Through the consultation and use of our website (“Site”) we do not automatically collect any personal data (“Data”).
Data can be defined as any information concerning identified or identifiable physical person (eg. personal data, email address, location data, characteristics related to physical, physiological, genetic, psychological, economic, cultural or social identity).
Any data will be processed only with the express consent of the user of the Site (“User “) at the time of voluntary transmission of the same on the part of the User, exclusively for purposes set out in this privacy statement (“information”), in a proper, lawful, correct and transparent manner and in any case in accordance with the Italian and European regulations in force.
1. Holder of Personal Data Processing
The Data Controller is Lionfin S.p.A., in person of the Chief Privacy Officer dott. Fausto Colella (“Holder”). The Holder, notwithstanding his full responsibility to the User, reserves the right to appoint a manager who processes the data of the Users on his behalf. The Holder may appoint a person responsible for the data, a subject who provides sufficient guarantees to put in place technical and organizational measures to guarantee the protection of the User’s rights.
2. Categories: Which data do we process?
We do not collect any data automatically and without express consent.
It shall be made, subject to express consent, the processing of personal data in the case of voluntary registration by the User to the newsletter and the installation of cookies for which you refer to the appropriate information.
By subscribing to the newsletter the User is aware of transmitting data which may also consist of personal and confidential information and lends express consent to the treatment of the same, within the limits of the purposes best indicated in the following point 3.
3. Purpose of the processing: why do we process your data?
The User’s data are processed and collected only to allow the use of the newsletter service.
If the Data Controller intends to further process personal data for a purpose other than that for which it was obtained, before such further processing the Data Controller will inform the data subject about this different purpose and will obtain new consent.
4. Storage and Safety: Where and how do we store your data?
Any data processed and collected will be transmitted in an anonymous and electronic form and stored in a private and secure server named webgate located in Rome
The processing is carried out using IT tools and/or computer telecommunications, within organizational procedures and on the basis of principles strictly related and limited to purposes stated in point 3.
The data are processed in such a way as to ensure adequate security and we adopt, for the purpose of their protection, technical and organizational measures able to prevent unauthorized or illicit processing, loss, destruction or accidental damage to the same.
5. Duration of treatment: How long do we save your data?
We process and store data for as long as necessary for the performance of the service requested by the User and for a period of time not exceeding the achievement of the purposes for which they are treated as provided for in point 3 and always that such purposes do not cease to be lawful according to the applicable legislation.
6. Disclosure, transmission and disposal of data to third parties
Any data processed (including any IP addresses) will never be published and/or disclosed and/or disclosed to third parties and will only be accessible to the Data Controller and/or its representative and/or the Data Controller and the technicians authorized by them, except as provided for in paragraph 7 below.
No data collected, including the email address, will be assigned, sold, transmitted and/or made accessible to third parties or used for commercial, advertising and of marketing purposes.
7. Data disclosure for security reasons
We reserve the right to decrypt, store and disclose all information we reasonably consider necessary to (i) satisfying requests from the public authority (ii) demonstrate the correct implementation of this notice (iii) combat and prevent fraud or technical problems harmful to security (iv) respond to requests for assistance sent by the User.
8. Change of ownership
In the event of termination of the Data Controller or of bankruptcy, transfer to third parties, change of ownership structure and/or ownership, the collected data shall be saved and protected in compliance with the terms established by this notice or deleted.
9. Rights of User
9.1. Knowledge of data
The User has the right, at any time, to obtain confirmation of the existence or otherwise of personal data concerning him/her, regardless of its being already recorded, and communication of such data in intelligible form.
The User also has the right to obtain the updating, correction or, when interested, the integration of the data and to verify its accuracy and to know the content, origin and duration of the retention period of the data.
9.2. Withdrawal of consent and deletion of data
The User has at any time, the right to request and obtain the cancellation of the data and to revoke the consent previously given to their processing, without prejudice, in this last case, the lawfulness of the treatment based on consent before the revocation. The requests for cancellation and revocation shall be addressed to the Data Controller and must be able to be performed with the same ease and with the same means by which the consent was given and the data was transmitted.
9.3. Portability of data
10. Data breach
In the event of a breach of data, the Holder shall notify the competent control authority of the infringement without undue delay.
Likewise, if a manager has been appointed and the latter becomes aware of a breach of the data, he must inform the Data Controller without delay.
The Data Controller shall inform the User of any violations in the event of a high risk to the rights and freedoms of individuals.
12. Reference Standard