Privacy Policy

“The following Privacy Notice describes how this website manages the personal data of users who browse it.

This notice is provided pursuant to Art. 13 of EU Regulation 679/2016 (GDPR) and explains the protection of personal data for those who interact with the web services accessible electronically at: www.sepal.it

The notice also complies with Article 13 of Regulation (EU) 2016/679 (hereinafter, the “Regulation”) of the European Parliament and Council of 27 April 2016 (General Data Protection Regulation, published 4 May 2016 in the Official Journal of the European Union, in force since 24 May 2016); with Recommendation 2/2001 issued on 17 May 2001 by the Data Protection Authorities gathered in the Working Party established under Article 29 of Directive 95/46/EC, which sets minimum requirements for collecting personal data online—specifically, the timing, manner, and nature of the information that data controllers must provide to users when they connect to web pages—and with the Italian Data Protection Authority’s Measure of 8 May 2014, “Identification of simplified procedures for the privacy notice and consent for the use of cookies” (hereinafter, the “Measure”), in full compliance with current privacy legislation.”

This page describes how this website is managed with regard to the processing of personal data of users who consult it.

This notice applies only to this site and not to other websites that users may consult via links.

DATA CONTROLLER

Following consultation of this site, data relating to identified or identifiable persons may be processed. The Data Controller is SEPAL S.P.A., Via Caduti del Lavoro – 25030 Lograto (BS), Italy.

LOCATION OF DATA PROCESSING

Processing connected to the web services of this site takes place at the aforementioned headquarters of the Company and is carried out by the Company’s staff and/or by external parties in charge of maintenance and updates.

No data from the web service is communicated or disseminated.

Personal data provided by users who submit requests for services or information are used solely to perform the requested service or provide the requested information and are disclosed to third parties only when necessary for that purpose. Therefore, limited to the requested services, data may be transmitted to the Company’s internal staff, collaborators, correspondents, and agents.

TYPES OF DATA PROCESSED

Browsing data

The IT systems and software procedures that operate this website acquire, during normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols.

These data are not collected to be associated with identified data subjects, but by their nature could, through processing and association with data held by third parties, allow users to be identified.

This category of data includes the IP addresses or domain names of the computers used by users connecting to the site, URI (Uniform Resource Identifier) addresses of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the server’s response (successful, error, etc.), and other parameters relating to the user’s operating system and IT environment.

These data are used only to obtain anonymous statistical information on site use and to check its proper functioning. They could be used to ascertain responsibility in the event of hypothetical computer crimes against the site.

Data voluntarily provided by the user

The optional, explicit, and voluntary sending of e-mail to the addresses indicated on this site entails the subsequent acquisition of the sender’s address, necessary to respond to requests for services and/or information.

COOKIES

No personal data of users is acquired by the site for this purpose.

No cookies are used to transmit personal information, nor are so-called persistent cookies of any kind, or systems for tracking users.

The use of so-called session cookies (which are not stored permanently on the user’s computer and disappear when the browser is closed) is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to allow safe and efficient navigation of the site.

The session cookies used on this site avoid the use of other IT techniques potentially prejudicial to the confidentiality of user navigation and do not allow the acquisition of personal data identifying the user.

OPTIONAL NATURE OF DATA PROVISION

Apart from what is specified for browsing data, the user is free to provide personal data to request services and/or information.

Failure to provide such data may make it impossible to obtain what is requested.

METHODS OF PROCESSING

Personal data are processed by duly appointed data processors and persons in charge, or by independent data controllers, using electronic tools and paper archives for the time strictly necessary to achieve the purposes for which the data were collected, in compliance with legal provisions and with security measures designed to ensure confidentiality and prevent unauthorized access. These data are not subject to dissemination. Personal data are processed according to principles of fairness, legality, and transparency.

RIGHTS OF DATA SUBJECTS

Data subjects have the right at any time to obtain confirmation of the existence or non-existence of their personal data and to know their content and origin, verify their accuracy, or request their integration, updating, or rectification (Art. 7 of Legislative Decree 196/2003).

Under the same article, one has the right to request the deletion, anonymization, or blocking of data processed in violation of the law, as well as to oppose their processing for legitimate reasons.

Requests should be addressed to SEPAL S.P.A., Via Caduti del Lavoro – 25030 Lograto (BS) – Tel.: +39 030 9972407 – Fax: +39 030 9973924 – e-mail: commerciale@sepal.it