Personal data provided directly by the user to INCO in the pages of the website at the address (URL) www.incoitaly.com ("Site") at the time of registration and subsequently for the use of services from time to time provided by INCO will be treated in compliance with the provisions of Legislative Decree 196/2003 concerning the protection of personal data ("Privacy Code") and following the entry into force of EU Regulation no. 679/2016 ("GDPR") in accordance with the provisions of art. 13 of the aforementioned European Regulation.
INCO informs the user of the following.
Personal data processing means any operation or set of operations, performed with or without the use of automated processes and applied to personal data or sets of personal data, even if not recorded in a database, such as collection, registration, organization, structuring, storage, processing, selection, blocking, adaptation or modification, extraction, consultation, use, communication by transmission, dissemination or any other form of making available, comparison or interconnection, limitation, cancellation or destruction.
It is specified
1. HOLDER OF THE TREATMENT.
Holder of the processing of personal data is pursuant to art. 26:
- INCO of Nadia Opromolla Via S. Maria di Loreto, 57 84030 ARENABIANCA (SA) - Tel +39 0975 863205 - Email: firstname.lastname@example.org
2. PURPOSE OF THE TREATMENT.
The personal data of the user, freely communicated and acquired on the basis of the activity carried out by INCO, will be processed in a lawful and correct manner for the following purposes:
A. Without the express consent of the user (Article 24 letter a, b, c Privacy Code and article 6 letter b, and GDPR): - the data will be collected and used exclusively for purposes directly connected to and instrumental to activation and operation of the services provided by INCO, for example to allow the management of orders, evasion, billing and delivery of products ordered by users on the Site, also with a customer support service, as well as for compliance with obligations provided for by law, by a regulation or by community legislation and for the exercise of their rights in court. Please note that by choosing the option to register on the Site "connect with your Facebook account" you agree that Facebook will send to INCO the personal data necessary for registration.
B. Only subject to specific and distinct consent by the user and until the revocation of the same (Articles 23 and 130 of the Privacy Code and Article 7 of the GDPR): - use of personal data, in particular of e-mail and mail address paper, by the owner, for sending commercial proposals related and / or related to the services of INCO and for sending advertising material related to the aforementioned products or services or commercial communication, including the newsletter relating to offers on Site, as well as for carrying out market research also aimed at assessing the degree of user satisfaction, (so-called "marketing" purposes).
Failure to consent to the purpose set out in point 2 B will not prejudice in any way the possibility of the user to register on the site and to use the services of INCO.
The user can oppose the treatment referred to in art. 2 B at any time after having consented:
- by means of a specific link at the bottom of any promotional e-mail sent by INCO;
- changing your preferences within the Site to the "my account" section;
- by sending an e-mail to the address email@example.com ;
- by accessing the "contact us" section of the website and sending a specific request for cancellation / modification of the preferences granted;
- by contacting customer service at +39 0975 863205.
C. Soft Spam: The email address indicated by the user when purchasing a product or service offered on the Website, may be used by the Data Controller for sending email messages concerning the direct sale of products or services similar to those purchased by the user. (Without the express and preventive consent of the so-called "soft spamming" user) on the condition that the user does not exercise the right of opposition in the manner described in point B above.
D. Invite a friend: The user who intends to use the "Invite a friend" service, by clicking on the "Invite your friends" button, declares to have acquired the consent of the recipient to the communication of the e-mail address of the latter to the Data Controller for the sole purpose of allowing the invitation to be sent to the Site. Data relating to the recipient's e-mail address will not, however, be retained by the Data Controller following the transmission of the e-mail invitation.
3. MEMBER ACCOUNT INCO.
Users can create their own account on the www.incoitaly.com website by entering their personal data (including name, surname, telephone number, email address, address). The user can update his personal profile at any time, modify and delete his data through the personal area of his account. The personal account created by the user can also be used for the www.incoitaly.com site, if the user wishes and gives consent, alternatively he can create a new account to access www.incoitaly.com .
4. MODALITIES OF DATA PROCESSING.
The data will be processed, in compliance with the necessary security and confidentiality, through the following procedures: collection of data from the data subject, collected and recorded for specific, explicit and legitimate purposes and used in further processing operations in terms compatible with these purposes; treatment carried out with the aid of electronic and automated tools (data collection via data transmission, directly from the interested party).
5. LEGAL BASIS OF TREATMENT.
The legal basis of the processing is the consent of the user, the fulfillment of a contractual obligation and the provisions of the law.
6. LEGITIMATE INTERESTS PERFORMED BY THE HOLDER OF THE TREATMENT.
The legitimate interests pursued by the Data Controller in the processing of data is given by having to respect and honor the contractual obligations signed between the parties. Pursuant to art. 6 the lawfulness of the processing is based on the express consent expressed by the interested party, documented in writing.
