evoteck@evoteck.it | +39 0372 843054

Privacy Policy

Privacy Policy on the Processing of Personal Data

This page describes the methods of managing this website with reference to the processing of personal data of users who consult it. This is an information notice provided in accordance with the current legislation on personal data for users interacting with the services of this website under EU Regulation 2016/679. This notice applies only to this website and not to any other websites that may be consulted by the user via our links.

The “Data Controller”

Following consultation of the site, data relating to identified or identifiable persons may be processed. The “controller” of their processing is:

EVOTECK SRL
VIA VENETO 24 –
25025 MANERBIO (BS)
Tax Code and VAT No. 06508010961

Place of Data Processing

The processing related to the web services is carried out only by technical personnel of the office in charge of the processing, or by any persons in charge of occasional maintenance operations. No data deriving from the web service is communicated or disclosed.

Purpose of Processing and Legal Basis

The personal data provided by users who submit requests or intend to use services or products offered through the site, as well as to receive additional specific content, are used solely for the purpose of responding to such requests or performing the requested service or provision, and are communicated to third parties only if necessary for that purpose. The legal basis for such processing is the necessity to respond to the requests of the data subjects or to perform activities provided for by agreements established with them.

With the explicit consent of the user, the data may be used for commercial communication activities relating to additional products or services of the controller. The legal basis for this processing is the freely given consent of the data subject.

Outside of these cases, users’ browsing data are kept only for the time strictly necessary to manage the processing activities within the limits established by law.

Types of Data Processed

Browsing Data

The computer systems and software procedures used to operate the site acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified data subjects, but by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes IP addresses or domain names of the computers used by users who connect to the site, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters related to the user’s operating system and computer environment. This data is used only to obtain anonymous statistical information on the use of the site and to check its proper functioning, and is deleted after processing. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site.

Data Voluntarily Provided by the User

The optional, explicit and voluntary sending of emails to the addresses indicated on the site entails the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any other personal data included in the message. Specific summary information will progressively be reported or displayed on the pages of the site prepared for particular services upon request.

Cookies

Cookies are defined as text elements that are inserted into the hard drive of a computer only after authorization. Cookies serve to streamline the analysis of web traffic or to signal when a specific site is visited and allow web applications to send information to individual users. No personal data of users is acquired by the site in this regard. No use is made of cookies for the transmission of personal information, nor are so-called persistent cookies of any kind used, or systems for tracking users. The use of so-called session cookies is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to enable safe and efficient site browsing. The session cookies used on the site avoid the use of other IT techniques that could potentially compromise users’ privacy and do not allow the acquisition of the user’s personal identifying data.

Optional Nature of Providing Data

Apart from what has been specified for browsing data, the user is free to provide personal data to request the services offered by the Controller. Failure to provide such data may make it impossible to obtain what has been requested.

Methods of Processing and Data Retention Period

Personal data is processed using automated tools for the time strictly necessary to achieve the purposes for which it was collected. Specific security measures are observed to prevent the loss of data, unlawful or incorrect use, and unauthorized access.

The data is kept for the time strictly necessary for the pursuit of the purposes indicated in this notice and will be deleted at the end of this period, unless the data must be kept to comply with legal obligations or to assert a right in court.

Rights of Data Subjects

Within the limits and under the conditions provided by law, the controller is obliged to respond to the data subject’s requests regarding their personal data. In particular, under current legislation:

  1. The data subject has the right to obtain confirmation from the data controller as to whether or not personal data concerning them is being processed, and, where that is the case, access to the personal data and the following information:
  • the purposes of the processing;
  • the categories of personal data concerned;
  • the recipients or categories of recipients to whom the personal data has been or will be disclosed, in particular recipients in third countries or international organizations;
  • where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period;
  • the existence of the right to request from the controller rectification or erasure of personal data or restriction of processing of personal data concerning the data subject, or to object to such processing;
  • the right to lodge a complaint with a supervisory authority;
  • where the data is not collected from the data subject, any available information as to its source;
  • the existence of automated decision-making, including profiling.
  1. The data subject has the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning them. Taking into account the purposes of the processing, the data subject has the right to have incomplete personal data completed, including by means of providing a supplementary statement.
  2. The data subject has the right to obtain from the controller the erasure of personal data concerning them without undue delay, and the controller is obliged to erase personal data without undue delay within the limits and in the cases provided by current legislation. The controller communicates to each of the recipients to whom the personal data has been transmitted any rectification, erasure or restriction of processing within the limits and forms provided by current legislation.
  3. The data subject has the right to obtain from the controller restriction of processing.
  4. The data subject has the right to receive the personal data concerning them, which they have provided to a controller, in a structured, commonly used and machine-readable format, and has the right to transmit those data to another controller without hindrance from the controller to which the personal data has been provided.

To exercise the above rights, the data subject must submit a request using the following contact details, through which the Data Protection Officer, if appointed by the Controller, may also be contacted.

Requests should be addressed to the Controller at the following address: evoteck@evoteck.it, which may also be used to contact the Data Protection Officer, if designated by the Controller.

This version of the privacy policy on the processing of personal data was updated on 07 May 2018.