INFORMATION ON THE PROCESSING OF PERSONAL DATA FOR WEBSITE USERS
Art. 13 and 14 of Regulation 2016/679/EU (hereinafter also the “GDPR”)
Why this information notice
Interwell Srl (hereinafter also referred to as the „Company“ or „Data Controller“) is committed to respecting and protecting your privacy and wants you to feel secure both when you are browsing the site and when you decide to register by providing us with your personal data to take advantage of the services made available to Users and/or Clients. On this page, the Company wishes to provide information on the processing of the personal data related to users visiting or browsing the website accessible by electronic means from the address www.interwell.it (the „Site“). This information notice is provided only for the Company’s website and not for any other websites that may be browsed by the user via links (for which please refer to their respective privacy policies). The reproduction or use of pages, materials and information contained on the Site, by any means and in any medium, is forbidden without the prior written consent of the Company. Copying and/or printing for personal and non-commercial use only is allowed (for enquiries and clarifications please contact the company at the contact details below). Other uses of the contents, services, and information on this site are forbidden.
Regarding the contents offered and the information provided, the Company will ensure to keep the contents of the Site reasonably up to date and reviewed, without offering any guarantee as to the adequacy, accuracy or completeness of the information provided and expressly disclaims any liability for any errors of omission in the information provided on the Site.
Source of browsing data
The Company wishes to inform you that the personal data provided by you and acquired at the time of your request for information and/or contact, site registration and use of services via smartphone or any other tool used to access the Internet, as well as the data necessary for the provision of such services, including navigation data and data used for the possible purchase of products and services offered by the Company, but also only the so-called „navigation“ data of the site by Users, will be processed in compliance with applicable regulations. The computer systems and software procedures used to operate this website acquire, over the course of their normal operation, certain personal data whose transmission is implicit in the use of the Internet. This is information that is not collected to be associated with identified interested parties, but which by its very nature could, through processing and association with data held by third parties, make it possible to identify browsing users. This category of data includes the IP addresses or domain names of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request, the method used to submit the request to the web server, the size of the file obtained in response, the numerical code indicating the status of the response given by the web server (successful, error, etc.) and other parameters related to the user’s operating system and IT environment. This data is used for the sole purpose of obtaining anonymous statistical information on the use of the site and to monitor the proper operation of the Company’s website. It should be noted that the aforementioned data could be used to ascertain liability in the event of computer crimes against the Company’s site or other sites connected or linked to it. Apart from this case, at this time, the data on web contacts do not persist for more than a few days.
Source of user-supplied data
The Company collects, stores, and processes your personal data for the purpose of providing the products and services offered on the Site, or for legal obligations. Regarding some specific Services, Products, Promotions, etc. the Company may also process your data for commercial purposes. In such cases, a specific, separate, optional and always revocable consent will be requested in the manner and at the addresses specified below.
The optional, explicit and voluntary submission of e-mails to the addresses specified in the dedicated section of the Website, as well as the filling in of questionnaires (e.g. forms), communication via chat, push notification via APP, social networks, call centres, etc., entails the subsequent acquisition of some of your personal data, including those collected through the use of the Apps and related services, necessary to reply to your requests. Please also note that when using your mobile connection to access digital content and services offered directly by the Company or by our Partners, it may be necessary to transfer your personal data to such third parties. Please, note that you may access the Site or connect to areas where you may be able to post information using blogs or message boards, communicate with others, for example from your Company’s page on Facebook®, LinkedIn®, YouTube®, and other social networking sites, review products and offers, and post comments or content. Before interacting with these areas, please read the General Terms and Conditions of Use carefully, bearing in mind that, under certain circumstances, the information you publish may be viewed by anyone with access to the Internet and any information you include in your publications may be read, collected, and used by third parties.
Purpose and legal basis of the processing
The data are processed for the following purposes:
1) strictly connected to and necessary for registering on the www.Azienda.it website, the services and/or Apps developed or made available by the Company, using the related information services, handling contact or information requests, making purchases of products and services offered through the Company website;
2) for ancillary activities related to the management of the User/Customer’s requests and the submission of feedback, which may include the sending of promotional material; for the finalisation of the purchase order for the products and services offered, including aspects relating to payment by credit card, the management of shipments, the possible exercise of the right of withdrawal provided for distance purchases, the updating on the availability of products and services temporarily unavailable;
3) related to the fulfilment of obligations under EU and national law, the protection of law and order, and the detection and prosecution of criminal offences;
4) direct marketing, such as sending advertising material, direct sales, carrying out market research or commercial communications of products and/or services offered by the Company. This activity may also concern products and services of Companies belonging to the Company Group and may be carried out by sending advertising/information/promotional material and/or invitations to participate in initiatives, events and special offers designed to reward users/customers, carried out by „traditional“ means (e.g. paper mail and/or operator calls), or by „automated“ contact systems (e.g. SMS and/or MMS, telephone calls without operator intervention, e-mail, fax, interactive applications), pursuant to art. 130 paragraph 1 and 2 of Legislative Decree 196/03 as subsequently amended and integrated 130 c. 1 e 2 del D. lgs. 196/03 e s.m.i.;
The provision of data for the purposes referred to in points 1), 2) and 3), connected to a pre-contractual and/or contractual phase or functional to a user’s request or established by a specific regulatory provision, is compulsory and, failing to provide said data will make it impossible to receive the information and access any services requested; with regard to point 4) of this Information Notice, consent to the processing of data by the user/customer is, on the other hand, free and optional and can always be revoked without any consequences on the usability of the products and services, except for the impossibility for the Company to keep users/customers updated on new initiatives or special promotions or advantages that may be available.
