DATA PROCESSING MANAGER
Avv. Achille Bianchi
BRE ARCHIMEDE SALERNO ASSOCIATION
Via Posidonia 301, 84129 SALERNO, ITALY
mail: infobre [at] brearchimede.eu
Dear visitor,
pursuant to art. 13 of Legislative Decree no. 196 of 30 June 2003 entitled “Code regarding the protection of personal data” (hereinafter “Code”), we wish to inform you that Brearchimede.eu, as Data Controller (from now on then also simply “Owner”), uses the site, as well as as an information medium on the internet world, also as a tool for collecting and processing personal data.
For this purpose, specific sections of the Site have been structured, to which it is possible to provide data (for example “Community” “Chat” – “Report a site” – “Info requests” – “Mailing List” or others), according to the categories of interested parties and / or services offered, in correspondence with which you will be given more information about the peculiarities of the respective data collections and treatments carried out.
In general, we inform you below about the:
a) the methods and purposes of data collection and processing;
b) the optional nature of providing data;
c) the consequences of a refusal to answer;
d) the subjects and / or categories of subjects to whom the personal data may be communicated or who can become aware of them as managers or agents, and the scope of dissemination of the data;
e) the rights referred to in art. 7 of the code;
f) the operations that will be carried out by Brearchimede.eu during its navigation on the site.
In general, the Data Controller also specifies that the definitions used are those explained in art. 4 of the said Code, available at the bottom.
The owner refers to the individual sections of the site itself for further specific information and for the indication of any specific purposes of the related treatments.
During your stay on the site, whatever path you choose, the computer system of Aruba.it (where Brearchimede.eu is maintained) will proceed, based on its standard functions, to the recording of the so-called log files, the latter are made up of standard code strings, automatically obtained from the server, each of which allows Brearchimede.eu to know a series of navigator data: the IP address or the type of browser (for example Internet Explorer or Netscape) , through which the internet connection takes place, the operating system, the host and the URL of origin of the visitors. Brearchimede.eu may use this data in aggregate and anonymous form for the purpose of statistical analysis on site access.
As regards e-mail messages, sent from the “Mailing List” and “Report a site” sections, Brearchimede.eu will proceed, in compliance with the code, to collect the personal data spontaneously transmitted by you, including your e-mail address electronic, taking care of subsequent storage and archiving for purely statistical purposes and for further purposes in accordance with the interactions expressed by you.
With reference to the messages sent from the “Requests and info” section, Brearchimede.eu will collect and store the data received, including the e-mail address, for the time necessary to verify and evaluate the indications you spontaneously provided, for the purpose of exchange of information or contacts. It is necessary as of now to specify that the treatments carried out through the “Report a site” section, as well as those carried out in the other sections of the site, concern only common data: the presence of any data suitable to reveal racial and ethnic origin , religious, philosophical or other beliefs, political opinions, membership of parties, trade unions, associations or organizations of a religious, philosophical, political or trade union nature, as well as personal data suitable for revealing the state of health or sexual life , data that can be classified as “sensitive” pursuant to art. 4 of the Code, will in fact result in the immediate destruction of the related message, announcement or communication you may have provided. The technical data upon accessing the Site, as well as those collected from the “Report a site” section, will not, in any case, be communicated to third parties, nor will it be disseminated. The data collected in other sections of the site may be disseminated through their online publication on the site itself. In such cases, the methods of dissemination will always be specified in the respective information notices and consent will be requested, which can be provided online by filling in a ticked box.
In any case, the processing operations described above will take place in accordance with the provisions of art. 11 of the Code, in compliance with the principles indicated therein.
The treatment will be carried out, both manually and with the aid of IT and telematic means. In fact, the data may be stored both in paper archives and in electronic archives, so as to allow, where necessary, the identification and selection of aggregated data, for the time not exceeding the duration and purposes of the processing. The treatment will be carried out directly and exclusively by the owner. It is the visitor’s responsibility to verify the correctness of personal data concerning him and possibly proceed to rectification, updating or, in any case, modification of incorrect data and / or no longer in the course of treatment.
