Privacy Policy

PRIVACY POLICY SITO PIMAP+

Data ultimo aggiornamento: 15th november 2020

PRIVACY POLICY PROVIDED PURSUANT TO ART. 13 OF EU DATA PROTECTION REGULATION (UE) 2016/679-GDPR 

Dear users,

AFIL – Associazione Fabbrica Intelligente Lombardia (hereafter “Owner”) with registred office in Milan, Via E.Oldofredi 23, 20124 Milano, Fiscal Code and VAT number 08192390964,  pursuant to UE Regulation n. 2016/679 (hereafter “Regulation”) is informing you on how the data you have provided to us are processed which purposes.

This privacy policy is provided exclusively for www.pimapplus.eu (hereafter “website”) an not for any other website the user might access through provided links and it is integral part of this website. Your personal data will be processed in accordance with the legal provisions of the Regulations and the confidentiality obligations therein. The processing of your personal data, therefore, will be based on the principles of correctness, lawfulness, transparency, limitation of purposes and storage, minimization and accuracy, integrity and confidentiality, as well as the principle of accountability under Article 5 of the Regulation.

DATA CONTROLLER

The Data Controller is AFIL-Associazione Fabbrica Intelligente Lombardia, as identified above. The updated list of Responsible subjects can be requested at the following e-mail address direzione@afil.it 

DATA COLLECTED

Navigation data 

Computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified data subjects, but through processing and association with data held by third parties, it could allow users’identification. This category of data includes IP addresses or domain names of the computers used by users who connect to the site, URI (Uniform Resource Identifier) addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc..) and other parameters relating to the operating system and computer environment of the user. At the moment the data on web contacts do not persist for more than seven days.

Data provided by users on voluntary base

Contact section:

The optional, explicit and voluntary transmission of personal data requested in the contact section as well as any other personal data included in the message, will be processed exclusively for purposes strictly related to the request (for example: to address requests for information sent). Without prejudice to any processing required by law, any other purpose is excluded.

The optional, explicit and voluntary sending of e-mails to the e-mail addresses indicated on this site entails the subsequent acquisition of the sender’s address by the Owner as well as any other personal data included in the message, necessary to meet the specific requests made to the Owner

Cookies

Details about the cookies used on the website can be found in the “cookie policy” available at the following link, where you can personalize your user experience.

PURPOSE AND LEGAL BASES

Personal data will be processed for the following purposes:

  • Operational management and strictly related purposes for access and operation of the website;
    Legal basis for processing: consent of the data subject and/or execution of a contract.
  • Processing for statistical purposes in anonymous and aggregate form on the website usage and control over the correct functioning of the same;
    Legal basis of the processing: consent and legitimate interest of the Data Controller.
  • Fulfilment of any obligations provided for by current laws, regulations or Community legislation, fulfilment of requests from the authorities;
    Legal basis of the processing: fulfilment of a legal obligation.
  • Purposes functional to the request for information;
    Legal basis of the treatment: consent of the interested party.

NATURE OF DATA PROVISION AND CONSEQUENCES OF ANY REFUSAL

The provision of data is optional but necessary to provide the service.

In particular, for the purposes indicated in point d. the conferment is always optional, you may therefore decide not to confer any data or subsequently deny the possibility of processing data already provided, revoking at any time the consent already given by sending a specific request to the Owner in the manner described below. However, denial of consent may make it impossible to acquire your data and therefore to respond to your requests 

PROCESSING METHODS

Your personal data will be processed with the support of paper and/or automated tools for the time necessary to achieve the purposes for which they are collected or for any other legitimate purpose. At the end of this period, the data will be stored to comply with specific regulatory or contractual obligations, as well as for administrative purposes and/or to enforce or defend its rights in case of litigation and pre-litigation. 

In any case, the Owner undertakes to adopt appropriate technical and organizational security measures to prevent the destruction or loss of data, any unauthorized use and unauthorized access, pursuant to art. 32 of Reg. (EU) 2016/679.

Your data may be made accessible to personnel authorized by the Data Controller or to third parties whose activity is necessary and related to the achievement of the purposes indicated above in their capacity as Data Processors appointed by the Data Controller.

Pursuant to art. 6 lett. b) and c) GDPR, therefore without the need for express consent, the Owner may communicate your data to judicial authorities as well as to those subjects to whom the communication is mandatory by law in order to fulfill the above mentioned purposes.  Said subjects will process the data in their capacity as autonomous Data Controllers.

Your data will not be subject to disclosure without your explicit consent.

In the context of the processing, no automated decision-making processes are foreseen, including profiling as per article 22, paragraphs 1 and 4 of EU Reg. 2016/679.

PERSONAL DATA TRANSFERRING 

The personal data processed by this Site are not subject to transfer outside the European Economic Area. In any case, it is understood that the Owner, if necessary, will have the right to move the location of the servers to countries outside the EU. In this case, the Data Controller ensures from now on that the transfer of data will take place in accordance with the applicable legal provisions by entering, if necessary, into agreements that guarantee an adequate level of protection.

RIGHTS OF DATA SUBJECT

As interested party, you may contact the Data Controller to assert your rights, as provided for by articles 15 to 22 of EU Reg. 2016/679, which are listed below:

  • right to ask the Data Controller for access to your personal data (art. 15);
  • right to ask the data controller for rectification (art. 16);
  • right to ask the data controller for the cancellation of the same (art. 17);
  • right to ask the data controller for the limitation of the processing concerning you (art. 18)
  • right to data portability (art. 20);
  • right to oppose the treatment (art. 21)
  • right in relation to automated decision-making processes (art. 22).

Where the processing is based on Article 6(1)(a), you have the right to withdraw your consent at any time without prejudice to the lawfulness of the processing based on the consent given before the withdrawal.

You may exercise your rights by sending an email to direzione@afil.it and if you wish to make a complaint you can also submit it to the personal data protection Authority.