The information and data provided by users or otherwise acquired in the using of web surfing services will be processed in compliance with the provisions of the Regulation and also with the confidentiality obligations that inspire the activity of Bovone Diamond Tools
According to the provisions of the Regulation, the treatments carried out by Bovone Diamond Tools will be based on the principles of lawfulness, correctness, transparency, limitation of the purposes and conservation, minimization of data, accuracy, integrity and confidentiality, as well as the principle of responsibility pursuant to art. 5 of the Regulation.
1. DATA CONTROLLER
The Data Controller is Bovone Diamond Tools, with registered office in Ovada, Via Voltri 78, (hereinafter “BDT” or “Data Controller”) For any request and / or information, the Data Controller can be contacted via email firstname.lastname@example.org.
2. THE CATEGORIES OF PERSONAL DATA
The personal data processed may consist of an identifier such as the name, an identification number, data relating to the location, an online identification or one or more elements relating to the physical, physiological, psychic, economic, cultural or social identity to make the data subject identified or identifiable, depending on the type of services requested.
In particular, the personal data processed through the Site are as follows:
A) WEB SURFING DATA
The IT systems and software procedures used to operate the Site automatically acquire some information relating to web browsing.
This is information that is not collected to be associated with identified data subject but which by its nature could allow users or surfers to be identified. This category may include: (i) information relating to IP addresses; (ii) domain names of the computers used by users who connect to the site; (iii) addresses in URI (Uniform Resource Identifier); (iv) the method used in submitting the request to the web server; (v) the size of the file obtained in response, (vi) numerical code indicating the status of the response given by the web server (successful, error, etc.) and other parameters relating to the operating system and the user’s computer environment.
Such data are used for the sole purpose of obtaining anonymous statistical information on the use of this website and to check its correct functioning, to identify anomalies and / or abuses, and are deleted immediately after processing. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site or third parties.
B) DATA COLLECTED THROUGH COOKIES
What are cookies
Browsing this site involves the receipt of cookies, short text strings that the visited websites send to the user’s browser (i.e. the program used to navigate such as, e.g., Chrome, Explorer, Mozilla, etc.) where they are stored in order to be retransmitted to the same websites during subsequent visits.
While browsing a site, the user can also receive cookies from sites or web servers other than the one he is visiting on his computer (hereinafter “third party” cookies).
Specific information is given in the sections of the website set up for particular services, accessible also after registration, where personal data is requested from the user of the site.
It is possible to distinguish (i) technical cookies, which allow the performance of activities strictly related to the functioning of the site and can be used freely and (ii) profiling cookies, used in order to display the user advertising messages in line with the preferences expressed by the same during web surfing and for which it is necessary to acquire the user’s consent.
Through this site, the user’s browser can receive technical cookies and third-party profiling cookies.
In particular, are used technical web surfing cookies, in order to memorize web surfing preferences and improve it on the site, and analytical cookies (specifically Google Analytics provided by Google Inc. – hereinafter referred to as “Google”), which collect, in anonymous and aggregate form, statistical information regarding the web surfing of the site (for example, number of pages visited and accesses, time spent on the site), useful for understanding in which aspects it is possible to improve the website.
The use of these cookies does not require the acquisition of the user’s consent, who can still decide to disable their use on their browser. In addition, Google Analytics cookies can be specifically refused using the appropriate tool provided by Google Google (v. https://support.google.com/analytics/answer/181881?hl=it&ref_topic=2919631&vid=1-635775549103353382-1182928194).
Third-party profiling cookies
Through some pages of this website it is also possible to receive third-party profiling cookies in your browser (for example to allow the display of content hosted on external platforms and interact with them (e.g. YouTube) or connected to the Google AdWords service (aimed at showing the user, during navigation, ads based on previously visited websites).
For this reason, when accessing these pages, is proposed a banner to inform the user and allow him to give his consent to receive these cookies, by closing the banner or clicking on any other element of the page, external to the banner.
BDT does not have access to the information collected by third party cookies, which are used independently by the managers of the aforementioned services. For more information on how the data collected using these cookies is processed, users are invited to consult the privacy information notes provided by the subjects who make the services available.
