Privacy Policy in accordance with art.13, Reg. EU n. 2016/679

The present policy is provided pursuant to and in accordance with art. 13 of EU Regulation no. 2016/679 of 27 April 2016 (hereinafter "GDPR") concerning the protection of natural people, regarding the processing of personal data. Specifically, “Sitap S.p.A.”, as Data Controller, informs that, in application of the obligations deriving from the GDPR, it is required to provide some information regarding the methods and purposes of the processing of personal data, that it can acquire on the occasion of consultation and use of the website by the user.

  1. DATA CONTROLLER

The Data Controller for all personal data collected, processed and used in relation with the execution of the services described below, is Sitap S.p.A., located in 29010 - Pontenure, Piacenza, Via Giulio Natta, 37.

E-mail address for Italy: sitap@sitap.it

E-mail address for foreign countries: export@sitap.it

Phone: 0523 519044

Fax: 0523 511655

  1. PROCESSED DATA AND PURPOSE OF THE TREATMENT

  1. Navigation data

The computer systems and software procedures, responsible for the functioning of this website, acquire, some personal data, during their normal operation, whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified data subjects, but, because of their very nature, and through processing and association with data held by third parties, they could lead to the identification of the users. This category of data includes the IP addresses or domain names of the computers, used by users connecting to the website, the URI (Uniform Resource Identifier) ​​ of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numeric code indicating the status of the response, given by the server (good purpose, error, etc.) and other parameters relating to the operating system and the user's IT environment. The navigation data is used only to obtain anonymous statistical information on the use of the site and to check its correct functioning. The data could be used to determine the responsibility, in case of hypothetical cybercrimes against the site.

The navigation data is used only to obtain anonymous statistical information on the use of the site and to check its correct functioning.

The data could be used to determine the responsibility, in case of hypothetical cybercrimes against the site.

  1. Personal data provided voluntarily by the user

  1. The optional and voluntary compilation of the contact form, present on the site, involving the indication of name, surname, user's email address, as necessary data, and telephone number and city as non-mandatory data, implies the subsequent acquisition of the aforementioned personal data, necessary to respond to the requests.

    It should also be noted that the optional, explicit and voluntary sending of e-mails to the e-mail addresses indicated on this site entails the subsequent acquisition of the sender's e-mail address, necessary to respond to requests, and any other personal data included in the message.

  1. The user can also subscribe to the company's Newsletter, indicating his e-mail address, in the appropriate space.

All content entered voluntarily by the user will be visible to the Data Controller and its processors.

  1. LEGAL BASIS OF THE TREATMENT

The legal basis for the processing of personal data is:

- with regard to point 1 lett. B) the need to allow site navigation;

- with regard to point 2.a lett. B) the purpose of answering to user requests;

- with regard to point 2.b letter B) the consent of the Data Subject, expressed through the voluntary indication of his/her e-mail address. The consent from the Data Subject is freely revocable at any receipt of the newsletter, through the "unsubscribe" function.

  1. METHODS OF TREATMENT

Personal data are processed with automated and non-automated tools, for the purposes which they were collected. Specific security measures are observed to prevent the loss of data, illicit or incorrect use and unauthorized access. The data collected may be used on behalf of the Data Controller by the administrators responsible for processing and for the correct operation of the site's activities.

The treatments connected to the web services of this site may also take place at the web service provider. It should be noted that personal data will be kept and checked, also in relation to the knowledge acquired on the basis of technical progress, the nature of the data and the specific characteristics of the processing, through the adoption of suitable and preventive physical and logical security measures, in order to minimize the risk of destruction or loss of the data; unauthorized access; processing not allowed or not in accordance with the purposes of the collection.

All data processing (hosting, newsletter, contact form) takes place in the Italian territory.

The treatment will be carried out by the Data Controller and by the Processors expressly authorized by the Data Controller.

  1. DURATION OF DATA RETENTION

The storage times of personal data voluntarily provided by the user correspond to the time required to perform the specific request. Once this purpose has been exhausted, the personal data will be anonymized or destroyed.

The e-mail address given spontaneously in order to receive the Newsletter will be kept for all the time during which the service will be provided, subject to revocation of the consent by the Data Subject.

The storage times for the acquired navigation data are 6 months.

  1. RECIPIENTS AND CATEGORIES OF RECIPIENTS

The collected data can be communicated to the company that manages the website, which is appointed as External Data Processor, through a written contract.

However, the list of Data Processors is available at the following references: Sitap S.p.A, with registered office located in Via Giulio Natta, 37, (29010) Pontenure, Piacenza, sitap@sitap.it and export@sitap.it , and 0523 519044 - fax 0523 511655.

  1. G. DATA SUBJECT’S RIGHTS

The Data Subject has the right:

- of access, rectification, cancellation, limitation and opposition to data processing;

- to obtain - without impediment, from the Data Controller - the data, in a structured format of common use and readable by an automatic device, to transmit them to another data controller;

- to revoke the consent to the processing, without any prejudice to the lawfulness of the processing, based on the consent acquired before the revocation.

We inform you that the deadline to reply to the Dara Subject is one month from request receipt, for all rights, and it is extendable up to three months in particularly complex cases.

The rights can be exercised by written communication, to be sent by e-mail to the addresses: sitap@sitap.it and export@sitap.it or registered letter with return receipt: Sitap S.p.A, with registered office located in Via Giulio Natta, 37, (29010) Pontenure, Piacenza.

  1. COMPLAINT TO DATA PROTECTION AUTHORITY

The Data Subject has the right to make a complaint to the Data Protection Authority.

The complaint is the tool that allows the Data Subject to contact the Data Protection Authority, to complain about a violation of the discipline, regarding the protection of personal data, pursuant to art. 77 of the GDPR, and to request a verification from the Authority.

The complaint can be proposed by the Data Subject to the Supervisory Authority, in the place where he resides, or in the place where he works or in the place where the alleged violation occurred.

The Data Subject has the right to seek a judicial remedy before the Ordinary Court, if he considers that his rights have been violated by the processing.

  1. DATA TRANSFER OUTSIDE EUROPEAN UNION

The data will be kept and processed in the Italian territory. No data deriving from the web service is communicated or disseminated.