Last updated: July 2023
INFORMATION REGARDING PERSONAL DATA PROCESSING
PURSUANT TO ARTICLE 13 OF REGULATION (EU) 2016/679
Data subjects: users consulting the website www.vcanto.com belonging to ‘CERERIA TERENZI EVELINO S.R.L.’
THE REASON BEHIND THIS INFORMATION
Pursuant to Regulation (EU) 2016/679 (hereinafter referred to as the ‘Regulation’ or ‘GDPR’), this page describes the methods for processing the personal data of users consulting the website belonging to ‘CERERIA TERENZI EVELINO S.R.L.’ accessible electronically at the following address: www.vcanto.com This information does not concern other sites, pages or online services that can be reached via hypertext links that may be published on this site, but which refer to resources outside the www.vcanto.com domain.
DATA CONTROLLER
Following consultation of the site, data relating to identified or identifiable natural persons may be processed. The data controller is ‘CERERIA TERENZI EVELINO S.R.L.’ with registered office and operational headquarters in Via dei Faggi, 101 – 47842 San Giovanni in Marignano (RN), VAT reg. no: IT03419150408.
TYPES OF DATA PROCESSED, PURPOSE OF PROCESSING AND LEGAL BASIS
1) Browsing data
Legal basis: “processing of data necessary for website browsing” – contractual obligation – Article 6(1) (b) GDPR During normal operation, the IT systems and software procedures used in the operation of this site acquire certain personal data whose transmission is implicit in the use of internet communication protocols. This category of data includes the IP addresses or domain names of the computers and terminals used by users, the URI/URL (Uniform Resource Identifier/Locator) addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error etc.) and other parameters relating to the user’s operating system and computer environment. These data, necessary in order to browse the site and to benefit from the information contained therein, are also processed by the data controller for the purpose of:
- obtaining aggregate and anonymous statistical information on the use of the site (most visited pages, number of visitors per hour or per day, geographical areas of origin of visitors etc.);
- checking the correct usability of the contents offered by the site;
- preventing or combating any possible computer crime, fraudulent use of the features available on the site, also for the purpose of reconstructing security incidents and their traceability
Duration of storage:
In compliance with the principles of lawfulness, purpose limitation and data minimisation, pursuant to Article 5 of the GDPR, browsing data will be kept for a period of time not exceeding that required in order to achieve the technical purposes described above for which they are collected and processed, except in the event that judicial authorities need to ascertain whether criminal offences have taken place.
2) Data communicated by the user
Legal basis: “processing of data necessary to answer users’ questions” – contractual obligation – Article 6(1)(b) GDPR The optional, explicit and voluntary sending of messages to the contact addresses belonging to ‘CERERIA TERENZI EVELINO S.R.L.’, private messages sent by users to company profiles/pages and on social media (where this possibility is available), as well as the completion and submission of forms on the sites belonging to ‘CERERIA TERENZI EVELINO S.R.L.’, involve the acquisition of the sender’s contact data, necessary in order to respond, as well as all personal data included in the communications themselves. Specific information is published on the pages of the site set up for the provision of certain services, and where necessary the user’s consent is collected, informing the user of the purpose and the optional nature of providing it.
Duration of storage:
The data communicated by the user are stored for the time necessary to handle individual requests. Any subsequent storage for statistical purposes involves the anonymisation of such data (except in the event that judicial authorities need to ascertain whether criminal offences have taken place).
3) Cookies and other tracking systems
Use is made of:
- a) technical cookies necessary for user browsing, which facilitate correct browsing on the site and the usability of its contents by the user. Legal basis: “contract as functional and necessary”.
- b) analytical cookies used to process aggregate statistical analyses of the user’s use of and interaction with the site. Subject to user consent. Legal basis: ‘consent’.
- c) Profiling cookies make it possible to collect information about the preferences expressed by the user during browsing and to compile reports for use in targeted advertising and marketing campaigns. Legal basis: ‘consent’. Information on data processing, the purpose, duration and complete management of cookies, including their consent and revocation, can be found in the ‘Cookie Management’ document, which is also available in the footer.
RECIPIENTS OF THE DATA
The recipients of the data collected as a result of the consultation of some of the services listed above are certain entities designated as data processors by the Data Controller pursuant to Article 28 of the Regulation, as well as other additional service providers in the field of web agencies, digital communication, system support and any other digital service providers. You can request a full list by writing to info@cereriaterenzi.com. Some data and information may be transmitted or acquired by entities identified as autonomous data controllers. Such data are related to cookies that are usually anonymised before being sent, for statistical purposes. If transfer to non-EU countries is envisaged, the guarantee measures taken will be indicated, as described in paragraph 6 of this document. The personal data collected are also processed by the staff of ‘CERERIA TERENZI EVELINO S.R.L.’, who act on the basis of specific instructions provided regarding the purposes and methods of processing.
SECURITY OF PROCESSING
Personal data transmitted and stored for the time necessary for the stated purposes are protected by specific technical and organisational security measures with reference to Article 32 of the Regulation, capable of guaranteeing the permanent confidentiality, integrity and availability as well as the ability to promptly restore the availability and access of personal data in the event of a physical or technical incident, including against the risks of destruction, loss, modification, unauthorised disclosure of access, whether accidental or unlawful, involving personal data transmitted, stored or otherwise processed.
PERSONAL DATA TRANSFER TO NON-EU COUNTRIES
The data controller does not transfer personal data to non-EU countries. If there is a need to do so, data subjects will be informed in advance, and guarantee measures will be taken for the transfer to the recipients which, depending on the case, may be: verification of the existence of adequacy decisions for the recipient country by the Commission, signing of standard contractual clauses, verification of the adoption of any additional measures in transposition of EDPB Recommendation 01/2020. Notwithstanding these guarantees, for data processing (with reference to Article 49 of the GDPR), where applicable, the existence of a contract or pre-contractual measures in favour of the data subject or consent to the transfer shall be verified.
DATA SUBJECT RIGHTS
In the cases provided for, data subjects have the right to obtain access to their personal data, the rectification or cancellation of said data, limitation of related processing and portability from ‘CERERIA TERENZI EVELINO S.R.L.’, or to object to data processing and to revoke consent (where used as a legal basis) with reference to Articles 15 to 22 of the Regulation). The request is submitted using the contact details of ‘CERERIA TERENZI EVELINO S.R.L.’, with registered office and operational headquarters in Via dei Faggi, 101 – 47842 San Giovanni in Marignano (RN). In order to exercise your rights, you can also use the template prepared and available on the Italian Data Protection Authority website at this link: https://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/9038275
RIGHT OF COMPLAINT
Data subjects who believe that the processing of personal data relating to them carried out through this site is in breach of the provisions of the Regulation have the right to lodge a complaint with the Italian Data Protection Authority, as provided for in Article 77 of the Regulation, or to take legal action (Article 79 of the Regulation). The template for lodging a complaint is available on the Italian Data Protection Authority website at this link: https://www.garanteprivacy.it/home/docweb/-/docweb-display/docweb/4535524