Privacy & Cookies Policy
Cortigiani Srl with headquarters in Str. Prov.le Colligiana, 14 – 53035 Monteriggioni (SI), VAT number 01475280523, as Data Controller, informs you pursuant to art. 13 Legislative Decree 30.6.2003 n. 196 (hereinafter, “Privacy Code”) and art. 13 EU Regulation no. 2016/679 (hereinafter, “GDPR”) that your data will be processed in the manner and for the following purposes:
1. OBJECT OF THE TREATMENT
The Data Controller processes personal identification data (for example, name, surname, company name, address, telephone number, e-mail address, bank and payment details – hereinafter “personal data” or even “data”) communicated by you on the occasion of the conclusion of contracts for the services provided by Cortigiani Srl or, in the case of websites, provided by you as an interested party, at the time of filling in the contact form.
2. PURPOSE OF THE TREATMENT
Your personal data are processed for the following Service Purposes: to conclude contracts for the services provided by Cortigiani Srl; fulfill pre-contractual, contractual and tax obligations; fulfill the obligations established by law, by Italian and EU legislation or by an order of the Authority (such as for anti-money laundering); exercise the rights of the owner, for example the right to defense in court; prevent and manage possible disputes or take legal action in case of need; send communications, technical and regulatory updates, report agreements, conventions or commercial proposals.
3. PROCESSING METHOD AND DURATION
The processing of your personal data is carried out by means of the operations indicated in art. 4 of the Privacy Code and art. 4 n. 2) GDPR and more precisely: collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and destruction of data. Your personal data are subjected to both paper and electronic and / or automated processing. The Data Controller will process personal data for the time necessary to fulfill the aforementioned purposes and in any case for no more than 10 years from the termination of the relationship for Service Purposes and for civil, accounting and tax purposes.
4. ACCESS TO DATA
Your data may be made accessible for the purposes referred to in art. 2: to employees and collaborators of the Data Controller, in their capacity as persons in charge and / or internal managers of the processing and / or system administrators; to third-party companies or other subjects (by way of example, credit institutions, professional firms, consultants, insurance companies for the provision of insurance services, etc.) who carry out outsourced activities on behalf of the Data Controller, in their capacity as external managers of the treatment. For cloud services, the data being processed may be disclosed to third party suppliers based within the European Union and abroad in non-EU countries within and within the limits set out in Chapter V of the European Regulation no. 679 of 2016.
5. COMMUNICATION OF DATA
Without the need for express consent (pursuant to Article 24 letter a), b), d) Privacy Code and art. 6 lett. b) and c) GDPR), the Data Controller may communicate your data for the purposes referred to in art. 2 to Supervisory Bodies, Judicial Authorities, to insurance companies for the provision of insurance services, as well as to those subjects to whom the communication is mandatory by law for the accomplishment of the aforementioned purposes. These subjects will process the data in their capacity as independent data controllers. Your data will not be disclosed.
6. DATA TRANSFER
Personal data may be stored on servers located within the European Union. In any case, it is understood that the Data Controller, if necessary, will have the right to move the servers even outside the EU. In this case, the Data Controller ensures from now on that the transfer of data outside the EU will take place in accordance with the applicable legal provisions, subject to the stipulation of the standard contractual clauses provided for by the European Commission.
7. NATURE OF DATA CONFERENCE AND CONSEQUENCES OF REFUSAL TO ANSWER
The provision of data for the purposes referred to in art. 2 is mandatory and indispensable in order to carry out the services governed by the contracts stipulated with Cortigiani Srl (as well as for compliance with the law). Without it, we will not be able to guarantee the Services contractually requested.
8. THIRD PARTY DATA PROVIDED BY THE CUSTOMER The CUSTOMER
guarantees, with reference to the data of third parties processed by him during the use of the Software and / or infrastructures provided by Cortigiani Srl, that he has previously provided the information to third parties in accordance with the European Regulation no. 679 of 2016 and to Legislative Decree 196/2003 and to have acquired their consent to the processing and to the right to transfer such data to other subjects. It is however understood that the CUSTOMER, with respect to the data of third parties, is the independent data controller assuming all the obligations and responsibilities connected to it, relieving Cortigiani Srl from any dispute, claim or other that may come from third parties in reference to such treatment hypothesis.
