Regulatory references
- Directive 2002/58/EC – on the “processing of personal data and the protection of privacy in the electronic communications sector”
- Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
The data controller
Following consultation of the website www.essepi.it, data relating to identified or identifiable persons may be processed. The “controller” of their processing is EssePi s.r.l. srl, via delle Bertesche, 13 – 50058 San Mauro a Signa (FI)
Types of data processed
Navigation data
During normal operation, the IT systems and software procedures used to operate this website acquire some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified data subjects, but by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes IP addresses or domain names of computers used by users connecting to the site, URI (Uniform Resource Identifier) addresses of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) etc.) and other parameters relating to the user’s operating system and IT environment. This data is used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and is deleted immediately after processing.
Data provided voluntarily by the user
The optional, explicit, and voluntary submission of personal data by the user in the registration forms on this website or by calling any telephone numbers listed on the website entails the subsequent acquisition of the data provided by the sender, which is necessary for the provision of the service or information requested.
Anonymous or aggregated data
Anonymization is a form of processing that aims to prevent the identification of the data subject. Anonymized data does not fall within the scope of data protection legislation. Aggregated data may be derived from personal data provided by the user but is not considered personal data because, as specified, it does not allow the identification of the data subject either directly or indirectly.
Cookies
Cookies are small text files containing a certain amount of information exchanged between a website and the user’s terminal (usually the browser). They are mainly used for the purpose of making websites work and operate more efficiently, as well as to provide information to the owners of the website itself. Cookies can be either session or persistent. Session cookies remain stored on the device for a short period of time and are deleted as soon as the user closes the browser. Their use is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to enable the safe and efficient exploration of the site.
Persistent cookies, on the other hand, remain stored on the user’s terminal until a pre-set expiry date. As these are not deleted directly when the browser is closed, they allow us to remember the choices made by the user on our website, as well as to collect information about the pages of the website visited by the user, the frequency with which the website is visited, and to identify the navigation path of users, in order to improve the experience on this website.
Finally, session or persistent cookies can be first-party or third-party, depending on whether the entity that installs the cookies on the user’s terminal is the same operator of the site that the user is visiting (in which case they are referred to as first-party cookies) or a different entity (in which case they are referred to as third-party cookies).
Cookies used by this website
This website uses both first-party and third-party cookies as it uses the features of Google Analytics services offered by Google Inc.
Google Analytics uses cookies to collect and analyze information about how users use the websites they visit.
Information about your use of this website (including any additional information such as your IP address) will be transmitted to and stored by Google on servers in the United States. Google will use this information to evaluate your use of the website, compile reports, and provide website operators with other services relating to website usage, but will not associate the IP address collected with any other data held by Google.
For more information about Google Analytics cookies and their use by Google Inc., please refer to:
Google’s policy on the use of cookies, available at:
http://www.google.com/intl/it/policies/technologies/cookies/
e https://developers.google.com/analytics/devguides/collection/analyticsjs/cookies-usage
l’informativa per la privacy policy di Google Analytics all’indirizzo:
http://www.google.com/intl/en/analytics/privacyoverview.html
Cookie management
Normally, browsers allow you to control most cookies through your browser settings. However, please note that completely or partially disabling technical cookies may compromise the use of the website’s features. In any case, if you do not wish to receive any type of cookies on your computer, either from this website or from others, you can increase your privacy protection level by changing your browser’s security settings:
- Mozilla Firefox: https://support.mozilla.org/it/kb/Gestione%20dei%20cookie
- Google Chrome: https://support.google.com/chrome/answer/95647?hl=it
- Internet Explorer: http://windows.microsoft.com/it-it/windows-vista/block-or-allow-cookies
- Safari 6/7 Mavericks: https://support.apple.com/kb/PH17191?viewlocale=it_IT&locale=it_IT
- Safari 8 Yosemite: https://support.apple.com/kb/PH19214?viewlocale=it_IT&locale=it_IT
- Safari su iPhone, iPad, o iPod touch: https://support.apple.com/it-it/HT201265
Links to other websites
This website may contain links or references to other websites. Please note that the Data Controller does not control cookies or other tracking technologies used by such websites, to which this Policy does not apply. We therefore recommend that you consult the individual privacy policies of such websites.
