Information on personal data processing (Article 13 EU Regulation 679/2016) for the website www.jeckerson.com owned by Jeckerson S.p.a.
This is a disclosure pursuant to art. 13 of EU Regulation 679/2016 for the users of the Website services. The following indications are related to the gathering of personal data on the Internet and aim to identify the minimum measures that must be used towards those concerned, to ensure the transparency and lawfulness of such procedures.
As for Articles 4, 37-39 of Regulation (EU) 679/2016 (hereinafter also Regulation)
Personal data: any information relating to an identified or identifiable natural person (data subject); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Usage Data: : this information is automatically collected by this Application (or by third-party applications that this Application uses), among which: IP addresses or domain names of computers used by the user that connects with this application , the addresses in the notation URI (Uniform Resource Identifier), the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response from the server (good order, error, etc.) the country of origin, the browser’s features and the operating system used by the visitor, the timing of the visit (for example the time spent on each page) and the details of the itinerary followed within the application, with particular reference to the sequence of pages consulted, to the operating system parameters, to the User’s technological environment.
Profiling: any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location or movements.
User: the data subject who uses this application, who must coincide with the interested party or be authorized by him to process personal data on his behalf.
Processing: any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Controller: : the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
Processor: a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller;
Application or Platform: the hardware or software tools used to collect the user’s data
Data Protection Officer (DPO): designated in determinate cases as per art. 37 of the General Data Protection Regulation. The DPO carries out consultancy, monitoring, coordination and management with the GDPR Supervisory Authority.
1. DATA CONTROLLER
The “Data Controller” of your personal data processed as a result of the use of this website, pursuant to art. 26 of Regulation (EU) 679/2016, is Jeckerson S.p.a.- Via dello Scalo n. 5 – Bologna.
2. PURPOSE AND LAWFULNESS OF DATA PROCESSING
Users accessing this site or using the “CONTACTS” service shall voluntarily provide the following information:
•”CONTACTS“: a service provided to the website users interested in receiving information about the services provided by the Data Controller. The personal data required to access this service are personal data and contacts relating to the user, such as the User’s Name, Surname, Address, City, Province, State, E-Mail, Telephone number.
Users’ data deriving from the services provided are used for the sole purpose of performing the service itself or the provision / information requested and will not be disclosed to third parties. The Data Controller has determined the purposes of the processing according to the performances of its own activities.
3. LEGAL BASIS OF TREATMENT
Using the “CONTACTS” service, the interested party expresses his consent to the processing of his personal data for the purposes described above in art. 6, paragraph 1, letter a) of GDPR Regulation (EU) 679/2016.
4. LEGAL INTERESTS PERFORMED BY THE DATA CONTROLLER
At the same time, the Data Controller, for direct marketing purposes, pursues its own legitimate interests pursuant to art. 6, paragraph 1 letter f) of GDPR Regulation (EU) 679/2016, and can send newsletters and promotional and informational communications regarding events and services offered by the Data Controller.
The newsletters are sent by MailPoet, a service offered by the European service provider https://www.mailpoet.com/privacy-notice/ or by ElasticEMail https://elasticemail.com/resources/usage-policies/privacy-policy/, a Canadian service provider whose data protection benchmark matches the European.
5. COMMUNICATION AND RECIPIENTS OF PERSONAL DATA
Communication of personal data will take place only and exclusively to employees and direct collaborators of the Data Controller for the sole purpose of performing the services requested by the user, unless the communication is imposed by law.
The optional, explicit and voluntary sending of e-mails to the e-addresses indicated on the website implies, by its very nature, the acquisition of the sender’s email, necessary to reply to all requests, as well as any other personal data included in the message.
We invite our users, in eventual service requests or questions, not to send names or other personal data of third parties that are not strictly necessary, nor data defined as “sensitive and/or particular” according to art. 9, 10 of Regulation (EU) 679/2016 within the limits and for the purposes specified in this statement.
