With this Policy Decameron declares that the data controller of company data and owner of domains and websites is DECAMERON
DECAMERON therefore provides to the users who connect to the www.decameronitaly.com sites and to the company pages present in the social networks, the rules for a correct and authorized use of the photos, images, text and any other document published here.
Furthermore, the term Company Data refers in this context to:
- any type of information that is processed, acquired, known, processed, communicated and extracted on the pages of the sites indicated above.
- information from links on other sites is not included.
DECAMERON recognizes the importance of protecting the personal data of its customers (for example identification data and financial data including credit card numbers) and the data of the users of its Websites or sites. For this reason DECAMERON adopts policies and measures specific security to comply with the regulations in force regarding the protection of personal data and protect your personal data. It is important to underline that what is described below may be subject to revision and integration by this company whenever the conditions arise; in this regard and for purposes of transparency towards the user, the initial cover shows the number corresponding to the current version (currently corresponding to vers. 4/2018 - extract).
The information is provided only for www.decameronitaly.com and for company pages on social networks and not for other websites that may be consulted by the user via links. The information is also based on the provisions of Recommendation no. 2/2001 that the European Authorities for the protection of personal data, gathered in the Group of European Guarantors pursuant to Article 29, have adopted to identify some minimum requirements for the collection of personal data online, and in particular, the methods, times and nature of the information that the owners must provide to users when they connect to web pages regardless of the purpose of the connection together with what is established by the European directives and by the rules of the Italian legal system on the subject of data security. Furthermore, the information contained on the site also meets the compliance requirements dictated by other regulatory provisions and has been and has been updated according to Law no. 88 as a rule for the implementation of the 2008 Community Law in the tax field.
HOLDER OF THE TREATMENT
For the purposes of the principles of transparency and correctness sanctioned by the Privacy Code, a data controller belonging directly to DECAMERON is set up, whose complete data are:
DECAMERON BY EVELIN MEDORI
Via Fonte Zoppa snc 62812 Montegranaro VAT number: 02039740432
RESPONSIBLE FOR THE TREATMENT
Pursuant to the provisions of art. 28 of the GDPR 2016/679, the reference for any information and requests to be sent to the Data Processor is communicated:
Furthermore, the complete and updated list of Data Processors can be requested by writing to the address on this website.
INTERNATIONAL TRANSFERS OF PERSONAL DATA
If the customer has chosen to register in the customer database, DECAMERON collects the customer's personal data in his country, for example data relating to his visits to our stores, to subsequently transfer and archive them. The data will be transferred for the purposes described in this Policy (for example to provide the requested services or to offer personalized services in all our stores around the world). The legislation on privacy and protection of personal data in force in these countries may not be equivalent to that of the customer's country of residence. DECAMERON will take measures to ensure that customer data are treated securely, in compliance with the principles of correctness, necessity and proportionality and in compliance with this Policy, regardless of the country to which they may be transferred.
Where permitted in the customer's country, by using the aforementioned Websites or by providing us with the data for the purposes referred to in this Policy, the customer fully understands and clearly accepts the transfer of personal data abroad in the context of the normal commercial operations of the companies of the Group, including the collection, storage and processing of such data in the United States of America and Asia. These policies represent the rules of conduct relating to the processing of DECAMERON personal data and therefore they govern and allow the transfer of data between the same companies residing in different geographical areas, in compliance with the guarantees established by the privacy legislation (principle of the Binding Corporate Rules).
PLACE OF DATA PROCESSING
The treatments connected to the web services www.decameronitaly.com take place at the registered office located in Via Fonte Zoppa snc 62812 Montegranaro and are handled by the owner and by any third-party companies as data processors pursuant to art. 28 GDPR 2016/679. For the sake of transparency, it should be noted that the domain is supported by an external provider which is responsible for its operation and security and which, in the event of violations, is subject to the responsibilities dictated by specific industry regulations. The provider is located in an EU country.
NAVIGATION DATA ON THE WEBSITES
This section specifies what data DECAMERON could collect while simply browsing the Websites, without logging in as a registered user, and their processing methods.