7. NATURE OF DATA SUPPLY.
The provision of the data requested at the time of activation of the services, for the purposes referred to in Section 2A above, is mandatory, as it is strictly functional to the performance of the same. Any refusal to provide data will make it impossible for INCO to complete the user registration process and then to provide the services. The provision of data for the purposes referred to in Section 2B above is optional. The refusal of consent for the purposes of section 2B will not produce any consequence on the provision of services, as well as the exercise of the right of opposition for the so-called "softspamming" treatment referred to in art. 2C.
8. COMMUNICATION OF DATA AND POSSIBLE ADDRESS OF PERSONAL DATA.
The personal data of the user may be disclosed to specific subjects, appointed by the owner of the supply of services necessary or necessary for the performance of the obligations connected to the registration on the site www.incoitaly.com and the purchase online, within limits and in compliance to the instructions given. In particular, the data may be communicated to:
1. persons, companies or professional offices, which provide assistance, advice or collaboration to the Owner in accounting, administrative, legal, tax and financial matters;
2. subjects delegated and / or appointed by INCO to perform the activities or part of the activities related to the provision of sales services, such as customer service, even if managed in outsourcing; the logistics center responsible for packaging the products purchased by the user; the carriers responsible for delivering the purchased products; the parties who perform on behalf of INCO the after-sales assistance and any other external collaborators to whom the communication is necessary for the proper fulfillment of the obligations assumed by INCO in relation to the contract for the supply of its services;
3. to Public Administrations for the performance of institutional functions within the limits established by law or by regulations. The owner has appointed some responsible for the processing of personal data of users, depending on the functions performed. The updated list of all data processors is available at the INCO headquarters and can be requested at the following e-mail address: firstname.lastname@example.org . This list can then be integrated and / or updated as needed.
9. METHOD OF TREATMENT.
The data are collected electronically and processed through registration, consultation, communication, storage, cancellation, carried out mainly with the aid of electronic tools, ensuring the use of appropriate measures for the security of data processed and ensuring confidentiality of the same.
User data, stored in electronic form, is stored and stored on secure servers. In particular, the Owner declares that the data recorded on the server are protected against the risk of intrusion and unauthorized access and that security measures have been adopted to guarantee the integrity and availability of data as well as the protection of areas and premises. relevant for their safekeeping and accessibility.
Personal data will be processed by collaborators and / or employees of the Data Controller as managers or processors, within the scope of their respective functions and in accordance with the instructions given by the Data Controller.
The Data Controller guarantees the highest level of security in the management of user data. Credit card information is stored only in encrypted format and according to the security requirements of the PCI certification. The Data Controller does not have access to confidential information relating to credit cards, which will be processed by intermediaries and card issuers in compliance with the Privacy Code.
10. RIGHTS OF THE INTERESTED PARTY
The user (hereinafter also "interested"), pursuant to the provisions of art. 7 of the Privacy Code and art. 15 GDPR, is entitled to:
- obtain confirmation of the existence or not of personal data concerning him, even if not yet registered, and their communication in an intelligible form;
- obtain the indication: a) of the origin of personal data; b) of the purposes and methods of the processing; c) of the logic applied in case of treatment carried out with the aid of electronic instruments; d) of the identification details of the owner, the managers and the designated representative pursuant to art. 5, paragraph 2 of the Privacy Code and art. 3, paragraph 1, GDPR; e) the subjects or categories of subjects to whom the personal data may be communicated or who may become aware of it in their capacity as designated representative in the territory of the State, managers or agents;
- obtain: a) updating, rectification or, when interested, integration of data; b) the cancellation, transformation into anonymous form or blocking of data processed unlawfully, including data whose retention is unnecessary for the purposes for which the data were collected or subsequently processed; c) the attestation that the operations referred to in letters a) and b) have been brought to the attention, also as regards their content, of those to whom the data have been communicated or disseminated, except in the case where such fulfillment is it proves impossible or involves a use of means manifestly disproportionate to the protected right;
- to object, in whole or in part: a) for legitimate reasons, to the processing of personal data concerning him / her, even though they are relevant to the purpose of the collection; b) to the processing of personal data concerning him for the purpose of sending advertising or direct sales material or for carrying out market research or commercial communication, through the use of automated call systems without the intervention of an operator by email and / or through traditional marketing methods by telephone and / or paper mail. It should be noted that the right of opposition of the interested party for direct marketing purposes through automated methods extends to the traditional ones and that in any case the possibility remains for the interested party to exercise the right of opposition even partially. Therefore, the interested party may decide to receive only communications using traditional methods or only automated communications or none of the two types of communication;
- ask the Owner to access personal data (art 15 GDPR), the correction (art 16 GDPR) or the cancellation (Article 17 GDPR) of the same, the limitation of treatment or to oppose their treatment (Article 18 GDPR );
- the external portability of your data processed in an automated form where applicable;
- to revoke the consent at any time without prejudice to the lawfulness of the treatment based on the consent given prior to the revocation;
- propose a complaint to the Guarantor for the protection of personal data;
To exercise the above rights, as well as to receive information on the subjects to whom the data are stored or to whom the data are communicated or to the persons who, as managers or agents, may become aware of your data, may contact Holder by sending a request to the following e-mail address email@example.com .