6. PROCESSING METHODS AND MEANS
Personal data are processed with automated tools, for the time necessary to achieve the purposes for which they were collected.
Specific security measures are strictly followed to prevent data loss, illicit or incorrect use and unauthorized access in compliance with the obligations to adapt appropriate security measures. All data will be acquired and stored in compliance with articles 32, 33 and following of EU Regulation 679/2016.
The Data Controller is not responsible for errors, contents, cookies, publications of immoral illicit content, advertising, banners or files that do not comply with the regulations in force by sites not managed by the same.
7. TRANSFER OF DATA TO A THIRD COUNTRY
No data will be transferred to third countries, except for the data necessary to generate newsletters that are transferred to the Mailpoet service provider.
8. AUTOMATED DECISION-MAKING PROCESSES
There is no automated decision-making process.
9. DURATION OF THE DATA PROCESSING
The personal data acquired, also by means of the “CONTACTS” service, will be carried out for the necessary time to perform the activities requested by the User and in any case never for more than 24 months.
The storage time may be prolonged and subsequently involve the acquisition of further data, in the event that the user himself requests services or purchases goods; in this case the duration of the treatment, for administrative, accounting, tax and contractual purposes may be extended up to 10 years from the termination of the relationship, as stated by current regulations (Article 2220 of the Civil Code, Article 22 of the Presidential Decree Republic of 29/09/1973 No. 600 and Article 2200 of the Civil Code).
Technical navigation cookies (described below) are maintained to allow the correct technical functioning of the site and shall expire automatically when the browser is closed.
10. DATA PROCESSED DURING NAVIGATION
The computer systems and software procedures used to operate this website acquire some personal data as a default operation, and the transmission of this data is implicit as for the Internet communication protocols. This information is not collected to be associated with the identified party but for its nature it could allow users to be identified through processing and association with data held by third parties.
This category of data includes IP addresses or domains used by users who connect to the site, URL addresses (Uniform Resource Locator) of the requested resources, the time of request, the method used to submit the request to the server, the response file size, the numerical code indicating the response status given by the server (completed, error, etc.) and other parameters relating to the operating system and the user’s computer environment.
These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its proper functioning and are deleted immediately after processing.
The data in question could be used to ascertain responsibility in case of cybercrimes against our website.
11. RIGHTS OF THE DATA SUBJECT
The subjects to whom the personal data refer to, pursuant to art. 13 of the EU Regulation 679/2016, have the right at any time to obtain confirmation of the existence or otherwise, of their data and to know its content and origin, verify its accuracy or request to integrate, update, or rectify them. Data subjects also have the right to request cancellation of data, transfer data, transform them into anonymous form or block any data processed in violation of the law, and to oppose, for legitimate reasons, to their treatment. The interested parties also have the right to make a notice to the Supervisory Authority.
Requests related to Article 13 of EU Regulation 679/2016 must be addressed to the Data Controller at Jeckerson S.p.a at telephone number or via PEC.
Rights of the Data Subject
European regulation 679/2016art. 13 “Information to be provided when personal data are collected from the data subject”
1.1. When personal data relating to a data subject are collected directly from the data subject, the controller shall provide the data subject with all of the following information at the time when the personal data are obtained:
a) the identity and the contact details of the controller and, where applicable, of the controller’s representative;
b) the contact details of the data protection officer, where applicable;
c) the purposes of the processing for which the personal data are intended, as well as the legal basis for the processing;
d) d. where the processing is based on article 6, paragraph 1, point f, the legitimate interests pursued by the controller or by a third party;
e) the recipients or categories of recipients of the personal data, if any;
f) f. where applicable, the fact that the controller intends to transfer personal data to a third country or international organization and the existence or absence of an adequacy decision by the Commission, or in the case of transfers referred to in article 46 or 47, or the second subparagraph of Article 49 (1), reference to the appropriate or suitable safeguards and the means by which to obtain a copy of them or where they have been made available.
