This information (or “privacy policy”) is made in compliance with the current legislation on the protection of personal data and, in particular, in accordance with EU Regulation 2016/679 on the protection of individuals with regard to the processing of personal data , as well as the free circulation of such data (so-called “GDPR”) and of Legislative Decree no. 196/2003 (Code regarding the protection of personal data, so-called “Privacy Code”) with reference to the processing of personal data of users who access the site www.dianabrown.it.
This Privacy Policy aims to describe in a simple and transparent way to users which personal data are processed, for what purpose, by whom and with which modalities and inform them about the measures that are applied to protect their rights and their freedoms.
This Privacy Policy, therefore, concerns only this site and is not also made for other websites that may be consulted by the user through links.
Index
-
- Data controller
- Purpose of the processing
- Provision of personal data
- Which data are processed
- Methods of data processing
- To whom can the data be communicated?
- What are the rights of the interested parties?
- Right of revocation and opposition
Data controller
The data controller of the personal data of the user is Mrs. Elena Villini, with registered office in Lipari vico Himera n.3 , C.F. VLLLNE76E54E606K, e-mail: info@dianabrown.it
2. Purpose of the processing
1. By accessing and consulting this site, as well as taking advantage of the services offered to users through the site, information relating to users as identified or identifiable natural persons can be collected and processed. In the event that personal data are acquired, the same, in compliance with the current legislation on the protection of personal data, will be processed solely to pursue the following purposes:
a) purposes strictly connected and instrumental to allow access and use of the site, its features and services required;
b) to fulfill any obligations provided for by law and European legislation;
c) for operational and management needs within the Owner and related to the services offered through the site;
d) in a completely anonymous and aggregate form, for statistical purposes;
2. The data collected by users who use the site for the purposes indicated in the previous point could also be used for other purposes, but for each further processing will be required to users an explicit and explicit consensus. In this way, the data collected by users can only be used if the user freely and clearly consents to each further processing.
3. Provision of personal data
1. The provision of personal data is mandatory for the purposes referred to in Article 2, paragraph 1, because the legal basis of the processing is the implementation of the services requested by the user, or the use of the site and any additional service that may be requested expressly (as in the case of the newsletter and the forum) made available through the site. An eventual refusal to the relative treatment can therefore prevent the execution of the requested services; however, it will be possible to consult the Site without providing any personal data, even if some features may not be available and some services not provided.
2. In particular, the consequences of any refusal to provide personal data will always be explicitly and specifically related to each service: for purposes of example, any refusal to the related processing may prevent the consultation of the Site and its functionality (in the case of cookies) or the receipt of the newsletter (in the case of the newsletter service offer). Therefore, the user will be adequately informed in the manner provided for each specific case, but in any case may consult the website even denying consent to the processing of personal data, where required; in this case, some features or features of the site could be disabled.
4. What data are processed?
Depending on the service provided, personal data of different types may be processed, as specified in this article.
4.1 Navigation data
The computer systems and software procedures used to operate this site acquire, during their normal operation, some personal data whose transmission is implicit in the navigation of websites. This information is not collected to be associated with identified interested parties; however, by their very nature they could, through processing and association with data held by third parties, allow users to be identified. These include the IP addresses or domain names of the computers used by users connecting to the site, the URL addresses of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server and other parameters related to the operating system and to the platform used by the user. The above data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning; they are deleted immediately after processing. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site: except for this eventuality, at present the data on web contacts do not persist for more than seven days. Regarding cookies, please refer to par. 4.3 that follows.
4.2.1 Data provided voluntarily by the user (communications)
The optional, explicit and voluntary sending of communications by means of contact forms on the site or by e-mail to the addresses indicated on this site, entails the subsequent acquisition of the data communicated by the user, including his e-mail address, and consent to receive any reply messages to their requests.
The personal data supplied in this way are used only to satisfy or give feedback to the requests transmitted and are communicated to third parties only if this is necessary for this purpose.
