PRIVACY POLICY

The information on the site www.cprsystem.it is provided pursuant to art. 13 EU Reg. 2016/679 (General Data Protection Regulation, GDPR) and Legislative Decree No. 196/2003 “Privacy Code” and subsequent amendments to the law.

  1. Data controller

The Data Controller is CPR System s.c. with registered office in Via Verdi n. 8, 40051 Malalbergo (BO), administrative office in Via Nazionale n. 3, 44028 Gallo (FE), C.F. and P.IVA 01436840381 REA BO 487756, tel. 0532.823912, fax 0532.823938, e-mail info@cprsystem.it

  1. Purpose of processing and legal basis

The personal data (hereinafter also “Data”) provided by the interested party will be processed for the following purposes: to allow access to the pages of the website ensuring its correct functioning and to allow the data subject to obtain a reply to the request for further information on the activity of the Data Controller pursuant to art. 6 par.1, letter b) GDPR (by contacting the latter through the specific “Contact” section).

  1. Type of processed data

3.1 Navigation data

This category of data includes IP addresses or the domain names of the computers used by users who connect to the site, the addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and computer environment.

3.2 Data provided voluntarily by the user

The optional, explicit and voluntary sending of e-mails to the addresses indicated on this site entails the subsequent acquisition of personal contact data (name, surname, e-mail address, telephone number) in order to respond to requests, as well as any other data entered in the format.

  1. Categories of recipients of personal data

The data will be processed by employees and/or collaborators of the Data Controller appointed as authorised data processors and may be communicated to third party companies, appointed as data processors for this purpose, which provide accessory and instrumental services to the activity of the Data Controller. In no case will the data be disseminated.

  1. Data retention times

The personal data collected through the forms on this site will be kept for the time necessary to respond to the requests of those concerned. The data collected through cookies will be stored for the period of time established by the individual cookie. For further information, please refer to the site’s cookie policy.

  1. Nature of data provision and consequences of refusal to reply

The provision of the data necessary to carry out the processing operations listed in point 2.1 above is optional, but it is a necessary and indispensable condition for the use of the service: any refusal to provide the data determines, therefore, the impossibility of carrying out the requested service.

  1. Processing methods

Data processing for each of the above purposes is carried out using paper, automated or electronic methods and, in particular, by ordinary mail or email, telephone (e.g. automated calls, SMS, MMS), fax and any other computer channel (e.g. websites, mobile phones, apps) suitable to guarantee security and confidentiality according to the so-called data protection by default, i.e. the application of measures to minimise the risks of data dissemination.

  1. Subjective limitations

Subscription to the site’s services is reserved for persons aged sixteen or over.

  1. Rights of the data subject

The person concerned is entitled to the following rights:

  • the right of access, i.e. the right to obtain confirmation from the Company as to whether or not data is being processed and, if so, to obtain access to it
  • the right to rectification and erasure, i.e. the right to have inaccurate data rectified and/or incomplete data supplemented or erased
  • the right to restriction of processing, i.e. the right to request the suspension of processing
  • the right to data portability, i.e. the right to receive the data in a structured, commonly used and readable format in the cases provided for, as well as the right to transmit the data to another controller
  • the right to object, i.e. the right to object to the processing of data including the processing of data for marketing and profiling purposes, if provided for;
  • right to withdraw consent at any time without prejudice to the lawfulness of the processing based on the consent given before the withdrawal;
  • the right to lodge a complaint with the competent supervisory authority or to take legal action in case of unlawful processing of data.
  1. How to exercise your rights

The interested party may exercise these rights by simply sending: a registered letter with return receipt to CPR System s.c., Via Verdi n. 8, 40051 Malalbergo (BO) or an e-mail to privacy@cprsystem.it.

The Data Controller will take care to keep this information updated.

Rif. file: CPR_Rev3_Privacy policy sito www.cprsystem.it