The purpose of this document (hereinafter “Privacy Notice”) is to inform Users about personal data, understood as any information that allows the identification of a natural person (hereinafter the “Personal Data”), collected by the Nero website of Como (hereinafter “Application”).
The Data Controller, as subsequently identified, may modify or simply update, in whole or in part, this Information by giving information to Users. Changes and updates will be binding as soon as they are published on the Application. The User is therefore invited to read the Privacy Policy at each access to the Application.
In case of non-acceptance of the changes made to the Privacy Policy, the User is required to cease using this Application and may request the Data Controller to remove his Personal Data.
Personal Data collected by the Application
The Data Controller collects the following types of Personal Data:
Content and information voluntarily provided by the User
Contact data and contents: these are the Personal Data that the User voluntarily provides to the Application during its use, such as personal data, contact details, credentials for accessing the services and / or products supplied, personal interests and preferences and other contents personal, etc.
Personal data collected by social media: Users can share data provided on social media with the Application. The User has the right to control the Personal Data that the Application can access via the privacy settings available on the social media in question. By associating accounts managed by social media with the Application and authorizing the Owner to access such Personal Data, the User consents to the acquisition, processing and storage in accordance with this Privacy Statement.
Failure by the User to provide Personal Data, for which there is a legal, contractual obligation or if it constitutes a necessary requirement for the use of the service or for the conclusion of the contract, will make it impossible for the Owner to provide in full or part of its services.
The User who communicates to the Data Controller of third parties is directly and exclusively responsible for their origin, collection, treatment, communication or dissemination.
Data and content acquired automatically during use of the Application:
Technical data: the computer systems and software procedures used to operate this Application may acquire, during their normal operation, some Personal Data whose transmission is implicit in the use of internet communication protocols. This information is not collected to be associated with identified Users, but by their very nature could, through processing and association with Data held by third parties, allow Users to be identified. This category includes IP addresses, or domain names used by Users who connect to the Application, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to server, the size of the file obtained, etc.
Usage data: Personal Data relating to the use of the Application by the User may also be collected, such as, for example, the pages visited, the actions performed, the features and services used.
Personal data collected through cookies or similar technologies:
The Application uses cookies, web beacons, unique identifiers and other similar technologies to collect Personal Data on the pages, on the links visited and on the other actions that are performed when using our services. They are stored before being re-transmitted on the next visit by the same user.
The User can view the complete Cookie Policy at the following address: https://nerodicomo.it/privacy-policy.
Purposes
The Personal Data collected can be used for the execution of contractual and pre-contractual obligations and for legal obligations as well as for the following purposes:
User registration and authentication: to allow the User to register on the Application to access and be identified.
Support and contact with the User: to respond to User requests and help in case of problems.
Displaying content from external platforms: to allow the User to view and share content from social networks or other external platforms (eg YouTube, Facebook).
Personal Data is communicated to Facebook https://www.facebook.com/privacy/explanation, Google https://policies.google.com/privacy, Segment https://segment.com/docs/legal/privacy/, Mailchimp https://mailchimp.com/legal/privacy/
External payment card management
finger, bank transfer or other tools: to manage payments of Users through external platforms that acquire payment data without the owner of the Application having access.
Personal Data is communicated to Stripe https://stripe.com/privacy-shield-policy, Paypal https://www.paypal.com/it/webapps/mpp/ua/privacy-full
Technical monitoring of the infrastructure for maintenance, troubleshooting and performance improvement: to identify and resolve any technical problems and improve performance.
Personal Data is communicated to Google https://policies.google.com/privacy,
Storage, hosting and backend infrastructure management: to manage the technical infrastructure for storing user data.
Personal Data is communicated to Energie srl http://nrgnet.it/index.php?option=com_content&view=article&id=57&Itemid=226
User database management: to organize, access and modify User data.
Personal Data is communicated to Mailchimp https://mailchimp.com/legal/privacy/
Advertising targeting and remarketing: to show advertisements that are more relevant to the User based on their browsing behavior and preferences.
Personal Data is communicated to Facebook https://www.facebook.com/privacy/explanation, Google https://policies.google.com/privacy,
User database management: to organize, access and modify User data.
