formation and consent to the processing of personal data for “Site: cristianaserafini.it” (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016)

WHY THIS INFORMATION?

This page describes the methods of processing of personal data of users who consult the website since, following the consultation of the site, data relating to identified or identifiable natural persons may be processed. Before communicating any personal data, Cristiana Serafini Srls, invites you to carefully read this “Privacy Policy”, as it contains important information on the protection of personal data and on the security measures adopted to guarantee confidentiality in full compliance with the Applicable Regulations.

This Privacy Policy does not apply to other websites that may be reached via hypertext links published on the Site and complies with Recommendation no. 2/2001 on minimum requirements for online data collection in the European Union, adopted on 17 May 2001 by the Article 29 Working Party.

Pursuant to Article 13 of Regulation (EU) 2016/679 (“GDPR – General Data Protection Regulation”) hereinafter “Regulation”, the processing of personal information concerning you, of which we will come into possession, will be based on the principles of correctness, lawfulness, limitation of purpose and retention, data minimization, accuracy, integrity and transparency and protection of your privacy and your rights.

 

We therefore inform you of the following:

 

1. IDENTITY AND CONTACT DETAILS OF THE DATA CONTROLLER/DPO (DATA PROTECTION OFFICER)

The data controller is Cristiana Serafini Srls – Piazza Guido Crepax, 5, Rome (Rome), 00127 - VAT number: 123456798 - Email:
cristiana.serafini@icloud.com
- Tel: +39 345 469 3104

 

2. PURPOSE OF THE PROCESSING

The Personal Data collected by the Site are the following:

 

Browsing data

The computer systems and software procedures used to operate this site acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.

This category of data includes the IP addresses or domain names of the computers and terminals used by users, the URI/URL (Uniform Resource Identifier/Locator) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numeric code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user's IT environment.

Such data, necessary for the use of web services, are also processed for the purpose of:

 statistical research/analysis on aggregate or anonymous data, therefore without the possibility of identifying the user, aimed at measuring the correct functioning of the Site, measuring traffic and evaluating usability and interest;

Browsing data does not persist for more than seven days (except in the event of the need to ascertain crimes by the judicial authorities).

 

Cookies and other tracking systems

No cookies are used to profile users, nor are other tracking methods employed.

Instead, session cookies (not persistent) are used in a strictly limited manner to what is necessary for safe and efficient navigation of the sites. The storage of session cookies in terminals or browsers is under the control of the user, where on the servers, at the end of the HTTP sessions, information relating to cookies remains recorded in the service logs, with retention times in any case not exceeding seven days like other navigation data.

More information on the use of cookies and similar technologies is available at https://www.garanteprivacy.it/cookie .

In addition to what is reported in point 2, the processing of the data provided by you may be aimed at the purposes specified below: fulfilling pre-contractual and contractual obligations arising from existing relationships with you;

 administrative and accounting management of the relationship required by law.

In this regard, specific information will be published on the pages of the site set up for the provision of certain services.

 

3. RECIPIENTS OR CATEGORIES OF RECIPIENTS OF THE DATA

The data processed for the purposes referred to in point 2 may be communicated to internal or external personnel of the company, legal persons involved in the process of completing services requested by the interested party, including, for example, those in charge of sending emails and analyzing the functioning of the Site, who act on the basis of specific instructions provided in order to the purposes and methods of the processing itself. The list is available at the headquarters of the Data Controller upon request of the interested party.

The Personal Data processed are not transferred to Recipients located outside the European Economic Area.

 

4. PERIOD OF STORAGE OF PERSONAL DATA

The period of storage of personal data begins from the moment of provision of the same by the interested party and ends with the exercise of the right to erasure of the data by the interested party by registered mail with return receipt to the address Via Piazza Guido Crepax, 5, 00127 Roma (Rome).

 

5. OPTIONAL NATURE OF DATA PROVISION AND CONSEQUENCES OF ANY REFUSAL

Providing the data necessary to complete the contact and/or information request is optional. However, in the event of failure to provide the requested data, the interested party will not be able to receive the information and support requested.

 

6. LEGAL BASIS FOR THE PROCESSING

Pursuant to art.6 of GDPR 679/2016, the processing of data for the purposes listed in point 2 of this document finds its legal basis in the explicit consent of the interested party (art.6 letter a); in the execution of a contract to which the interested party is a party (art.6 letter b) and in the legitimate interest of the owner (art.6 letter f) based on the relevant relationship between the interested party and the data controller provided that the rights and freedoms of the interested party do not prevail. The legitimate interests of the Owner do not prevail over the interests, rights and freedoms of the interested party.

