INFORMATION ON THE PROTECTION OF PERSONAL DATA

On May 25, 2018, the General Data Protection Regulation (GDPR) approved by the European Commission came into force "To ensure a consistent level of protection of individuals throughout the Union and prevent disparities that may hinder the free circulation of personal data in the internal market "Recital 13 GDPR.

Technis Blu s.r.l. as the data controller (hereinafter the Data Controller) has implemented the provisions of the European Commission in the following information pursuant to articles 13 and 14 of EU Regulation 2016/679.

This Information on the Protection of Personal Data (hereinafter Information) provides you with detailed information regarding the exercise of your rights, of a cognitive and controlling nature, regarding your personal data granted to the Data Controller. The Data Controller is responsible for the collection and processing of your personal data in relation to the activities carried out.

1. Data Controller

The Data Controller is TECHNIS BLU S.R.L.

Contacts:

• Single administrative office in Via Riccardo Gigante, 4 - 00143 Rome (RM)
• +39 06 505 272 50
• Email technisblu@technisblu.it
• Responsible for data processing dpotechnisblu@technisblu.it

2. Categories of processed data

The object of the processing may be your personal data such as:

2a. Automatically collected data (navigation data)

The computer systems and software procedures that guarantee the functioning of this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This is information that is not collected to be associated with identified data subjects, but which by their very nature could, through processing and association with data held by third parties, allow users to be identified. In particular, this category of data includes:

• the IP addresses or domain names of the computers used by users who connect to the website;
• the URI (Uniform Resource Identifier) ​​addresses of the requested resources;
• the time of the request;
• the method used in submitting the request to the server;
• the size of the file obtained in response;
• the numerical code indicating the status of the response given by the server (successful, error, etc.);
• any parameter relating to the operating system and the user's IT environment.

2b. Data disclosed voluntarily by the User

The voluntary and explicit sending of e-mails to the addresses indicated in the different access channels of this website does not involve a request for consent and involves the acquisition of the sender's address and data, necessary to respond to requests, as well as any other personal data included in the message. These data are voluntarily provided by the user at the time of the request to provide the service.

2c. Data collected through cookies

As better explained in the "Cookie policy", the Website uses "cookies", intended as short fragments of text (letters and / or numbers) that allow the web server to store information on the client (the browser) to be reused during the same visit to the website (session cookies) or later, for further visits to the same website (persistent cookies). The information received through these tools concerns in particular the links clicked by the User, the visited pages and the duration of the visit, information relating to statistics on the User's intentions.
The Website uses both technical and / or functional cookies, necessary to ensure the navigability of its site and the use of the same by the User. There are no analytical or third-party profiling cookies "Cookie policy"

3. Source of personal data

The personal data held by the Data Controller are collected directly from the data subjects.

4. Purpose of data processing and legal basis

The Navigation Data and Personal Data are legitimately processed by the Data Controller in compliance with the provisions of the GDPR and any other applicable law provision according to the legal bases provided for by art. 6 of the GDPR as detailed below.

The processing of your data has as its purpose and legal basis:

1. For the data collected automatically, Browsing Data, the legal basis is the legitimate interest of the Data Controller (Article 6, paragraph 1, letter f) of the GDPR) as necessary for the same Data Controller to allow the Website to function and complete use by the User of the same. The purpose is to ensure and improve the web browsing experience. Without prejudice to the User's right to disable the cookies required by the current Cookie policy.
2. For the data provided voluntarily by the user, the purpose is the contract between the parties and the legal basis is the mandatory conferment in order to proceed with the execution of contractual and pre-contractual measures adopted at the request of the User and used to manage all the services requested online are processed pursuant to art. 6, paragraph 1, letter b) of the GDPR.

5. Marketing purposes

Your data will not be processed for marketing purposes.

6. Purpose of defense in court

The User's Personal Data may be processed by the Data Controller to defend itself in the event of a possible judgment and / or in the preparatory stages thereto.

7. Further details relating to the services used by the Data Controller in relation to the data collection purposes

Below is more information about the services that the Data Controller provides to the User in relation to the purposes for which the Personal Data and Browsing Data are processed.

