Data processing information
This section of the site aims to indicate the policies of the Municipality pursuant to European Regulation no. 679/2016 and Legislative Decree n. 196/2003, regarding the processing of personal data collected while browsing the official website of the Organization and the portals managed by it.
the legislation in force asks us to provide information regarding the processing of personal data for this website (hereinafter also the "Site") and for any services connected to it, with reference to the processing of personal data of users/visitors who consult it and use the related web services accessible electronically through the Site.
The information is provided pursuant to EU Regulation 2016/679 (hereinafter also "Regulation" or "GDPR") and subsequent amendments, to all users who interact with the Site and related services.
The validity of the information contained in this page is limited to the Site only and does not extend to other websites external to the Organization which may be consulted via hypertext link.
For the Regulation on the processing of personal data:
a) We, i.e. the Body whose data are indicated at the bottom of the page, owner of this site, are the "Owner" of the Treatment;
b) You are the "Data Subject", and have the rights and obligations that we illustrate below.
1. Treatment
1.1. The Data Controller, whose data are indicated at the bottom of the page, will process the Data according to the principles of lawfulness, correctness, transparency, purpose limitation and retention, data minimization, accuracy, integrity and confidentiality.
2. Categories of data processed
2.1. Navigation data:the computer systems and computer programs used to operate the site collect some personal data whose transmission is implicit in the use of Internet communication protocols (e.g. IP addresses or domain names of the computers used by users who connect to the site, the URI -Uniform Resource Identifier- addresses of the requested resources, time of the request, method used to submit the request to the server, size of the file obtained in response, numerical code about the status of the response given by the server - successful, error, etc. - and other parameters relating to the user's operating system and IT environment). Although this is information that is not collected to be associated with identified interested parties, by their nature they could, through processing and association with data held by third parties, allow users to be identified. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning. It should be noted that the aforementioned data could be used to ascertain responsibility in the event of computer crimes against the Site or other sites connected or connected to it: except for this eventuality, at present the data on web contacts do not persist for longer of 7 days.
2.2. Cookies: a cookie is a small text file within which brief information relating to a user's activity on a website is collected and stored on the device that has accessed the website.
In compliance with provisions n. 229 of 8 May 2014 and 231 of 10 June 2021 of the Guarantor for the Protection of Personal Data, we inform you that this site uses only technical cookies (which DO NOT require consent): they are necessary for the site to function and allow access to its functions (so-called navigation cookies) and are for mostly session cookiesthe use of which is limited to the sole transmission of session identification data in the form of numbers automatically generated by the server necessary to allow safe and efficient exploration of the site and manage authentication for online services and restricted areas. They are also used for setting some preferences such as the language and for analytical/monitoring functions to collect information, in aggregate form, on the number of users and on how they visit the site in order to carry out anonymous statistical analysis for site optimization without the use of analytical cookies. Session cookies are not stored permanently on the user's computer and are deleted when the browser is closed. The session cookies used on this site avoid the use of other IT techniques potentially prejudicial to the confidentiality of users' browsing and do not allow the acquisition of personal identification data of the user. Other technical cookies have a longer duration specified in the list below. Cookies are not used to transmit information of a personal nature.
User profiling cookies are not used .
The technical cookies used are the following:
Web Analytics Italy - privacy policy
2.3. Data provided voluntarily by the user:for the consultation of the site, no provision of personal data by the user is required. However, any contacts with the Data Controller, for example to request information on a specific service via a form, or the spontaneous sending of messages, by e-mail or traditional mail, to the contact details of the Data Controller indicated on the Site involve the subsequent acquisition of such personal data of the sender, necessary to respond to requests, as well as any other personal data entered voluntarily by the user in the relative communications (the communication of personal data relating to a minor must be carried out by both parents or by a person exercising parental authority over the minor himself). The Data Controller will process this data in compliance with the applicable legislation,
3. Purposes and Legal Bases of the Processing
3.1 . The Data Controller carries out the Processing for the purpose:
a) allow you to browse the Site and use the Services;
b) perform the Service or provision requested, process and manage requests and/or requests formulated in the forms or modules that may be present on the Site;
c) fulfill administrative, financial, accounting and/or tax obligations;
d) fulfill any obligation established by law and/or an order from the Public Authority;
e) possibly, to assert or defend a right in court;
f) Your data may also be processed to send you communications of public interest or public utility;
3.2. The legal bases of the Processing are as follows:
a) the need to allow you to browse the Site, access the requested Web Service, as well as to render the service itself;
b) the need to carry out the previous points 3.1 af;
c) the processing is necessary for the execution of a task of public interest or connected to the exercise of public powers vested in the Data Controller;
d) any tax data: need to fulfill the obligations referred to in points 3.1 and above.