 

7. RIGHTS OF THE INTERESTED PARTY

At any time the interested party may exercise his/her rights towards the data controller, pursuant to articles 15, 16, 17, 18, 20, 21 of GDPR 679/2016. Specifically, the interested party has the right:

  • of access to personal data by making an appropriate request (art.15);
  • to obtain rectification (art.16)
  • to their cancellation (oblivion) ​​(art.17);
  • to the limitation of the processing concerning him (art.18);
  • to data portability (art.20);
  • to object to the processing (art.21);
  • to revoke consent without prejudice to the lawfulness of the processing carried out prior to the revocation (art.13 par.2 let.C);
  • to lodge a complaint with a supervisory authority (art.13 par.2 let.D).

 

8. AUTOMATED DECISION-MAKING AND PROFILING

The collection and processing of data do not involve any type of automated decision-making process and/or profiling by the Data Controller.

 

"Newsletters" Specifications
2. PURPOSE OF THE PROCESSING

The processing of the data provided by you is aimed solely at the correct and complete execution of the service requested by you. The specific purpose is the collection of personal data for the purposes specified below:

  • fulfill the request made by you to send information via email, in reference to activities, events, initiatives, services and news in general carried out or promoted by the Owner.

 

3. RECIPIENTS OR CATEGORIES OF RECIPIENTS OF THE DATA

The data processed for the purposes referred to in point 2 may be communicated to internal or external personnel of the company, legal persons involved in the process of completing the specific request/need of the interested party, the list of which is available at the owner's headquarters upon request of the interested party.

4. PERIOD OF STORAGE OF PERSONAL DATA

The period of storage of personal data begins from the moment of provision of the same by the interested party and ends with the exercise of the right to erasure of the data by the interested party via the link at the bottom of each message or registered letter with return receipt to the address Piazza Guido Crepax, 5, Rome (Rome), 00127.

5. OPTIONAL NATURE OF DATA PROVISION AND CONSEQUENCES OF ANY REFUSAL

Providing the data necessary to fulfill the request for sending information is optional. However, in the event of failure to provide the requested data, the interested party will not be able to receive the information and support requested

IMPORTANT
This Privacy Policy is effective from May 25, 2018. The Data Controller reserves the right to modify or simply update its content, in part or completely, also due to changes in the Regulation. We therefore invite you to visit this section regularly to take note of the most recent and updated version.

Information and consent to the processing of personal data for "Contact form on the website: cristianaserafini.it” (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016)

Dear Sir/Madam,

In accordance with European Regulation 679/2016 (“GDPR – General Data Protection Regulation”), the processing of personal information concerning you will be based on the principles of correctness, lawfulness and transparency and protection of your privacy and your rights.

Pursuant to articles 12 and 13 of GDPR 679/2016 and in relation to the data we will come into possession of, provided by you, we inform you of the following:

 

1. IDENTITY AND CONTACT DETAILS OF THE DATA CONTROLLER/DPO (DATA PROTECTION OFFICER)

The data controller is Cristiana Serafini Srls – Piazza Guido Crepax, 5, Rome (Rome), 00127 - VAT number: 123456798 - Email: cristiana.serafini@icloud.com
- Tel: +39 345 469 3104

 

2. PURPOSE OF THE PROCESSING

The specific purpose is the collection of personal data for the purposes specified below:

 fulfill the contact and/or information request made by you in reference to the services/products promoted by us.

 

3. RECIPIENTS OR CATEGORIES OF RECIPIENTS OF THE DATA

The data processed for the purposes referred to in point 2 may be communicated to internal or external personnel of the company, legal persons involved in the process of completing the specific request/need of the interested party, the list of which is available at the owner's headquarters upon request of the interested party.

 

4. PERIOD OF STORAGE OF PERSONAL DATA

The period of storage of personal data begins from the moment of provision of the same by the interested party and ends with the exercise of the right to erasure of the data by the interested party by registered mail to the address Piazza Guido Crepax, 5, Rome (Rome)

 

5. OPTIONAL NATURE OF DATA PROVISION AND CONSEQUENCES OF ANY REFUSAL

Providing the data necessary to complete the contact and/or information request is optional. However, in the event of failure to provide the requested data, the interested party will not be able to receive the information and support requested.

