INFORMATION ON THE METHODS FOR PROCESSING PERSONAL DATA OF USERS OF THE https://villaaurelia.it/ WEBSITE
This page describes how the personal data of users of the website https://villaaurelia.it/ (hereinafter, the “Site”) are processed. This information is also provided pursuant to Article 13 of EU Regulation No. 679/2016 (hereinafter, also “General Data Protection Regulation” – “GDPR”) and Legislative Decree No. 196 of 2003, as amended by Legislative Decree No. 101 of 2018.
THE DATA CONTROLLER
Following consultation of the Site, data relating to identified or identifiable persons may be processed. The owner of their processing is JANUS S.r.l. (C.F. 07827201000), with registered office in Rome (00153), Largo di Porta San Pancrazio n. 1, in the person of its legal representative pro tempore (hereinafter also referred to as the “Company” or “JANUS” or “Data Controller”).
WHAT DATA WE PROCESS AND WHY
NAVIGATION DATA. The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified interested parties, but by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users who connect to the site, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and IT environment. This data is used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct operation and is deleted immediately after processing. The data could be used to ascertain responsibility in the event of hypothetical computer crimes to the detriment of the site: apart from this eventuality, at present the data on web contacts do not persist for more than seven days.
DATA PROVIDED VOLUNTARILY BY THE USER. The optional, explicit, and voluntary sending of electronic mail to the addresses indicated on this site entails the subsequent acquisition of the sender’s address, which is necessary to reply to requests, as well as any other personal data included in the message. Specific summary information is provided or displayed on the pages of the site set up for services on request.
LEGAL BASIS FOR PROCESSING
The provision of navigation data collected automatically during the use of this Application, unless otherwise specified, is mandatory. If the User refuses to communicate them, it may be impossible for this Application to provide the Service. In cases where this Application indicates certain Data as optional, Users are free to refrain from communicating such Data, without this having any consequence on the availability of the Service or its operation.
PLACE OF DATA PROCESSING
Data processing related to the web services of this site takes place at the offices of the External Data Processor, which processes the Data on behalf of the Data Controller based on a specific legal act pursuant to Article 28 of the GDPR. In particular, the data are handled only by technical staff authorised and trained for this purpose, or by any persons in charge of occasional maintenance operations. No data deriving from the web service is disseminated externally.
Personal data are processed by automated tools for the time strictly necessary to achieve the purposes for which they were collected. Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorised access.
RIGHTS OF THE DATA SUBJECTS
The data subject in relation to the processing of his or her personal data may exercise his or her rights pursuant to Articles 15 et seq. of the GDPR. In particular, he/she may request from JANUS at any time, in the manner and within the limits provided by the legislation:
– confirmation as to whether your personal data is being processed and, if so, to obtain access to that data
– the rectification of inaccurate and/or incomplete data stored by JANUS;
– the cancellation of the data you have provided to JANUS;
– the restriction of data processing;
– to receive, in a structured, commonly used and machine-readable format, the personal data that concerns you and also to transmit such data to another data controller;
– to revoke your consent, if given, to the use of your personal data by JANUS, without prejudice to the lawfulness of the processing based on your consent before revocation.
Finally, you also have the right to lodge a complaint with the Garante per la protezione dei dati personali.
Requests for the exercise of rights should be sent to the e-mail address: firstname.lastname@example.org.