INFORMATION ON THE PROCESSING OF PERSONAL DATA
(ART. 13 AND 14 EU REG. 2016/679)
The application of this Privacy Policy takes place exclusively in relation to the online activities of this site and is valid for visitors/users of the site. It does not apply to information collected through channels other than this website.
The data provided by visitors and users of this site will be processed in full compliance with national legislation (Legislative Decree 30 June 2003 no. 196, Personal Data Protection Code) and community legislation (European Data Protection Regulation personal n. 679/2016, GDPR) and subsequent amendments, making every possible and proportionate effort not to infringe the rights of users, in compliance with rights and obligations.
Specifically, we inform you that:
a) Data Controller - The data controller pursuant to current laws is Garnì Ciamorc (P.I.:01044060224),Strèda de Dolavila 88 38032 Canazei (TN), contactable via the CONTACTS section or via email at the following address: info@garniciamorc.it.
The processing is carried out by the owner and by those expressly authorized by the owner.
b) Purpose of the Processing - The processing is aimed at providing the requested services, to send the user promotional information regarding the owner's services and/or products, via both automated (email, text message) and non-automated (paper mail) tools. ). At any time the user can oppose the sending of such communications or specify the contact methods.
c) Legal basis of processing - This site processes data on the basis of consent. By consulting and using this site, the user explicitly approves this information and consents to the processing of their personal data in relation to the methods and purposes described below, including any disclosure to third parties if necessary for the provision of a service.
d) Methods of Processing of Personal Data - The processing is carried out in an automated form and consists of collection, recording, organisation, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and data destruction.
This site uses log files that report and store information acquired automatically during user visits. The information collected could be the following:
- internet protocol (IP) address;
- type of browser and parameters of the device used to connect to the site;
- name of the internet service provider (ISP);
- date and time of visit;
- web page of origin of the visitor (referral) and exit;
- possibly the number of clicks.
The information collected may be used for security reasons and/or to verify the correct functioning of the site.
The automatically recorded data (such as, among others, anti-spam filters, firewalls, virus detection) may, if necessary, contain personal data such as the IP address: the latter could be used to block any maneuvers and attempts at damage to the site itself, prevent harmful activities (including concerning other users of the site itself) or constituting a crime. This information is processed for the aforementioned purposes and never to allow the identification or profiling of the user.
e) Data Communication - In cases where the user of the site is allowed to insert comments or other information, the user, upon entering the comment or information, expressly accepts the privacy policy and consents , in particular, to the free dissemination also to third parties of the data entered by the same, which includes the email address.
When the user requests specific services, the site automatically detects and records some user identification data, which includes the email address. Such data is intended to be provided voluntarily and knowingly by the user at the time of requesting the provision of the service.
Personal data may be communicated to:
– collaborators and employees as managers and processors for the provision of services; the staff has been duly trained on the security of personal data and the right to privacy.
– Public authorities for the purposes established by law.
– Collaborators and external parties who carry out specific tasks on behalf of the company.
f) Data Retention - The data received will be retained only for the period necessary to provide the requested service.
The information that users of the site decide to make public through the services and tools made available to them are provided by the user knowingly and voluntarily, exempting this site from any liability regarding any violations of the law. It is up to the user to verify that they have permission to enter personal data of third parties or content protected by national and international regulations.
In any case, the data collected by the site will never be provided to third parties, for any reason, unless it is a legitimate request by the judicial authority and only in the cases provided for by law.
g) Transfer of data to non-EU countries - This site may share some of the data collected with services located outside the European Union area. In particular with Google, Facebook and Microsoft (LinkedIn) through social plugins and the Google Analytics service. The transfer is authorized on the basis of specific decisions of the European Union and of the Guarantor for the protection of personal data, in particular decision 1250/2016, for which no further consent is required. The companies mentioned above guarantee their adherence to the Privacy Shield.
h) Provision of Data - The provision of data and therefore the consent to the collection and processing of data is optional. The user can deny consent, and can revoke a consent already given at any time (via……. For example the Contact link at the bottom of the page). However, denying consent may make it impossible to provide certain services and the browsing experience on the site may be compromised.
i) Rights of the interested party - The interested party has the right:
- access, rectification, cancellation, limitation and opposition to the processing of data
- to obtain from the data controller and without impediments the data concerning him in a structured format of common use and readable by an automatic device to transmit them to another data controller (data portability)
- to revoke consent to processing, without prejudice to the lawfulness of the processing based on the consent acquired before the revocation
- to lodge a complaint with the Guarantor Authority for the protection of personal data
The exercise of the aforementioned rights can be exercised via communication to be addressed to the Data Controller.