Who are we and what do we do with your personal data?
The Company Amico Loano, with registered office in Lungomare Madonna del Loreto, Porto di Loano – Loano (SV) – Italy, VAT number 01959640994, Telephone number +39 019.673765, henceforth referred to as the Data Controller, protects the privacy of your personal data and guarantees that they are protected against any potential risks.
The Controller applies policies and practices concerning the collection and use of personal data and the exercise of the rights recognised by the applicable legislation. The Controller is responsible for updating the policies and practices adopted for the protection of personal data whenever it becomes necessary and in any case whenever regulatory and organisational changes that may affect the processing of your personal data arise.
This information refers to users browsing the sites
How does the Controller collect and process your data?
The Controller collects and / or receives information about you, such as: IP address.
They help the Collector manage the site. The communication of your personal data takes place mainly with regard to third parties and / or recipients whose activity is necessary for the performance of activities related to the aforementioned purposes, and also to meet certain legal obligations or are necessary for the control and supervision of the working activity.
Any communication that does not fall under these purposes will be submitted for your consent.
Your personal data will in no way be disseminated or disclosed to indeterminate subjects.
1 – communication to third parties and recipients
The processing of your personal data takes place depending on the contract and the obligations, including the law and / or regulations, deriving from it.
Your data will not be disclosed to third parties / recipients for their own purposes unless you give permission;
it is necessary for the fulfilment of the obligations depending on the contract and by the laws that govern it (e.g. for the defence of your rights, etc.);
The personal data that the Collector deals with for this purpose are, among others:
2 – IT security
The Controller processes, also through its suppliers (third parties and/or recipients), your personal data, including electronic (e.g. logical access) or related to traffic which is collected or obtained in the case of services displayed on the website, strictly necessary and proportionate to ensuring the security and ability of a network or servers connected to it to withstand, at a given level of security, unforeseen events or illicit or malicious acts that compromise availability, authenticity, integrity and the confidentiality of personal data stored or transmitted.
For this purpose, the Controller provides procedures for the management of the violation of personal data (data breach).
The processing of data is carried out with IT procedures by internally authorised and trained individuals. They are allowed access to your personal data to the extent and within the limits necessary for the performance of the processing activities that concern you. Your data are treated separately from others also by means of pseudonymisation or aggregation methods that do not allow you to easily identify yourself.
The Controller periodically checks the tools with which your data is processed and the security measures provided for the same, which are constantly updated, verifying, also by means of the subjects authorised to the processing, that no personal data is collected, processed, kept or stored for which no processing is necessary, as well as verifying that the data is kept with the guarantee of integrity and authenticity and its use for the purposes of the processing is actually performed.
The data are stored in computerized and telematic archives located within the European Economic Area.
The access logs to the site are kept for 7 days.
What are your rights?
At any time, free of charge and without any special charges and formalities for your request, you can basically:
obtain confirmation of the processing carried out by the Controller;
access your personal data and learn its origin (when the data is not obtained directly from you), the purposes and scope of the processing, the data of the subjects to whom it is communicated, the retention period of your data or useful criteria to determine the same;
update or rectify your personal data so that it is always accurate;
delete your personal data from the Controller’s databases and/or archives, also backup archives, in the case, among others, where it is no longer necessary for the purposes of the processing or if the processing is assumed to be illicit, and if there are any conditions required by law, and in any case if the processing is not justified by another equally legitimate reason;
limit the processing of your personal data in certain circumstances, for example where you have challenged its accuracy, for the period necessary for the Controller to verify its accuracy. You must be informed, in a reasonable amount of time, even when the suspension period has been completed or the cause of the limitation of processing has ceased, and therefore the limitation itself revoked;
obtain your personal data, if received or otherwise processed by the Controller with your consent and/or if its processing is carried out on the basis of a contract and with automated tools, in electronic format, also in order to transmit them to another controller.
The Controller must proceed in this sense without delay and, in any case, no later than one month after receiving your request. That period may be extended by two further months where necessary, taking into account the complexity and number of requests received by the Controller. In such cases, within one month of receiving your request the Controller will inform you of the reasons for the extension.
For any further information and in any case to send your request you must contact the Collector at the address firstname.lastname@example.org .
How and when can you oppose the processing of your personal data?
For reasons related to your particular situation, you may object at any time to the processing of your personal data if it is based on legitimate interest, by sending your request to the Collector, at the address email@example.com.
You have the right to cancel your personal data if there is no legitimate overriding reason than the one that gave rise to your request.
Who can you send a complaint to?
Without prejudice to any other administrative or judicial action, you may lodge a complaint with the data protection authority, unless you reside or do not work in another Member State. In the latter case, or in that in which the violation of the legislation on the protection of personal data takes place in another EU country, the ability to receive and process the complaint will be the work of the supervisory authorities established therein.
Every update to this policy will be communicated to you promptly and by appropriate means and you will be notified if the Company will process your data for purposes other than those referred to in this policy before proceeding and in time to give your consent if necessary.