INFORMATION ON PROCESSING OF PERSONAL DATA PURSUANT TO ART.13 OF EU REGULATION 2016/679 (GENERAL DATA PROTECTION REGULATION)
This page describes the procedures in place to protect the personal data of users of the website articity.it, owened by Associazione Articity Botteghe Artigiane del Centro Storico, owner of the data processing.
In detail, the information provided in application of article 12 of the GDPR, complies with and refers, for what is not expressly reported below, to the subsequent articles 13 (“Information to be provided if personal data are collected from the data subject”) and 14 (“Information to be provided if personal data have not been obtained from the data subject”). This information refers to the processing of personal data resulting from the consultation of the portal and not also other sites or web pages, or online services, accessible through hyperlinks published on the portal. The GDPR and the Italian legislation of reference ensure that the processing of personal data will be respect for human rights, fundamental freedoms and dignity of the person concerned, with particular reference to confidentiality and protection of personal data. Associazione Articity Botteghe Artigiane del Centro Storico is aware of the importance of guaranteeing the security of the information and data that can be traced back to you that it acquires when you visit these web pages and wish to subscribe to the BLOG.
1. TYPES OF DATA PROCESSED
a. Personal data
According to art. 4 of the GDPR, “personal data” means “any information concerning an identified or identifiable natural person (“data subject”); an identifiable person is one who can be identified, directly or indirectly, with particular reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more elements that are characteristic of his/her physical, physiological, genetic, psychic, economic, cultural or social identity”. The personal data that are processed are those that customers provide when entering into a contract/service of sale (for example, name, surname, sex, date of birth, tax code, identity document, e-mail, telephone) and compulsory to the extent that they are necessary for the proper conclusion and execution of the contract/service (art. 13, paragraph 2, letter e), GDPR).
The personal data that are processed are also those that participants and members of the Blog give at the time of their registration and are limited to name, surname, e-mail address and mandatory to the extent that you want to receive notification of publication of a post or activities of the blog. The email notification of the publication of a new post will also be used to submit to users opportunities for consultation and / or purchase of products or services.
Among the purposes of the processing of data provided will be understood to include those of the promotion of commercial and advertising initiatives with respect to which you will have, however, and every time, the opportunity to object, requesting the cancellation of your email address from the list of those to which they are addressed these messages.
b. Browsing data
That is the computer data, whose transmission is implicit and automatically connected to the use of internet communication protocols, that the information systems and software procedures used to operate this SITE acquire in their normal operation; these data are not collected to be associated with individual identified subjects but which, by their very nature, could, through processing and association with data held by third parties, allow users to be identified (see below paragraph on cookies).
2. Nature of the provision of data and legal basis
The provision of your data, with the exception of navigation data, referred to in paragraph 1 letter b) (cookies), is optional and self-determined by the user who, therefore, certifies the completeness and its legitimate treatment. The treatment is done on a voluntary basis and only with the express consent of the applicant and to pursue a legitimate interest of the data controller or third parties (art. 6, paragraph 1, lett. a) and lett. f) of the GDPR).
Any refusal to provide them in whole or in part may result in the inability to properly carry out all the obligations related to the service that you intend to request, including those of the Blog (art. 13, paragraph 2, lett. e) of the GDPR).
3. Purposes of the treatment (art. 5 and art. 13, paragraph 1, lett. c) of the GDPR)
The data provided will be processed in accordance with the principle of transparency and, therefore, exclusively with the methods and procedures necessary to provide the services requested and for the further purposes for which you have given your consent. To this end, the data will be adequate, relevant and limited to the purposes for which they were collected (“data minimization”) (art. 5, paragraph 1, of the GDPR).
In detail: only with your express consent, the data may be used for statistical analysis, market research, promotional activities through social media and sending commercial information about products and promotional initiatives of Maria Antonietta Taticchi (Direct marketing purposes). (Direct marketing purposes).
With your consent the data may be used for profiling purposes (see below “profiling cookies”) conducted automatically by collecting information about the navigation you do while accessing and using the services of the service and, by means of statistical correlation algorithms, link them to the same information from other users to identify common traits and group similar ones within classes of interest. By assigning your browser to a class of interest, our systems will then be able to offer you content that is closer to your tastes and present advertisements that better meet your needs and better target the interests of advertisers by reducing the level of disruption to the fruition (Profiling Purposes).