2. In addition to the information referred to in paragraph 1, the controller shall, at the time when personal data are obtained, provide the data subject with the following further information necessary to ensure a fair and transparent processing:
a) the period for which the personal data will be stored, or if that is not possible, the criteria used to determine that period
b) the existence of the right to ask the controller access and rectification or erasure of personal data or restriction of processing concerning the data subject or to object to the processing, as well as the right to obtain data portability;
c) where the processing is based on point (a) of Article 6, paragraph 1, or point (a) of Article 9, paragraph 2, the existence of the right to withdraw consent at any time, without affecting the processing lawfulness based on consent before its withdrawal;
d) the right to lodge a complaint with a Supervisory Authority;
e) whether the provision of personal data is a statutory or contractual requirement, or a requirement necessary to enter into a contract, as well as whether the data subject is obliged to provide the personal data and the possible consequences of failure to provide such data;
f) f. the existence of automated decision-making, including profiling, referred to in Article 22, paragraph 1 and 4 and, in those cases, meaningful information on the logic involved, as well as the implication and the possible consequence of such processing for the data subject.
- 3. Where the controller intends to further process personal data for a purpose other than that for which the personal data were collected, the controller shall provide the data subject with information on such other purposes prior to the further processing and with any relevant added information as referred to in paragraph 2.
- 4. Paragraphs 1, 2 and 3 shall not apply where and insofar the data subject already has the information.
12. WHAT ARE COOKIES?
Cookies are text files stored on the user’s computer or mobile device (smartphone or tablet), from the server of a website accessed by the user; this file can be read or retrieved by the server that installed it upon visiting the site again. Cookies contain information (i.e. the server it comes from, a numeric identifier, the cookie expiration, etc.) and allows the website that installed it to remember, for example, the preferences expressed by the user while browsing or making a purchase, to access restricted areas upon authentication, or to monitor sessions.
While browsing, the user can receive cookies sent from different sites or web servers (so-called third parties) on his terminal that could contain elements (i.e. images, maps, sounds, specific links to pages of other domains) that could appear on the site that the user is visiting.
More generally, some cookies (called ‘session cookies’) are assigned to the user’s device only for the duration of access to the site and expire automatically when the browser is closed. Other cookies (defined ‘persistent’) remain in the device for a prolonged period of time.
Cookies are text files stored on the computers of web users to allow safe and efficient website browsing while monitoring its use. This website uses two types of technical cookies: session cookies for authentication (online services) and tracking cookies/statistical profiling (Google Analytics).
As defined in the previous paragraph, cookies are text files that are stored on the computers of web users to allow safe and efficient exploration of the site and monitor its use.
This website https://www.jeckerson.com does not use profiling cookies aimed at creating user profiles to send advertising messages in line with the preferences expressed by the user while surfing the net.
This https://www.jeckerson.com also does not use third-party cookies.
Technical session cookies (necessary for the use of online services). The website https://www.jeckerson.com uses http session cookies to manage the authentication to online services. The use of session cookies (which are not stored permanently on the user’s computer and are deleted by closing the browser) is strictly limited to the transfer of session identifiers (consisting of random numbers generated by the server) necessary in order for the website to be explored safely and efficiently. If these cookies are disabled, online services will not be available.
Technical monitoring cookies / statistical profiling (Google Analytics). Monitoring cookies can be disabled without any consequence on the website navigation: to disable them, see the next section.
The Data Controller uses Google Analytics of the Google company, Inc. (hereafter “Google”) for the generation of statistics on the use of the web portal.
According to current terms, Google will use this information, as an independent Data Controller, to trace and examine the use of the website, collect reports on the website activities for the website operators, and provide further information on services related to the website activity, to the connection platforms (mobile, PC, browser used, etc.) and to the website search and access procedures. Google may also transfer this information to third parties where required to do so by law or where the eventual third parties process the information on Google’s behalf. Google will not associate the IP addresses with any other data held by Google.
