The website www.borgobrufa.it (hereinafter the “Site”) is owned by Borgobrufa Srl, with registered office in Brufa di Torgiano (PG), Via del Colle n. 38, as Data Controller (hereinafter the “Company” or the “Data Controller”).
The data controller is Borgobrufa Srl in the person of its legal representative, with registered office in Torgiano (PG), Via del Colle 38, 06089, tel. 0759883, mail firstname.lastname@example.org, email@example.com, REM firstname.lastname@example.org.
Personal data being processed
“Personal data” means any information relating to an identified or identifiable natural person, with particular reference to an identifier such as a name, an identification number, location data or an online identifier.
The personal data collected by the Site are the follows:
The computer systems and software procedures used to operate this site acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This is information that is not collected to be associated with identified interested parties, but which by their very nature could, through processing and association with data held by third parties, allow Users to be identified. This category of data includes the IP addresses or domain names of the computers used by Users who connect to the Site, the addresses in URI (Uniform Resource Identifier) notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the User’s IT environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the Site, therefore without the possibility of identifying the User, and are aimed at measuring the functioning of the Site and the related operational functions, including the resolution of any technical problem. Such data is deleted immediately after processing.
These data could also be used to ascertain responsibility in the event of hypothetical computer crimes against the Site.
Data provided voluntarily by the User
This refers to all personal data freely given by the User such as, for example: contact details provided in the voluntary sending of e-mails to the addresses indicated on the Site to have direct contact with customer service, as well as any other personal data entered in the letter; data provided when sending the Company their curriculum vitae and other relevant information for personnel selection purposes; data provided to register and/or access the reserved area of the Site, to request the sending of the newsletter or information on a specific product or service via form.
Each User can modify their data by sending an email to the dedicated address email@example.com, taking care to specify in the subject “Exercise of rights regarding the protection of personal data”.
Specific summary information will be progressively reported or displayed on the pages of the Site set up for particular services on request. In some cases, this information may be used, subject to your consent, for marketing and/or profiling purposes.
Through the “social buttons” you access the profile pages of the Company through your respective profile possibly activated with the social media in use; this may involve the knowledge of the data associated with this profile by the Data Controller and the sharing of data with the social media used; these latter processing activities will be subject to the privacy policies of the relevant social service provider.
Purpose and legal basis of data processing
In order to access the Site as a User, it is necessary to register by filling in the fields of the form.
Without prejudice to what is specified for navigation data, the personal data provided by Users through the Site are processed for the following purposes:
allow the performance of operations strictly connected and instrumental to the management of relations with Users, such as – by way of example – the answer to questions received with the contact forms, the authorization to the reserved sections and the execution of the contracts for the sale of goods and/or services and the verification of the progress of relationships, the management of the curriculum vitae and other relevant information sent by the User for personnel selection purposes;
allow the correct execution of the contractual obligations assumed by the Company towards Users and customers and vice versa, as well as the consequent accounting and tax obligations;
allow the fulfillment of the obligations established by laws, regulations and community regulations, or by provisions issued by judicial authorities, by supervisory and control bodies;
ascertain, exercise or defend a right in court or whenever the judicial authorities exercise their judicial functions;
carry out information activities regarding further products and/or services of the Company as well as promotional, commercial and marketing activities;
carry out user profiling activities through the processing of data provided by them, subject to consent. We remind you that the express consent for the forwarding of promotional communications extends not only to communications sent through the use of automated systems without operator intervention, but also to traditional methods of contact, such as the postal service. It is always possible to revoke consent to such processing, even separately, for example, deciding to receive advertising only by postal service and not through automated systems;
for research and statistical analysis on aggregated or anonymous data, therefore without the possibility of identifying the User, aimed at measuring the functioning of the Site and the related operational functions, including the resolution of any technical problem.
Nature of data provision and consequences of refusal
Apart from what has been specified for navigation data that is automatically collected by the system and for the operation of cookies, the User is free to provide or not provide his personal data.
For free registration as a User on the Site, it is necessary to fill in the form, entering the necessary personal data in the predefined fields.
Processing methods and data retention times
Users’ data will be processed with or without the aid of electronic and/or automated means for the time strictly necessary for the purposes for which the data are collected and subsequently processed and, in any case, for the times established by the Privacy Code, by the GDPR and by the legislation in the applicable time. Further information regarding the retention period of personal data and/or the criteria used to determine this period can be requested by writing to the Data Controller at the email address firstname.lastname@example.org.
Specific security measures are observed to prevent data loss, confidentiality and integrity of your data.
Scope of data communication
For the pursuit of the aforementioned purposes, the Data Controller may appoint data processors pursuant to art. 28 GDPR as well as subjects authorized to carry out processing operations pursuant to art. 29 GDPR. To date, the Company has appointed D-Edge, with headquarters in France – Paris, Rue des Archives, 64/66, responsible pursuant to art. 28 GDPR of the processing of data necessary for the execution of maintenance activities of the technical part of the Site.