With regard to the registration to our Blog, the personal data that you will provide us at the time of registration, such as User ID and password, name, surname and e-mail address, will be processed for the sole purpose of providing the requested service, or those treatments related to information on the activities of the site, the ability to read and comment publicly on the articles on the site and respond to posts by members. After registration you can access the forum area and leave your comments that will then be published on our site. Your registration data may also be processed in order to send promotional communications, only after your express, optional and separate consent.
4. Methods of processing (art. 5 and art. 13, paragraph 2, lett. a), of the GDPR)
The processing of personal data collected is “in a lawful, correct and transparent manner” and can be carried out with or without the aid of electronic or automated tools, even through managers or agents specifically authorized to do so (the list of names of the companies responsible for data processing is available upon formal request to be forwarded to the owner of the treatment), for the time strictly necessary to achieve the purposes for which they were collected and in any case adopting procedures and measures to protect the security and confidentiality.
The personal data as well as the e-mail address are used to send the news of the site.
As far as the Blog is concerned, the opinions and comments posted by users and the information and data contained therein will not be used for any purpose other than their publication; in particular, the aggregation or selection in specific databases is not foreseen. Any treatment for statistical purposes that in the future may be the intention of the site to perform will be conducted solely on an anonymous basis. While the diffusion of the user’s personal data must be intended as directly attributed to the initiative of the user himself, we guarantee that no other hypothesis of transmission or diffusion of the same, except as provided below, is, therefore, provided for.
5. Data controller, information and access rights
According to art. 13 paragraph 2 letter a), b) and c) of the GDPR, which informs you of the rights of the interested party provided for in articles 15, 16, 17, 18, 19, 20, 21, 22, 23 of the cited European Regulation, we inform you that:
5.1. The interested party has the right to obtain confirmation of the existence or not of personal data concerning him, even if not yet recorded, and their communication in intelligible form (art. 15).
5.2. The interested party has the right to obtain the indication:
- of the origin of personal data;
- of the purposes and modalities of the treatment;
- the logic applied in case of treatment with the aid of electronic instruments;
- of the identity of the owner, manager and the representative appointed under article. 5, paragraph 2;
- of the subjects or categories of persons to whom the data may be communicated or who can learn about them as appointed representative in the State, managers or agents.
5.3. The data subject has the right to obtain (Articles 15, 16, 17, 18, 20 and 77 of the GDPR):
- the updating, rectification or, when interested, integration of data (art. 16 of the GDPR);
- the cancellation, transformation into anonymous form or blocking of data processed unlawfully, including data whose retention is unnecessary for the purposes for which the data were collected or subsequently processed, any limitation of treatment (art. 17 and art. 18 of the GDPR);
- certification that the operations referred to in letters a) and b) have been notified, also as regards their contents, to those to whom the data were communicated or disseminated, unless this requirement proves impossible or involves a manifestly disproportionate to the protected right;
- to request the right of access to personal data processed (art. 15 of the GDPR);
- the portability of data (art. 20 of the GDPR);
- propose a complaint to a supervisory authority (art. 51 of the GDPR).
5.4. The interested party has the right to object, in whole or in part (art. 21 of the GDPR):
- for legitimate reasons to the processing of personal data concerning him, even if pertinent to the purpose of collection except for the rights recognized by law to the owner;
- to the processing of personal data concerning him/her for the purpose of sending advertising materials or direct selling or for carrying out market research or commercial communication.
6. Data Controller
The data controller is
- Associazione Articity Botteghe Artigiane del Centro Storico
- VAT: 03730510546
- Fiscal code: 94128010546
- Location: Via dei Priori, 70 – 06123 – Perugia (PG) – ITALY
- in the person of its legal owner pro tempore Maria Antonietta Taticchi
In order to facilitate compliance with the terms of the law, it is necessary that the requests made contain in the subject line the words “Exercise of rights under Art. 13 European Regulation No. 679/2016”.
Cookies consist of portions of code (computer files or partial data) sent by a server to the user’s Internet browser, automatically stored by said browser on the user’s computer and automatically sent back to the server at each occurrence or subsequent access to the site. Usually a cookie contains the name of the website from which the cookie originates, the vital duration of the cookie (i.e. how long it will remain on the user’s device) and a value, which is usually a randomly generated unique number. At each subsequent visit, the cookies are sent back to the website that originated them (first party cookies) or to another website that recognizes them (third party cookies). Cookies are useful because they allow a website to recognise the user’s device and they serve various purposes such as, for example, allowing the user to navigate efficiently between pages, remembering favourite sites and, in general, improving the browsing experience. They also help to ensure that the advertising content displayed online is more targeted to a user and their interests.
