The data controller
This policy applies to the website http://www.csadocuments.com/ (“the Site”). Pursuant to Article 28 of Italian Legislative Decree 196/2003 (hereinafter “Privacy Code” or “Code”), the Data Controller for the processing of personal data is Gian Marco Di Domenico
The purpose
of processing
As more clearly explained in the sections permitting subscription–through the provision of personal data–to services reserved for Site users, user data is processed in order to fulfill the requests made specifically by users. In particular, data is collected and processed for the following purposes:
- general information requests;
The Data Controller will not use the provided data for any use other than for the service, among those listed above, to which the user has subscribed or only within the limits indicated each time in any specific information note for the different and specific service requested by the user.
Who processes the data?
The data will be provided to third parties for purposes related to the provision of the service requested by the user. These third parties will act as autonomous data controllers providing services to meet the user’s request (e.g. company delivering magazines) or with whom the data must be shared as required by law or regulations. Several data processors have been appointed. In particular, the external data processor for hosting is Dotmedia Srl.
An up-to-date list of data processors is available by request at the Data Controller’s address.
Personal data will be provided to those persons expressly authorized by the Data Controller and appointed for this purpose as data processors, who perform processing that is indispensable for the fulfillment of the aforementioned purposes. The categories of data processors are those responsible for administration, communication, accounting, legal consulting, computer system technical maintenance and marketing, depending on the specific request sent by the user via this site.
The user’s data may be transferred to a foreign country, European Union Member States or countries considered safe by the European Commission, or European Union non-Member States not appearing in the list of safe countries. In this case, we will establish specific privacy protection agreements in advance with each non-EU subject processing data, containing the standard guarantee clauses indicated by the European Commission in its decision dated February 5, 2010.
How is data processed?
All processing done for this site will use electronic or telematic means, but may also be done on paper or manually. The data will be processed for the purposes for which it was collected and in compliance with security laws in force, for the aforementioned purposes or purposes mentioned each time in any other information notes provided to the user.
Personal data will be processed only for the time strictly necessary to fulfill the purposes for which it was collected.
Types of data processed and optional provision
The forms to be completed on this site request both data strictly necessary to subscribe to elements of interest and without which the request could not be fulfilled, and optional data that is not strictly required to fulfill the request.
Browser data
During their normal operation, the computer systems and software procedures running this site collect certain pieces of personal data whose transmission is implicit in the use of Internet communication protocols. This data is not collected in order to be linked with identified interests, but could identify users through processing and associations with data held by third parties.
This type of data includes IP addresses and the domain names of the computers used to connect to the site, URI (Uniform Resource Identifier) of the resources requested, the time of request, the method used to send the request to the server, the size of the file received, the numeric code indicating the status of the reply given by the server (successful, error, etc.) and other parameters regarding the user’s operating system and computer environment.
This data is used only to compile anonymous statistics on site use and to ensure it is operating correctly, and are deleted immediately after processing. The data could be used to determine liability in the event of computer crimes damaging the site: except in this case, the data on web contacts are not kept for more than seven days.
Data provided voluntarily by the user
The personal data generally requested to use this site’s services are personal details, contact details and payment methods and addresses. When you optionally, explicitly and voluntarily send e-mails to the addresses indicated on this site or fill out an electronic contact form, your address and other personal data included in the e-mail are collected so that we can respond to your request. Specific summary information dedicated to particular services on request will be provided or displayed on the website pages. As a general rule, sensitive data as per Article 4 of Italian Legislative Decree 196/2003 is not processed (if sensitive data is processed for specific services, this will be stated and we will request the user’s explicit consent).
Cookies and other data reading/archiving technologies on the user’s device
We may use cookies (small text files placed on the user’s computer by the web server) and other data reading and/or archiving technologies on the user’s device such as fingerprinting, email trackers or Clear GIF/Beacons, to inform the server about the user’s access to that particular web page and about info obtained from the system-legible parameters through functions contained in the Web page, to personalize and facilitate users’ browser experience and, in some cases, with their consent, to enrich user profiling for advertising and/or commercial purposes. Cookies may be “temporary” (called session cookies, which are deleted at the end of the connection) or “permanent” (are saved on the user’s hard disk, unless the user deletes them).
The cookies used by our website come under the two categories mentioned by the Italian Data Protection Officer (“Privacy Officer”) with the “Cookies measure” dated May 8, 2014, which the Data Controller follows regarding information and the need and terms of obtaining consent. In particular, this information is an extension of the summary banner already seen by the user when connecting to the website.
Below we provide details on the cookies and other profiling technologies used for each of the sites governed by this policy.
A. Based on the aforementioned Privacy Officer measure, the site uses
“Technical Cookies”, i.e. ones strictly necessary for site operation and/or for providing a service specifically requested by the user. This type of cookie includes analytics used by the site owner to collect aggregate information on the number of users and how they visit the site. We do not require the user’s consent to use this type of cookie, unless he or she expressly refuses consent for one or all technical cookies (listed below):
- CMS Cookies
- Our own or third-party “Profiling Cookies”, i.e. cookies that may be used to create or add to user profiles and used to send and/or display advertising messages in line with the interests shown by the user during browsing. The user’s (optional) consent is always required for this type of cookie. The user may choose which profiling cookies or fingerprinting/Clear GIF/Beacon technologies to consent to. For third-party cookies or technologies, i.e. ones installed or used on the site by third parties, the user grants or refuses consent directly to the owner of the cookie and/or technology in question, which the Data Controller simply indicates with a link.
- The following profiling/non-technical cookies and/or other beacons/Clear GIF/email trackers technologies are used:
- Third party
|
Type of cookie and owner |
Cookie technical name |
Purpose |
Additional information |
|
|
Facebook cookie |
Cookie used to insert Facebook buttons on the site |
|
|
|
Twitter cookie |
Cookie used to insert Twitter buttons on the site |
|
|
|
Google+ cookie |
Cookie used to insert Google+ buttons on the site |
|
|
|
YouTube Video Embedding cookie |
Cookie allowing the display of YouTube videos on the site |
|
|
|
Google Analytics cookie |
Cookie for the Google Analytics service |
How to disable services installing cookies on the Site
You can manage or deactivate cookies directly in your browser’s settings.
For more information on how to configure your cookie preferences in your browser, visit:
To oppose the use of profiling tools other than cookies (e.g. beacons/Clear Gif/email trackers), please contact the Data Controller at pec@pec.consorziocsa.it.
Other persistent cookies and session cookies (not saved on the user’s computer that are deleted when the browser is closed) only send session identifiers (composed of random numbers generated by the server) which are required for secure and effective site browsing. So-called session cookies are used by the site to avoid using other techniques that might compromise the confidentiality of the user’s browsing, and do not permit the collection of personal data that might identify the user.
The rights of the concerned users
The subjects to whom the personal data refer are entitled to receive confirmation of the existence or non-existence of the data, information on the content and origin, to verify the correctness of the data or request data integration, update or correction (Article 7 of Italian Legislative Decree 196/2003).
The same article entitles users to request the deletion, transformation in anonymous form or blocking of any data processed in violation of the law, and to oppose their processing for legitimate reasons. Requests should be sent to the Data Controller’s postal address or by e-mail to pec@pec.consorziocsa.it.
