Legal notice


LEGAL INFORMATION

 

The website and the domain on which it is hosted are owned by:

Maria Anna Del Gatto

Via Pisani 22, Torre Del Greco, NA, 80059, IT

VAT ID 04334631217

For the purposes of Article 1, paragraph 1, of Decree-Law No. 72 of March 22, 2004, converted with amendments by Law No. 128 of May 21, 2004, please be advised that the works present on this website have fulfilled the obligations deriving from copyright and related rights legislation.

Reproduction, dissemination, and any other use of the works on this website without the authorization of the copyright holder are prohibited. Violations will be subject to the penalties provided for in Articles 171, 171-bis, 171-ter, 174-bis, and 174-ter of Law 633/1941.

Pursuant to and for the effects of Article 13 of EU Regulation no. 2016/679 of April 27, 2016 (hereinafter also “GDPR”) concerning the protection of natural persons with regard to the processing of personal data, this privacy policy is provided.

 

2. TYPES OF DATA PROCESSED

 

 

2.1 Personal Data:

 

The optional and voluntary completion of the contact form on the website, involving the provision of personal data such as the user's name and email address, implies the subsequent acquisition of said data, as well as those contained in the text of the message sent.

Furthermore, it is specified that the optional, explicit, and voluntary submission of one's curriculum vitae to the email address indicated therein implies the subsequent acquisition of the sender's address, CV, and any other personal data included in the message.

 

2.2 Navigation Data

 

The computer systems and software procedures used to operate the site acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.1

This category of data includes IP addresses or domain names of the computers used by users connecting to the site, URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the 2method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.), and other parameters relating to the user's operating system and IT environment.

This data is used solely to obtain anonymous statistical information on the use of the site and to check its correct functioning. The data could be used to ascertain responsibility in case of hypothetical cybercrimes against the site and the Data Controller only at the request of the appointed supervisory bodies.

It is specified that, with the exception of technical cookies strictly necessary for normal navigation, no other type of cookie is used.

 

3. PURPOSE OF PROCESSING

 

 

3.1 The personal data collected through the user's completion of the contact form are processed in order to respond to the user's requests.

 

 

4. LEGAL BASIS FOR PROCESSING

 

 

4.1 The legal basis for the processing of the personal data indicated above is:

 

  • As for point 2.2 Type of data processed, the need to allow navigation on the site;

  • As for point 3.1, Purpose of processing, the need to respond to the user's request;

  • As for point 3.2 Purpose of processing, the consent of the data subject, expressed through the voluntary submission of their application.

 

5. METHODS OF PROCESSING

 

Personal data are processed by automated and non-automated tools, for the purposes for which they were collected. Specific security measures are observed to prevent data loss, illicit or incorrect uses, and unauthorized access. The collected data may be used on behalf of the Data Controller by administrators assigned to perform processing services and the correct execution of the site's activities. Processing connected to the web services of this site may also take place at the web service provider. It is specified that personal data will be stored and controlled, also in relation to the knowledge acquired based on technical progress, the nature of the data, and the specific characteristics of the processing, through the adoption of appropriate and preventive security measures, both physical and logical, in order to minimize the risks of destruction or loss of the data3 itself; unauthorized access; unauthorized or non-compliant processing with the purposes of collection. It is specified that the data will be saved using a cloud computing system, specifically Microsoft One Drive, which guarantees an encrypted communication system via SSL. The processing will be carried out by the Data Controller and by persons expressly authorized by the Data Controller.


 

 

6. DATA RETENTION PERIOD

 

 

6.1 Data provided through the completion of the request form:

 

This data is retained for the period necessary to respond to the user's request.

 

6.2 Navigation data:

 

Will be retained for the technical time necessary to fulfill the functions for which they were collected and in any case for a maximum period of 6 months.

 

6.3 Data collected through the submission of the application to the email address indicated on the site and the related CV:

 

Will be retained for 24 months from the closure of the relevant selection process.

 

6.4 The Data Controller may retain the user's personal information even after the provision of the services if such retention is reasonably necessary to comply with legal obligations, satisfy regulatory requirements, resolve disputes between users, prevent fraud and abuse, or enforce this privacy policy.

