REGULATORY FRAMEWORK
Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (“General Data Protection Regulation”).
Directive 2002/58/EC – on “personal data processing and protection of private life in the field of electronic communications”.
Legislative Decree 30 June 2003, n. 196 - "Code regarding the protection of personal data".
DATA CONTROLLER
While consulting this web site, data on identified or identifiable people can be processed. The Data Controller is CIFA S.p.A. via Stati Uniti D’America 26 – 20030 Senago (MI).
DATA PROCESSING PLACE
The treatments connected to the web services of this site take place at the headquarters of the owner and are only handled by technical personnel appropriately appointed for processing, or by persons in charge of occasional maintenance operations.
TYPE OF DATA PROCESSED
Surfing data
The information systems and the software procedures necessary for the functioning of this web site acquire, during their normal exercise, some personal data whose transfer is implicit in the employment of communication protocols on the Internet. This information is not gathered to be associated to identified Data Subjects, but – due to its nature – it could allow the users to be identified. To this category belong the IP addresses and the domain names of the PCs used by the users that connect to the web site, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request, the method used to submit the request to the server, the dimension of the file obtained, the numeric code indicating the status of the answer given by the server (successful, error, uest, the metho etc.) and other parameters concerning the operation system and the user’s information environment. These data are used only to obtain anonymous statistic information on the employment of the web site and to control it works correctly and are cancelled immediately after the processing. The data, besides, could be used to assess the responsibility in case of possible cyber-crimes against the web site.
Data provided freely by the user
The optional, explicit and voluntary providing of personal data by the user to the contacts and in the registration forms present on this web site entails the subsequent acquisition of the data provided by the sender. Such data will be processed by CIFA S.p.A., mainly with electronic means, in order to follow up the user’s request (for example asking information or send your Curriculum Vitae).
COOKIES Cookies are small text files that are deposited on the user’s personal computer by the web sites he/she visits. Their main task is allowing the web site to work and operate in a more efficient way, as well as providing information to the web site owners. The following table illustrates the cookies we use.
| Cookie | Type | Origin | Description | Deadline |
|---|---|---|---|---|
| JSESSIONID | Session | First party | User session | As soon as the navigation session ends |
| COOKIE_SUPPORT | Persistente | First party | Test per supporto cookie | As soon as the navigation session ends |
| GUEST_LANGUAGE_ID | Persistente | First party | User language | As soon as the navigation session ends |
| ID | Session | First party | User session | As soon as the navigation session ends |
| COMPANY_ID | Session | First party | User session | As soon as the navigation session ends |
| LFR_SESSION_STATE_10756 | Session | First party | User session | As soon as the navigation session ends |
| USER_UUID | Session | First party | User session | As soon as the navigation session ends |
| _ga | Session | Third party (Google) | User session | As soon as the navigation session ends |
| _gat | Session | Third party (Google) Privacy Policy di Google | Analytics | As soon as the navigation session ends |
| GEUP | Persistente | Third party (Youtube) Privacy Policy di Google | Analytics | 2 years |
| PREF | Persistente | Third party (Youtube) Privacy Policy di Google | Embed video | 8 months |
| VISITOR_INFO1_LIVE | Persistente | Third party (Youtube) Privacy Policy di Google | Embed video | 8 months |
| YSC | Session | Third party (Youtube) Privacy Policy di Google | Embed video | As soon as the navigation session ends |
In addition to the cookies shown above, this website uses cookies that are strictly functional to the website and other session cookies (those cookies that are not stored permanently on the user's computer and disappear when the browser is closed). Their use is strictly limited to the transmission of the session identifiers (constituted by numbers generated random by the server) needed to allow the safe and effective surfing of the web site. The session cookies used on this site avoid the use of other technologies that could compromise the privacy of users' browsing and do not allow the acquisition of personal identification data. However, if you do not wish to receive any type of cookie on your computer, you can increase the privacy protection level of your browser by using the appropriate function. CIFA S.p.A. reminds that, according to article 17 of Regulation (EU) 2016/679, there is the right to request at any time, to those who make use of such solutions, the cancellation of information collected through cookies.
DISCRETIONARY NATURE OF THE DATA PROVIDING
Apart from what has been specified concerning the surfing data, users are free to provide their personal data or not. However, the non-providing can entail the impossibility of obtaining what they asked.
PROCESSING METHODS AND STORAGE PERIOD
Personal data are processed, even through the use of automated tools, for the time strictly necessary to achieve the purposes for which they were collected.
Personal data are processed also with automated tools, for the time strictly necessary to achieve the purposes for which they have been gathered. Specific safety measures are observed in order to prevent the loss of data, the illegal or wrong use of them and any unauthorized access. CIFA S.p.A., took all minimum security measures provided by the law and inspiring to the main international standards it took further security measures in order to minimize the risks concerning secrecy, availability and integrity of the personal data gathered and processed.
SHARING, COMMUNICATION AND SPREADAING OF DATA
The gathered data can be transferred or communicated to other companies for activities strictly connected and instrumental to the efficiency of the service, such as the management of the information system. The personal data provided by users who request dispatch of informative material (brochures, informative material, etc.) are used for the sole purpose of performing the service or provision requested and are communicated to third parties only if this is necessary (companies that take care of packaging or shipment). Apart from these cases, personal data won’t be either communicated or granted to anybody, unless it’s provided by the agreement or authorized by the subjects. In this case, personal data could be sent to third parties, but only in case: a) there’s an explicit consent to share the data with third parties; b) the information must be shared with third parties in order to carry out the service required; c) it’s needed to meet requests by the Judicial Authority or Public Security. No data deriving from the web service will be spread.
RIGHTS OF THE INTERESTED PARTIES
Regarding the processing of the aforementioned data, pursuant to article 15 et seq of the EU Regulation 2016/679, We remind you the right to obtain the access of Personal Data concerning you; the right to obtain the rectification (correction of inaccurate data or integration), the right to erasure the Personal Data processed unlawfully or in case one of the reasons specified in article 17 of the EU Regulation exists. Furthermore, you have the right to lodge a complaint with a supervisory authority in case you consider that the rights indicated above have not been recognized.
MODIFICATIONS TO THIS PRIVACY POLICY
CIFA S.p.A., verifies its personal data protection and security policy at regular intervals and revises it if needed according to regulatory or organizational changes or to the ones derived from the technological evolution. If the policy should be changed, the new version will be published in this page of the web site.
QUESTIONS, CLAIMS, SUGGESTIONS AND EXERCISE OF THE RIGHTS
All those who are interested in obtaining more information, providing suggestions or sending claims or objections concerning the personal data protection policy or the way our Company processes the personal data, as well as to assert the rights foreseen by the legislation concerning the protection of personal data, can make it in writing to Cifa S.p.A., via Stati Uniti d'America 26 - 20030 Senago (MI).