Information for the processing of personal data
Following consultation of this site, data relating to identified or otherwise identifiable persons may be processed. This page describes how to manage the site with reference to the processing of personal data of users who – for whatever reason – consult it, in compliance with the regulations in force.
In this regard, Lemcolor group srl, as data controller (and referred to more simply as “data controller”) informs users that, pursuant to the provisions of art. 13 of Legislative Decree 196/2003 (hereinafter, “privacy code”) and art. 13 of EU Regulation no. 2016/679 (hereinafter, “GDPR”), the data will be processed in the manner and for the purposes that follow.
Lemcolor group srl It also specifies that this statement is made only for the website of www.color-mode.it and not for other websites that the user should consult and to which he has access through the links on our pages.
the data controller is Lemcolor group srl, based in Via Paolo Anfossi 36 r16164 Pontedecimo – Genoa
VAT and Fiscal Code 03371940101 – REA : GE 338998 – Share Capital : 16.000,00 euro – PEC: firstname.lastname@example.org
in the person of Mattia Mercurio
2. Purpose of processing:
The Data Controller processes personal and identification data (such as, for example and not exhaustive, first name, surname, company name, address, telephone, e-mail, bank references, etc.), hereinafter referred to as “personal data” or simply “data”, communicated by users when registering on the website www.color-mode.it or when concluding contracts or even when participating in opinion polls, fill out a registration form via this website at events organized by the Holder, the online request for clarifications or requests for support or, finally, the sending of newsletters.
3. Processing purposes: the data provided by users shall be processed:
a) without their express consent (art. 24, lett. a, b, c, privacy code and art. 6 lett. b and and GDPR) for the following purposes:
management and maintenance of the site;
use of any services requested by users;
participation through online registration to initiatives or events organized by the Owner;
acknowledgement or registration of a contact request;
fulfillment of the obligations provided for by law, regulation, Community legislation or an order or order of the Authority;
conclusion of contracts for the services offered by the Owner;
fulfilment of pre-contractual, contractual and tax obligations arising from relations in the course of performance;
exercise of a right of the Owner (such as, for example, the exercise of the right of defence in court).
b) with the express and specific consent (art. 23 and 130 privacy code and art. 7 GDPR), for the following other purposes:
sending information material (newsletters, brochures, cd-roms, answers to questions, promotional material in general and other technical documents). The use of such data will be, in any case, for the sole purpose of performing the service or service requested.
4. Method of treatment:
The processing of data provided by users is carried out by means of the operations indicated in art. 4 of the Privacy Code and art. 4, n. 2 GDPR, and therefore: collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and destruction. Personal data are subject to both paper and electronic and/or automated processing.
The Data Controller will process the personal data with automated tools and exclusively for the time necessary to fulfil the above purposes and in any case for no more than 10 years from the termination of the relationship for the purposes determined by the service provided and for no more than 2 years the collection of data for other purposes.
Specific security measures have been adopted to prevent the loss of data, the illicit or incorrect use of data and unauthorized access, in line with the provisions of art. 32-34 privacy code and art. 32 GDPR.
5. Access to data:
The personal data of users may be processed and then made accessible, for the purposes of art. 3 of this information, also by the employees or collaborators of Lemcolor Group srl or of the Group Companies, in their capacity as appointees or internal data processors, or even by the system administrators.
The aforementioned data may also be processed and then made accessible to third-party companies or other entities – such as, but not limited to – professional firms, consultants, suppliers, technicians in charge of hardware and software assistance, credit institutions, freight forwarders or transport companies, which carry out outsourcing activities on behalf of Lemcolor group srl, in their capacity as external data processors.
6. Communication of data:
In the absence of express consent, pursuant to art. 6 lett. b) and c) GDPR, Lemcolor group srl will communicate the data of users to Supervisory Bodies, Judicial Authorities or other subjects to whom the communication is mandatory by law for the fulfilment of the purposes better indicated in the previous art. 3, lett. a) of this policy.
No data provided by users and deriving from the web service will be disseminated.
7. Transfer of data:
The personal data of users connected to the web services of this site take place at the headquarters of Lemcolor group srl, as indicated above, and are handled exclusively by technical staff of the office in charge of the processing of the same data or by any persons in charge of occasional and specific maintenance operations.