Personal Data is communicated to Mailchimp https://mailchimp.com/legal/privacy/
Treatment modalities
The processing of Personal Data is carried out using IT and / or telematic means, with organizational methods and logic strictly related to the purposes indicated.
In some cases, individuals involved in the owner’s organization may also have access to Personal Data (such as, for example, personnel management, commercial area employees, system administrators, etc.) or external parties (such as IT companies, suppliers of services, mail carriers, hosting providers, etc.). Such subjects, if necessary, may be appointed Data Processors by the Owner, as well as access to Users’ Personal Data whenever necessary and will be contractually obliged to keep Personal Data confidential.
The updated list of managers can be requested via email at info@nerodicomo.it.
Legal basis of the processing
The processing of Personal Data relating to the User is based on the following legal bases:
the consent given by the User for one or more specific purposes;
the processing is necessary for the execution of a contract with the User and / or for the execution of pre-contractual measures
processing is necessary to fulfill a legal obligation to which the Owner is subject
processing is necessary for the performance of a task of public interest or for the exercise of public powers vested in the Data Controller
the processing is necessary for the pursuit of the legitimate interest of the Data Controller or third parties
processing is necessary for the pursuit of a vital interest of the Data Controller or third parties.
It is however always possible to ask the Owner to clarify the legal basis of each treatment at info@nerodicomo.it.
Place
The Personal Data are processed at the Data Controller’s operating offices and in any other place where the parties involved in the processing are located. For more information, contact the owner at the following email address info@nerodicomo.it or at the following postal address: Via alzate 16/1 2032 Albese con Cassano Como.
Personal Data may be transferred to countries outside the EU: USA, Switzerland.
For these countries there is a decision of adequacy of the European Commission or, in the absence of such a decision, it is possible to request more information from the Data Controller regarding the appropriate guarantees adopted, as well as the means to obtain a copy of such Data or the exact place where they were made available.
Security measures
The processing is carried out in a manner and with appropriate tools to guarantee the security and confidentiality of the Personal Data, the Data Controller having adopted adequate technical and organizational measures that guarantee, and allow to demonstrate, that the Treatment is carried out in compliance with the relevant legislation.
Data retention period
The Personal Data will be kept for the period of time necessary to fulfill the purposes for which they were collected.
In particular, Personal Data will be kept for the entire duration of the contractual relationship, for the fulfillment of the obligations inherent and consequent thereto, for the respect of the applicable legal and regulatory obligations, as well as for defensive purposes of its own or of third parties.
If the processing of Personal Data is based on the consent of the User, i
The Data Controller may keep the Personal Data until the consent is revoked.
Personal Data may be stored for a longer period if necessary to fulfill a legal obligation or by order of an authority.
All Personal Data will be deleted or stored in a form that does not allow the identification of the User within 30 days of the end of the storage period. Upon expiry of this term, the right to access, cancel, rectify and the right to the portability of Personal Data can no longer be exercised.
Automated decision making processes
All Personal Data collected will not be subject to any automated decision-making process, including profiling, which may produce legal effects for the person or which may have a significant impact on it.
User Rights
Users may exercise certain rights with reference to Personal Data processed by the Owner. In particular, the User has the right to:
withdraw consent at any time;
oppose the processing of your Personal Data;
access your Personal Data;
verify and request the correction;
obtain the limitation of the treatment;
obtain the cancellation of your Personal Data;
receive your Personal Data or have them transferred to another owner;
lodge a complaint with the Data Protection Supervisory Authority and / or act in court.
To exercise their rights, Users can send a request to the contact details of the Owner indicated in this document. Requests are made free of charge and processed by the Data Controller as soon as possible, in any case within 30 days.
Data Controller
The Data Controller is Devon srl, with registered office in Via alzate 16/1 22032 Albese with Cassano Como, Tax Code / VAT number 03826590139, e-mail address info@nerodicomo.it, telephone 392-1562391.
Representative of the Owner
The Representative of the Data Controller is
Vincenzo Ferrara, via don ramiro binachi 122 p2, Tax Code FRRVCN85S06B885N, e-mail address info@nerodicomo.it.
Last update: 11/21/2019