Optional provision of data
Apart from what has been specified for navigation data, the user is free to provide their personal data. However, failure to provide such data may make it impossible to obtain what has been requested.
Control over your personal data
Please note that you may choose to restrict the collection or use of your personal data at any time. For example, if you have previously consented to the processing of your personal data for marketing purposes, you may change your mind at any time by writing to us or sending us an email at essepi@maglificioessepi.net.
EssePi s.r.l. will not sell or distribute the personal data collected to third parties unless it has obtained explicit and free consent from the data subjects or unless this is expressly required by law.
Processing methods and storage times
Personal data is processed, including with the aid of automated tools, for the time strictly necessary to achieve the purposes for which it was collected.
Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorised access. The Data Controller has adopted all the minimum security measures required by law and, inspired by the main international standards, has also adopted additional security measures to minimise the risks relating to the confidentiality, availability and integrity of the personal data collected and processed.
Sharing, communication and dissemination of data
The processing operations connected to the web services of this site take place at the aforementioned headquarters of the Data Controller and are carried out only by personnel expressly authorised by the latter. The data collected may be shared, transferred or communicated to other companies for activities strictly connected and instrumental to the operation of the service, such as the management of the IT system or to any third-party suppliers responsible for occasional maintenance operations. In the aforementioned cases, the Data Controller shall appoint such third parties as Data Processors pursuant to Article 28 of the GDPR. Outside of these cases, personal data will not be disclosed to third parties except as required by contract or law, or with the specific consent of the data subject. In this sense, personal data may be transmitted to third parties, but only and exclusively in the following cases:
a) there is explicit consent to share the data with third parties;
b) there is a need to share the information with third parties in order to provide the requested service;
c) this is necessary to comply with requests from the Judicial Authority or Public Security.
No data deriving from the web service is disclosed.
Rights of data subjects
The legislation on the protection of personal data expressly provides for certain rights for data subjects. In particular, pursuant to Articles 15 et seq. of Regulation (EU) 2016/679, each data subject has the right to obtain confirmation of the existence or otherwise of data concerning him or her, to obtain information on the origin and purposes and methods of processing, to update, rectify, supplement the data, and have it deleted if it has been processed unlawfully or if one of the reasons specified in Article 17 of Regulation (EU) 2016/679 applies.
Right to rectification
You may request the modification of your personal data in our possession, if it is inaccurate or incomplete, by sending us an email to essepi@maglificioessepi.net.
Right of access, restriction and erasure
If you wish to view the data we process about you, restrict the processing of your data or erase it, you can do so by contacting us directly. If you wish to have your personal data deleted, please note that if this data is used to provide you with a specific service you have requested, you will no longer be able to use that service after deletion. Please note that your request for deletion cannot be fulfilled if one of the reasons specified in Article 17 of Regulation (EU) 2016/679 applies. We will explain all the cases in which we cannot comply with your request to delete your data (e.g. in the case of exercising or defending against a claim) as well as the situations in which it is possible to restrict the processing of your data. We will respond to your request within 30 days of receiving it.
Data retention
EssePi S.r.l. informs you that the data collected will be stored only for the time necessary to fulfil the specific purposes indicated. Any further storage of Data or part of the Data may be arranged to assert or defend its rights in any forum, and in particular in court, as well as to respond to explicit requests from the data subject, such as requests to receive promotional material if express consent has been given.
Changes to these privacy policies
The Data Controller periodically reviews its privacy and security policy and, where necessary, revises it in line with regulatory, organisational or technological changes. In the event of policy changes, the new version will be published on this page of the website.
Questions, complaints, suggestions and exercising your rights
Anyone interested in further information, wishing to contribute their own suggestions or make complaints or objections regarding privacy policies, the way in which our Company processes personal data, or to exercise their rights under the legislation on the protection of personal data, may contact the Data Controller by writing to EssePi S.r.l., via delle Bertesche, 13 – 50058 San Mauro a Signa (FI), or by sending an email to essepi@maglificioessepi.net.