The PRIVACY POLICY OF THIS SITE
Information pursuant to EU Regulation 2016/679 ("GDPR")
Calleadesign hereby informs visitors to its Website, as well as users visiting its Social pages, of the policy adopted with regard to the Protection of Personal Data.
Navigation within this Web Site is free and does not require any registration, with the possible exception of certain areas in which the User may freely and expressly provide a series of data to access specifically identified services (e.g. requesting information, ordering products, participating in initiatives, etc.). In order to access such further services, the User shall be specifically informed of the further specific purposes and modalities of data use by Calleadesign.
This Privacy Policy does not apply to other websites that may be accessible through links on this website, so Calleadesign is in no way responsible for the data processing carried out by third party websites.
WHERE WE ARE AND HOW TO CONTACT US: THE "DATA CONTROLLER"
The "Processor" of the data processing is: Calleadesign S.n.c. di L. Callea & C. with registered office at Via Josip Ressel 2/7, 34018 - San Dorligo della Valle (TS)
The contact details are as follows: Tel. +39 040.064.6810 - E-mail: privacy@calleadesign.com
PERSONAL DATA PROCESSED AND PURPOSES OF THE PROCESSING
Browsing data
The computer systems and software procedures used for the operation of this site acquire certain personal data, the transmission of which is implicit in the use of Internet communication protocols.
This category of data includes the IP addresses or domain names of the computers and terminals used by users, the URI/URL (Uniform Resource Identifier/Locator) notation addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user's operating system and computer environment.
These data, necessary for the use of web services, are also processed for the purpose of:
-obtain anonymous statistical information on the use of the services (most visited pages, number of visitors per time slot or per day, geographical areas of origin, etc.);
-control the correct functioning of the services offered.
Navigation data do not persist for more than seven days and are deleted immediately after their aggregation (except in the event of the need to ascertain criminal offences by the judicial authorities).
Data communicated by the User
The optional, explicit and voluntary sending of messages to the contact addresses published on the website, as well as the completion and forwarding of the forms present on the website in order to purchase goods, participate in initiatives or enjoy the services offered, entail the acquisition of the sender's contact data, necessary to reply, as well as all the personal data included in the communications.
Specific information is published on the pages of the website set up for the provision of certain services, with a request for possible consent to processing.
Data acquired through Social
If the User connects to a Calleadesign social page through a social login (i.e. the account of a social to which he/she is subscribed), data that are published by the User in such social may be acquired by the company, also according to the specific privacy settings set by the User (e.g. information contained in the message/post to answer to requests for information or assistance, images, or information taken from the published profile).
Specific privacy policies on the processing of data carried out by social platforms are made available by them (e.g. https://www.facebook.com/privacy/explanation; https://twitter.com/it/privacy; https://help.instagram.com/519522125107875; https://policies.google.com/privacy?hl=it&gl=en; ).
Data of children under the age of 16
Minors under 16 years of age are not allowed to provide any personal data or register on the website. If it is verified that the declarations made are untrue, all data received will be deleted.
SOCIAL NETWORK
This site may use so-called social plug-ins. Social plug-ins are special tools that make it possible to incorporate social network functions directly into the website (e.g. the Facebook "like" function). All social plug-ins on the website are marked with the respective logo owned by the social network platform (e.g. Facebook, Google, Twitter, Instagram).
When you visit a page on our site and interact with the plug-in (e.g. by clicking the "Like" button) or decide to leave a comment, the corresponding information is transmitted by your browser directly to the social networking platform and stored there.
For information on the purposes, type and methods of collection, processing, use and storage of personal data by the social networking platform, as well as on how to exercise your rights, please consult the privacy policy adopted by the individual social network
Facebook: Policy: https://www.facebook.com/policies/cookies/
Twitter: Disclosure: https://support.twitter.com/articles/20170514
Instagram: Informative https://help.instagram.com/519522125107875;
Youtube: Information https://policies.google.com/privacy?hl=it&gl=en
COOKIE
This website may make use of tracking tools through so-called cookies. For more information and to make informed choices, the user can consult the dedicated Cookie Policy.
PURPOSE AND LEGAL BASIS OF THE PROCESSING
The Controller processes the aforementioned personal data for the following purposes: to manage and maintain the site; to allow access to any dedicated areas; to take advantage of any services offered; to provide assistance and advice and process a contact request; to carry out administrative-accounting activities in general; to comply with an order from the Authority; to prevent fraudulent activities or abuses harmful to the site; to exercise a right in court.