9. RIGHTS OF THE INTERESTED PARTY
In your capacity as an interested party, according to current legislation you have the rights referred to in art. 7 of the Privacy Code and art. 15 GDPR and precisely you can ask for: confirmation of the existence or not of personal data concerning you and further details on the treatments carried out by Cortigiani Srl; copy of your personal data; to update any data inaccuracy; to delete any data for which there is no legal basis for processing; to withdraw your consent; to oppose any treatment; to limit the way in which we process your personal data when investigating a complaint. Where applicable, it also has the rights referred to in Articles. 16-21 GDPR (Right of rectification, right to be forgotten, right to limitation of treatment, right to data portability, right of opposition), as well as the right of complaint to the Guarantor Authority.
10. METHOD OF EXERCISE OF RIGHTS
You can exercise your rights at any time by sending: a registered letter with return receipt. to Cortigiani Srl, Str. Prov.le Colligiana, 14 – 53035 Monteriggioni (SI); an email to email@example.com
11. OWNER, RESPONSIBLE AND RESPONSIBLE
The Data Controller is Cortigiani Srl, Str. Prov.le Colligiana, 14 – 53035 Monteriggioni (SI). The updated list of data processors and persons in charge of processing is kept at the registered office of Cortigiani Srl.
12. INFORMATION SECURITY
All information collected is kept in secure facilities that limit access to authorized personnel only. Cortigiani Srl complies with security measures in accordance with applicable laws and regulations and with all appropriate measures, to ensure and guarantee the confidentiality of users’ personal data and to minimize, as far as possible, the risks of unauthorized access, of removal, loss or damage of users’ personal data.
When you access Cortigiani Srl or use one of our services, our system or that of one of our partners may set or read cookies and / or other types of identifiers about the browser and / or device you are using. A cookie is a small text file that is stored on the computer of those who view a website in order to record some information relating to the visit as well as to create a system to recognize the user even at subsequent times. Device identifiers, on the other hand, are generated by collecting and processing certain information such as the IP address and / or the user agent (browser version, type and version of the operating system) or other characteristics of the device, again in order to reconnect certain information. to a specific user. A website can set a cookie on the browser only if the preferences configured for the latter allow it. It is important to know that a browser can allow a particular website to access only and exclusively the cookies set by it and not those set by other websites: there is no risk to your privacy in this regard.
PRACTICES RELATING TO COOKIES AND OTHER SIMILAR TECHNOLOGIES
COOKIES OF OTHER COMPANIES
GOOGLE ANALYTICS COOKIES
This site uses the service offered by Google Analytics in order to have a complete and reliable service of statistics about the use of the site. In order to guarantee the privacy of users in the most rigorous way possible, we communicate that we have carried out the anonymization of the IPs (therefore Google Analytics will anonymize the IP address of the user / visitor as soon as this is technically possible in the passage more upstream of the network in which the data is collected). The Data Controller also informs that it has accepted the Amendment on data processing (Google Analytics Data Processing Amendment) made available by Google Analytics in compliance with Directive 95/46 / EC. In particular, by virtue of this amendment, Google guarantees that it will process the personal data recorded through the service only within the limits of the instructions given by the site operator and not to share them with other Google services unless this has been explicitly requested and authorized by the owner of the site itself. As a result of the above, the user is informed that the advertising and data sharing options with Google have not been activated and that Google Analytics has not been connected to any additional service: the processing, therefore, is carried out for mere statistical purposes. and therefore, on the basis of what is explicitly provided by the Privacy Guarantor, Analytics cookies have been equated to technical cookies and as such installed without the prior consent of the user.
DELETE ALL COOKIES OF “Cortigiani Srl”
You can delete all Cortigiani Srl cookies using your browser’s cleaning tools.