In particular, the third-party cookies used on the site are as follows:
The user can disable the third parties cookies listed above by clicking on the links indicated. If there are no links, you can refer to the following site: www.youronlinechoices.com/it/ – which allows you to manage user preferences regarding cookies
How to manage cookies in your browser
The user can set his browser in a way that he is warned of the presence of cookies and decide to accept a specific cookie or to automatically reject all cookies.
Below the information about how manage the activation /deactivation of cookies for the main browsers
Google Chrome: https://support.google.com/accounts/answer/61416?hl=it
Mozilla Firefox: https://support.mozilla.org/it/kb/Attivare%20e%20disattivare%20i%20cookie
Apple Safari: https://support.apple.com/kb/PH19214?locale=it_IT
Microsoft Internet Explorer e Microsoft Edge: https://support.microsoft.com/it-it/help/17442/windows-internet-explorer-delete-manage-cookies
3. PURPOSE AND LEGAL BASIS OF PERSONAL DATA TREATMENT
The users ‘personal data will be processed for the following purposes:
1) to surf and to allow the supply of services of the Data Controller, including the management of Site security;
2) fulfill any obligations under applicable laws, regulations or community legislation, or satisfy requests from the authorities;
3) provide marketing and communication services, newsletters and communications via email, in relation to BDT products.
Specific security measures are observed to prevent the data loss, illicit or incorrect use and unauthorized access.
The legal bases of processing for the purposes of point 3.1. above mentioned is the art. 6.1.b) of the European Regulation 2016/679. The legal basis of processing for the purposes of point 3.2. above mentioned is the art. 6.1.c) of the European Regulation 2016/679. The legal basis of processing for the purposes of point 3.3. above mentioned is the art. 6.1.a) of the European Regulation 2016/679.
The consents previously granted can be revoked by following the indications in Paragraph 8 of this Information. The data subject may oppose to such treatment at any time, initially or on the occasion of subsequent communications, easily and free of charge also by writing to the contact details indicated in Paragraph 1 of this Information, as well as to obtain immediate feedback confirming the interruption of such treatment (art.15 of the Regulations).
4. ADDRESSEES AND EVENTUAL CATEGORIES OF ADDRESSEES
The data collected for the purposes referred to in section 3 of this privacy information may be shared with:
(i) subjects who typically act as Data Processors pursuant to art. 28 of the Regulation;
(ii) subjects, entities or authorities to whom it is mandatory to communicate personal data pursuant to legal provisions or orders of authority;
(iii) persons authorized by the Data Controller, pursuant to art. 29 of the Regulation, to the processing of personal data necessary to carry out activities strictly related to the provision of services.
5. EXTRA UE DATA TRANSFER
In connection with any other possible extra UE data transfer, the Data Controller will ensure that all safeguarding measures will be taken to make this transfer secure and to ensure that the processing of personal data complies with the requirements of the GDPR such as, for example, the consent of the data subject, the adoption of Standard Clauses approved by the European Commission, the selection of undertakings adhering to international programmes for the free circulation of data (e.g. the EU-USA Privacy Shield) or operating in countries considered safe by the
European Commission.On this point, the Data Controller will, at the request of the data subject, issue the necessary information.
6. DATA RETENTION PERIOD
Personal data processed for the purposes referred to in section 3 will be retain for the time strictly necessary to achieve those same purposes. In any case, the Data Controller will keep personal data for the period of time foreseen and allowed by Italian law to protect its interests (art. 2946 of the Italian Civil Code and ss.). Personal data processed for the purposes referred to in section 3.2 will be retain until the time provided for by the specific obligation or applicable law.
The possibility for the Data Controller to keep your personal data for the period of time foreseen by Italian law to protect his own interests is reserved in any case (art. 2947 of the Italian Civil Code).
7. RIGHTS OF THE DATA SUBJECT
In compliance with the provisions of the privacy Regulation, the data subject has the right, where applicable, of access the data (Article 15), to rectification (Article 16), to erasure (‘right to be forgotten’) (Article 17), to restriction of processing (Article 18), to data portability (Article 20) to object and automated individual decision-making including profiling (Article 21 -22). Requests may be submitted in writing to the Data Controller at the email address indicated in point 1. The data subject also has the right to lodge a complaint with the supervisory authority (Article 77 of the Regulations) if he/she considers that the processing performed by the Data Controller is not in compliance. For more information you can consult the website of the supervisory authority www.garante privacy.it.