A complete and updated list of data processors is available by contacting the Data Controller at the addresses indicated above. Furthermore, your personal data may be communicated and transferred to subjects for the fulfillment of legal obligations or provisions issued by judicial authorities.
Children under 18
The Site is not intended for use by minors under the age of 18. We understand the importance of protecting information intended for minors, especially in an online environment and, therefore, we do not knowingly collect or maintain personal data relating to minors.
The rights of the interested party
As required by art. 13 of the GDPR, the User may at any time:
ask the Data Controller for access to personal data and the rectification or cancellation of the same or the limitation of the processing of data concerning him;
oppose to the processing of his personal data;
exercise the right to data portability;
revoke the consent at any time without prejudice to the lawfulness of the treatment based on the consent given before the revocation.
The rights described above can be exercised by making an informal request to the Data Controller at the addresses indicated or at the email address email@example.com.
The User can lodge a complaint with the Guarantor Authority for the protection of personal data according to the methods indicated on the website www.garanteprivacy.it.
What Cookies are
Cookies are small text strings that the Site visited by the User sends to his terminal (usually to the browser), where they are stored automatically before being re-transmitted just as automatically to the same Site at the next visit by the same User.
Cookies, usually present in the browsers of Users in large numbers and sometimes even with characteristics of large temporal persistence, are used for different purposes: execution of IT authentications, monitoring of sessions, memorization of information on specific configurations concerning Users accessing the server.
Types of cookies used
Below are the various types of Cookies used by the Site according to the purpose of use.
Technical cookies are those used for the sole purpose of “carrying out the transmission of a communication over an electronic communications network, or as strictly necessary for the provider of an information society service explicitly requested by the subscriber or user to provide such service”. This type of Cookie allows certain sections of the Site to function correctly. Technical Cookies, in relation to the technical services offered, will therefore always be used and sent, unless the User changes the settings in their browser. They are not used for any other purpose. The prior consent of the Users is not required for the installation of these Cookies when used directly by the site manager.
Session and permanent cookies
These are technical cookies active only for the reference session which allow you to temporarily store the information necessary for browsing from one page to another, avoiding having to enter it again. The use of these cookies is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to allow safe and efficient exploration of the site. The session cookies used on this Site avoid the use of other IT techniques that could potentially compromise the confidentiality of Users’ browsing and do not allow the acquisition of personal identification data of the User.
Cookies may expire at the end of a browser session (the period between the User opening a browser window and closing it) or they may be kept for a longer period of time. Session Cookies expire when the browser session ends, while permanent Cookies are stored on a User’s device between browser sessions, for variable periods of time, and allow the User’s preferences or actions to be memorized with respect to a website.
This is a type of technical Cookie that allows the User to navigate according to a series of criteria selected by the same (such as, for example, the language) in order to improve the service rendered.
In particular, this site makes use of functionality cookies for the correct functioning of the aforementioned technology, but does not record any type of information that can lead back to the individual visitor User.
Profiling cookies are aimed at creating profiles relating to the User and are used in order to send advertising messages in line with the preferences expressed by the same in the context of surfing the net. Due to the particular invasiveness that these Cookies may have in the private sphere of Users, European and Italian legislation provides that the User must be adequately informed about their use, through a short information (banner) and a present extended one. on the site, and that he must express his consent. This consent can be expressed in a general way, by interacting with the brief information banner on the landing page of the site, with the methods indicated in this banner, or it can be provided or denied selectively, according to the methods indicated below. This consent is kept track of on subsequent visits. However, the User always has the possibility to revoke all or part of the consent already expressed.
First-party and third-party cookies
A Cookie is “first party” (so-called first party cookie) or “third party” (so-called third-party cookie) based on the website or domain from which it comes.
First-party cookies are cookies set and/or managed by the site owner. For these Cookies, the obligation to provide information and acquire consent or block lies with the Owner.
Third-party Cookies are Cookies set by a domain other than the one visited by the User. For these Cookies, the obligation of the disclosure and indication of the methods for any consent and/or blocking of Cookies lies with the third party, while the owner of the site is only required to insert the link to the site on the site. of the third party where such elements are available.
Third-party analytical cookies
“Navigation analysis” Cookies may be installed on the Site which are used to acquire completely anonymous information and stored in aggregate format, in relation to the methods of visit by Users of our site (such as: the most visited pages, the time spent on the site and the number of visitors). This activity is carried out using the service provided by the Google company called Google Analytics. For more information on Google Analytics visit the website:
https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage). In any case, to manage or disable these cookies, access the address: https://support.google.com/accounts/answer/61416?hl=it.
Consent to the processing and management of Cookies
The User always has the possibility to deny his consent to the use of any Cookie by expressing his options, also through the browser settings. The User therefore has the possibility, at any time, to set the browser in order to accept all Cookies, only some, or to refuse them, disabling their use by the Site. Furthermore, the User can set the preferences of the browser in order to be notified each time a cookie is stored in the memory of your computer.
At the end of each browsing session, it is therefore possible to delete the collected Cookies from the hard disk.
To delete the Cookies installed in the Cookies folder of the browser used, each browser has different procedures for managing the settings.