Roveda S.r.l., VAT number 12197290153, having its registered office in Villastanza di Parbiago (MI), via Isonzo no. 9, 20015, is the Data Controller for all personal data provided while browsing the site www.roveda1955.com (the “Site”). In this Policy we will also refer to you as “Data Subject”, i.e. person to whom the collected personal data refer.
If you have any doubts about the use of your data or if you wish to exercise your legal rights, you can write to: privacy@roveda1955.it or per certified e-mail to: roveda@pec.rovedasrl.it.
WHICH DATA DOES ROVEDA PROCESS?
The following personal data are collected through the Site:
– Browsing data:
The Site’s systems collect certain personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected in order to be associated with you, but by its very nature could, through processing and association with data held by third parties, allow you to be identified. Among these are:
- IP address;
- URI (Uniform Resource Identifier) of the requested resources;
- the time and date of interaction with the Site;
- the type of operating system, browser used, screen resolution and other technical information about the device being used.
– Data communicated voluntarily:
By freely and voluntarily using the Site and its functions, you may provide the Data Controller with personal data such as name, surname, e-mail address, phone number, data contained in the messages you send.
The data that you communicate must refer to you or to third parties who have expressly authorized you to confer them and in this case, with the communication, you assume the related obligations and responsibilities.
HOW ARE YOUR DATA PROCESSED?
Personal data are processed by informatic and/or telematic means, with organizational methods and logics strictly related to the purposes listed below.
Specific security measures are observed to prevent data loss, unlawful or incorrect use and unauthorized access.
For all occasions when the Data Controller processes your data, there is a legal basis that legitimizes the processing.
Sometimes your consent is required to process personal data. Other times, when the law allows it and subject to the respect of your fundamental rights, the Data Controller is not obliged to ask for your consent to process the data. This is the case when the data is processed for a legal obligation or following your request, which you have made by contacting the Data Controller and/or requesting certain services.
Providing data whose legal basis is consent is always optional, while in other cases failure to provide data may make it impossible to reply to your request or fulfil a legal obligation to which the Data Controller is bound.
At the end of the retention period, the personal data collected will be irreversibly deleted or anonymized.
|
PROCESSED DATA |
PURPOSES |
LEGAL BASIS |
| Browsing data | 1) to obtain anonymous statistical information on the use of the Site and to check its correct functioning; 2) to ascertain responsibility in case of hypothetical computer crimes against the Site and the Data Controller, only upon request of the relevant supervisory bodies. |
6.1.b GDPR – Contract or pre-contractual measures (purpose no. 1) 6.1.c GDPR – Legal obligation (purpose no. 2) Retention period Six months. Where necessary, for the time required to fulfil legal obligations or for the establishment, exercise or defence of a legal claim or for the order of a public authority. |
| Data provided through the “Contact us” form | 1) to answer your requests. | 6.1.b GDPR – Contract or pre-contractual measures 6.1.c GDPR – Legal obligation Retention period For the time required to answer to your requests. Where necessary, for the time required to comply with legal obligations or for the establishment, exercise or defence of a legal claim. |
| Data provided through the “Spontaneous application” form or in reply to a job offer, including data belonging to special categories | 1) to evaluate your CV, also for job opportunities in the context of targeted employment; 2) to share adequate job opportunities; 3) to initiate personnel selection procedures and to manage the first stages of hiring. |
6.1.b GDPR – Contract or pre-contractual measures 6.1.c GDPR – Legal obligation For data belonging to special categories, 9.2.b GDPR – Carrying out the obligations and exercising specific rights in the field of employment and social security and social protection law Retention period For maximum two years from the sending of the application, unless the data subject object the processing before this deadline. Personal data may be stored by the Data Controller for a further period only if they are necessary to initiate selection and hiring procedures. |
| Data collected by cookies | 1) in the case of technical cookies, to enable certain sections of the Site to function properly; 2) in the case of analytical cookies, the data collected will be used to keep track of your visits to the Site and how you have used it, so that we can improve our services; 3) if they are profiling cookies, the data collected with your prior consent will be used to show you advertisements of interest to you on this Site and other companies’ sites; if you do not accept them, you may still see advertisements, but not related to your interests. For more information, read the Cookie Policy. |
6.1.b GDPR – Contract or pre-contractual measures 6.1.a GDPR – Consent Retention period Until the end of each session or until the end of the retention period expected for each type of cookie, unless consent is withdrawn. For more information, read the Cookie Policy. |
ARE DATA SHARED WITH OTHER SUBJECTS?
The personal data provided will not be disseminated, i.e. they will not be disclosed to unspecified subjects.
However, the data may be communicated to subjects defined by the Data Controller for the purposes indicated, appointed, if necessary, as Data Processors by the Data Controller. By way of example but not limited to, the following may have access to the data:
- those authorized by us to process the data, who have committed themselves to confidentiality or are under an appropriate legal obligation of confidentiality;
- those involved in the maintenance of the Site and our legal or tax consultants, in their capacity as Data Controllers or autonomous Data Processors;
- public authorities, where required by law or at their request.
The updated list of Data Processors can always be requested from the Data Controller writing to: privacy@roveda1955.it or via PEC a: roveda@pec.rovedasrl.it.
The Site incorporates links to social network accounts of the Data Controller, in order to allow easy access to content disseminated through them. These are merely links to social networks’ platforms and no data is communicated to these platforms through the Site. Cookies can only be activated, if so provided by the external site, when you click on the relevant icons. Please note that if you navigate while logged into the social network or other providers’ sites, then you have already consented to the use of cookies conveyed through this Site. The collection and use of information obtained from third party social networks are governed by their privacy policies, which we ask you to refer to.
WHICH ARE MY RIGHTS AS DATA SUBJECT?
We will always ensure you control over your personal data.
In particular, you have the right to:
- request information about your personal data processed by the Data Controller and request a copy of them in a structured, readable format;
- not to be subjected to automated decisions, if you do not consent to them;
- ask the Data Controller to correct any data relating to you that is incorrect, to delete it or to use it only for certain purposes;
- withdraw any consent given.
Please note, however, that in certain limited cases we will not be able to fulfil your requests, such as in the event that we are prohibited from doing so by law or by order of an Authority.
The aforementioned rights may be exercised by written communication to be sent by e-mail to the address of the Data Controller.
In any case, you have the right to lodge a complaint with the competent supervisory authority (Garante per la Protezione dei Dati Personali) if you believe that the processing of your personal data is contrary to current legislation.
WHERE ARE MY DATA STORED?
Your data will only be processed within the European Economic Area.
HOW WILL I BE INFORMED OF ANY CHANGES TO THIS POLICY?
The Data Controller will update this Policy when it considers it necessary. If there are substantial changes, in particular with respect to the purposes for which we use your personal data, we will notify you by e-mail, to the address you may have provided, or by means of a notice on the Site.