7.1. Data processing via social networks

This website uses social media plug-ins from various social networks. These plug-ins are functions of the corresponding social network that allow you to share content from our website with your contacts in social networks or to recommend this content, for example the social media plug-ins can be recognized by the logo of the respective social network .

These services allow interaction with social networks, or other external platforms, directly from the pages of this Application. The interactions and information acquired by this Application are in any case subject to the User's privacy settings relating to each social network.
In the event that an interaction service with social networks is installed, it is possible that, even if the Users do not use the service, it collects traffic data relating to the pages in which it is installed.

On our website, all social media plug-ins are deactivated by default, which means that simply accessing our website does not involve the transmission of any data to the social network providers. If the user wishes to use the functionality of the respective social network and, therefore, activate a social media plug-in that was initially disabled, he expressly consents to the transfer of data to the social network operator from that moment on. We have no influence on the extent of the data collected in this way by the social network providers.

Through the integration of the plug-in, social network operators receive information relating to the fact that the user has accessed the respective pages of our online presence. If the user is simultaneously connected to a social network, the operator can associate the display of these pages with the user's account on the social network in question. If the user subsequently continues to interact with the social media plug-ins, for example by clicking on the Facebook "Like" button, this information is also transmitted to the respective social network.

Even if the user is not a member of the aforementioned social networks, it is possible that through the plug-in of the social networks it is possible to learn about his IP address and store it. For details on the purpose and object of data processing, collection and use by the social networks we use and the related rights and setting options, please consult the privacy policies of the social networks:

• Facebook: https://www.facebook.com/policy.php
• LinkedIn: https://www.linkedin.com/legal/privacy-policy
• Twitter: https://help.twitter.com/it/rules-and-policies/twitter-cookies

If the user wishes, he can permanently activate the plug-ins of one or more social media providers.

In individual cases, you can block social media plug-ins using browser add-ons, for example, blocking the Facebook plug-in using "Facebook Blocker", which you can download

7.2. Google Maps

Our site uses an API of the Google Maps cartography service, company Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.
To use the functions of Google Maps, it is necessary to save your IP address. This information is generally transmitted to a Google server in the United States, where it is stored. As website administrators we cannot interfere or manage the transmission of this data in any way! The legal basis is the legitimate interest of the owner (Article 6, paragraph 1, letter f) of the GDPR) we use the services of Google Maps to make our structure and the services we offer more easily traceable, as well as to offer a simpler and faster service to customers who want to reach us.

Further information on the use of user data can be found in Google's privacy policy at the following link: https://www.google.de/intl/de/policies/privacy/.

8. Data recipients

Within the limits relevant to the processing purposes indicated, your data will be communicated to:

• NetStrategy by Forbit s.r.l. - Via G.Pascoli, 12 - 37053 Cerea (VR) Tel. 0442 32.13.91 as Data Processing Manager appointed by Technis Blu s.r.l. for the creation and maintenance of this website;
• Employees and collaborators of the Data Controller;
• Professionals and consultants;
• Our subcontractors if engaged in the execution of activities related to our contractual relationships;
• All the subjects to whom the communication is due by reason of legal obligations.

9. Transfer of data to a third country

The transfer of your data to a third country is not envisaged. This site may share some of the data collected with services located outside the European Union area. In particular through social plug-ins and the Google Analytics service. The transfer is authorized and strictly regulated by article 45, paragraph 1 of EU Regulation 2016/679, therefore it does not require specific authorizations.

10. Place of conservation

Your data is stored on a virtual server of the NetStrategy di Forbit s.r.l. provided by ServerPlan s.r.l. single-member company - Via G.Leopardi, 22 - 03043 Cassino (FR) - Italy

11. Retention period

Based on the conservation limitation principle (Article 5, GDPR), the verification of the obsolescence of the data stored in relation to the purposes for which they were collected is carried out periodically.

In particular:

1. The automatically collected data are processed, for the strictly necessary time, in order to obtain statistical information on the use of the site and to check its regular functioning, also for security purposes or according to the deadlines set by law and are then deleted immediately after processing.
2. The data provided voluntarily by the user will be kept for a period of time not exceeding the achievement of the purposes for which they are processed or on the basis of the deadlines set by law: for the entire duration of the contract and in any case for a period of time not more than 5 years from the conclusion of the contract itself as per legal obligations.

