This information is provided in compliance with art. 13 of Regulation 2016/679 (hereinafter “GDPR”), to users who access the website www.intuity.it and is related to all personal data processed in accordance with the methods indicated below.
- Directive 2002/58/EC – on “the processing of personal data and the protection of privacy in the electronic communications sector”
- Regulation (EU) 2016/679 of the European Parliament and Council of 27 April 2016 concerning the protection of individuals with regard to the processing of personal data, as well as the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation).
THE DATA CONTROLLER
The Data Controller of the personal data collected is IMQ Intuity S.r.l., with registered office in via Marco Fabio Quintiliano, 45, 20138 Milano (MI), e-mail: firstname.lastname@example.org.
TYPES OF DATA PROCESSED
The computer systems and software procedures responsible for the operation of this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This is information that is not collected to be associated with identified data subjects, but that by their very nature could, through processing and association with data held by third parties, allow to identify users. This category of data includes the IP addresses or domain names of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) notated addresses of required resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numeric code indicating the status of the response given by the server (good end, error, etc.) and other parameters related to the operating system and the computer environment of the user. This data is used only for the purpose of obtaining anonymous statistical information on the use of the site, to check its correct functioning and are deleted immediately after processing. The data could be used to ascertain liability in case of hypothetical cybercrime against the site.
Cookies are small text files containing a certain amount of information exchanged between a website and the user’s terminal (usually the browser). They are mainly used for making websites work and making them operate more efficiently, as well as to provide information to the owners of the site itself. Cookies can be both session and persistent. Session cookies remain stored in the terminal for a short period of time and are deleted as soon as the user closes the browser. Their use is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to allow safe and efficient browsing of the site. Persistent cookies, however, remain stored in the user’s terminal until a fixed deadline. These, not being deleted directly when the browser is closed, allow you to remember the choices made by the user on your site and to collect information about the pages of the site visited by the user, the frequency with which the site is visited and to identify the navigation path of users, in order to improve the experience on this site. Cookies, session or persistent, can be First Party or Third Party depending on whether the subject that installs cookies on the user’s terminal is the same operator of the site that the user is visiting (we will then talk about cookies First Party Cookies) or a different subject (we will then talk about Third Party Cookies).
Cookies used by this site
The table below shows, in detail, the cookies on the website.
|COOKIE NAME||DEFAULT EXPIRATION||TYPOLOGY||COOKIE DESCRIPTION|
|_ga||Default deadline set after 2 years||Third party||This cookie is associated with Google Universal Analytics and is used to offer an update to Google Analytics services. It is used to distinguish users by assigning each of them a randomly generated number as a client identifier. It is used to calculate the number of page visitors, sessions and data in order to produce analysis reports.|
|_gid||Default deadline is 24 hours||Third party||This cookie is associated with Google Universal Analytics|
|_gat||Default deadline is 24 hours|
Default deadline is every 10 minutes
|Third party||This cookie is associated with Google Analytics, it is used to speed up access requests|
|__cfduid||Default deadline is 1 month||Functional||This cookie is a CDN content delivery network, a distributed system of servers from which content is taken rather than being provided by a single one. Cloudflare cookies do not actually track users, but provide essential services of availability and security for SiteGround’s operations.|
Normally browsers allow the control of most cookies through the settings of the browser itself. Please note, however, that disabling all or part of the c.d. technical cookies may compromise the use of the site’s functionality. However, if the user does not want to receive any type of cookies on his computer, neither from this site, nor from others, can raise the level of privacy protection by changing the security settings of the browser:
LEGAL BASIS FOR PROCESSING
For any personal data freely conferred by the user through the services offered within the website, the Data Controller is entitled to process the data as the processing is necessary to perform the pre-contractual measures requested by the user himself (art. 6, par. 1, lett. b) of the GDPR) or is legitimated because the user has given consent to a certain activity (art. 6, par. 1, lett. a) of the GDPR). Further, the Data Controller may process your data where required by a legal obligation to which the Data Controller is subject, such as the request for information on online activities by the competent authorities (art. 6, par. 1, lett. c) of the GDPR. More information on the legal bases of the processing activities will be reported in the specific information notices.
The purposes of the Data Controller for the use of the website:
- to promote the consultancy activity of IMQ Intuity;
- carry out didactic activity on issues related to cyber-security,
- receiving applications for staff selection.
