Pursuant to Articles 13 et seq. of EU Regulation 679/2016 (“GDPR”), MALPH s.r.l. (“Company” or the “Owner”) provides the following information regarding the processing of personal data of users (“User/Users”) in the context of the consultation and/or use of the services of the website: www.malphservices.com (“Site”).
The information is provided only for the Site and not for other websites that may be consulted by the User via links on the Site.
The Data Controller is MALPH s.r.l., with registered office in Turin, Corso Matteotti 36
Turin, 10121
The computer systems and software procedures used to operate the Site acquire, during their normal operation, some personal data whose transmission is implicit in the use of internet communication protocols.
This information is not collected to be associated with identified subjects, but by its very nature could allow users to be identified.
This category of data includes (i) the IP addresses or domain names of the computers used by users who connect to the Site, (ii) the URI (Uniform Resource Identifier) addresses of the resources requested, (iii) the time of the request, (iv) the method used to submit the request to the server, (v) the size of the file obtained in response, (vi) the numerical code indicating the status of the response given by the server (successful, error) and (vii) other parameters relating to the operating system and the user’s IT environment.
This data is used for the sole purpose of obtaining anonymous statistical information on the use of the Site and to check its correct functioning and is deleted immediately after processing.
The optional, explicit and voluntary sending of electronic mail to the email addresses indicated on the Site entails the acquisition and processing by the Data Controller of such data and any other information contained in such communications for the purposes indicated in the following paragraph.
Personal data are processed using manual, computerized and automated systems. For the purposes of correct data processing, it is necessary for the interested party to promptly communicate any changes to them.
It is specified, in particular, that the User’s personal data are processed by persons duly appointed to perform such tasks, constantly identified and/or appointed, appropriately trained and made aware of the constraints imposed by law, as well as through the use of security measures designed to guarantee the protection of confidentiality and to avoid the risks of loss or destruction, unauthorized access, processing not permitted or not compliant with the purposes set out above. Security measures are constantly improved based on technological development.
The personal data will be processed by the Data Controller, by the Data Processors appointed by him and by the strictly authorized data processors. They may be communicated to the companies that are Joint Controllers of the data processing, if appointed.
The data may also be communicated following inspections or checks, if requested to the Company, to all inspection bodies responsible for checks and controls relating to the regularity of legal obligations.
The Data Controller guarantees the utmost care so that the communication of personal data to the aforementioned recipients concerns only the data necessary to achieve the specific purposes for which they are intended.
The personal data are stored in the Data Controller’s databases and will be processed exclusively by authorized personnel. The latter will be provided with specific instructions on the methods and purposes of the processing. Furthermore, such data will not be communicated to third parties, except as provided for above and, in any case, within the limits indicated therein, just as they will not be disclosed, except in the cases described above and/or provided for by law.
The User’s personal data will be processed by the Data Controller only for the period of time necessary to achieve the purposes of the processing, after which they will be retained solely in compliance with the legal obligations in force in the matter, for administrative purposes and/or to assert or defend one’s own right, in the event of disputes and pre-litigation.
There is no automated decision-making process.
The Data Controller will not transfer Users’ personal data to a third country or to an international organization.
As an interested party, the User may exercise, at any time, against the Data Controller the rights referred to in art. 7 of the Privacy Code and art. 15 of the GDPR listed below, by sending a specific written request to the email address: info@malphservices.com.
The User may revoke the consents expressed with this information at any time in the same manner.
The User has the right to:
-obtain confirmation of the existence or otherwise of personal data concerning him/her, even if not yet registered, and their communication in an intelligible form;
– obtain the indication of: a) the origin of the personal data; b) the purposes and methods of processing; c) the logic applied in the event of processing carried out with the aid of electronic instruments; d) the identification details of the owner, the managers and the designated representative pursuant to art. 5, paragraph 2 of the Privacy Code and art. 3, paragraph 1, GDPR; e) the subjects or categories of subjects to whom the personal data may be communicated or who may become aware of them in their capacity as designated representative in the territory of the State, managers or agents;
– obtain: a) the updating, rectification or, when interested, integration of the data; b) the cancellation, transformation into anonymous form or blocking of data processed in violation of the law, including data whose retention is not necessary in relation to the purposes for which the data were collected or subsequently processed; c) certification that the operations referred to in letters a) and b) have been brought to the attention, also with regard to their content, of those to whom the data were communicated or disseminated, except in the case in which such fulfillment proves impossible or involves the use of means manifestly disproportionate to the right protected;
– oppose, in whole or in part: a) for legitimate reasons, the processing of personal data concerning him/her, even if pertinent to the purpose of the collection; b) to the processing of personal data concerning him/her for the purpose of sending advertising or direct sales material or for carrying out market research or commercial communication, through the use of automated calling systems without the intervention of an operator by e-mail and/or through traditional marketing methods by telephone and/or paper mail. Please note that the interested party’s right to object, set out in the previous point b), for direct marketing purposes by automated methods extends to traditional methods and that in any case the possibility for the interested party to exercise the right to object even only partially remains intact. Therefore, the interested party can decide to receive only communications by traditional methods or only automated communications or neither of the two types of communication.
Where applicable, he/she also has the rights referred to in articles 16-21 GDPR (Right to rectification, right to be forgotten, right to restriction of processing, right to data portability, right to object), as well as the right to lodge a complaint with the Guarantor Authority.
*** *** ***
This Privacy Policy was updated on 03/30/2021. Any updates will always be published on this page
This site uses cookies to collect information and generate website usage statistics without identifying visitors. By continuing to browse, you accept their use.