WEBSITE INFORMATION NOTICE

 

Privacy Notice drafted pursuant to Regulation EU 679/2016 (General Data Protection Regulation)

Pursuant to the rules and regulations indicated, the processing of data will be performed in compliance with the principles of fairness, lawfulness, transparency and protection of the user’s confidentiality and rights.

This information notice for users/visitors who interact with the website http://www.prosciuttificioleonardi.com/ is drafted pursuant to Regulation EU 2016/679 ”on the protection of natural persons with regard to the processing of personal data and on the free movement of such data” and to the rules and regulations concerning internet cookies and, in particular, decree of the Italian Data Protection Authority of 8 May 2014 “Identification of simplified methods for the provision of information on and for obtaining consent for the use of cookies” and the subsequent “Clarifications regarding the implementation of the rules and regulations on cookies”, issued on 5 June 2015.

This information notice describes only the methods applied in the administration of the site, with reference to the processing of the personal data of the users/visitors who consult the site; it does not apply to external sites that users may consult by clicking links present in said site.

Additional information may be provided inside specific sections.

 

1. TYPES OF DATA PROCESSED AND PURPOSES OF THE PROCESSING

 

1.1. Browsing data

The IT systems and the applications dedicated to the operation of this website obtain, during their normal operation, certain personal data, the transmission of which is inherent to the use of Internet communication protocols.

Said information is not obtained to be associated to identified data subjects, but may, by its very nature, through treatment and association with data held by third parties, allow the identification of the users/visitors. The data collected include the IP addresses or domain names of the computers used by the users who connect to the site, the URI (Uniform Resource Identifier) addresses of the resources queried, the time of the query, the method used in submitting the query to the server, the size of the file received in reply, the numerical code indicating the status of the reply provided by the server (success, error, etc.) and other parameters related to the user’s operating system and IT environment.

Said data are processed for the period of time that is necessary for the fulfilment of the purposes for which they were collected, for the sole purpose of retrieving anonymous statistical information on the use of the site (accesses thereto) and to control its proper operation.

The data may be used for ascertaining liability in case of any IT-related offences against the site.

 

1.2. Data willingly provided by the user

Sending e-mail messages to the addresses indicated on this site (for example, in order to request information) entails the acquisition of the address of the sender, as well as of any other personal data inserted in the messages. Such data will be processed solely for the purpose of replying to the request and will only be communicated to third parties in case that is necessary for the fulfilment of said request (e.g. sending the information requested).

If the users/visitors are asked, in order to access specific services, to provide their personal data, the pages relating to such services will contain an appropriate and detailed Information Notice regarding the processing pursuant to the rules and regulations in force which will specify the limits, the purposes and the methods of such processing.

 

1.3. Cookies Description of cookies

Cookies are small text files that are sent by the website visited by the user to the device of the user (exclusively to the browser), where they will be stored so that said device may be recognised on the occasion of the user’s next visit to the site. At each subsequent visit, in fact, cookies are re-sent to the site by the user’s device.

Cookies, however, may be “installed” (more specifically, stored and accessed) not just by the administrator of the website visited by the user (first-party cookies), but also by a different site that “installs” cookies via the first site (third-party cookies) and is able to recognise them. This happens because the site visited may have elements (images, maps, sounds, links to the webpages of other domains, etc.) which are stored on servers other than the one of the visited site.

Based on their purpose, cookies are divided into technical cookies and profiling cookies.

Technical cookies are “installed” for the exclusive purpose of “transmitting a message on an electronic communication network, or to the extent that is absolutely necessary for the supplier of an information society service explicitly requested by the subscriber or the user, in order to provide said service. They are used exclusively to allow smooth browsing between pages, to memorise users’ preferences (e.g. font size, language, country, etc.), to memorise information on specific configurations of the users themselves, to manage their authentication, etc. Some of these cookies (so-called essential or strictly necessary), such as session cookies used for the management of the shopping cart in e-commerce sites, perform functions without which it would not be possible for certain operations to be carried out. The use of technical cookies does not require users’ consent.

