PRIVACY POLICY

This page describes the site’s management procedures with regard to the processing of users’ personal data, pursuant to EU Regulation 679/2016 (GDPR) and Legislative Decree 196/2003 (Privacy Code).

1. Nature of the data processed

– Browsing/usage data
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.
This information is not collected to be associated with identified data subjects, but by its very nature could, through processing and association with data held by third parties, allow users to be identified.
This category of data includes the IP addresses or domain names of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) ​​addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response from the server (successful, error, etc.), and other parameters relating to the user’s operating system and IT environment.

– Data provided voluntarily by the user
The optional, explicit, and voluntary sending of emails to the addresses indicated on this site entails the subsequent acquisition of the sender’s address, which is necessary to respond to requests, as well as any other personal data included in the message.

– Cookies
See the relevant information.

2. Purpose of processing

The navigation/usage data, described in point 1 above, are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to verify its correct functioning. The data could be used to ascertain responsibility in the event of hypothetical computer crimes against the site.

Personal data provided voluntarily by users who visit the site will be processed for the following purposes:

– Contacting the user
– Statistics on site visits
– Traffic optimization and distribution
– Allowing registration and access to the reserved area of ​​the site and all its features
– Interaction with social networks and external platforms
– Conducting direct marketing, market research, or commercial communications

3. Legal bases for processing

Personal data provided voluntarily by users and the technical information strictly necessary for the provision of the service (browsing/usage data) will be processed as necessary for the pursuit of the legitimate interest of Costante Sesino S.P.A. in the publication and management of its website, as well as for the purpose of improving its performance and content.

4. Data Processing Methods and Retention Period

Data processing will be carried out both manually and with the aid of computerized and electronic means. The data will be stored in both paper and electronic archives for the time strictly necessary to achieve the purposes referred to in point 2 and, in any case, for up to 5 years following the completion of these purposes.
Specific security measures are observed to prevent data loss, illicit or incorrect use, and unauthorized access.

5. Obligation or option to provide data

Except as specified for navigation data, the user is free to provide the personal data requested by the various site services. Failure to provide such data may make it impossible to obtain what has been requested.

6. Communication and dissemination of personal data

The personal data collected by the website are not subject to general dissemination.
Such data may be processed, for the purposes referred to in point 2, by persons in charge of data processing and information systems, as well as by persons in charge of the technical management of the website.

7. Rights of data subjects

Privacy legislation (Articles 12-22 of EU Regulation 679/2016) guarantees data subjects the right to be informed about the processing of their data and the right to access their data at any time and to request its updating, integration, and rectification. Where the conditions set forth by law are met, the data subject may also exercise the right to erasure of the data, to limit its processing, to data portability, to object to its processing, and not to be subject to decisions based solely on automated processing.
If the processing of personal data is based on the data subject’s consent, the data subject has the right to withdraw the consent given.
If the data subject believes their rights have been infringed, they may protect themselves by filing a complaint with the Italian Data Protection Authority.

8. Data Controller and Data Processors

The data controller is Costante Sesino S.P.A. (hereinafter the Company), with registered office at Via Monza 150/B – 20060 Gessate (MI), Tax Code and VAT No. 00750930158.
The updated list of data processors is kept at the registered office of the Data Controller.

Download Customer/Suppliers Information