WHY THIS NOTICE This page describes how the site is managed with regard to the processing of the personal data of the users who consult it, information also provided pursuant to art. 13 of Legislative Decree no. 196/2003 - Code for the protection of personal data of those who interact with the web services of this site. The information is provided only for the site of GI. Rosa S.r.l. not also for other websites that may be consulted by the user through links.
The information is also based on Recommendation No. 2/2001, which the European authorities for the protection of personal data, meeting in the Group established by Article 29 of Directive No. 95/46/EC, adopted on 17 May 2001 to identify certain minimum requirements for the collection of personal data online, and, in particular, the methods, timing and nature of the information that data controllers must provide to users when they connect to web pages, regardless of the purpose of the connection.
THE 'OWNER' OF THE PROCESSING Following consultation of this site, data relating to identified or identifiable persons may be processed. The 'owner' of their processing is GI. Rosa S.r.l., based in 20122 Milan, Galleria S. Babila 4/B PLACE OF DATA PROCESSING The processing operations connected to the web services of this site take place at the aforementioned premises and are carried out only by specifically appointed personnel or by persons in charge of occasional maintenance operations. No data deriving from the web service is communicated or disseminated. The personal data provided by users who send or should send requests for information material (bulletins, CD-ROMs, newsletters, annual reports, answers to questions, deeds and measures, etc.) are used for the sole purpose of performing the service or provision requested and are communicated to third parties only if necessary for that purpose (dispatch services, etc.).
TYPES OF DATA PROCESSED Navigation data The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected in order to be associated with identified interested parties, but by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data may include the IP addresses or domain names of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user's operating system and IT environment.
This data is used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct operation, and is deleted immediately after processing. The data could be used to ascertain responsibility in the event of hypothetical computer crimes to the detriment of the site: apart from this possibility, at present the data on web contacts do not persist for more than seven days. Data provided voluntarily by the user The optional, explicit and voluntary sending of electronic mail to the addresses indicated on this site entails the subsequent acquisition of the sender's address, which is necessary to respond to requests, as well as any other personal data included in the message.
COOKIES No personal user data is acquired by the site in this regard. Cookies are not used for the transmission of information of a personal nature, nor are so-called persistent cookies of any kind, i.e. systems for tracing users, used. The use of so-called session cookies (which are not permanently stored on the user's computer and disappear when the browser is closed) is strictly limited to the transmission of session identifiers (possibly consisting of random numbers generated by the server) necessary to enable the safe and efficient exploration of the site. The so-called session cookies used in this site avoid the use of other IT techniques potentially prejudicial to the confidentiality of users' browsing and do not allow the acquisition of personal data identifying the user.
OPTIONAL PROVISION OF DATA Apart from what has been specified for navigation data, the user is free to provide the personal data indicated in the request forms or in any case addressed to the usual contacts with the personnel in charge for any reason. Failure to provide them may make it impossible to obtain what has been requested. For the sake of completeness, it should be noted that in some cases (not covered by the ordinary management of this site) the Authority may request news and information pursuant to Article 157 of Legislative Decree no. 196/2003, for the purpose of checking the processing of personal data. In these cases, a reply is compulsory under penalty of administrative sanction.
MODE OF TREATMENT Personal data are processed by automated tools for the time strictly necessary to achieve the purposes for which they were collected. Specific security measures are observed to prevent loss of data, unlawful or incorrect use and unauthorised access.
RIGHTS OF THE INTERESTED PARTIES The persons to whom the personal data refer have the right at any time to obtain confirmation of the existence or otherwise of such data and to be informed of their content and origin, verify their accuracy or request that they be supplemented or updated, or corrected (Article 7 of Legislative Decree No. 196/2003). Pursuant to the same article, data subjects have the right to request the deletion, transformation into anonymous form or blocking of data processed in breach of the law, as well as to object in any case, for legitimate reasons, to their processing. Requests should be addressed to GI. Rosa S.r.l. CONSIDERATIONS This privacy policy may be consulted in automatic form by the most recent browsers implementing the P3P standard ('Platform for Privacy Preferences Project') proposed by the World Wide Web Consortium (www.w3c.org).
Every effort will be made to make the functionalities of this site as interoperable as possible with the automatic privacy control mechanisms available in certain products used by users. Considering that the state of perfection of the automatic control mechanisms does not currently render them free from errors and dysfunctions, it should be noted that this document constitutes the "Privacy Policy" of this site, which may be subject to updates.