Technical cookies are similar (and, therefore, neither the users’ consent nor further compliance with the rules and regulations is required) to so-called “analytics” cookies that serve to monitor the use of the site by the users for purposes of optimisation thereof – if they are used directly by the first-party site (without, that is, the intervention of third parties). The same goes for analytics cookies designed and made available by third parties and used by the first-party site solely for statistical reasons, if suitable tools are used that reduce their ability to identify users (for example, by masking significant parts of the IP address) and the third party expressly undertakes not to cross-check the information contained in such cookies with other information it holds.

Profiling cookies serve to track the user’s browsing and to analyse his/her behaviour for marketing purposes, are intended to create profiles on the user and are used to send advertising messages aligned with the preferences expressed by the user during his/her browsing online. Such cookies may be installed on the user’s terminal only if he/she has granted his/her consent with the methods indicated in the Decree.
Based on their duration, cookies are divided into persistent, which stay stored on the user’s device until their expiration unless he/she removes them, and session cookies, which are not stored persistently on the user’s device and disappear when the browser is shut down. Usually, profiling cookies are persistent cookies.

 

Cookies used on this site

This site uses technical cookies, to guarantee secure and efficient browsing of the site and to monitor its operation.

 

How to delete cookies

We would like to point out that almost all web browsers are, by default, set to automatically accept first-party cookies. Browsing users may, in any case, modify the default configuration via the browser’s settings; if cookies are disabled/blocked or deleted, this may, however, prevent the site or some areas thereof from operating optimally. The way to manage cookies depends on the type of browser used and, often, from the specific version of the browser. In any case, it is usually necessary to access the browser’s Settings and change the default rules, deciding which types of cookies to disable and/or removing existing ones. Detailed information on the procedure for configuring the cookie settings may be found in the guide of the browser used (generally accessible from a PC with the F1 key or by clicking on the question mark icon that is generally present inside the browser itself). The following links lead to the main browsers’ guides to deletion:

Google Chrome (https://support.google.com/chrome/answer/95647?hl=it) Firefox ( http://support.mozilla.org/it/kb/Eliminare%20i%20cookie)
Internet Explorer (http://windows.microsoft.com/it-it/internet-explorer/delete-managecookies#ie=ie-10)
Opera (http://www.opera.com/help/tutorials/security/privacy/) Safari (http://support.apple.com/kb/ph11920)

 

2. METHODS OF PROCESSING

The processing of personal data is performed with automated tools (e.g. with electronic procedures and means) and/or manually (e.g. on paper) for the period of time that is strictly necessary for the achievement of the objectives for which the data were collected and, in any case, in conformity with the applicable provisions of the law in force.

The processing of data is also performed with organisation and treatment logics strictly connected to the purposes and, in any case, so as to guarantee the security, integrity and confidentiality of the data, in compliance with the organisational, physical and logical measures laid down by the provisions in force.

 

3. OPTIONAL CHARACTER OF THE PROVISION OF DATA

Except in the aforementioned cases of browsing data and cookies, the visitor is free to
provide personal data or not, as in the case of information or contact requests
sent by e-mail ❑requests for access to service, utilities and freely chosen applications. If such data are not provided, it may not be possible for the user to obtain what he/she has requested and may hinder PROSCIUTTIFICIO LEONARDI SRL from fulfilling the contractual obligations as foreseen by the mandate contract.

 

4. DATA CONTROLLER, DATA PROCESSORS AND CATEGORIES OF SUBJECTS TASKED WITH PROCESSING

The Controller of the Personal Data is PROSCIUTTIFICIO LEONARDI SRL with registered office at 2955 Via Fondovalle – Marano sul Panaro (MO)
Processing related to the web services of this site is performed exclusively by technical personnel, tasked with processing.