4.2.2 Data provided voluntarily by the user (to receive communications for marketing and / or commercial promotion purposes)
In the sole case in which personal data (in particular, e-mail address and telephone number) are provided by the interested party in the context of a service requested by the same, the data thus provided may be used to send communications via e-mail relating to to services similar to those previously requested by the user, pursuant to art. 130, paragraph 4 of Legislative Decree 196/2003, without the need for express and prior consent (so-called soft spam). In any communication, in any case, the user is reminded that he can revoke the consent at any time and without formalities. The data are deleted at the request of the interested party.
4.3 Cookie
Cookies What are? Cookies are information stored by the browser when a website is visited with any suitable device (such as a PC, tablet or smartphone). Each cookie contains different data (for example, the name of the server it comes from, a numerical identifier, etc.), it can remain in the system for the duration of a session (until the browser is closed) or for long periods and can contain a unique identification code.
What are they for? Cookies are used for different purposes depending on their type: some are strictly necessary for the proper functionality of a website (technical cookies), while others optimize the performance to offer a better user experience or allow you to acquire statistics on ‘use of the site, such as cookies analytics or allow you to display personalized advertising, such as profiling cookies.
Consent: any provision of user consent is stored by Mrs. Elena Villini through a technical cookie, with a duration of 12 months. The user is informed both by means of the short notice (banner displayed until consent is given or denied, as explained in paragraph 4.4.3. “How to disable cookies?”) And through this extended information; furthermore, in paragraph 4.4.3 the links to the privacy policies of the third parties are indicated, also for the purposes of their disabling (where directly available through the same). How to disable them? It is possible to disable cookies either through the browser settings (section 4.4.3 “How to disable cookies?”) Or through the mechanisms made available by some third parties (section 4.4.2 “Cookies used on the site”).
4.4.1 General types of cookies used on the site
Technical cookies (first part): they are essential for the proper functioning and visualization of the site and to store the user’s consent to the use of cookies.
Analytical cookies (first part): they are used for the purposes of aggregated analysis of site visits.
Analytical cookies (third part): they are used for the purposes of aggregated analysis of site visits, through the use of a third-party service.
Profiling cookies (third part): they are used to create profiles related to the user and are used to send advertising messages in line with the preferences expressed by the same in the context of surfing the net, through the use of a third-party service , including the advertising concessionaire for most of them. The names of third parties and links to relevant information are available in the next paragraph.
4.4.2 Cookies used on the site
First-party cookies: technical cookies are used for the following purposes: to store the user’s preference regarding cookies, the indication of the possibility to scroll through the screen on mobile devices, authentication in the session (for the area only) reserved for staff).
Third-party cookies: several third-party cookies are used. Below are the links to the privacy policies of the related third parties, also for the relative and specific disabling (without prejudice to the provisions in section 4.4.3, “How to disable cookies?”):
• Google Analytics: http://www.google.com/intl/it_ALL/analytics/learn/privacy.html (for disabling – opt-out): https://tools.google.com/dlpage/gaoptout), http://www.google.com/ads/preferences (to disable Google ads – Doubleclick based on web interests);
For cookies resulting from sharing via social networks, refer to each social network (because the cookies are related to the same):
• Facebook: https://www.facebook.com/about/privacy/cookies;
• Google+: https://www.google.com/policies/technologies/cookies/;