The computer systems and software procedures used to operate this website acquire, during normal operation, some personal data whose transmission is implicit in the use of internet communication protocols. This category includes the IP addresses or domain names of the computers used by users who connect to the site, the addresses in the Uniform Resource Identifier (URI) notation of the requested resources, the numerical code indicating the status of the response given by the server (eg . successful, error) and other parameters relating to the operating system and the user's IT environment. These data could be used to ascertain responsibility in case of hypothetical computer crimes against the site.
It should be noted that among the Personal Data collected by these websites, either independently or through third parties, there are: Name and surname - Telephone number - Email address - Address - City - Province - Country - Company name - Profession - Website - Cookies - Usage data - IP address - Location.
Unless otherwise specified, all the Data requested by these sites are mandatory to allow the Owner to respond to your requests; therefore if the User refuses to communicate them, it may be impossible to provide the service.
The Data are processed and stored for the time required by the purposes for which they were collected. Therefore:
Personal Data collected for purposes related to the execution of a contract between the Owner and the User will be retained until the execution of this contract is completed.
Personal Data collected for purposes attributable to the legitimate interest of the Data Controller will be retained until this interest is satisfied. The User can obtain further information regarding the legitimate interest pursued by the Data Controller in the relevant sections of this document or by contacting the Data Controller.
When the processing is based on the User's consent, the Data Controller may keep the Personal Data longer until such consent is revoked. Furthermore, the Data Controller may be obliged to keep Personal Data for a longer period in compliance with a legal obligation or by order of an authority.
At the end of the retention period, the Personal Data will be deleted. Therefore, at the end of this term the right of access, cancellation, rectification and the right to data portability can no longer be exercised.
In accordance with the provision of the Privacy Authority of 14/06/2014 it is stated that this site contains technical cookies or navigation cookies, analytics cookies, functionality cookies. No personal user data is acquired by the site in this regard. Cookies are not used to transmit information of a personal nature, nor are so-called persistent cookies of any kind used, or systems for tracing users. The use of session cookies (which are not stored permanently on the user's computer and disappear when the browser is closed) is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to allow the safe and efficient exploration of the site. The setting of cookies is entrusted to the Web Master appointed by the company and the domains indicated above reside at the fam server of an external provider.
This site also contains Google analytics cookies or GOOGLE ANALYTICS.
Google Analytics is a free web analysis tool provided by Google, which sends cookies to your device. The information generated by your use of the site, including your IP address, is transmitted to Google and stored on its servers. Google uses this information to evaluate your use of the Site, prepare reports on site activity for web operators and to provide other services relating to site activity and internet usage. Google may also transfer this information to third parties if required by law or in the case of third parties who process this information on behalf of Google. However, Google does not associate your IP address with any other data that Google owns.
OPTIONAL NATURE OF PROVIDING DATA
Apart from that specified for navigation data, the user is free to provide personal data by writing in the appropriate form in the "CONTACTS" section of the site to request information or other communications. For the sake of completeness, it should be noted that in some cases, not subject to the ordinary management of this site, the Authority may request news and information pursuant to the GDPR 2016/679 for the purpose of monitoring the processing of personal data; in these cases, the reply is mandatory under penalty of an administrative sanction.
RIGHT TO BE FORGOTTEN
Apart from what is specified for navigation data, the user is free to provide personal data. The Company respects the User's right to be forgotten or the right to obtain the cancellation of data concerning him without undue delay.
RIGHT OF THE INTERESTED PARTIES
Each subject has the right at any time to obtain confirmation of the existence or otherwise of the data and to know its content and origin, verify its accuracy or request its integration or updating, or correction (Article 7 GDPR 2016/679) it is equally the right of each user to revoke any consent previously granted for information or marketing purposes. Pursuant to the same article, one has the right to request cancellation, transformation into anonymous form or blocking of data processed in violation of the law, as well as to oppose in any case, for legitimate reasons, to their processing. Furthermore, Users have the right to request the limitation of the use of data and the right to data portability to another Data Controller.
VERS. 4/2018 - DRAFTED IN ACCORDANCE WITH ART. 13 AND 14 GDPR 2016/679 EXTRACT. THE TEXT IN DETAIL CAN BE REQUESTED AT THE REFERENCES CONTAINED IN THIS DOCUMENT