The Data Controller may process the aforesaid personal data even without specific consent, except as required for the filling in of specific forms, as the legal basis for the lawfulness of the processing arises from the execution of pre-contractual measures adopted at the request of the data subject (e.g. request for information via email), as well as for the pursuit of the Data Controller's legitimate interest in promoting and achieving its statutory purposes.
The provision of data for the above-mentioned purposes is free and optional; however, refusal to provide such data may make it impossible for the Controller to fulfil the above-mentioned purposes.
MODE OF THE PROCESSING
The data are entered in an electronic database and/or stored in paper files. The data are not subject to an automated decision-making process, nor is profiling of any kind carried out.
DESTINATORS OF USERS' DATA
The personal data of the users may be processed and known by the collaborators and employees of Calleadesign, as subjects authorized to process and specially trained for the protection of the data.
The data may be communicated to external subjects (e.g. companies that manage the website and web platforms, associated companies, external consultants, subcontractors, etc.) for the purposes outlined above, if the need for their involvement exists. The same subjects will operate as autonomous data controllers, or will be designated as external data processors, whose full list can be requested by sending an email to privacy@calleadesign.com .The data may be communicated to supervisory bodies and judicial authorities, as well as to all other subjects to whom communication is compulsory by law. The management and storage of personal data will take place in the EU, on servers located in Italy of the Data Controller and/or of third party companies within the EU, entrusted and duly appointed as Data Processors.
PERIOD OF DATA STORAGE
The Data Controller will retain the data for the time strictly necessary to fulfil the purposes set out above and also to respond to any need to access and retrieve the data. After 24 months from the acquisition (7 days for navigation data), if there are no further contact needs or retention obligations (10 years for contractual purposes), the data will be deleted.
RIGHTS OF THE DATA SUBJECT
The recognised rights include those of:
- to request access to personal data and information relating thereto; rectification of inaccurate data or supplementation of incomplete data; deletion of personal data (if one of the conditions set out in Article 17(1) of the GDPR occurs and in compliance with the exceptions set out in paragraph 3 of the same article); limitation of the processing of personal data (if one of the cases set out in Article 18(1) of the GDPR occurs); .
- request and obtain - in cases where the legal basis of the processing is a contract or consent, and the processing is carried out by automated means - the personal data in a structured, machine-readable format, also for the purpose of communicating such data to another data controller (the so-called right to personal data portability);
- to object at any time to the processing of personal data in the event of special situations concerning him/her;
- revoke consent at any time, limited to cases where processing is based on consent for one or more specific purposes and concerns common personal data (e.g. date and place of birth or place of residence), or particular categories of data (e.g. data revealing health or sex life). Processing based on consent and carried out prior to the withdrawal of consent shall, however, retain its lawfulness.
With reference to the purposes indicated above, the interested party has the right to proceed, at any time, to request the cessation of processing and the sending of email communications by the Data Controller, with a request to be made to the contacts indicated above.
RIGHT TO PROPOSE COMPLAINTS
If the data subject considers that there has been a breach of the processing of his/her personal data, he/she may lodge a complaint with the Supervisory Authority of the place where he/she normally resides, works or where the alleged breach has occurred. In Italy, you may lodge a complaint with the Italian Data Protection Authority.
MODIFICATIONS TO THIS PRIVACY POLICY
The Data Controller reserves the right to make changes to this privacy policy at any time by notifying users on this page as well as, if technically and legally feasible, by sending a notice to users via one of the contact details it holds.
If the changes affect processing whose legal basis is consent, the Data Controller will collect the user's consent again, if necessary.
*
DEFINITIONS
Personal Data (or Data)
Personal Data is any information which, directly or indirectly, including in conjunction with any other information, including a personal identification number, makes a natural person identified or identifiable.
Usage Data
This is information automatically collected through a Website (including by third party applications integrated into this Website), including: IP addresses or domain names of the computers used by the User who connects to the Website, addresses in URI (Uniform Resource Identifier) notation, the time of the request, the method used to forward the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response from the server (successful, error, etc.. ) the country of origin, the characteristics of the browser and operating system used by the visitor, the various temporal connotations of the visit (e.g. the time spent on each page).
User
The individual who uses this Website which, unless otherwise specified, coincides with the Data Subject.
Interested Party
The natural person to whom the Personal Data refers.
Processor (or Controller)
The natural or legal person who determines the purposes and means of the processing of Personal Data and the instruments adopted, including the security measures relating to the operation and use of this Website. The Data Controller, unless otherwise specified, is the owner of this Web Site.
External Data Processor (or Processor)
The natural person, legal entity, public administration and any other entity that processes personal data "on behalf" of the Controller.