8. Type of data processed:
a) Navigation data:
The computer systems and software procedures used to operate this website acquire, during their normal exercise, some personal data whose transmission is implicit in the use of internet communication protocols. This information has not been collected to be associated with identified interested parties, but by its very nature could – through processing and association with data held by third parties – allow users to be identified. This category of data includes the IP addresses or domain names of the computer used by users who connect to the site, the addresses in URI (Uniform Resource Identifier) notation of the requested resources, the time of the request, the method used nl to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters related to the user’s operating system and computer environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and are deleted immediately after processing. The data could be used to ascertain responsibility in case of hypothetical computer crimes to the detriment of the site: except for this eventuality, at present the data on web contacts do not persist for more than seven days.
b) Data provided voluntarily by users: the optional, explicit and voluntary sending of e-mail to the e-mail addresses indicated on this site involves the subsequent acquisition of the sender’s address, necessary to respond to requests, and any other personal data included in the message.
c) Cookies: in this site a statistical analysis is adopted to improve the user experience by a third party such as Google Analytics (www.google.com/analytics/, a statistics service for websites and blogs). The service uses performance cookies to collect user data, such as time spent on a page, the search engine that allowed redirection to the site ettsolutions.com, the country of destination of the user, the time spent on the various pages, etc. Users, therefore, browsing this site, accept this statement.
Session cookies are generally essential in order to distinguish between connected users and are useful to avoid that a requested functionality can be provided to the wrong user, as well as for security purposes aimed at preventing cyber attacks on the site. Session cookies do not contain personal data and last only for the current session, or until the browser is closed.
9. Nature of the contribution:
The provision of data for the purposes indicated in art. 3 a) is mandatory; in their absence, it would not be possible for Lemcolor group srl to guarantee the services indicated therein and requested by users.
The provision of data for the purposes referred to in art. 3 b) is optional; users can therefore decide not to provide any data or to deny, at a later date, the possibility of processing data already provided. In this case, users may not receive newsletters, commercial communications or advertising materials relating to the services offered by the owner. In any case, after this choice, users will be guaranteed the right to receive the services referred to in art. 3 a).
10. Rights of the person concerned:
Users, in their capacity as interested parties, have the rights indicated in art. 7 privacy code and art. 15 GDPR, and more precisely have the right to:
i. Obtain confirmation of the existence or otherwise of personal data concerning them, even if not yet recorded, and to receive their communication in intelligible form;
ii. To obtain an indication of: a) the origin of the personal data; b) the purposes and methods of processing; c) the logic applied in the case of processing carried out with the aid of electronic means; d) the identification details of the owner, of the responsible persons and of the responsible person designated pursuant to art. and, c. 2, privacy code and art. 3, c. 1, GDPR; e) of the subjects or categories of subjects to whom the personal data may be communicated or who may become aware of them as designated representative in the territory of the State, of managers or persons in charge;
iii. Obtain: a) updating, rectification or, where there is an interest, integration of data; b) cancellation, transformation into anonymous form or blocking of data processed in violation of the law, including those for which storage is not necessary in relation to the purposes for which the data were collected or subsequently processed; c) the attestation that the operations referred to in letters a) and b) have been brought to the attention, also with regard to their content, of those to whom the data have been communicated or disseminated, except where such fulfilment proves impossible or involves the use of means manifestly disproportionate to the right protected;
iv. to oppose, in whole or in part: a) for legitimate reasons, the processing of data concerning them, even if pertinent to the purpose of the collection; b) the processing of data concerning them for the purpose of sending advertising material or direct sales or for carrying out market research or commercial communication.
Where applicable, users also have the rights referred to in Arts. 16-21 GDPR (right to rectification, right to be forgotten, right to restriction of processing, right to data portability, right of opposition), to be understood here fully recalled and transcribed, as well as the right to lodge a complaint with the Guarantor Authority.
11. How to exercise the rights: Users can exercise at any time the rights indicated in the previous point by sending:
a registered letter a.r. to the headquarters of Lemcolor group srl, Via Paolo Anfossi 36 r16164 Pontedecimo – Genoa;
or a communication via pec at: email@example.com
12. Owner, manager and persons in charge of:
The data controller is Lemcolor group srl, with registered office in Via Paolo Anfossi 36 r16164 Pontedecimo – Genoa
Internal data processors are Mr. Mattia Mercurio – firstname.lastname@example.org
The updated list of data processors and persons in charge of processing is kept at the registered office of the Data Controller.
13. Amendments to this policy:
since this information may be subject to change, Lemcolor group srl advises users to regularly check this information and always refer to the latest version.