If you choose to disable cookies, this may affect and/or limit your browsing experience on the Sites, for example, you may not be able to visit certain sections of a Site or you may not receive personalized information when you visit the Sites.
The way cookies work, as well as the options to restrict or block cookies, can be adjusted by changing the settings on your internet browser. Most Internet browsers are initially set to accept cookies automatically, but you can modify these settings to block cookies or to be notified whenever cookies are sent to your device. There are several ways to manage cookies, so please refer to your browser’s help screen to see how to adjust or change your browser settings. In fact, the user is allowed to change the default configuration and disable cookies (i.e. block them permanently), setting the highest level of protection.
How to manage cookies from the following browsers:
- Chrome: https://support.google.com/chrome/answer/95647?hl=it-IT&hlrm=fr&hlrm=en
- Internet Explorer e Edge: http://windows.microsoft.com/it-it/windows7/block-enable-or-allow-cookies
- Safari: https://support.apple.com/kb/PH21411?viewlocale=en_US&locale=en_US
- Firefox: http://support.mozilla.org/it-IT/kb/enable-and-disable-cookies-website-preferences
If you use different devices to view and access the Sites (e.g., computer, smartphone, tablet, etc.), you should ensure that each browser on each device is adjusted to reflect your cookie preferences. To delete cookies from your smartphone/tablet’s Internet browser, you should refer to your device’s user manual.
Used Cookies list:
A) Technical cookies
The “technical” cookies are essential for the proper functioning of the site and allow users to navigate the site and take advantage of its features (for example, they allow the storage of previous actions or allow to save the user’s session and / or perform other activities strictly necessary for the operation of the site). They are not used for further purposes and are normally installed directly by the owner or manager of the website.
They can be divided into:
– Navigation or session cookies
These cookies ensure the normal navigation and use of the website (allowing, for example, to make a purchase or authenticate to access restricted areas). These cookies can then be distinguished according to their persistence on the user’s computer: those that are deleted automatically at the end of each navigation are called session cookies. If, on the other hand, they have a longer life, they are called permanent cookies;
– Analytics Cookies
These are assimilated to technical cookies where they are used directly by the operator of the site to collect information, in aggregate form, on the number of users and how they visit the site. In other words, they help to understand how users interact with the site by providing information relating to the last page visited, the number of sections and pages visited, the time spent on the site and any events that have arisen during navigation, such as an error message, and help to understand any difficulties that the user encounters in using the site. This information may be associated with user details such as IP address, domain, or browser; however, it is analyzed along with other users’ information so as not to identify one particular user over another. These cookies are collected and aggregated anonymously and allow the site operator to improve the usability of the site;
– Functional cookies
These cookies allow the portal to remember choices made by the user in order to optimize functionality. For example, they allow the portal to remember a user’s specific settings, such as country selection and, if set, permanent login status. Functional cookies are not essential to the operation of the Sites, but they improve the quality and experience of the Sites. If you do not accept these cookies, the performance and functionality of the Site may be diminished and access to Site content may be limited.
B) Profiling cookies
I”Targeting” or “profiling” cookies are used to present content that is better suited to you and your interests. They can be used to display targeted advertisements, to serve customized advertisements based on the user’s interests, or to limit the number of times the user views an advertisement. They also help measure the effectiveness of advertising campaigns on the site; the site operator may use these cookies to remember sites that the user has visited and share this information with third parties, including agencies and advertisers who may use their cookies to collect information about the activities that users perform on the site.
“Sharing” (or social networking) cookies are required to allow you to interact with the Sites through your social account and are used, for example, to express a liking and share it with your relevant social contacts.
Third Party Cookies
An additional element to be considered, for the purposes of the correct definition of the matter in question, is the subjective one. It is necessary, that is, to take into account the different subject that installs cookies on the user’s terminal, depending on whether it is the same manager of the site that the user is visiting (which can be synthetically indicated as “publisher”) or a different site that installs cookies through the first one (so-called “third parties”). This second option happens, for example, if the user visits a page that contains content from a third party website. As a result, the user will receive cookies from these third-party services. On third-party cookies, the site operator does not have control over the information provided by the cookie and does not have access to such data. This information is fully controlled by the third party companies as described in their respective privacy policies.
Since these cookies are not directly controlled by the publisher, to revoke consent you must refer to the websites of the third parties or refer to http://www.youronlinechoices.com/it/ for information on how to delete or manage cookies depending on the browser you are using and to manage your preferences on third-party profiling cookies.
LAST UPDATE: 07/04/2021