This document describes how the personal data of users who visit the www.kartos.it website are treated. This is, therefore, a regulation on data protection, privacy and data transfer found under art. 13 and 14 of the EU Regulation 2016/679 – General Data Protection Regulation (“GDPR”) – for those who simply browse the site and for users who spontaneously send notices to those whose contact details are made public on the kartos.it site.
Details of user information can reside on www.kartos.it pages in relation to specific services (for example, for the use of the Questions service).
The policy is not valid for other websites that may be available through our links, for which kartos.it is not in any way responsible.
Data Protection Officer (DPO) – Responsible Party for Treatment of Data
The data protection officer for the protection of personal data is: Stefano Severi, at Via Luciano Lama, 101 – 51015, Monsummano Terme (PT) (home of data processing).
Data Processing Location – Subjects Who Can Treat or Access Them – Recipients
The treatment of data related to the web services offered by this site is carried out at the location of the data controller and are treated only by personnel authorized to process it. Occasionally, third-party providers may be allowed temporary access to the site’s memories for the sake of technical assistance, in accordance with the legal requirements and under the supervision of the Controller. Data is not communicated abroad.
In addition, no data resulting from interaction with the site is communicated to third parties or disseminated.
Type of data processed
The computer systems and software procedures responsible for the operation of this website acquire, during their normal processing activities, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified data subjects, but which by their very nature could, through processing and associations with data held by third parties, allow the identification of users.
This category of data includes IP addresses or domain names of the computers used by users connecting to the site, the uniform resource identifier (URI) notation addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numeric code indicating the status of the response given by the server (good end, error, etc.), and other parameters related to the operating system.
Saranno raccolti i dati di navigazione esclusivamente nell’interesse legittimo di permettere all’utente la fruizione dei contenuti pubblicati sui siti Internet del Titolare ed una loro corretta amministrazione e gestione. Questi dati vengono utilizzati al solo fine di ricavare informazioni statistiche anonime sull’uso del sito e per controllarne il corretto funzionamento e vengono cancellati immediatamente dopo l’elaborazione. I dati in questione potrebbero essere utilizzati per l’accertamento di responsabilità in caso di eventuali reati informatici ai danni del nostro sito: salva questa eventualità, in genere i dati sui contatti web non vengono conservati per più di sette giorni.
Cookies are small text files that the sites visited send to the user’s terminal, where they are stored, and then be retransmitted to the same sites on the next visit.
In accordance with the General Measure of the Personal Data Protection Authority of May 8, 2014, users are informed about how to handle cookies on this site.
No personal user data is acquired by the site. Cookies are not used for the transmission of personal information, nor are such session cookies or persistent cookies of any kind used, let alone profiling cookies. The Content Management System (WordPress) used by kartos.it may release technical cookies that are essential to the correct display or navigation of the site.
Kartos.it, through the ‘Share this article’ feature, provides users with buttons for sharing kartos.it content through social networks or other communication tools. Pages that contain these buttons do not release cookies to either kartos.it or a third party. However, obviously, by clicking the symbol of the chosen sharing tool the user will access third-party features or platforms – of which the kartos.it holder is in no way responsible – that could release cookies and collect personal data.
Data provided voluntarily by the user
The optional, explicit and voluntary sending of an e-mail to the addresses indicated on this site involves, by its very nature, the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any other personal data entered in the site. The legal basis for the treatment is, therefore, in the legitimate interest of the Processor to respond to the communications received or the need to fulfill pre-contractual requests made by the person concerned. The data will be retained for as long as it takes to satisfy any requests of the sender or matters submitted to the Processor and, in any case, for the time imposed by specific legal provisions. The sender, however, has, it should be remembered, the right to request the cancellation of the data in accordance with the manner, conditions and limits provided by art. 17 GDPR.
We encourage our users not to send names in their communications or other personal data of third parties that are not strictly necessary; the use of alias names seems much more appropriate.
The Option to Provide Data
Apart from what is specified for browsing data, the user is free to spontaneously provide personal data to request information or services. Failure to do so may make it impossible to obtain what is requested.
How to treat Data
Personal data is processed electronically, for as long as it takes to achieve the purposes for which it was collected. Specific security measures are observed to prevent loss of data, misuse or incorrect use, and unauthorized access.
Rights of Interesed Parties
Under Articles 15 and the GDPR, the user has right to request, at any time, access to their personal data, the adjustment or deletion of the data, the limitation of data treatment, in the cases provided by art. 18 of the Regulation, to obtain in a structured format, common use and readable, through use of an automatic device, the data concerning him/her, in the cases provided by art. 20 of GDPR. The user can, at any moment, revoke ex art. 7 of GDPR, the consent provided (where consent has been requested); complain to the relevant control authority ex art. 77 of the GDPR (Guarantor for the Protection of Personal Data), if one considers that the processing of their data is contrary to the existing legislation.
The user may also make a request to object to the processing of their personal data ex art. 21 of GDPR i which they provide evidence of the reasons that justify the opposition: the DPO/Processor reserves the right to evaluate the application, which would not be accepted if there are legitimate reasons for proceeding with data treatment that overrides the interests, rights and freedoms of the user.
Requests for the exercise of the above rights must be directed to the attention of the kartos.it administrator at firstname.lastname@example.org
The information provided here may be subject to review as a result of:
– The site’s technological implementations that impact on current treatment methods;
– Organizational variations in the privacy structure that may affect the user.
Users are kindly advised to periodically visit this Policy so that they are constantly updated on the rules of treatment.