Privacy information following EU Regulation 679/2016 General Data Protection Regulation
According to the regulations indicated, the processing of data will be based on principles of correctness, lawfulness, transparency and protection of privacy and user rights.
This statement for users / visitors who interact with the
The same only describes the site management methods, with reference to the processing of personal data of the users / visitors who consult it, and not also of external websites that users can consult by clicking on the links on that site.
Additional information may be provided within specific sections.
1. TYPE OF DATA PROCESSED AND PURPOSE OF TREATMENT
1.1. Navigation data
The computer systems and applications dedicated to the functioning of this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.
This information is not collected to be associated with identified interested parties, but by their very nature could, through processing and association with data held by third parties, allow users / visitors to be identified.
The data collected includes the IP addresses or domain names of the computers used by the users connecting to the site, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numeric code indicating the status of the response given by the server (success, error, etc.) and other parameters relating to the operating system and the user’s IT environment.
These data are processed for the time necessary to achieve the purpose for which they were collected, for the sole purpose of obtaining anonymous statistical information on the use of the site (access to the same) and to check its regular operation.
The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site.
1.2. Data provided voluntarily by the user
Sending e-mail messages to the addresses indicated on this site (for example in order to request information) involves the acquisition of the sender’s address, as well as any other personal data included in the messages. These data will be processed solely for the purpose of processing the request and communicated to third parties only in the cases where this is necessary for the fulfillment of the same (for example, shipping service of the requested documentation).
If users / visitors are required to provide their personal data in order to access certain services, they will be released in the pages relating to the individual services, a specific and detailed Information on the relative treatment in accordance with current legislation that will specify limits, purposes and methods of the treatment itself.
Description of cookies
Cookies are small text files that are sent by the website visited by the user on the user’s device itself (usually to the browser), where they are stored so that this device can be recognized at the next visit by the user to the site. In fact, at each subsequent visit, cookies are sent back from the user’s device to the site.
Cookies can be “installed” (more precisely, stored and accessed) however, not only by the same site manager visited by the user (first-party cookies), but also by a different website that “installs” cookies through the first site (third-party cookies) and is able to recognize them. This happens because the visited site may contain elements (images, maps, sounds, links to web pages of other domains, etc.) that reside on servers other than the one of the site visited.
Depending on the purpose, cookies are divided into technical cookies and cookies
Technical cookies are “installed” for the sole purpose of “transmitting a communication over an electronic communication network, or as strictly necessary for the provider of an information society service explicitly requested by the subscriber or user to provide this service “.
They are usually used to allow efficient navigation between pages, to store user preferences (eg font size, language, country, etc.), to store information on specific user configurations, to manage authentication, etc. Some of these cookies (essential or strictly necessary), such as session cookies used to manage the shopping cart on e-commerce sites, enable functions without which certain operations would not be possible.
The use of technical cookies does not require users’ consent.
Technical cookies are assimilated (and, therefore, for the relative installation, the consent of the users is not required, nor are the additional regulatory requirements) the so-called cookies. “Analytics” which serve to monitor the use of the site by users for the purpose of optimizing the same – if used directly from the site first part (without, therefore, the intervention of third parties), as well as the analytical cookies made and put available to third parties and used by the site first part for mere statistical purposes, if suitable tools are adopted to reduce their identifying power (for example, by masking significant portions of the IP address) and the third party expressly agrees to not “cross-reference” the information contained in these cookies with others it has.
Profiling cookies are used to track user navigation and analyze its behavior for marketing purposes and are aimed at creating user profiles and are used in order to send advertising messages in line with the preferences shown by the user in the of surfing the net. These cookies can be installed on the user’s terminal only if they have given their consent in the manner indicated in the Measure.
Depending on their duration, cookies are divided into persistent cookies, which remain stored until they expire on the user’s device, except for removal by the latter, and session, which are not stored permanently on the device user and disappear when the browser is closed.
Usually, profiling cookies are persistent cookies.
Cookies used on this site
This site uses technical cookies to allow safe browsing
efficient on the site and monitor its operation.
How to delete cookies
It should be noted that by default almost all web browsers are set to automatically accept first-party cookies. The navigators can, in any case, modify the default configuration through the browser settings; however, the disabling / blocking of cookies or their deletion could preclude the optimal use of the site or certain areas of the same. The way cookies are managed depends on the type of browser used, and often on the specific version of the same. Usually, in any case, it is necessary to access the browser Settings and intervene on the preset rules, deciding which types of cookies to disable and / or removing existing ones. Detailed information on the procedure for configuring the cookie settings can be found in the guides of the browser used (generally accessible from the PC using the F1 key or by clicking on the icon in the form of a question mark generally present in the browser itself). Please also refer to the cancellation guides of the main browsers and to the following links:
Google Chrome Chrome https: //support.google.com/chrome/answer/95647? Hl = it
2. METHOD OF TREATMENT
The processing of personal data is carried out through automated tools (for example, using electronic procedures and supports) and / or manually (for example on paper) for the time strictly necessary to achieve the purposes for which the data was collected and , in any case, in compliance with the regulations in force on the subject.