OPTIONAL NATURE OF DATA PROVISION
Apart from what is specified for navigation data, the user is free to provide their personal data. However, failure to provide them, may make it impossible to obtain what is required. It is not mandatory to acquire the user’s consent to the use of only technical cookies or third-party or analytical cookies similar to technical cookies. Their deactivation and/or refusal to operate will result in the impossibility of proper navigation on the Site and/or the inability to use the services, pages, features, or content available. For all other types of cookies (e.g. marketing and profiling) the Data Controller will require specific consent
METHODS OF PROCESSING
Personal data are processed, also by means of automated tools for the time strictly necessary to achieve the purposes for which they were collected, providing in any case for the annual verification of the data stored, in order to delete those deemed obsolete, unless the law provides for storage obligations. Specific security measures are observed to prevent data loss, unlawful or incorrect use and unauthorized access. The Data Controller has adopted all the minimum-security measures provided by law and inspired by the main international standards, has also adopted additional security measures to minimize the risks related to confidentiality, the availability and integrity of personal data collected and processed.
Personal data are processed with automated tools for the time strictly necessary to achieve the purposes for which they were collected. The data collected for statistical analysis purposes are anonymized. In any case, the processing complies with the principle of data minimization and storage limitation and the data will be processed for the strictly necessary period. More information on the time of storage of personal data will be reported in the specific information notices.
LINKS TO OTHER WEBSITES
This site may contain links or references for access to other sites. We inform you that IMQ Intuity S.r.l. has no control over the content of these sites and assumes no responsibility for the material created or published by the sites in question or for any direct, indirect, incidental damage caused by the use of the linked sites. The link with other sites does not imply that IMQ Intuity S.r.l. sponsors and/or approves that site, nor the products or services it contains.
DATA SHARING, COMMUNICATION AND DATA DISSEMINATION
The data collected may be transferred or communicated to other companies for activities strictly related and instrumental to the operation of the service, as in the case of the management of the computer system. Personal data provided by users who submit requests for information material (brochures, information material, etc.) are used for the sole purpose of performing the requested service or performance required and are communicated to third parties only where this is necessary for this purpose (for example, companies providing packaging, labelling and shipping services). Outside of these cases, personal data will not be disclosed unless provided for by contract or law, or unless specific consent is requested from the interested party.
In this sense, personal data may be transmitted to third parties, but only and exclusively if:
- there is explicit consent to share data with third parties;
- there is a need to share information with third parties, in order to provide the requested service;
- this is necessary to comply with requests from the Judicial Authority or Public Security.
- No data from the web service is disseminated.
TRANSFER OF PERSONAL DATA TO NON-EU COUNTRIES
The Data Controller makes use of Cloud services offered by certain suppliers, suitably qualified as Data Processors, operating in Europe or countries for which adequacy decisions exist by the European Commission and/or the Guarantor.
With regard to the export of personal data to the United States, before any transfer and taking into account the concrete circumstances of the transfer, it will be assessed on a case-by-case basis, whether the level of data protection and related security measures are adequate and effective.
In the absence of a decision of adequacy or adequate guarantees pursuant to art. 46 of the GDPR or in absence of binding corporate rules pursuant to art. 48 of the GDPR, the transfer will take place only with the explicit, specific and informed consent of the data subject pursuant to art. 49 of the GDPR on the possible risks arising from the transfer of personal data (lack of adequate protection adequate safeguards to protect data).
RIGHTS OF DATA SUBJECTS
The legislation on the protection of personal data, expressly includes certain rights in respect of the subjects to whom the data relate (c.d. concerned). In particular, pursuant to Articles 15 et seq. of Regulation (EU) 2016/679, each data subject has the right to obtain confirmation of the existence or not of data concerning him, to obtain the indication of the origin and purposes and methods of processing, updating, rectification, the integration and portability of the data, the limitation to the processing of the same and their cancellation if processed in violation of the law or if one of the reasons specified by Article 17 of Regulation (EU) 2016/679 exists.
RIGHT TO COMPLAIN
Data subjects who believe that the processing of personal data related to them carried out through this site occurs in violation of the provisions of the Regulation, have the right to complain to the Guarantor, or to appeal to the appropriate courts (art. 77 and 79 of Regulation (EU) 2016/679).
CHANGES TO THESE PRIVACY POLICIES
The Data Controller periodically checks its privacy and security policy and, if necessary, revises it in relation to regulatory, organizational or technological changes. If the policy changes, the new version will be published on this page of the site.
QUESTIONS, COMPLAINTS, SUGGESTIONS AND EXERCISE OF RIGHTS
Anyone interested in more information, contributing their own suggestions, or making complaints or complaints about privacy policies, how our Company processes personal data, as well as to enforce their rights under the legislation on the protection of personal data, you can contact the Data Controller by writing to IMQ Intuity S.r.l., with registered office in via Marco Fabio Quintiliano, 45, 20138 Milano (MI) or by sending an e-mail to email@example.com.