4. Communication to Recipients and Dissemination
4.1. The Data is eventually communicated to third Recipients (including the Public Administration or Judicial Authorities) only to the extent strictly necessary in relation to the aforementioned purposes, or in any case only for the fulfillment necessary for the Service, or those of the law or by order of the Authority.
4.2. The categories of Recipients are as follows:
a) subjects necessary for the execution of the activities connected and consequent to the execution of the Service, linked by a data processing agreement (external managers);
b) Appointees and persons authorized by the Data Controller who are committed to confidentiality or have an adequate legal obligation of confidentiality (e.g. employees and collaborators of the Data Controller);
4.3. The Owner may also have to communicate Data to fulfill legal obligations or to comply with orders from public authorities, including the Judicial Authority.
4.4. The Data will not be disseminated.
5. Data Retention Period
5.1. The Data Controller keeps your Data for the time strictly necessary to achieve the Purposes referred to in point 3.
5.2. These data will be deleted when they are no longer necessary for the purposes indicated above, subject to further conservation obligations established by law.
6. Nature of data communication
6.1. The communication of Personal Data referred to in point 2.1 is necessary for navigation: failure to provide it would in fact make it impossible.
6.2. The communication of Personal Data referred to in point 2.3 is optional.
7. Consequences of refusing to communicate the Data
7.1. As specified in point 6.1 above, it is not technically possible to refuse to communicate Navigation Data (insofar as they are Personal Data).
7.2 In case of refusal to communicate the Personal Data referred to in point 2.3 it will not be possible to respond to requests and/or render the service.
8. Rights of the interested party
8.1. As an interested party, you have the right to:
a) access their Data held by the Data Controller and obtain a copy;
b) request rectification and/or cancellation, where and within the limits in which the conditions are met;
c) request the Limitation of Treatment, where and within the limits in which the conditions are met;
d) oppose, for reasons related to his particular situation, the processing of personal data concerning him.
e) lodge a complaint with the Guarantor for the Protection of Personal Data ( www.garanteprivacy.it ).
9. The Data Protection Officer
9.1. The Data Controller has a Data Protection Officer of the Data Controller (also "RPD" or "DPO"), who you can contact at the address indicated at the bottom of the page.
10. Information Updates
10.1. This information refers to the methods of processing visitors' personal data while browsing the Site or using the web services connected to it. The possible entry into force of new sector regulations, as well as the constant examination and updating of the Services, could lead to the need to vary these methods over time. We therefore invite you to periodically consult this page. For this purpose, this document indicates the date of the last update.
11. WEB site statisticsContact details of the Data Protection Officer (DPO)
Who is the “Data Protection Officer (DPO)”?
Quality, characteristics and duties of the Data Protection Manager are provided for and governed by articles 37, 38 and 39 of the European Regulation n. 679/2016 and well clarified by the Guidelines on data protection officers adopted on 13 December 2016 by the Article 29 Working Party on the protection of personal data as well as by several recent FAQs of the Guarantor for the protection of personal data.
The Data Protection Officer (DPO) has a general function of supervising that the Organization carries out its activity in compliance with the legislation on the protection of personal data.
In particular, it also acts as a point of contact-reference for citizens with respect to problems and issues relating to the processing of their personal data by the Organization and the respect of their rights in the matter.
Details of the Data Protection Officer:
ISEC srl
Email: dpo@isecsrl.com
PEC: isecsrl@legalmail.it