Privacy Policy

DATA CONTROLLER

Emc Fime S.r.l.
Via Jesina, n.56, 60022 Castelfidardo, Ancona.
emcfime@sicurezzapostale.it
(hereinafter, the “Company” or the “Controller”)

Emc Fime S.r.l., as Data Controller provides you with the information relating to the processing of your personal data (hereinafter “Data”) collected as a result of your browsing of this website pursuant to article 13 of EU Regulation 2016/679 (hereinafter, “GDPR”) and any additional information eventually required by applicable local legislation.

DATA PROCESSING PURPOSES AND LEGAL BASIS

1. Data processed for purposes of website operation
The computer systems and software procedures used to operate the website acquire during their normal operation some navigation data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified data subjects but, by its very nature, could, through processing and association with Data held by the Company or by other third parties, allow the identification of the website users.
This category of Data includes IP addresses or the domain names of the computers used by the users who connect to the website, the URI (Uniform Resource Identifier) addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and computer environment.
Navigation data may be processed:

  • to allow and monitor the proper functioning of the website, as well as to perform maintenance activities;
  • to obtain anonymous statistical information on the use of the website;
  • to ascertain possible liability in case of hypothetical computer crimes to the detriment of the website and, therefore, to exercise and/or defend the Company’s rights in court.

Pursuant to art. 122 of Italian Privacy Code the processing of the information mentioned does not require the consent of users. For the aforementioned purposes, the legal basis of the processing is the legitimate interest of the Controller, pursuant to Art. 6, par.1, lett. f), GDPR.

2. Data provided directly by the user
In order to be able to use certain services on the website (for example, in the Contact section) it is necessary to provide Data, in relation to which we invite you to refer to the specific privacy notice provided at the time of collection pursuant to art. 13 GDPR. Such Data may be enriched with those inferred from the user’s navigation on the website.

3. Cookies
The website uses cookies to ensure its proper functioning and to improve the user experience. For further information on the use of cookies, please read the full cookie policy by clicking here.

4. External links to the website
The website may use links to other web pages relating to the Company, for which you can refer to the specific privacy notice provided at the time of collection.

PROVISION OF DATA

With the exception of navigation data, which are necessary for the execution of computer and telematic protocols, the provision of data by users is free and optional. However, not providing such Data will make it impossible to proceed with the requests forwarded or that the user intends to forward

CATEGORIES OF RECEPIENTS TO WHOM DATA MAY BE COMMUNICATED

Data may be disclosed to parties operating as data controllers and processed by subjects designated by the Company as data processors who provide the Controller with services instrumental to the purpose indicated in this privacy notice, such as, by way of example: the company in charge of the maintenance/management of the Company’s website and of the electronic and/or telematic tools used by the same. such as supervisory and regulatory authorities and, more generally, public, or private entities, legally authorized to access to Data.

PARTIES AUTHORISED TO PROCESS DATA

Data may be processed by employees responsible for carrying out the activities outlined above, authorised and instructed to process Data.

DATA TRANSFER OUTSIDE EU

Data will not be transferred to third countries and/or international organisations established outside the European Union.

DATA SUBJECTS’ RIGHTS

Data subjects can exercise their rights under Articles 15 to 22 of the GDPR. In particular, the data subject can exercise the right to access to Data concerning him/her in accordance with Article 15 GDPR, to obtain the erasure of Data according to Article 17 GDPR (“right to be forgotten”), to obtain the restriction of the processing in according to Article 18 GDPR, to object, at any time, on grounds relating to his/her own particular situation, to the processing carried out on the basis of the legitimate interest of the Controller, where the processing is based on consent or contract and it is carried out by automated means, to receive Data in a structured, commonly used and machine-readable format and to transmit those Data to another controller without hindrance from the controller to which the personal data have been provided (“right to data portability”). Such rights can be exercised by sending an e-mail to the following email address: privacy@emcfime.com .
When the data subject wishes to exercise his or her rights, the Company may ask for identification before proceeding to process the request.
The data subject has the right to lodge a complaint with the competent supervisory authority in the Member State of his/her habitual residence, place of work or place of the alleged infringement.

1 AA Pursuant to Article 18 of the GDPR, the data subject is entitled to obtain a limitation of data processing from the data controller, in one of the following cases:
(a) the data subject disputes the accuracy of personal data, for the period necessary to the controller to verify accuracy of such personal data;
(b) data processing is unlawful and the data subject opposes the cancellation of personal data and instead requests to limit the use of the same;
(c) although the data controller no longer needs the personal data for processing purposes, such personal data is necessary to the data subject to ascertain, exercise or defend one of their rights in a Court of Law;
(d) the data subject opposed data processing pursuant to Article 21(1), pending the verification as to whether the legitimate grounds of the data controller prevail over those of the data subject.
Should data processing be limited as pursuant to paragraph 1, such personal data shall, except for storage, only be processed with the consent of the data subject or to ascertain, exercise or defend one of their rights in a Court of Law or to protect the rights of another natural or legal person or for reasons of substantial public interest of the European Union or of a Member State. A data subject who obtained a limitation in data processing pursuant to paragraph 1, shall be informed by the data controller before such limitation is canceled.