 

 

6.5 The Data Controller will retain the data subject's data until the expiration of the retention period or the withdrawal of consent by the data subject, with the understanding that, in any case, such data will be automatically deleted or permanently and irreversibly anonymized.

 

 

7. COOKIES

 

 

7.1 To make Browse as efficient and simple as possible, this Site uses cookies.

 

Therefore, when you visit the Site, a minimal amount of information is placed on the User's device, such as small text files called "cookies," which are saved in the User's Web browser directory. There are different types of cookies, but essentially the main purpose of a cookie is to make the Site function more effectively and to enable certain functionalities.

 

7.2 Cookies are used to improve the User's overall Browse experience. In particular:

 

  • They allow efficient navigation from one page of the Website to another.

  • They store the username and entered preferences.

  • They allow you to avoid entering the same information (such as username and password) multiple times during the visit.

  • They measure the use of services by Users, to optimize the Browse experience and the services themselves.

  • They present targeted advertising information based on the interests and behavior shown by the User during navigation.

  • There are various types of cookies. Below are the types of cookies that can be used on the Site with a description of the purpose related to their use.

 

7.3 Our site uses only technical cookies.

 

Cookies of this type are necessary for the proper functioning of some areas of the site. Cookies in this category include both persistent cookies and session cookies. In the absence of such cookies, the site or some portions of it may not function correctly. Therefore, they are always used, regardless of user preferences. Cookies in this category are always sent from our domain.

 

8. RECIPIENTS AND CATEGORIES OF RECIPIENTS

 

 

8.1 The personal data provided will not be disseminated, meaning they will not be disclosed to indeterminate parties.

 

The data may instead be communicated to clearly defined subjects only by the Data Controller for the purposes indicated, in particular:

a) to other lawyers, including those based abroad, acting as domiciliary agents or collaborators in your interest, who will in any case remain independent data controllers;

b) to legal, tax, and business consultants, for the better management of tax and invoicing profiles, who will in any case remain independent data controllers, unless expressly appointed as external data processors;

c) to collaborators, substitutes, and other professionals who will collaborate in relation to individual assignments, who will remain independent data controllers unless they are appointed as processors or persons in charge of a particular processing.

 

9. DATA SUBJECT RIGHTS

 

 

9.1 The data subject has the right:

 

  • to access, rectify, erase, restrict, and object to the processing of data;

  • to obtain from the data controller, without impediment, the data in a structured, commonly used, and machine-readable format to transmit them to another data controller;

  • to withdraw consent to processing, without prejudice to the lawfulness of processing based on consent obtained before withdrawal;

 

9.2 In this regard, it is informed that the response period for the data subject is, for all rights, one month from the receipt of the request, extendable up to three months in cases of particular complexity.

 

 

9.3 The exercise of the aforementioned rights can be exercised by written communication to be sent via email to: nidariagioielli@gmail.com

 

 

10. COMPLAINT TO THE SUPERVISORY AUTHORITY

 

 

10.1 The data subject has the right to lodge a complaint with the Data Protection Supervisory Authority.

 

A complaint is the tool that allows the data subject to contact the Supervisory Authority to report a violation of personal data protection regulations pursuant to Article 77 of the GDPR and to request a verification from the Authority. The complaint can be lodged by the Data Subject with the Supervisory Authority of their place of residence, or where they work, or where the alleged violation occurred.

 

10.2 The Data Subject also has the right to bring a judicial appeal before the ordinary Court if they believe that their rights have been violated as a result of processing.

 

 

11. TRANSFER OF DATA ABROAD

 

 

11.1 Personal data may be transferred outside the European Union in the event of a professional assignment shared with legal, tax, or business consultants for the management of assignments involving the resolution of issues affecting non-EU countries.

 

The Data Controller will verify that legal, tax, and business consultants guarantee the same data processing security standards required by the GDPR.

 

11.2 Personal data may be transferred outside the European Union for storing personal data on Microsoft One Drive's cloud server.

 

Microsoft adheres to the Privacy Shield, thereby ensuring compliance with Article 45 of the GDPR.