 

6. LEGAL BASIS FOR THE PROCESSING

Pursuant to art.6 of GDPR 679/2016, the processing of data for the purposes listed in point 2 of this document finds its legal basis in the explicit consent of the interested party (art.6 letter a); in the execution of a contract to which the interested party is a party (art.6 letter b) and in the legitimate interest of the owner (art.6 letter f) based on the relevant relationship between the interested party and the data controller provided that the rights and freedoms of the interested party do not prevail. The legitimate interests of the Owner do not prevail over the interests, rights and freedoms of the interested party.

 

7. RIGHTS OF THE INTERESTED PARTY

At any time the interested party may exercise his/her rights towards the data controller, pursuant to articles 15, 16, 17, 18, 20, 21 of GDPR 679/2016. Specifically, the interested party has the right:

  • of access to personal data by making an appropriate request (art.15);
  • to obtain rectification (art.16)
  • to their cancellation (oblivion) ​​(art.17);
  • to the limitation of the processing concerning him (art.18);
  • to data portability (art.20);
  • to object to the processing (art.21);
  • to revoke consent without prejudice to the lawfulness of the processing carried out prior to the revocation (art.13 par.2 let.C);
  • to lodge a complaint with a supervisory authority (art.13 par.2 let.D).

 

8. AUTOMATED DECISION-MAKING AND PROFILING

The collection and processing of data do not involve any type of automated decision-making process and/or profiling by the Data Controller.

 

"Newsletters" Specifications

 

2. PURPOSE OF THE PROCESSING

The processing of the data provided by you is aimed solely at the correct and complete execution of the service requested by you. The specific purpose is the collection of personal data for the purposes specified below:

 fulfill the request made by you to send information via email, in reference to activities, events, initiatives, services and news in general carried out or promoted by the Owner.

3. RECIPIENTS OR CATEGORIES OF RECIPIENTS OF THE DATA

The data processed for the purposes referred to in point 2 may be communicated to internal or external personnel of the company, legal persons involved in the process of completing the specific request/need of the interested party, the list of which is available at the owner's headquarters upon request of the interested party.

4. PERIOD OF STORAGE OF PERSONAL DATA

The period of storage of personal data begins from the moment of provision of the same by the interested party and ends with the exercise of the right to erasure of the data by the interested party via the link at the bottom of each message or registered letter with return receipt to the address Piazza Guido Crepax, 5, Rome (Rome)

5. OPTIONAL NATURE OF DATA PROVISION AND CONSEQUENCES OF ANY REFUSAL

Providing the data necessary to fulfill the request for sending information is optional. However, in the event of failure to provide the requested data, the interested party will not be able to receive the information and support requested.

 

For further information regarding your privacy rights, we invite you to visit the website of the Authority for the protection of personal data at www.garanteprivacy.it

ite since, following the consultation of the site, data relating to identified or identifiable natural persons may be processed. Before communicating any personal data, Cristiana Serafini Srls, invites you to carefully read this “Privacy Policy”, as it contains important information on the protection of personal data and on the security measures adopted to guarantee confidentiality in full compliance with the Applicable Regulations.

This Privacy Policy does not apply to other websites that may be reached via hypertext links published on the Site and complies with Recommendation no. 2/2001 on minimum requirements for online data collection in the European Union, adopted on 17 May 2001 by the Article 29 Working Party.

Pursuant to Article 13 of Regulation (EU) 2016/679 (“GDPR – General Data Protection Regulation”) hereinafter “Regulation”, the processing of personal information concerning you, of which we will come into possession, will be based on the principles of correctness, lawfulness, limitation of purpose and retention, data minimization, accuracy, integrity and transparency and protection of your privacy and your rights.

We therefore inform you of the following:

1. IDENTITY AND CONTACT DETAILS OF THE DATA CONTROLLER/DPO (DATA PROTECTION OFFICER)

The data controller is Cristiana Serafini Srls – Piazza Guido Crepax, 5, Rome (Rome), 00127 - VAT number: 123456798 - Email:
cristiana.serafini@icloud.com
- Tel: +39 345 469 3104

2. PURPOSE OF THE PROCESSING

The Personal Data collected by the Site are the following:

 

Browsing data

The computer systems and software procedures used to operate this site acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.

This category of data includes the IP addresses or domain names of the computers and terminals used by users, the URI/URL (Uniform Resource Identifier/Locator) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numeric code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user's IT environment.

Such data, necessary for the use of web services, are also processed for the purpose of:

 statistical research/analysis on aggregate or anonymous data, therefore without the possibility of identifying the user, aimed at measuring the correct functioning of the Site, measuring traffic and evaluating usability and interest;

Browsing data does not persist for more than seven days (except in the event of the need to ascertain crimes by the judicial authorities).