The Company may send you commercial communications related to products and/or services similar to those already provided, in accordance with Directive 2002/58/EU, using the e-mail or street addresses you provide on these occasions, to which you may object in the manner and at the contact details set out below.
Methods and logic of the processing, storage times and security measures
The processing is also carried out with the aid of electronic or automated means and is carried out by the Company and/or by third parties that the Company may use to store, manage and transmit the data. Data processing will be carried out in such a way as to organise and process your personal data, including logs originating from access to and use of the services made available via the web, products and services used related to the purposes specified above and, in any case, in such a way as to guarantee the security and confidentiality of the data. The personal data processed will be stored for the time period established by the law in force at that time.
Regarding data security, in sections of the website set up for particular services, where personal data are requested from the user, the data is encrypted using a security technology called Secure Sockets Layer, abbreviated to SSL. SSL technology encrypts the information before it is exchanged via the Internet between the user’s computer and the Company’s central systems, making it unintelligible to unauthorised parties and thus guaranteeing the confidentiality of the information transmitted; moreover, transactions carried out using electronic payments are carried out using the Payment Service Provider’s (PSP) platform directly, and the Company retains only the minimum set of information necessary to handle any disputes. Precisely with regard to the data protection aspects, the user/customer is invited, pursuant to Art. 33 of the GDPR to report to the Company any circumstances or events from which a potential personal data breach may arise to allow for an immediate assessment and possible action to be taken against such an event by sending a notification to privacy@Azienda.it or contacting the Customer Service. The measures adopted by the Company do not exempt the Customer from paying the necessary attention to the use, where requested, of passwords/PINs of appropriate complexity that the user shall update periodically, especially in the event that user has been hacked/known by third parties, as well as carefully keeping them private and making them inaccessible to third parties to avoid improper and unauthorised use.
Cookies stored on your device cannot be used to retrieve any data from your hard disk, transmit computer viruses or identify and use your e-mail address. Each cookie is unique to the browser and device you use to access the Website or use the Company App. In general, the purpose of cookies is to improve the operation of the website and the user’s experience although cookies may be used to send advertising messages (as specified below). For more information on what cookies are and how they work, you can browse the “All about cookies” website http://www.allaboutcookies.org.
For more detailed information on Cookies, please read the dedicated page at: (www.wordpress.org/support/article/cookies)
Scope of the data communication and transfer
For the pursuit of the above-mentioned purposes, Azienda may communicate and have the personal data of users/customers processed, in Italy and abroad, by third parties with whom the Company has a relationship, where these third parties provide services at our request. We will only provide these third parties with the information necessary to perform the requested services, taking all measures to protect your personal data. The data may be transferred outside the European Economic Area if this is necessary for the management of your contractual relationship. In that case, protection and security obligations equivalent to those guaranteed by the Data Controller will be imposed on the recipients of the data. In the case of the use of services offered directly by Partners, we will only provide the data strictly necessary for their performance. In any case, only the data necessary for the pursuit of the intended purposes will be disclosed and the guarantees applicable to data transfers to third countries will be applied where required. We may also disclose your personal data to our commercial service providers, for marketing reasons, who are appointed as external data processors for this purpose. In addition, your personal data may be communicated to the competent public bodies and authorities for the purpose of fulfilling legal obligations or to ascertain liability in the event of computer crimes to the detriment of the website, as well as communicated to, or allocated at, third parties (in their capacity as data processors or, in the case of providers of electronic communication services, independent data controllers), who provide computer and telematic services (e.g. hosting services, website management and development services) and which the Company uses to perform tasks and activities of a technical and organisational nature that are also instrumental to the operation of the website. The persons belonging to the above categories operate as separate data controllers or as data processors appointed for this purpose by the Company.
The personal data may also be known by employees/consultants of the Company who are specially instructed and appointed as Data Processors.
The categories of recipients to whom the data may be disclosed are available by contacting the company at the addresses shown below.
Rights of the data subjects
You may exercise your rights as set out by the law at any time, including:
a) accessing to your personal data, obtaining proof of the purposes pursued by the Data Controller, the categories of data involved, the recipients to whom the data may be communicated, the applicable storage period, and the existence of automated decision-making processes
b) obtaining without delay the rectification of inaccurate personal data concerning you
c) obtaining, in the cases provided for, the erasure of your data
d) obtaining the limitation of processing or objecting to the processing when possible
e) requesting the portability of the data that you have provided to Azienda, meaning receiving them in a structured, commonly used and machine-readable format, also for the purpose of transmitting such data to another data controller, within the limits and constraints set out in Art. 20 of the GDPR
Furthermore, you may lodge a complaint at the Data Protection Authority as established in Art. 77 of the GDPR.
For the processing referred to in point 4) of the data processing purposes, the Customer may always revoke consent and exercise the right to object to direct marketing (in both traditional and automated manners). Opposition, lacking instructions to the contrary, will refer to both traditional and automated communications.
The data controller, pursuant to Art. 4 of the GDPR, is Interwell Srl, Via Trezze, 17/A – 30020 Quarto d’Altino (VE) VAT No: 02776770279 – Tax Code: 02776770279
The above-mentioned rights may be exercised at the request of the Data Subject in the manner made known by the Customer Service or on the Company’s website or by using the following information: Interwell Srl (firstname.lastname@example.org).
The use of the Website, including those intended for tablets and/or smartphones, by the Customer and/or the User implies full knowledge and acceptance of the content and any instructions included in this version of the policy published by the Company at the time the site is accessed. The company would like to inform you that this policy may change without prior notice and therefore we recommend that you read it periodically.
The Data Controller