Privacy policy

This page describes how to manage the site with reference to the processing of personal data of users who consult it, pursuant to Legislative Decree 196/2003 (Privacy Code) and EU Regulation 679/2016 (GDPR).

1. Nature of the data processed

- Navigation / use data
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This is information that is not collected to be associated with identified interested parties, but which by their very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes IP addresses or domain names of the computers used by users who connect to the site, the addresses in the Uniform Resource Identifier (URI) notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (success, error, etc.) and other parameters related to the operating system and the user's computer environment.

Data provided voluntarily by the user
The optional, explicit and voluntary sending of e‐mails to the addresses indicated on this site entails the subsequent acquisition of the sender's address, necessary to respond to requests, as well as any other personal data included in the message.

Cookie
See relative information.

- Personal data processed for access to site services

Contact form:
Email, First Name, Last Name, Address, Telephone Number, Fax Number, Country, Province, Postal Code, City / Town

2. Purpose of the processing

The navigation / use data, described in the previous point 1, are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site.

Personal data provided spontaneously by users who consult the site will be processed for the following purposes:
• Contact the user
• Statistics visits to the site
• Traffic optimization and distribution
• Interaction with social networks and external platforms

3. Legal bases of processing

Personal data provided spontaneously by users will be processed in accordance with the consent expressed during registration on the site. As regards the technical information strictly necessary for the provision of the service (navigation / use data), these data will be processed as necessary for the pursuit of our legitimate interest in optimizing the website, as well as for improving performances and contents.

4. Processing methods and data retention period

The data processing will be carried out either manually or with the aid of IT and telematic means by ordinary or electronic mail. The data will be stored both in paper files and in electronic files for the time strictly necessary to achieve the purposes referred to in paragraph 2 and in any case, following the exhaustion of these purposes.
Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access.

5. Obligation or power to provide data

Apart from that specified for navigation data, the user is free to provide personal data requested by the various services on the site. Failure to provide such data may make it impossible to obtain what has been requested.

6. Communication and dissemination of personal data

Personal data collected from the website are not subject to general dissemination. These data may be processed, for the purposes referred to in point 2, by the persons in charge of data processing and information systems, as well as by the persons in charge of the technical management of the website.

7. Rights of the interested parties

The privacy legislation (articles 7‐10 of the Privacy Code and articles 12‐22 of the EU Regulation 679/2016) guarantees to those concerned the right to be informed about the processing of data concerning them and the right to access at any time to the data themselves and request their updating, integration and correction. Where the conditions provided for by law are met, the data subject may also claim the right to cancel data, limit their processing, data portability, opposition to processing, not to be subjected to decisions based solely on automated processing.
If the processing of personal data is based on the consent of the party concerned, he / she has the right to revoke the consent given.
For the exercise of your rights, as well as for more detailed information about the subjects or categories of subjects to whom the data are communicated or who are aware of it as managers or agents, the person concerned may contact N.A.E.F. Srl at the following addresses: tel +39 035 683248 and e‐mail address info@naefsrl.com.
If the person concerned deems your rights infringed, you can protect yourself by filing a complaint before the Guarantor for the protection of personal data.

8. Owner and responsible for processing

The data controller is N.A.E.F. Srl, with headquarters in Via Nazioni Unite, 06 - 24060 - Costa di Mezzate (BG). The updated list of data processors is kept at the registered office of the Data Controller.

9. Changes to this privacy policy

The Data Controller reserves the right to make changes to this privacy policy at any time by notifying Users of this page. Please therefore consult this page often, referring to the date of the last modification indicated at the bottom. In case of non‐acceptance of the changes made to this privacy policy, the User can request the Data Controller to remove their personal data. Unless otherwise specified, the previous privacy policy will continue to apply to Personal Data collected until then.