The Visitor is made aware of the fact that the transmission of data via the Internet cannot in fact be considered required for any other service than the punctual and correct application of the safety standards imposed by the legislation in force, in particular the application of the security measures referred to art. 15 of the Law and Presidential Decree 318/99.
Finally, please note that anyone who sends their personal data to the e-mail addresses on the company’s website and / or provides their data in the other sections of the site dedicated to the collection of personal information, can at any time exercise their recognized rights. by art7 of the Code, i.e. in particular the right to:
1) Obtain confirmation of the existence or not of personal data concerning him, even if not yet registered, and their communication in an intelligible form;
2) Get the indication;
to. Of the origin of personal data;
b. Of the purposes and methods of treatment;
c. Of the logic applied in case of treatment carried out with the aid of electronic instruments;
d. The identity of the owner, manager or the representative appointed pursuant to article 5, paragraph 2;
is. Of the subjects and categories of subjects to whom personal data may be communicated or who can become aware of them in quantities of designated representative in the territory of the State, of responsibility or agents.
3) Get:
to. Updating, rectification or, as far as you are concerned, the integration of data;
b. The cancellation, transformation into anonymous form or blocking of data processed in violation of the Law, including those whose retention is unnecessary for the purposes for which the data were collected or subsequently processed;
c. The attestation that the operations referred to in letters a) and b) have been brought to the attention, also as regards their content, of color to which the data have been communicated or disseminated, except in the case in which this fulfillment proves impossible o involves the use of means manifestly disproportionate to the protected right.
4) The interested party has the right to object, in whole or in part:
to. For legitimate reasons, the processing of personal data concerning him even if pertinent to the purpose of the collection;
b. To the processing of personal data concerning him for the purpose of sending advertising materials or direct selling or for carrying out market research or commercial communication.
To exercise the rights provided for in art. 7 of the aforementioned Law, the Visitor concerned must send his request to the Data Processing Manager (Brearchimede.eu):
DATA PROCESSING MANAGER
Avv. Achille Bianchi
BRE ARCHIMEDE SALERNO ASSOCIATION
Via Posidonia 301, 84129 SALERNO, ITALY
mail: infobre [at] brearchimede.eu
Art. 4 Legislative Decree no. 196 of 30 June 2003
Art. 4. Definitions
1. For the purposes of this code, the following definitions apply:
a) “treatment”, any operation or complex of operations, carried out even without the aid of electronic tools, concerning the collection, registration, organization, storage, consultation, processing, modification, selection, the extraction, comparison, use, interconnection, blocking, communication, dissemination, cancellation and destruction of data, even if not recorded in a database;
b) “personal data”, any information relating to a natural person, legal person, entity or association, identified or identifiable, even indirectly, by reference to any other information, including a personal identification number;
c) “identification data”, the personal data that allow the direct identification of the interested party;
d) “sensitive data”, personal data capable of revealing racial and ethnic origin, religious, philosophical or other beliefs, political opinions, membership of parties, unions, associations or organizations of a religious, philosophical nature , political or trade union, as well as personal data suitable to reveal the state of health and sexual life;
e) “judicial data”, personal data suitable for disclosing provisions pursuant to article 3, paragraph 1, letters a) to o) and r) to u), of the Presidential Decree November 14, 2002, n. 313, regarding criminal records, the registry of administrative sanctions dependent on a crime and the related pending charges, or the quality of defendant or suspect pursuant to articles 60 and 61 of the code of criminal procedure;
f) “owner”, the natural person, legal person, public administration and any other body, association or body to which, also jointly with another owner, the decisions regarding the purposes, the methods of processing personal data and the tools used, including the security profile;
g) “responsible”, the natural person, legal person, public administration and any other body, association or body appointed by the owner to process personal data;
h) “agents”, the natural persons authorized to carry out processing operations by the owner or manager;
i) “interested”, the natural person, legal person, body or association to which the personal data refer;
l) “communication”, the disclosure of personal data to one or more specific subjects other than the interested party, the representative of the owner in the territory of the State, the manager and agents, in any form, including by making them available or consultation;
m) “dissemination”, the giving knowledge of personal data to indeterminate subjects, in any form, including through their making available or consultation;
n) “anonymous data”, the data that originally, or following processing, cannot be associated with an identified or identifiable interested party;
o) “block”, the storage of personal data with temporary suspension of any other processing operation;
p) “database”, any organized complex of personal data, divided into one or more units located in one or more sites;
q) “Guarantor”, the authority referred to in article 153, established by law 31 December 1996, n. 675.
