Privacy policy

This page describes the management methods of the site in relation to the processing of personal data of users who consult it. This information is provided pursuant to art. 13 of EU Regulation 2016/679, European Regulation on the Protection of Personal Data (hereinafter, "Regulation" or "GDPR") to those who interact with the web services of the site: https://identitysuite.net This information does not concern other sites, pages or online services accessible via hypertext links that may be published on the sites but refer to resources external to the domain https://identitysuite.net

  1. DATA CONTROLLER The Data Controller, pursuant to articles 4 and 24 of EU Reg. 2016/679 is Stefano Pinato, Via Is Arenas 53, 09045 Quartu Sant'Elena, stefano.pinato@pecaruba.it
  2. PERSONAL DATA SUBJECT TO PROCESSING «personal data»: any information relating to an identified or identifiable natural person ('data subject'); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
    1. Browsing data The computer systems and software procedures used for the correct functioning of the Site acquire, during their normal operation, some personal data whose transmission is implicit in the navigation of websites. This information is not collected to be associated with identified interested parties; however, by their very nature they could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers and terminals used by users, the URI/URL (Uniform Resource Identifier/Locator) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user's IT environment.
    2. Data provided voluntarily by the interested party The optional, explicit and voluntary sending of electronic mail to the addresses indicated on this site entails the acquisition of the sender's address, necessary to respond to requests, as well as any other personal data included in the message (request for contact or information). Specific summary information will be published on the pages of the site set up for the provision of certain services.
    3. Cookies For more information on the cookies used by this website, see the cookies policy at the following link “Cookie Policy
  3. PURPOSE AND LEGAL BASIS OF THE PROCESSING. DATA RETENTION PERIOD The data collected will be processed for the following purposes:
    1. Website navigation allow you to navigate our website and other digital platforms.
      1. The legal basis for the processing is art. 6 par. 1 lett. f) of the GDPR: legitimate interest.
      2. Data retention period: until the duration of the browsing session. For browsing see the “Cookie Policy”.
    2. Data collection via contact form: allow you to obtain information about our services by requesting it on the “Contacts” page
      1. The legal basis for the processing is art. 6 par. 1 lett. b) of the GDPR: execution of pre-contractual measures adopted also at the request of the interested party.
      2. Data retention period: 1 year for contacts
      3. Nature of the Contribution: the provision of data is optional or necessary depending on the specific purpose for which the data is processed. Failure to provide data marked with the symbol * or wording (required), will make it impossible to obtain what is requested or to use the services of the data controller.
  4. TREATMENT METHODS The data processing will be carried out in an automated and manual manner, with logics strictly related to the purposes indicated and in any case in a way to guarantee the security and confidentiality of the data, by subjects specifically authorized for this purpose. Such data will be stored, as specified in the point above, for the time strictly necessary to provide you with the requested services and will in any case be eliminated following your request, without prejudice to further conservation obligations provided by law.
  5. POSSIBLE RECIPIENTS AND POSSIBLE CATEGORIES OF RECIPIENTS OF PERSONAL DATA Personal data may be communicated to third parties who carry out activities necessary for the provision of the services offered by the Site who will process the data as data controllers (art. 28 of the GDPR) and/or as natural persons acting under the authority of the Data Controller and the Data Processor (art. 29 of the GDPR). Specifically, the data will be processed by: Companies and consultants, our partners, in the field of assistance and consultancy, on the use of the system; Competent authorities for compliance with legal obligations and/or provisions of public bodies, upon request. The list of Data Processors is available at the company headquarters.
  6. TRANSFER OF PERSONAL DATA TO THIRD COUNTRIES The Data may be freely transferred outside the national territory to countries located in the European Union, but may also be transferred outside the European Union and in particular to the United States. With reference to transfers outside the territory of the European Union to countries not considered adequate by the European Commission, the Company adopts suitable and appropriate security measures to protect the Data. Consequently, any transfer of the Data to countries located outside the European Union will take place, in any case, in compliance with the appropriate and suitable guarantees for the purposes of the transfer itself, such as the standard contractual clauses for data protection, pursuant to the applicable legislation and in particular Articles 45 and 46 of the GDPR.
  7. RIGHTS OF THE INTERESTED PARTY You may assert your rights as expressed in articles 15, 16, 17, 18, 19, 20, 21 of EU Regulation 2016/679 by contacting the Data Controller. In particular, you have the right, at any time, to request:
    1. access to your personal data;
    2. the rectification or cancellation of the same or the limitation of the processing concerning him;
    3. opposition to processing;
    4. the portability of data in accordance with the terms of art. 20 cit.
    Furthermore, you have the right to object, at any time, to the processing of your data based on consent and/or legitimate interest. Without prejudice to any other administrative or judicial remedy, the interested party who believes that the processing concerning him/her violates the GDPR, has the right to lodge a complaint with the Data Protection Authority. To exercise the rights listed above, the interested party may contact the Data Controller at the contact details in this information notice.
  8. UPDATES This privacy policy may undergo changes and/or additions as a result of any subsequent regulatory changes and/or additions, the updating or provision of new services or technological innovations.