12. Rights of the data subjects

With regard to the data itself, you can exercise the rights provided for by EU Regulation 2016/679 in the articles from 15-22 GDPR and pursuant to art. 7 and 77 GDPR

Art. 15 right of access: right to obtain confirmation as to whether or not personal data concerning you is being processed and, in this case, to obtain access to your personal data, including a copy of the same;

Art. 16 right of rectification: right to obtain, without undue delay, the rectification of inaccurate personal data concerning you and / or the integration of incomplete personal data;

Art. 17 right to cancellation (right to be forgotten): the right to obtain, without undue delay, the cancellation of personal data concerning you;

Art. 18 right to limitation of treatment: right to obtain limitation of treatment, when

a) The interested party disputes the accuracy of his personal data, for the period necessary for the Data Controller to verify the accuracy of such data
b) The processing is unlawful and the data subject opposes the deletion of personal data and instead requests that its use be limited
c) Personal data are necessary for the data subject to ascertain, exercise or defend a judgment in court
d) The data subject opposed the processing pursuant to art. 21 GDPR, in the period of waiting for the verification of the possible prevalence of legitimate reasons of the data controller with respect to those of the data subject.

Art. 19 right to notification: right of the data subject to communicate by the Data Controller to each of the recipients to whom the personal data have been transmitted, any corrections or cancellations or limitations of the processing carried out.

Art. 20 right to data portability on a structured format, commonly used and readable by automatic device: right to receive, in a structured format, commonly used and readable by an automatic device, the personal data concerning you provided by the Data Controller and the right to transmit them to another Controller without hindrance, if the processing is based on consent and is carried out by automated means. Furthermore, the right to obtain that your personal data can be transmitted directly from the Data Controller to another Data Controller if this is technically feasible.

Art. 21 right to object to processing: the right to object, at any time for reasons connected to your particular situation, to the processing of personal data concerning you based on the condition of lawfulness of the legitimate interest or the execution of a task of public interest o the exercise of public authority, including profiling, unless there are legitimate reasons for the Data Controller to continue the processing that prevail over the interests, rights and freedoms of the data subject or for the assessment, exercise or defense of a law in court.

Furthermore, the right to object to processing at any time if personal data are processed for direct marketing purposes, including profiling, to the extent that it is connected to such direct marketing.

Art. 22 right not to be subjected to decisions based solely on automated processing: including profiling, which produces legal effects concerning him or which significantly affects his person in a similar way.

Art. 7 paragraph 3: the data subject has the right to withdraw their consent at any time in cases where the processing is based on consent, without prejudice to the lawfulness of the processing based on consent before revocation.

Art. 77 right to lodge a complaint with the supervisory authority: Guarantor Authority of personal data. If you believe that the processing that concerns you violates one or more of one of the rights of the European Regulation 2016/679 you ".... have the right to lodge a complaint with a supervisory authority, particularly in the Member State where you usually reside, works or the place where the alleged violation occurred. "

13. Whether or not consent is required

The provision of your data is mandatory while browsing our website for the purposes mentioned above in points 2.a), 2.b), 2.c) to allow the correct provision of the service and to be able to fulfill the pre-contractual and contractual obligations. .

14. Methods of data processing

The personal data you provide will be subject to processing operations in compliance with the aforementioned legislation and the confidentiality obligations which inspire the activity of the Data Controller. The data will be processed with IT tools, in compliance with the appropriate security measures pursuant to Article 32 of the GDPR.

15. Final notes and update procedures

The information is provided only for this website and not for other websites that may be consulted by the user through links contained in this website. The information may undergo changes due to the introduction of new regulations in this regard, therefore the user is invited to periodically check this page to be always updated on the latest legislative news. Previous versions of this information can always be requested from the Data Controller.

16. Exercise of the rights of the interested party

Click here to access the reserved area for the exercise of the rights of the data subject

The exercise of your rights as a data subject referred to in paragraph 12 is free of charge pursuant to Article 12 of the GDPR. However, in the case of manifestly unfounded or excessive requests, also due to their repetition, the owner may charge you a reasonable fee, in light of the administrative costs incurred to manage your request.