To learn more about the privacy policies of Google, please visit the website https://policies.google.com/privacy?hl=it.
By using the website www.jeckerson.com you consent to Google processing your data with the methods and for the purposes indicated above.
How to disable cookies (opt-out). You can disable cookies by changing your browser’s settings: unauthenticated navigation on the Controller’s portal will still be available in all its functions. Below we provide links that explain how to disable cookies on the most popular browsers (for other browsers, we suggest looking for this option in the software ‘help’ section that can be reached through the F1 key):
- Internet Explorer: https://support.microsoft.com/it-it/help/17442/windows-internet-explorer-delete-manage-cookies
- Google Chrome: https://support.google.com/chrome/answer/95647?hl=it-IT&p=cpn_cookies
- Mozilla Firefox: https://support.mozilla.org/it/kb/Bloccare%20i%20cookie?redirectlocale=en-US&redirectslug=Blocking+cookies
- Apple Safari: https://www.apple.com/legal/privacy/it/cookies/
Alternatively, you can disable exclusively the Google Analytics cookies, using the opt-out setting supplied by Google to the main browsers. In this case, the online services offered by the Controller can still be used.
Hosting and backend infrastructure. This type of service is meant to host data and files that allow this application to work, consent distribution and provide a ready-to-use infrastructure to deliver specific features of this application. Some of these services work through servers located in different geographical areas, making it difficult to determine the exact location where Personal Data is stored.
The domain jeckerson.com is activated on the hosting service www.1api.net supplied by 1 API GmbH https://www.1api.net/legal/privacy_policy.
14. HOW TO DISABLE COOKIES IN THE MOST POPULAR BROWSERS
Click the browser menu in the toolbar next to the url input.
Click below on Show Advanced Settings.
Under Privacy, click on the Content Settings button.
- 1. In the Cookies section, select your cookie settings:
- 2. Allow sites to save and read cookie data;
- 3. Keep local data only until you quit your browser;
- 4. Block third-party cookies
- 5. Prevent third-party websites from saving and reading cookie data;
- 6. Manage exceptions for some websites;
- 7. Clear one or more cookies.
Launch Mozilla Firefox.
Click the browser menu in the toolbar next to the url input.
Under “Privacy” click on “Content Settings.”
Click on “Show Advanced Settings.”
- 1. Keep Tracking Protection on as you browse;
- 2. Allow websites to track you;
- 3. Never: Turns off Tracking Protection for all sites.
If you select: Firefox will Use custom settings for history:
- 1. Enable “Always use private browsing mode” and choose among the following:
Remember my browsing and download history
Remember search and form history
Accept cookies from sites
Accept third-part cookies (Always, Never)
Keep until (they expire, Firefox closes, ask each time)
- 2. Clear history when Firefox closes.
Launch Internet Explorer.
Click on Tools and choose Internet Options.
Click on Privacy and in Settings slide your cookies choice:
- Disable all cookies;
- Enable all cookies;
- Select sites for cookie enablement: slide the cursor to an intermediate position so cookies aren’t completely disabled or enabled. Click on “Websites” and enter the websites that should be Blocked or Allowed.
Click Safari, select Preferences and then click Privacy.
In the Block Cookies section, choose how cookies should be enabled.
Click on Details to see which websites stored cookies
Safari iOS (mobile devices)
Launch Safari iOS.
Touch Settings and Safari
Touch Block Cookies and choose among the following options: “Never”, “Third Parties or Ads” or “Always”.
To cancel all stored cookies, touch Settings, Safari and at last Cancel Cookies and data.
Click on “Preferences”, “Advanced” and “Cookies”.
Select one of the following options:
- Accept all cookies;
- Accept only cookies from the websites you visit: third-party cookies or cookies coming from different domains will be blocked
- Don’t accept cookies: no cookies will be stored.