The data processing will also be carried out with organization and processing logics strictly related to the same purposes and in any case in order to guarantee the security, integrity and confidentiality of the data in compliance with the organizational, physical and logical measures provided for by the provisions in force.
3. OPTIONAL PROVISION OF DATA
Except as specified above for navigation data and cookies, the visitor is free to provide or not personal data, as in the case of requests for information or contact sent by e-mail or requests for access to services, utilities and applications freely chosen. Failure to provide such data may result in the impossibility of obtaining what has been requested and may preclude AG COSMETICS SRL from fulfilling the contractual obligations as set forth in the mandate contract.
4. OWNER, MANAGER AND CATEGORIES OF MANAGERS
The owner of the processing of personal data is AG COSMETICS SRL with headquarters in Via Biondina n.99 47011 Castrocaro Terme (FC)
The processing operations connected to the web services of this site are handled exclusively by technical personnel in charge of processing.
In addition to the Data Controller employees, some personal data processing operations could also be performed by third parties, to whom the company entrusts site management / maintenance. In this case the same subjects will be appointed as Data Processors.
Information relating to data processors is easily available by sending an email to the address “firstname.lastname@example.org”
The data will not be disseminated.
5. RIGHTS OF INTERESTED PARTIES
The subjects to whom the personal data refer have the right, at any time, to obtain confirmation of the existence of the same data and to know its content and origin, verify its accuracy or request its integration or update, or rectification.
Interested parties also have the right to request the deletion, transformation into anonymous form or blocking of data concerning them, processed in violation of the law, and to oppose in any case, for legitimate reasons, to their treatment.
According to the art. 13 GDPR UE the subjects to whom the data refer always have the right to know the identity and the contact data of the Data Controller and, where necessary, of his representative, the contact details of the data protection officer, the purposes of the processing which are intended personal data as well as the legal basis of the processing, the legitimate interests pursued by the data controller or appointed third parties, any recipients or categories of recipients of personal data, the period of data retention and the intention of the owner of processing to transfer personal data to a third country or to an international organization.
The subjects to whom the data refer, pursuant to Art. 13 GDPR UE 679/2016 may also at any time exercise the right to:
– have access to personal data;
– obtain the rectification or cancellation of the same or the limitation of the processing that concern them;
– oppose the processing of data;
– use data portability;
– revoke the consent at any time without jeopardizing the lawfulness of the processing based on the consent given before the revocation;
– propose a complaint to a supervisory authority, for the Italy Privacy Guarantor;
– be informed about the possibility that the communication of personal data may be a legal or contractual obligation or a requirement necessary for the conclusion of a contract, and know if the interested party has the obligation to provide personal data as well as the possible consequences of the failure to communicate such data;
– be informed about the existence of an automated decision-making process,
including profiling and in such cases, receiving significant information on the logic used, as well as on the importance and expected consequences of such treatment for the data subject.
According to the art. 14 GDPR UE if the data have not been obtained from the party concerned, the Data Controller AG COSMETICS SRL will provide the interested party with the following information:
a) the identity and contact details of the Data Controller and, where applicable, his representative;
b) the contact details of the data protection officer, where applicable;
c) the purposes of the processing for which the personal data are intended as well as the legal basis of the processing;
d) the categories of personal data in question;
e) any recipients or any categories of recipients of personal data;
f) where applicable, the intention of the Data Controller to transfer personal data to a recipient in a third country and the existence or absence of a decision of adequacy of the European Commission or in the necessary cases reference to adequate or appropriate guarantees and the means to obtain a copy of such data or the place where it was made available.
2. In addition to the information referred to in paragraph 1, the Data Controller will provide the data subject with the following information necessary to ensure correct and transparent processing of the data subject:
a) the period of storage of personal data or, if this is not possible, the criteria used to determine this period;
b) the legitimate interests pursued by the data controller or third parties;
c) the existence of the data subject’s right to ask the data controller for access to personal data and the correction or cancellation of the same or the limitation of the processing of personal data concerning him and to oppose their processing, in addition to right to data portability;
d) the existence of the right to revoke the consent at any time without jeopardizing the lawfulness of the processing based on the consent before the revocation;
e) the right to lodge a complaint with a supervisory authority, for the Italy Privacy Guarantor;
f) the source from which the personal data originate and, if necessary, the possibility that the data come from sources accessible to the public;
g) the existence of an automated decision-making process, including profiling and, at least in such cases, significant information on the logic used, as well as the importance and expected consequences of this treatment for the data subject;
3. The data controller AG COSMETICS SRL provides the information referred to in paragraphs 1 and 2:
a) within a reasonable time from obtaining personal data, but at the latest within one month, in consideration of the specific circumstances in which personal data are processed;
b) in the event that the personal data are intended for communication with the interested party, at the latest at the time of the first communication to the interested party; or if communication to another recipient is envisaged, not later than the first communication of personal data.
4. If the Data Controller intends to further process personal data for a purpose other than that for which they were obtained, prior to such further processing he will provide the interested party with information regarding this different purpose and any pertinent information referred to in the paragraph 2.
For any information regarding the processing of data, users can send an email to “email@example.com “