights have been violated by the Data Controller and/or a third party, you have the right to complain with the Guarantor for the Protection of Personal Data and/or other competent supervisory Authority in force of the Regulation. On this page http://www.garanteprivacy.it/home/urp
*** *** ***