PRIVACY POLICY

In compliance with obligations arising from European legislation (Regulation (EU) 2016/679, GDPR) and subsequent amendments, this website respects and protects the privacy of visitors and users, making every effort possible and proportionate not to infringe upon users’ rights.

This privacy policy applies exclusively to the online activities of this website and is valid for visitors/users of the website. It does not apply to information collected through channels other than this website. The purpose of the privacy policy is to provide maximum transparency regarding the information that the website collects and how it is used.

Legal Basis for Data Processing

This website processes data based on consent. By using or consulting this website, visitors and users explicitly approve this privacy policy and consent to the processing of their personal data in relation to the methods and purposes described below, including any potential disclosure to third parties if necessary for service provision.
The provision of data and therefore the Consent to the collection and processing of data is optional; the User can deny consent and can revoke a previously provided consent at any time (by simply writing “cancellation” as the subject in an email to info@bbgliuliviportopino.it). However, denying consent may result in the inability to provide certain services, and the browsing experience on the website could be compromised.

Starting from May 25, 2018 (the GDPR’s effective date), this website will process some data based on the legitimate interests of the data controller.

Collected Data and Purposes

Like all websites, this website also uses log files in which automatically collected information is stored during users’ visits. The collected information may include:

– Internet Protocol (IP) address;
– Browser type and device parameters used to connect to the site;
– Internet Service Provider (ISP) name;
– Date and time of visit;
– Referring and exiting website pages;
– Possibly the number of clicks.

The above information is processed automatically and collected solely in an aggregated form to verify the proper functioning of the site and for security reasons (starting from May 25, 2018, this information will be processed based on legitimate interests of the data controller).
For security purposes (anti-spam filters, firewalls, virus detection), automatically registered data may also include personal data such as the IP address, which could be used, in accordance with the applicable laws, to block attempts to damage the site itself or to harm other users or engage in harmful or criminal activities. This data is never used for the identification or profiling of the user but only for the purpose of protecting the site and its users (starting from May 25, 2018, this information will be processed based on legitimate interests of the data controller).

If the site allows for the insertion of comments, or in case of specific services requested by the user, the site will automatically detect and record certain user identification data, including the email address. This data is voluntarily provided by the user when requesting the service. By entering a comment or other information, the user expressly accepts the privacy policy, and in particular consents to the freely distribution of the inserted content to third parties.

The received data will be used exclusively for the provision of the requested service and for the time strictly necessary to provide the service. Information that users of the site choose to make public through the services and tools provided, are provided knowingly and voluntarily by the user, exempting this website from any responsibility for any violations of the law. It is up to the user to verify that they have permission to enter personal data of third parties or content protected by national and international regulations.

The data collected by the site during its operation is used exclusively for the above-mentioned purposes and kept for the time strictly necessary to carry out the specified activities. In any case, the data detected by the site will never be provided to third parties, for any reason, unless required by a legitimate request from the judicial authority and only in the cases provided for by law.

Data used for security purposes (blocking attempts to damage the site) are kept for 7 days.

Processing Location

The data collected by the website is processed at the data controller’s headquarters and at the web hosting data center. The web hosting provider (ET Hosting by Emanuele Tolomei, with registered office in Località Collicelle, 02010 Labro RI – IT), which is responsible for data processing, processes data on behalf of the data controller, located in the European Economic Area and acting in compliance with European regulations.

Cookies

Like all websites, this website also uses cookies, small text files that allow information about visitors’ preferences to be stored, to improve the site’s functionalities, to simplify navigation by automating procedures (e.g., Login, site language), and for site usage analysis.

Session cookies are essential to distinguish between logged-in users and are useful to prevent a requested functionality from being provided to the wrong user, as well as for security purposes to prevent attacks on the site. Session cookies do not contain personal data and last for the duration of the session only, i.e., until the browser is closed. Consent is not required for these cookies.
Functionality cookies used by the site are strictly necessary for the use of the site, particularly for an expressed request for functionality by the user (such as Login), for which no consent is required.

By using the site, visitors expressly consent to the use of cookies.

Disabling Cookies

Cookies are linked to the browser used and can be disabled directly from the browser, thus refusing/retracting consent to the use of cookies. It should be noted that disabling cookies may prevent the correct use of certain functions of the site. Instructions for disabling cookies can be found on the following web pages:

Mozilla Firefox – Microsoft Internet Explorer – Microsoft Edge – Google Chrome – Opera – Apple Safari

Third-Party Cookies

This website also acts as an intermediary for third-party cookies, used to provide additional services and functionalities to visitors and improve the use of the website, such as social buttons or videos. This website has no control over third-party cookies, which are entirely managed by third parties. Consequently, information about the use of these cookies, their purposes, and instructions for disabling them are provided directly by third parties on the indicated pages below.

