Privacy Policy

Data Controller
www.sunshade.it

SITES S.r.l.

Registered office: Via Trento 82 , Fenegrò (CO) – Italy
Tel. +39 031 3520081 – Fax. +39 031 3520863
Tax Code 01937280129 – VAT 01994280137 – CCIAA of Como – REA n.226508
Email address of the Data Controller: info@sitessrl.com

Titolare del trattamento: Clicca qui per inviare una email

Responsabile del trattamento dei dati: Clicca qui per inviare una email

Lawful Basis of Processing

This Website processes data on the basis of consent. This Website processes data on the basis of consent.

The provision of data and thus the consent to the collection and processing of such data is optional. The User may deny consent and at any time can revoke consent already provided (via the Website’s Contact Us link). However, denying consent may render it impossible to provide certain services and the browsing experience on the Website may be compromised.

Data Collation and Purposes

As with all Websites, this Website also utilises log files in which information garnered from User visits is automatically collected and stored. The information collected could include the following:

• Internet Protocol (IP) address;
• Type of browser and device parameters utilised to connect to the Website;
• Name of the Internet Service Provider (ISP);
• Date and time of the visit;
• Web page of the origin and exit of the Visitor;
• Number of clicks, where applicable.

The information listed above is processed automatically and collected in an exclusively aggregated form in order to verify the correct functioning of the Website. For reasons of safekeeping, such information will be processed according to the legitimate interests of the Data Controller.

For security purposes (spam filters, firewalls, virus detectors), automatically-registered data may also include personal data such as IP addresses, which could be used – in compliance with applicable laws – to block attempts to damage the Website itself or to harm other Users. Such data is never used for User identification or profiling purposes, but merely for the protection of the Website and its Users, with such information being processed according to the legitimate interests of the Data Controller.

If the Website permits the inclusion of comments, or in the case of specific services requested by the User, the Website automatically detects and registers certain User identification data, including the email address. Such data is voluntarily provided by the User at the time of requesting provision of the service. By adding a comment or other information, the User expressly accepts the Privacy Policy, and in particular agrees that the content included is freely disseminated to third parties.

The data received will be used exclusively for the provision of the requested service and only for the time necessary to provide the service.

The information that Users of the Website deem to make public through the services and tools rendered available to them, is provided by the User knowingly and voluntarily, exempting this Website from all liability regarding any violation of laws. It is up to the User to verify that they have permission to provide the personal data of third parties or content protected by national and international regulations.

The data collected by the Website during its operation is utilised exclusively for the aforementioned purposes and retained for the time strictly necessary to carry out the activities specified. In any case, the data collected by the Website is never shared with third parties, unless upon legitimate request by the judicial authority and only in the cases set forth by the law.

The data used for security purposes (the blocking of attempts to damage the Website) is stored for seven days.

Location of Data Processing

The data collected by this Website is processed at the headquarters of the Data Controller and at the web hosting datacentre. The web hosting service is Register.it SpA, acting as co-Data Processor handling the data on behalf of the Data Controller, is located in the European Economic Area and operates in accordance with European standards.

Transfer of Data to Non-EU Countries

This Website may share some of the data collected with services located outside the European Union area, in particular with Google, Facebook, Twitter and Microsoft (LinkedIn) via social media plugins. The transfer is authorised based on specific decisions of the European Union and the Data Protection Authority, in particular Decision 1250/2016 (Privacy Shield – the Policy of the Italian Data Protection Authority is here), hence no further consent is required. The companies mentioned above guarantee their adherence to the Privacy Shield.

Security Measures

This Website processes User data in a lawful and proper manner, adopting appropriate security measures to prevent unauthorised access, disclosure, modification, or unauthorised destruction of the data. The processing is carried out using IT tools and/or computer telecommunications, within organisational procedures and on the basis of principles strictly related and limited to the purposes stated. In addition to the Data Controller, in certain cases other parties involved in the operation of the Website may have access to stored personal data (administrative, sales, legal department, and system administrator personnel) or external individuals (such as third-party technical service providers, mail couriers, hosting providers, IT companies, and communication agencies).

User Rights

Pursuant to European Regulation 679/2016 (GDPR) and national legislation, in accordance with the procedures and within the limits established by current legislation, the Data Subject may exercise the following rights:

• Request confirmation of the existence of personal data concerning him/her (right of access);
• To know its origin;
• Receive intelligible communications;
• To have information about the criteria, the methods, and the purposes of the processing;
• Request the updating, rectification, integration, deletion, transformation into anonymous form, and blocking of data processed in violation of the law, including that no longer necessary for achieving the purposes for which the data was collected;
• In cases of consent-based processing, receive any support at-cost for data concerning the Data Subject specifically that has been provided to the Data Controller, in a structured and readable form, compiled by a Data Processor, and in a format commonly available on electronic devices;
• The right to lodge a complaint with the Supervisory Authority (the Italian Data Protection Authority- www.garanteprivacy.it);
• As well as, more generally, exercise all the rights that are recognised by the current provisions of law

Requests should be addressed to the Data Controller.

In the event that the data is processed on the basis of legitimate interests, the rights of the Data Subjects are guaranteed (with the exception of the right to portability that is not covered by the regulations), in particular the right to oppose processing, which can be exercised by sending a request to the Data Controller.

Data Controller

The Data Controller, in accordance with the laws in force, is the administrator of the Website and can be contacted through the CONTACT US section of the Website.

Co-Data Processor

The web hosting service, Register.it SpA, is jointly responsible for the processing, undertaken on behalf of the Data Controller. The hosting service is located in the European Economic Area and acts in accordance with European regulations.

Updates

This Privacy Policy was updated on 08th February 2019.