INFORMATION ABOUT PERSONAL DATA PROCESSING
of users who consult Iron’s Technology Srl’s website
pursuant to Article 13 of Regulation (EU) 2016/679
In accordance with the Regulation (EU) 2016/679 GDPR (the "Regulations"), this page describes how users’ personal data who consult website of Iron’s Technology Srl from the address: https://ironstechnology.it/en
This information is also formulated in accordance of Recommendation no. 2/2001, adopted by Article 29 Working Group on 17 May 2001, in order to identify some minimum requirements for the collection of personal data online, and, in particular, the method, timing and nature of the information that the Data Controller must provide to users when they connect to web pages, regardless of the connection purpose.
This information does not concern other sites, pages or online services that can be reached via hypertext links that may be published on the site.
This website collects some personal data from users.
Data Controller is Iron’s Technology Srl, based in Cesena (C), 47522, Italy, Via Sorrento 345, telephone +39 0547 1825170, e-mail firstname.lastname@example.org
TYPES OF DATA PROCESSED AND PURPOSE OF THE PROCESSING
The computer systems and software procedures used to operate this site acquire, during their normal operations, some personal data and information whose transmission is implicit in the use of Internet communication protocols, based on the TCP / IP protocol. The information and personal data are not collected to be associated with identified subjects, but by their very nature they could allow the identification of the user. This category of data includes IP addresses, computer domain names (hostnames) used by users, URI / URL (Uniform Resource Identifier / Locator) addresses of the requested resources, the time of the request, the method used, the size of the file obtained, in response to a request sent to the server, the numerical code indicating the status of the response given by the server (successful, error, etc.), some information regarding the geolocation of the request and the fingerprint of the users’ computer environment.
These data are necessary for the functioning of web services, as they are necessary to submit requests to servers. They are also processed for obtaining statistical information about the use of services (most visited pages, number of visitors per hour or day, geographical areas of origin, etc.); checking the correct functioning of the services.
The data and information listed above could be used to ascertain responsibility in case of hypothetical crimes against the site, and for the same reason retained by ISP (Internet Service Provider) and by the web hosting service provider (provider of the physical space in which the web server is located).
The navigation data (log files, traffic data) are retained for the period required by current legislation, ranging from 12 to 24 months for the purposes of ascertaining and prosecuting crimes.
Data communicated by the users - "Contacts"
Through the "Contacts" section it is possible for users to send us requests of information about our products provided by the online shop, simply writing an e-mail to the address indicated or by filling the form with name, surname, company name and e-mail address. This procedure involves the acquisition of some contact details of the sender such as the sender's e-mail address and the content of the message itself.
The processing in question does not require the consent because it is necessary for the execution of a contract or in order to take steps at the request of the data subject prior entering to a contract to respond and follow up on requests received; therefore the provision of data is to be considered necessary for the completion of the request: the failure to provide them would make it impossible to follow up and respond to requests.
Sending messages via the e-mail address indicated and filling out the form does not involve the automatic subscription to a mailing list with a promotional or commercial purpose.
that a commercial relationship is established, the data will be kept at least for the duration of the relationship itself.
Cookie and other tracking systems
Cookies are small text strings that a website can send, while browsing, to the user's device (be it a PC, a smartphone, a notebook, a tablet, they are usually stored directly on the browser used to navigation) in order to store information (for example the language) to be retransmitted to the server that hosts the site; at the next access to the site, the server retransmits the cookies to the user's PC.
Cookies can be divided into two broad categories: session cookies, which are automatically deleted when the browser is closed; persistent cookies, which instead remain inside the user's device until the set deadline.
It is also possible to identify first-party cookies, installed by the operator of the site the user is visiting; third-party cookies, installed by different parties.
Finally, cookies can be divided into technical cookies, necessary for browsing the website, for example because they are used to perform authentication or remember in which language the site is displayed; statistical cookies, used by website managers to collect information, in aggregate and anonymous form, on the number of visits to the site; profiling cookies, used to monitor and profile users while browsing, study their web browsing or consumption habits (what they buy, what they read, etc.), in order to create user profiles to send targeted and personalized advertising .
The navigation data (log-file) are stored by the ISP (Internet Service Provider) and by the web host service provider.
The data collected by e-mail and contacts form are processed by authorized personnel, that acts by specific rules provided by Data Controller.
The data acquired by the site are communicated to servers located in Italy.
The data collected by Facebook cookies and pixels are processed and stored on servers placed within the European Union borders, specifically in Netherlands, country subjected to European legislation about personal data protection. However, some data collected by Google may transit on server placed in the United States; in this case Google, according to the provisions of its data processing policy, applies to the transfer the Standard Contractual Clauses developed by the European Commission (Standard Contractual Clauses, SCC) which level of protection is equal to that provided by European legislation.
RIGHTS OF DATA SUBJECT AND RIGHT OF COMPLAINT
Data subjects have the right to obtain from the Data Controller, in cases provided for, access to their personal data and the correction or erasure of the same or the limitation of the processing that concerns them or to oppose the processing, in addition to the right to data portability (Articles from 15 to 22 GDPR); furthermore, the data subjects have the right to obtain information and / or specific clarifications about the origin of personal data, the purposes and methods of the processing and the logic applied in case of treatment carried out with the aid of electronic tools.
Data subjects who believe that the processing of personal data is carried out in violation of the provisions of the GDPR have the right to lodge a complaint with a supervisory authority, as required by art. 77 of the Regulation itself, or to take appropriate judicial offices (Article 79 of the Regulation).
Requests relating to the aforementioned articles can be sent to the Data Controller using the contacts indicated at the top of this information document or by filling the request personal data form at the specific website section.