Dear User,
this Privacy Policy is provided pursuant to art. 13 of Regulation 2016/679/EU - on the protection of
natural persons with regard to the processing of personal data and on the free movement of such data
(hereinafter, also "the Regulation" or "GDPR").
Within this Privacy Policy you will find information relating to the processing of your personal data,
resulting from the navigation within the web spaces and the use of services made available to you
through the website.
You will be provided with specific and / or supplementary information on the processing of your personal
data on each occasion in which we collect them, in your interaction with the site or by virtue of
contractual relationships established with our company.
Warning: this Privacy Policy does not apply to web services provided by third parties, which you may use
or consult and reached through hypertext links. In this regard, we invite you to consult the privacy
policies provided by these third parties in the appropriate locations.
Below we provide you with useful information regarding the processing of Personal Data carried out through the Web Services. In particular, we want to inform you about
Data Controller | Registered Office |
---|---|
Leithà S.r.l. | Via Stalingrado 37, 40128 Bologna (Italy) |
Category of Personal Data | Purpose of Processing | Legal basis | Storage Period |
---|---|---|---|
Navigation data | Allow web browsing and the provision of Services | Necessity to perform a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract | For the duration of web browsing within the Services |
Data provided by the User: provision of Web Services | Request of information | Necessity to carry out data subject's requests (pre-contractual stage) or legitimate interest | For the time necessary to carry out the request |
The above data will not be subject to disclosure and may be known by employees of our company specifically authorized to process them. They may also be acquired and/or processed by other companies of the Unipol Group and/or the companies. Processing operations may be carried out by external subjects to whom we entrust the performance of activities on our behalf, and with whom we sign specific agreements aimed at regulating the processing of data. Finally, the data may be communicated upon request to public authorities or law enforcement agencies. The processing of Personal Data is always subject to the adoption of appropriate security measures to ensure the confidentiality, availability and integrity of the data.
Privacy Law (art. 15-22 of the Regulation) guarantees the User, in his/her capacity of data subject, the right to access the data concerning him or her, as well as the right to obtain the rectification and/or integration, ereasure or portability of personal data concerning him or her. The Privacy Regulation also gives the User the right to request from the controller restriction of processing and to object to processing, as well as the possibility to withdraw consent (the withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal).
Rights | What is it about? | When can you exercise the right? |
---|---|---|
Right of access | The data subject shall have the right to obtain from the controller:
|
At any time. |
Right to rectification or integration | The data subject shall have the right to obtain from the controller the:
|
When the personal data processed are inaccurate/incomplete. |
Right to ereasure | The data subject shall have the right to obtain from the controller the erasure of personal data concerning him or her. | Where one of the following grounds applies:
|
Right to restriction of processing | The data subject shall have the right to obtain from the controller restriction of processing. Where processing has been restricted, such personal data shall, with the exception of storage, only be processed with the data subject's consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State. | Where one of the following applies:
|
Right to object | The data subject shall have the right to object at any time to processing of personal data concerning him or her which is based on legitimate interests or public interest (including processing for direct marketing purposes). | On grounds relating to the the data subject's particular situation (with the exception of processing for direct marketing purposes). |
Right not to be subject to a decision based solely on automated processing | The data subject shall have the right not to be subject to automated individual decision-making processes. If the if the decision is necessary for entering into, or performance of, a contract between the data subject and a data controller, is based on the data subject's explicit consent, or is authorised by Union or Member State law, the data subject shall have the right to obtain human intervention on the part of the controller, to express his or her point of view and to contest the decision. | Where a decision is based solely on automated processing, including profiling, and it produces legal effects concerning the data subject or similarly significantly affects him or her. |
Right to data portability | The data subject shall have the right to receive the personal data concerning him or her in a structured, commonly used and machine-readable format. | Where:
|
Right to withdraw consent | The data subject shall have the right to withdraw consent on which the processing is based, without affecting the lawfulness of processing based on consent before its withdrawal. | At any time. |
The Data Protection Officer is at your disposal for any clarification you might need on your rights or to obtain an updated list of the subjects to which your data may be communicated; you may contact the Data Protection Officer at following e-mail address: privacy@leitha.eu. You can also file a complaint with the Italian Data Protection Authority lto protect your data and your rights.