2. For the purposes of this code, we also mean:
a) “electronic communication” means any information exchanged or transmitted between a finite number of subjects through an electronic communication service accessible to the public. Information transmitted to the public via an electronic communications network, as part of a broadcasting service, is excluded, unless the same information is connected to a subscriber or receiving user, identified or identifiable;
b) “call”, the connection established by a publicly available telephone service, which allows real-time two-way communication;
(c) “electronic communications networks” means transmission systems, switching or routing equipment and other resources which allow the transmission of signals by cable, radio, by means of optical fibers or by other electromagnetic means, including satellite networks mobile and fixed circuit-switched and packet-switched terrestrial networks, including the Internet, networks used for the circular broadcasting of sound and television programs, systems for the transport of electricity, insofar as they are used to transmit the signals, cable television networks, regardless of the type of information carried;
d) “public communications network” means an electronic communications network used wholly or mainly to provide publicly available electronic communications services;
e) “electronic communication service” means services consisting exclusively or mainly in the transmission of signals on electronic communications networks, including telecommunications services and transmission services in the networks used for radio and television broadcasting, within the limits set out in Article 2 letter c) of Directive 2002/21 / EC of the European Parliament and of the Council of 7 March 2002;
f) “subscriber” means any natural person, legal person, entity or association that is part of a contract with a provider of electronic communications services accessible to the public for the supply of these services, or in any case recipient of these services through prepaid cards;
g) “user” means any natural person who uses an electronic communication service accessible to the public, for private or commercial reasons, without necessarily having a subscription;
h) “traffic data”, any data processed for the purpose of transmitting a communication on an electronic communications network or for its billing;
i) “location data”, any data processed in an electronic communication network that indicates the geographical position of the user’s terminal equipment of an electronic communication service accessible to the public;
l) “value-added service”, the service that requires the processing of traffic data or location data other than traffic data, in addition to what is necessary for the transmission of a communication or related billing;
m) “electronic mail”, messages containing texts, voices, sounds or images transmitted through a public communication network, which can be stored on the network or in the receiving terminal equipment, until the recipient has become aware of it.
3. For the purposes of this code, we also mean:
a) “minimum measures”, the set of technical, IT, organizational, logistical and procedural security measures that configure the minimum level of protection required in relation to the risks provided for in Article 31;
b) “electronic tools”, the processors, the programs for the processors and any electronic or automated device with which the treatment is carried out;
c) “IT authentication”, the set of electronic tools and procedures for verification, even indirect, of identity;
d) “authentication credentials”, the data and devices, in possession of a person, known by him or uniquely related to him, used for computer authentication;
e) “keyword”, component of an authentication credential associated with a person and with this note, consisting of a sequence of characters or other data in electronic form;
f) “authorization profile”, the set of information, uniquely associated with a person, which allows you to identify which data it can access, as well as the treatments allowed to it;
g) “authorization system”, the set of tools and procedures that enable access to data and methods of processing them, according to the authorization profile of the applicant.
4. For the purposes of this code, the following definitions apply:
a) “historical purposes”, the purposes of study, investigation, research and documentation of figures, facts and circumstances of the past;
b) “statistical purposes”, the purposes of statistical investigation or production of statistical results, also by means of statistical information systems;
c) “scientific purposes”, the purposes of study and systematic investigation aimed at developing scientific knowledge in a specific sector.