11. DURATION OF THE TREATMENT AND PERIOD OF DATA CONSERVATION.
The processing of personal data with reference to the purpose set out in section 2.A, will have a duration equal to that required for the execution of the services requested, which will be added to the additional period prescribed in compliance with civil law obligations, tax and tax regulations. The processing of personal data with reference to the purpose referred to in section 2.B:
- marketing: will have a duration of 24 months starting from the date of granting the consent;
- profiling: will have a duration of 12 months starting from the date of granting of consent.
At the end of the data processing period, the data will be deleted, or permanently anonymised.
12. INTENTION OF THE OWNER TO TRANSFER PERSONAL DATA.
The management and storage of personal data will take place on servers located within the European Union. The data will not be transferred to outside the European Union.
13. PLUG-IN FACEBOOK
The Site uses the so-called Plugins of the Social Network facebook.com. More details on Facebook plug-ins and their features can be found at http://developers.facebook.com/ . To prevent the transmission and storage of data relating to Internet browsing through Facebook, the user must disconnect from Facebook before visiting our website.
To proceed without changing the application of cookies Simply continue browsing.
Disabling cookies some of our services may not work properly and some pages will not display them correctly.
There are various types of cookies, some to make more effective use of the Site, others to enable certain features.
They are those used for the sole purpose of "carrying out the transmission of a communication on an electronic communications network, or as strictly necessary for the provider of an information service company explicitly requested by the subscriber or user to provide such service" ( Article 122, Section I, of the Privacy Code). They can be divided into navigation or session cookies, which guarantee the normal navigation and use of the website (allowing, for example, to make a purchase or authenticate to access restricted areas).
Technical session cookies have a duration equal to the single browsing session and are therefore automatically deleted at the end of the browsing session.
The information contained in the cookies, as mentioned, are simply for technical purposes, are not stored or accessed by the site owner's staff.
Our website uses 'session' technical cookies.
They are similar to technical cookies and are those used directly by the site operator to collect information, in aggregate form, on access and number of users and how they use the site. They only pursue statistical purposes.
Our website uses analytical cookies.
They are those aimed at creating user profiles and are used in order to send advertising messages in line with the preferences expressed by the same in the context of surfing the net.
Our website uses profiling cookies.
They are cookies that last longer, as well as the closing of the browser session, often used to allow the website to remember the choices of a user.
Our website uses persistent cookies.
Third Party Cookies
Cookies are set by a domain other than the one visited by the user. We talk about a third-party cookie if a user visits a website and a third-party company sets a cookie through that site.
Our website uses Third Party cookies, in particular Google Analytics
The extensive information on Google can be found at: http://www.google.com/policies/privacy/
How to check and delete cookies
Most web browsers accept cookies, but you can change your web browser settings to reject cookies, disable existing ones or simply be informed when a new cookie is sent to your device.
Please note that refusing or disabling session cookies will not allow the use of the services offered by this site.
How to manage cookies on your PC
If you want to allow cookies from our site, please follow the steps below:
1. Click on "Tools" at the top of the browser window and select Options
2. Click on the 'Smashed stuff' tab, find the 'Privacy' section, and select the 'Content settings' button
3. Now select 'Allow local data to be set'
Microsoft Internet Explorer 6.0, 7.0, 8.0, 9.0
1. Click on "Tools" at the top of the browser window and select 'Internet Options', then click on the 'Privacy' tab
2. To enable cookies in your browser, make sure that the privacy level is set to Medium or below,
1. Click on "Tools" at the top of the browser window and select "Options"
2. Then select the Privacy icon
1. Click the Cog icon at the top of the browser window and select the "Preferences" option
2. Click on 'Protection', select the option that says 'Block third-party and advertising cookies'
3. Click on 'Save'
How to manage cookies on Mac
If you want to allow cookies from our site, please follow the steps below:
Microsoft Internet Explorer 5.0 on OSX
1. Click on 'Explore' at the top of the browser window and select the "Preferences" option
2. Scroll down until you see "Cookies" in the Receiving File section
3. Select the 'Do not ask' option
Safari on OSX
1. Click on 'Safari' at the top of the browser window and select the "Preferences" option
2. Click on 'Security' and then 'Accept cookies'
3. Select 'Only from site'
Mozilla and Netscape on OSX
1. Click on 'Mozilla' or 'Netscape' at the top of the browser window and select the "Preferences" option
2. Scroll down until you see cookies under 'Privacy and security'
3. Select 'Enable cookies only for the originating site'
1. Click on 'Menu' at the top of the browser window and select "Settings"
2. Then select "Preferences", select the "Advanced" tab
3. Then select the 'Accept cookies' option
This website uses Google Analytics, a web analytics service provided by Google, Inc. ("Google"). Google Analytics primarily uses proprietary cookies to generate reports on visitor interactions with websites. These cookies are used to store information that does not allow personal identification of users. Browsers do not share proprietary cookies between various domains.
You can prevent Google from detecting a cookie that is generated and linked to your use of this website (including your IP address) and the processing of such data by downloading and installing this browser plugin:
Web sites and third-party services