Information on the Processing of Personal Data
This page describes how this website manages the processing of personal data of users who consult it. This is an information notice provided in compliance with the current personal data regulations for users interacting with the services of this site under EU Regulation 2016/679. This notice applies only to this website and not to other websites that may be consulted by the user through our links.
Data Controller
Following consultation of this site, data relating to identified or identifiable persons may be processed. The “Data Controller” is:
THETIS COSTRUZIONI SRL
VIA CAVOUR, 33/C
44028 POGGIO RENATICO (RE)
Tax Code and VAT No. 03122500782
Place of Data Processing
The processing related to the web services is handled only by technical personnel in charge of processing or by any persons in charge of occasional maintenance operations. No data deriving from the web service is communicated or disseminated.
Purpose and Legal Basis of Processing
Personal data provided by users who submit requests or intend to use services or products offered through the website, as well as to receive additional specific content, is used solely to respond to requests or perform the requested service or provision and is communicated to third parties only if necessary for this purpose. The legal basis for these processes is the necessity to respond to the requests of the interested parties or to perform activities defined by agreements with the interested parties.
With the user’s explicit consent, data may be used for commercial communication activities related to offers of additional products or services by the Data Controller. The legal basis for this processing is the freely expressed consent of the interested party.
Apart from these cases, user browsing data is retained only for the time strictly necessary to manage processing activities within the limits established by law.
Types of Data Processed
Browsing Data
The computer systems and software procedures used to operate this website acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified individuals but, by its nature, could allow users to be identified through processing and association with data held by third parties. This category of data includes IP addresses or domain names of computers used by users connecting to the site, URI (Uniform Resource Identifier) addresses of requested resources, request times, the method used to submit requests to the server, the size of the file obtained in response, the numerical code indicating the response status from the server (successful, error, etc.), and other parameters related to the user’s operating system and computing environment. These data are used solely to obtain anonymous statistical information about site usage and to check its proper functioning and are deleted after processing. The data could be used to ascertain responsibility in case of hypothetical cyber crimes against the site.
Data Provided Voluntarily by the User
The optional, explicit, and voluntary sending of emails to addresses indicated on this site results in the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any other personal data included in the message. Specific summary information will be progressively reported or displayed on site pages designated for particular services upon request.
Cookies
Cookies are text elements that are inserted into the hard drive of a computer only after authorization. Cookies facilitate the analysis of web traffic or notify when a specific site is visited and allow web applications to send information to individual users. No personal user data is acquired by the site. No use is made of cookies to transmit personal information, nor are persistent cookies of any kind used, i.e., systems for tracking users. The use of session cookies is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to enable safe and efficient site exploration. The session cookies used on the site avoid the need for other potentially prejudicial computing techniques for user browsing confidentiality and do not allow the acquisition of personal identification data.
Optional Data Provision
Except as specified for browsing data, the user is free to provide personal data to request services offered by the Data Controller. Failure to provide them may result in the inability to obtain the requested service.
Processing Methods and Data Retention Period
Personal data is processed using automated tools for the time strictly necessary to achieve the purposes for which it was collected. Specific security measures are observed to prevent data loss, unlawful or incorrect use, and unauthorized access.
Data is retained only for the time strictly necessary to pursue the purposes indicated in this policy and will be deleted at the end of this period unless it is required to be retained for legal obligations or to assert a right in court.
Rights of Data Subjects
Within the limits and under the conditions provided by law, the Data Controller is required to respond to requests from the data subject regarding their personal data. Specifically, under the current legislation:
- The data subject has the right to obtain confirmation from the Data Controller as to whether or not personal data concerning them is being processed and, if so, to access the personal data and the following information:
- The purposes of the processing;
- The categories of personal data concerned;
- The recipients or categories of recipients to whom the personal data has been or will be disclosed, particularly if recipients in third countries or international organizations;
- Where possible, the intended retention period for personal data or, if not possible, the criteria used to determine this period;
- The right to request rectification or deletion of personal data or restriction of processing concerning the data subject or to object to such processing;
- The right to lodge a complaint with a supervisory authority;
- If the data is not collected from the data subject, all available information about its source;
- The existence of automated decision-making, including profiling.
The data subject has the right to obtain from the Data Controller the rectification of inaccurate personal data concerning them without undue delay. Considering the purposes of processing, the data subject has the right to have incomplete personal data completed, including by providing a supplementary statement.
The data subject has the right to obtain from the Data Controller the erasure of personal data concerning them without undue delay, and the Data Controller has the obligation to erase personal data without undue delay within the limits and cases provided by current legislation.
The data subject has the right to obtain from the Data Controller the restriction of processing.
The data subject has the right to receive the personal data concerning them in a structured, commonly used, and machine-readable format and has the right to transmit those data to another controller without hindrance.
To exercise the above rights, the data subject must submit a request using the following contact details, through which the Data Protection Officer (if designated) can also be reached: Requests should be addressed to the Data Controller at the following email address: info@gruppothetis.com.
This version of the personal data processing notice was updated on November 5, 2021.