4.4.3 How to disable cookies?
Browser control: The commonly used browsers (eg, Internet Explorer, Firefox, Chrome, Safari) accept cookies by default, but this setting can be changed by the user at any time. This applies to both PCs and mobile devices such as tablets and smartphones: it is generally and widely supported. Therefore, cookies can easily be deactivated or disabled by accessing the options or preferences of the browser used and generally only third-party cookies can be blocked; in general, these options will only take effect for that browser and on that device, unless there are no options to unify preferences on different devices. Specific instructions can be found in the options or help page of the browser. The disabling of technical cookies, however, may affect the full and / or proper functioning of different sites, including this site. As a rule, the browsers used today:
• offer the “Do not track” option, which is supported by some websites (but not all). In this way, some websites may no longer collect certain browsing data; • offer the option of anonymous or incognito browsing: in this way no data will be collected in the browser and the browsing history will not be saved, but navigation data will still be available to the operator of the website visited;
• allow you to delete cookies stored in whole or in part, but the new visit to a website are usually installed where this possibility is not blocked. The links to the support pages of the most popular browsers are indicated (with instructions on how to disable cookies on these browsers): • Firefox (https://support.mozilla.org/it/kb/Attivare%20e%20disattivare%20i%20cookie);
• Internet Explorer (http://windows.microsoft.com/it-it/internet-explorer/delete-manage-cookies#ie=ie-11);
• Safari (iOS) (https://support.apple.com/it-it/HT201265);
• Chrome (desktop: https://support.google.com/chrome/answer/95647?hl=en; Android and iOS https://support.google.com/chrome/answer/2392971?hl=en). Third-party cookies: third-party cookies can be disabled both in the manner described above and referring to each third party (following the links indicated in the previous paragraph). Online tools: it should be noted that from the website http://www.youronlinechoices.com/it/ it is possible not only to acquire further information on cookies, but also to verify the installation of numerous cookies on your browser / device and, where supported, also to disable them.
5. Methods of data processing
1. 1. Personal data are processed in a lawful and correct manner and used only for the purposes indicated in art. 2. The processing will be carried out using appropriate tools to ensure the security and confidentiality of personal data and with automated tools for storing, managing and transmitting the data. Specific security measures are adopted to prevent data loss and contain the risks of illicit or incorrect use and unauthorized access and personal data will be kept for the time prescribed by law and, in any case, for the time strictly necessary to follow up on the activities for which they were collected (for example, to find the request sent via the contact form on the site) and / or until the revocation of the consent given for the purposes referred to in art. 2, paragraph 1, lett. e) and f).
6. To whom can the collected data be communicated?
1. The treatments connected to the web services of this site take place at the premises of Mrs. Elena Villini and are only handled by technical staff specifically responsible for processing, internal and / or external to the same. In particular, where necessary only with prior consent, the data may be disclosed to third parties whose collaboration with Mrs. Elena Villini may and / or must use for the performance of the services offered. The data acquired via the web, or in any case deriving from web services, may be communicated to the technological and instrumental partners of which the Data Controller makes use of the services requested by users, always in compliance with the purposes indicated in art. 2. To this end, the subjects who will have access to personal data will be specifically authorized for processing by the Data Controller and, if due, appointed as Data Processors, pursuant to Arts. 28 and 29 of the GDPR.
2. The data collected for the purposes set out above may also be disclosed to companies connected to the Data Controller and to persons authorized for this purpose by provisions of law and European legislation.
3. A list of the subjects to whom the Data Controller communicates the personal data collected for the aforementioned purposes is available and can be consulted at the Data Controller’s office and can be requested at the addresses indicated.
7. What are the rights of the interested parties?
1. The interested party is the natural person, identified or identifiable, to whom the personal data object of treatment refer and, therefore, the user who accesses the site and who, if necessary, requests the provision of services by Mrs. Elena Villini.
2. Each party has the right to access at any time the data concerning him / her treated by the Data Controller (access right) in order to verify the correctness and to verify the lawfulness of the processing performed. The interested party may also exercise all the rights recognized by the current national and European legislation on the protection of personal data (from Legislative Decree 196/2003 and from EU Regulation No. 2016/679 and subsequent amendments and additions): in particular, it may request at any time the correction and updating of incorrect or inaccurate data, the limitation of the processing performed and the cancellation of the same (right to be forgotten), as well as proposing a complaint to the Authority for the protection of personal data .
3. With reference to personal data processed by automated means, the data subject may also receive data relating to him in a structured and commonly used form and transmit them, if necessary, to another data controller (right to data portability).
8. Right of revocation and opposition
1. Each party is also entitled to revoke the consent granted at any time, without prejudice to the lawfulness of the processing performed by the Data Controller before such revocation.
2. The interested party is also always entitled to oppose the processing of data concerning him if it was carried out for direct marketing purposes by the Data Controller; in this case, your data will no longer be processed for these purposes, depending on the specific consent previously issued, by the Data Controller or any third party (right of opposition).