The aim of this document is to regulate the processing performed by Neodata (in its role as Data Controller) with regard to the personal data of users who visit the institutional website www.neodatagroup.com and/or users who interact with Neodata Group through off-line channels or events (participation and organisation of events and networking activities).
The information is provided pursuant to Regulation (EU) 2016/679 of the European Parliament and Council dated 27 April 2016.
2. Identity and contact details of the Data Controller
The Data Controller is Neodata Group S.r.l. (hereinafter “Neodata”), with registered office in Viale XX Settembre, 21 – 95128 Catania (Italy).
The Privacy Manager, in order to exercise the rights referred to in Art. 12, can be contacted at firstname.lastname@example.org.
The Data Protection Officer (DPO), for clarifications regarding the protection of personal data, can be contacted at email@example.com.
3. Data provided by the user
Neodata may collect direct identifiable personal data through its website or its off-line channels, such as name, surname, e-mail address, telephone number, company and company role, by users filling in the form found in the “Contact” section or by providing their business cards.
The information is used to:
- Reply to questions and requests that are forwarded to Neodata through the specific function on the site or through agreements made directly with the data subject.
- Perform promotional activities, such as sending newsletters. The sending of said commercial communications can be stopped at any time by clicking on the “unsubscribe” link the communications themselves.
4. Browsing data
During normal operation, the computer systems and software procedures used to operate the website acquire certain personal data whose transmission is implicit in the use of Internet communication protocols. The information is not collected for association with identified individuals, but by its very nature could lead to users being identified. This category includes (i) the IP addresses or the domain names of the computers used by the users when connecting to the website, (ii) the Uniform Resource Identifier (URI) addresses of the requested resources, (iii) the time of the request , (iv) the method used to submit the request to the server, (v) the file size obtained in response, (vi) the numeric code with the status of the response from the server (successful, error) and (vii) other parameters relating to the user’s computer environment and operating system.
The information is used to:
– make it possible to browse and use the website by the user;
– pursue a legitimate interest, consisting in ensuring the security of the website and the information exchanged therein, i.e. the ability of said website to resist, at a given level of security, unforeseen events or illicit or malicious acts that compromise the availability, authenticity, integrity and confidentiality of the personal data stored or transmitted and the security of the related services offered or rendered accessible;
– exercise the rights of the Data Controller, for example the right of defence;
This information is used to:
– Recognise the user and memorise their browsing preferences (language, country, browser type, etc.).
– Customise and facilitate user browsing.
– Detect the interests and behaviour of users who browse the website.
The Neodata website also provides features for sharing content through social networks. In the event that the user should use said features, the relevant manager may collect information such as the IP address used or the pages visited or store the cookies. The collection and use of said information is regulated by the privacy policies of the companies that provide the features. For more information on the processing of data performed by said companies, see the following links:
● Facebook: http://www.facebook.com/about/privacy
● LinkedIn: https://www.linkedin.com/legal/privacy-policy
● Twitter: https://twitter.com/privacy
In no event shall Neodata process this data, either directly or indirectly.
5. Legal basis for processing and processing methods
The processing performed by the Neodata Group is based on the consent of the data subjects and/or legitimate interest.
Processing is performed using automated tools (e.g. using electronic procedures and media) and/or manually (e.g. on paper) for the time strictly necessary to achieve the purposes for which the data was collected and, in any event, in compliance with the current regulations in force.
Data processing takes place at the offices of the Data Controller and at any other place in which the parties legitimately involved in the processing are located.
Management and storage takes place on servers located in the European Union.
6. Communication and dissemination of data and processing location
The information collected and/or provided may also be shared with companies that are subsidiaries of or affiliated to Neodata, for commercial purposes in relation to the services offered directly by Neodata. Apart from these circumstances, in no other event shall the information collected be shared with third-party companies for their commercial purposes.
In addition to the Data Controller, in some cases, the Data may be subject to access by agents in the Data Controller’s organisation or external subjects (such as third party technical service providers, mail carriers, hosting providers, IT companies, communications agencies) that have been appointed, where necessary, Data Processors by the Data Controller.
This shall be without prejudice, in any event, to the communication of Data requested, in compliance with the law, by police forces, judicial authorities, information and security bodies or other public entities for purposes regarding the defence or security of the State or the prevention, ascertainment or repression of crimes.
7. Data retention period and security measures
The Data is only processed for the time required by the purposes described in this document, after which it shall only be stored in compliance with the current legal requirements. The User can always ask for the processing to stop or the deletion of the Data.
Neodata pays particular attention to data security and has consequently established an internal team that works continuously to protect the data and information belonging to the data subjects of the processing by continuously implementing state of the art technical and organisational security measures to ensure an appropriate level of security. Nevertheless, the current level of the technique does not allow total control over the methods of data transmission over the Internet or its storage.
8. User Rights
The subjects to whom the Personal Data belongs have the right at any time to obtain confirmation of the existence or otherwise of said data from the Data Controller, to know its content and origin, to verify its accuracy or request its integration , deletion, limitation, updating, rectification, transformation into anonymous form or blocking of Personal Data processed in violation of the law, as well as oppose its processing for legitimate reasons.
The User has the right to obtain the personal data provided from an automatic device in a structured, common and legible format – and to transmit it, either directly or through the Data Controller, to another Data Controller (so-called right of data portability).
Neodata does not specifically deal with requests for tracking received from third parties. In order to understand and oppose the use of third-party cookies, please consult the respective privacy policies.
The exercise of rights on the part of the data subject can take place by sending a request by email to firstname.lastname@example.org.
If the data subject believes that their rights have been violated by the Data Controller and/or by a third party, they have the right to submit a complaint to the Personal Data Protection Authority and/or other competent supervisory authority under the GDPR.
Failure to provide the contact details may make it impossible to download information material, answer questions or receive promotional emails.
Failure to provide browsing data may make using the website impossible.
Whether the User may consider that his/her rights have been violated by the Data Controller and/or by a Third-Party, the User has the right to claim to the Personal Data Protection Authority and/or to another Authority appointed by the Regulation. The User may find all the information at this page: https://garanteprivacy.it/web/garante-privacy-en/home_en.
Latest Update: July 3rd, 2019