NOTICE ON THE PROCESSING OF PERSONAL INFORMATION BY THE WEBSITE OF F2I SGR S.P.A.
This page describes the operating procedures utilised by the site to process the personal data of the users who consult it.
This notice is also based on the Recommendation no. 2/2001 of the European Authorities for the Protection of Personal Information (in their capacity as Group established under art. 29 of Directive no. 95/46/EC) approved on 17 May 2001 in order to identify a set of minimum requirements for the on-line collection of personal data, and specifically the procedures, timing and nature of the information that the parties in charge of the processing must supply to users when they connect to web pages, regardless of the purposes of the connection.
analyses the operating procedures for the site http://www.F2isgr.it with respect to the processing of the personal data of users who consult the site; is also provided in compliance with the rules and procedures for the protection of individuals, with respect to the processing of their personal information, as per art. 13 of (EU) Regulation no. 679/2016 (hereinafter, the “Regulation”). This notice is valid only for the website http://www.F2isgr.it and not for any other websites that can be consulted from it using link.
1. PARTY IN CHARGE OF THE PROCESSING
The party in charge of the processing is F2i SGR S.p.A..
2. LOCATION WHERE THE DATA IS PROCESSED
The processing of data related to the web services of this site takes place at the registered office of F2i, or at the facilities of the subject that handles the collection of the data, which are dealt with only by company personnel authorised to process them, or by third parties authorised by the Company to do so. No personal data generated by the web service are disclosed.
3. TYPES OF DATA PROCESSED Information on surfing
The information system and operating procedures used to run this website obtain, in the course of their normal operations, certain personal data whose transmission is implicit when internet communication protocols are used. Such information is not collected in order to be associated with the interested parties, following their identification, though by its very nature, the data in question, if processed and associated with data in the possession of third parties, could result in the identification of users who surf the site.
The category of data includes the IP addresses or domain names of the computers utilised by users who connect to this site, the URI (Uniform Resource Identifier) addresses of the resources requested, the timing of the request, the method used to submit the request to the server, the size of the file obtained in response, the code number indicating the status of the response provide by the web server (successful outcome, error, etc.), plus other parameters relevant to the operating system and the IT environment of the user.
These data shall be used only to extrapolate anonymous statistical information on the use of the site and to monitor its proper operation, and they are cancelled immediately after being processed.
It should be noted that the aforementioned data could be used to ascertain responsibility for hypothetical IT crimes committed against the Company’s website.
Information provided voluntarily by the user.
Optional, explicit or voluntary sending of electronic mail to the addresses indicated in the specific sections of this site, as well as communication by chat, blog, forum, toll-free phone number or SMS services, when activated, entail subsequent acquisition of certain personal data on the party making the request, in order to be able to respond to the request.
4. PURPOSES OF THE PROCESSING
5. PROCESSING PROCEDURES AND SECURITY MEASURES
Personal data are processed using both automated and non-automated instruments, strictly for the amount of time needed to achieve the purposes for which they were collected. Within F2i, employees or outside staff, in their capacity as responsible for data processing, may come into contact with your personal data, as well as individuals, whether internal or external, that carry out tasks of technical implementation, support or corporate control. The data are processed by individuals or entities specifically identified by the holder of the data as responsible for their processing.
Under no circumstances shall the data processed be released or communicated to third parties, apart from communication to subjects who are granted access to the information under provisions of the law or under orders from the authorities, as well as subjects, including those outside the Company and/or abroad, that the holder of the data avail itself to carry out activities that are useful and/or related to the handling of the data collected and the supply of the related services and benefits. The subjects belonging to these last categories shall utilise the data received as independent “holder of the data”, unless they have been designated as responsible” of the processing activities under their responsibility.
6. RIGHTS OF THE INTERESTED PARTIES
Under the Regulations, the interested party is entitled to obtain access to any information regarding it, and specifically to obtain confirmation, at any point in time, of whether or not such data exist, in addition to learning their content, origin and geographic location, and having the possibility of obtaining a copy of the data. The interested party is entitled to determine whether the data are exact and to request that they be supplemented, updated, or corrected, or that the processing be limited, or that any data processed in violation of the law be cancelled, rendered anonymous or blocked, in addition to being entitled to oppose their processing. The interested party is also entitled to request that the data be rendered portable and to present complaints to the regulatory authority.
7. PROCEDURES FOR EXERCISING RIGHTS
To exercise the rights referred to under point 6, the interested party may contact the holder of the data (F2i SGR S.p.A.) and/or the data protection officer (DPO), sending them a registered letter with return receipt addressed at the following address:
F2i SGR S.p.A.Via San Prospero no. 120121 MilanTel. +39.02.72179. 1 - 02.72179. 200Fax. +39.02.72179. 222
or by sending an e-mail to the address: firstname.lastname@example.org.
The deadline for responding to the interested party is thirty days, with a possible extension to three months in cases of particular complexity; in such cases, the holder of the data must at least send an interim communication to the interested party within the deadline of thirty days.
As a rule, exercise of the above rights entails no charge. The holder of the data reserves the right to request a contribution for expenses in the event of requests that prove to be manifestly not sustained or excessive (or repetitive), taking also into consideration possible on recommendations or instructions received from the Guarantor of Privacy.
8. COMPLAINTS TO THE DATA PROTECTION AUTHORITY
The interested party may present complaints to Data Protection Authority, which can be contacted at the website http://www.garanteprivacy.it.