 

Cookies and other tracking systems

No cookies are used to profile users, nor are other tracking methods employed.

Instead, session cookies (not persistent) are used in a strictly limited manner to what is necessary for safe and efficient navigation of the sites. The storage of session cookies in terminals or browsers is under the control of the user, where on the servers, at the end of the HTTP sessions, information relating to cookies remains recorded in the service logs, with retention times in any case not exceeding seven days like other navigation data.

More information on the use of cookies and similar technologies is available at https://www.garanteprivacy.it/cookie .

In addition to what is reported in point 2, the processing of the data provided by you may be aimed at the purposes specified below: fulfilling pre-contractual and contractual obligations arising from existing relationships with you;

 administrative and accounting management of the relationship required by law.

In this regard, specific information will be published on the pages of the site set up for the provision of certain services.

 

3. RECIPIENTS OR CATEGORIES OF RECIPIENTS OF THE DATA

The data processed for the purposes referred to in point 2 may be communicated to internal or external personnel of the company, legal persons involved in the process of completing services requested by the interested party, including, for example, those in charge of sending emails and analyzing the functioning of the Site, who act on the basis of specific instructions provided in order to the purposes and methods of the processing itself. The list is available at the headquarters of the Data Controller upon request of the interested party.

The Personal Data processed are not transferred to Recipients located outside the European Economic Area.

 

4. PERIOD OF STORAGE OF PERSONAL DATA

The period of storage of personal data begins from the moment of provision of the same by the interested party and ends with the exercise of the right to erasure of the data by the interested party by registered mail with return receipt to the address Via Piazza Guido Crepax, 5, 00127 Roma (Rome).

 

5. OPTIONAL NATURE OF DATA PROVISION AND CONSEQUENCES OF ANY REFUSAL

Providing the data necessary to complete the contact and/or information request is optional. However, in the event of failure to provide the requested data, the interested party will not be able to receive the information and support requested.

 

6. LEGAL BASIS FOR THE PROCESSING

Pursuant to art.6 of GDPR 679/2016, the processing of data for the purposes listed in point 2 of this document finds its legal basis in the explicit consent of the interested party (art.6 letter a); in the execution of a contract to which the interested party is a party (art.6 letter b) and in the legitimate interest of the owner (art.6 letter f) based on the relevant relationship between the interested party and the data controller provided that the rights and freedoms of the interested party do not prevail. The legitimate interests of the Owner do not prevail over the interests, rights and freedoms of the interested party.

 

7. RIGHTS OF THE INTERESTED PARTY

At any time the interested party may exercise his/her rights towards the data controller, pursuant to articles 15, 16, 17, 18, 20, 21 of GDPR 679/2016. Specifically, the interested party has the right:

  • of access to personal data by making an appropriate request (art.15);
  • to obtain rectification (art.16)
  • to their cancellation (oblivion) ​​(art.17);
  • to the limitation of the processing concerning him (art.18);
  • to data portability (art.20);
  • to object to the processing (art.21);
  • to revoke consent without prejudice to the lawfulness of the processing carried out prior to the revocation (art.13 par.2 let.C);
  • to lodge a complaint with a supervisory authority (art.13 par.2 let.D).

 

8. AUTOMATED DECISION-MAKING AND PROFILING

The collection and processing of data do not involve any type of automated decision-making process and/or profiling by the Data Controller.

 

"Newsletters" Specifications
2. PURPOSE OF THE PROCESSING

The processing of the data provided by you is aimed solely at the correct and complete execution of the service requested by you. The specific purpose is the collection of personal data for the purposes specified below:

  • fulfill the request made by you to send information via email, in reference to activities, events, initiatives, services and news in general carried out or promoted by the Owner.

 

3. RECIPIENTS OR CATEGORIES OF RECIPIENTS OF THE DATA

The data processed for the purposes referred to in point 2 may be communicated to internal or external personnel of the company, legal persons involved in the process of completing the specific request/need of the interested party, the list of which is available at the owner's headquarters upon request of the interested party.

4. PERIOD OF STORAGE OF PERSONAL DATA

The period of storage of personal data begins from the moment of provision of the same by the interested party and ends with the exercise of the right to erasure of the data by the interested party via the link at the bottom of each message or registered letter with return receipt to the address Piazza Guido Crepax, 5, Rome (Rome), 00127.

5. OPTIONAL NATURE OF DATA PROVISION AND CONSEQUENCES OF ANY REFUSAL

Providing the data necessary to fulfill the request for sending information is optional. However, in the event of failure to provide the requested data, the interested party will not be able to receive the information and support requested