Other than by the Controller’s employees, certain personal data processing operations may be performed by third parties, whom the company has entrusted with the administration/maintenance of the site. In such cases, the same subjects will be appointed Data Processors.

You may receive information related to the data processors simply by sending an e-mail to the address: amministrazione@prosciuttificioleonardi.com

The data will not be disseminated.

 

5. RIGHTS OF THE DATA SUBJECTS

The data subjects to whom the personal data refer have the right, at any time, to obtain confirmation of the existence or otherwise of said data and to be informed of their content and source, to verify their correctness or to request that they be completed/updated, or rectified.

In addition, the data subjects have the right to request that the data that concern them be deleted, that they be anonymised or that they no longer be processed, if their processing violates the law, as well as to otherwise object, on legitimate grounds, to their processing.

Pursuant to Article 13 of the GDPR, the persons to whom the data refer always have the right to know the identity and the details of the Data Controller, and, when necessary, of his representative, the contact details of the data protection officer, the purposes of the processing to which the personal data will be subjected, as well as the legal basis for the processing, the legitimate interests pursued by the Data Controller or by third parties appointed controllers, any recipients or categories of recipients of personal data, the retention period of the data and the Data Controller’s intention to transfer personal data to a third country or to an international organisation.

Pursuant to Article 13 of the GDPR (EU 679/2016), the persons to whom the data refer may also at any time exercise the right to:

have access to the personal data;

 

Pursuant to Article 14 of the GDPR, if the data have not been obtained by the data subject, the Data Controller of PROSCIUTTIFICIO LEONARDI SRL will provide the following information to the data subject:

1.
a) the identity and the contact details of the Data Controller and, where applicable, of his representative;
b) the contact details of the data protection officer, where applicable;
c) the purposes of the processing to which the personal data are destined and the legal basis for the processing;
d) the categories of the personal data in question;
e) any recipients ❑ any categories of recipients of the personal data;
f) where applicable, the intention of the Data Controller to transfer personal data to a recipient in a third country and the existence ❑ the absence of an adequacy decision of the European Commission or, when necessary, the reference to suitable or appropriate guarantees and the means of obtaining a copy of said data or the place where they were made available.

2.
Other than the information of paragraph 1, the Data Controller will provide the data subject with the following information necessary to guarantee the fair and transparent processing vis-a-vis the data subject:
a) the period of retention of the personal data or, if not possible, the criteria used to determine such period;
b) the legitimate interests pursued by the Data Controller ❑ by third parties;
c) the existence of the right of the data subject to request from the data controller access to the personal data and the rectification or deletion thereof or the restriction of processing of the personal data that concern him/her and to object to their processing, other than the right to the portability of the data;
d) the existence of the right to withdraw consent at any time without prejudice to the lawfulness of the processing based on consent before the withdrawal;
e) the right to lodge a complaint with a Supervisory Authority (for Italy, the Italian Data Protection Authority);
f) the source of the personal data and, if applicable, the possibility that the data originate from sources accessible by the public;
g) the existence of an automated decision-making process, including profiling and, at least in such cases, significant information on the logic used, as well as on the importance and the foreseen consequences of such processing for the data subject;

3.
The Data Controller PROSCIUTTIFICIO LEONARDI SRL shall provide the information of paragraphs 1 and 2:
a) within a reasonable amount of time from when the personal data were obtained, but at the latest within one month, taking into account the specific circumstances in which the personal data were processed;
b) in the event where the personal data are intended for communication with the data subject, at the latest at the time of the first message to the data subject; in case communication to another recipient is foreseen, not beyond the first communication of the personal data.

4.
If the Data Controller intends to further process the personal data for a purpose other that the one for which they were collected, before any such processing he will supply the data subject with information regarding such different purpose and all the pertinent information of paragraph 2.
For any information regarding the processing of data, the users may send an e-mail to:amministrazione@prosciuttificioleonardi.com
This Privacy Policy is subject to updates.