In particular, this website uses cookies from the following third parties:

Google Analytics: a Google analytics tool that, through the use of cookies (performance cookies), collects anonymous browsing data (IP addresses truncated at the last octet) and aggregated data for the purpose of analyzing the website’s usage by users, compiling reports on website activity, and providing other information, including the number of visitors and pages visited. Google may also transfer this information to third parties where required by law or where such third parties process the information on Google’s behalf. Google will not associate the IP address with any other data held by Google. The data transmitted to Google is stored on Google servers in the United States.
Under a specific agreement with Google, designated as the data processor, Google commits to processing data based on the data controller’s requests (see at the end of the privacy policy) through software settings. According to these settings, advertising and data sharing options are disabled.
For further information on Google Analytics cookies, please visit the Google Analytics Cookie Usage on Websites page.

Users can selectively disable the collection of data by Google Analytics by installing the appropriate browser add-on provided by Google (opt-out).

YouTube: a video-sharing platform owned by Google, which uses cookies to collect user and browsing device information. Videos on the site do not set cookies upon page access, as the “Privacy Enhanced Mode (no cookies)” option has been set, meaning that YouTube does not store visitor information unless they voluntarily play the video.
cookie: test_cookie .doubleclick.net is not a permanent cookie, but is used to check if the user’s browser supports cookies.

For further information on the use of data and its processing by Google, please refer to Google’s Privacy Policy and the page on How Google uses data when you use our partners’ sites or apps.

Social Network Plugins

This website also incorporates plugins and/or buttons for social networks to allow easy sharing of content on your favorite social networks. These plugins are programmed not to set any cookies when accessing the page, in order to safeguard users’ privacy. If cookies are set, it’s only done if the user makes effective and voluntary use of the plugin. Please note that if the user browses while logged into the social network, they have already consented to the use of cookies transmitted through this website upon registration with the social network.
The collection and use of information obtained through the plugin are regulated by the respective privacy policies of the social networks, which should be referred to.
Facebook – (cookie information link)
Twitter – (cookie information link)
LinkedIn – (cookie information link)
Google+ – (cookie information link).

Data Transfer to Non-EU Countries

This website may share some of the collected data with services located outside the European Union area. In particular, with Google, Facebook, Twitter, and Microsoft (LinkedIn) through social plugins and the Google Analytics service. This transfer is authorized based on specific decisions of the European Union and the Italian Data Protection Authority, in particular decision 1250/2016 (Privacy Shield – here’s the Italian DPA’s page on Privacy Shield), therefore no further consent is required. The aforementioned companies guarantee their adherence to the Privacy Shield.

Security Measures

This website processes user data in a lawful and proper manner, adopting appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of data. Processing is carried out using computers and/or IT tools, with organizational procedures and logic closely related to the specified purposes. In addition to the data controller, in some cases, the data may be accessible to certain types of persons involved with the website’s organization (administration, sales, marketing, legal, system administration) or external parties (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communications agencies).

User’s Rights

Pursuant to the European Regulation 679/2016 (GDPR) and national regulations, the User can, in accordance with the methods and limits established by current legislation, exercise the following rights:
Request confirmation of the existence of personal data concerning them (right of access);
Know its origin;
Receive intelligible communication;
Have information about the logic, methods, and purposes of the processing;
Request the updating, rectification, integration, deletion, anonymization, or blocking of data processed in violation of the law, including those no longer necessary for the purposes for which they were collected;
In cases of processing based on consent, receive their data provided to the data controller in a structured and commonly used format, and transmit those data to another data controller without hindrance from the data controller to whom they were provided;
The right to lodge a complaint with the Supervisory Authority (Italian Data Protection Authority – link to the Italian DPA’s page);
And more generally, exercise all the rights granted by the current provisions of the law.
Requests should be addressed to the Data Controller.

If the data are processed based on legitimate interests, the rights of the data subjects (except for the right to data portability, which is not provided for by the regulations) are guaranteed, in particular the right to object to the processing, which can be exercised by sending a request to the data controller.

Data Controller

The Data Controller, pursuant to current laws, is the site administrator, Ambrosiano Pintus, who can be contacted through the CONTACTS section.

Data Processor

The web hosting service provider (Aruba S.p.A., represented by its legal representative p.t., with registered office in Ponte San Pietro (BG), Via San Clemente n. 53), is appointed as the data processor, processing data on behalf of the data controller. Aruba S.p.a. is located in the European Economic Area and operates in compliance with European regulations (Aruba’s privacy policy).
Google is appointed as the data processor, processing data on behalf of the data controller (Google Analytics).

Updates

This privacy policy was last updated on October 9, 2020.