SUBJECTS OF DATA PROCESSING
The data controller under current laws is the site administrator, Denis Franchi, who can be contacted via email at denis.franchi@franchiwebdesign.com.
LEGAL BASIS OF PROCESSING
We process data primarily based on user consent. Consent is obtained through the banner placed at the bottom of the page or through specifically prepared communication or service request forms, through which consents related to the specific purpose of the service are collected. The provision of data and therefore consent to the collection and processing of data is optional; the User can deny consent and may revoke consent already given at any time (via the popup or browser settings for cookies). However, denying consent may result in the inability to provide some services, and the browsing experience on the site may be reduced.
Data for site security and prevention of abuses and SPAM, as well as data for site traffic analysis (statistics) in aggregated form, are processed based on the legitimate interest of the data controller in protecting the site and its users. In such cases, the user always has the right to object to the processing of data (see User Rights paragraph).
Data provided for consultations or professional assignments are processed based on the performance of a contract and compliance with a legal obligation. In such cases, specific information is provided.
PURPOSES OF PROCESSING
The processing of data collected by the site, in addition to the purposes connected, instrumental, and necessary for the provision of the service, is aimed at the following purposes:
Statistics (analysis)
Collection of data and information in exclusively aggregated and anonymous form to verify the correct functioning of the site. None of this information is related to the individual User of the site and does not allow for identification in any way. No consent is required.
Security
Collection of data and information to protect the security of the site (anti-spam filters, firewall, virus detection) and Users and to prevent or uncover fraud or abuses to the detriment of the website. Data is recorded automatically and may also include personal data (IP address) which may be used, in accordance with applicable laws, to block attempts to damage the site itself or harm other users, or engage in harmful or criminal activities. Such data is never used for the identification or profiling of the User and is deleted periodically. No consent is required.
Ancillary activities
Communicating data to third parties performing necessary or instrumental functions for the operation of the service and to allow third parties to perform technical, logistical, and other activities on our behalf. Providers only have access to personal data necessary to perform their tasks, agree not to use the data for other purposes, and are required to process personal data in accordance with applicable regulations.
Consultations and professional assignments
In case of voluntary submission of data to request professional advice or for a professional assignment, the data will be used solely for the evaluation of the assignment and for its eventual fulfillment. In such cases, specific information will be provided.
DATA COLLECTED
We collect user data in two ways.
- Data collected automatically During the Users’ browsing, the following information may be collected and stored in the server log files (hosting) of the site:
- internet protocol (IP) address;
- browser type;
- device parameters used to connect to the site;
- name of the internet service provider (ISP);
- date and time of visit;
- web page of origin of the visitor (referral) and exit;
- possibly the number of clicks.
This data is used for statistical and analytical purposes, in exclusively aggregated form. The IP address is used solely for security purposes and is not cross-referenced with any other data.
- Voluntarily provided data
The site may collect other data in case of voluntary use of services by users, such as comment services, communication (contact forms, consultation request forms), and will be used solely for the provision of the requested service:
- name;
- email address;
- any additional data spontaneously sent by the user.
DATA RETENTION PERIOD
Data collected during the operation of the site is kept for the time strictly necessary to perform the specified activities. At the expiration, the data will be deleted or anonymized, unless there are further purposes for retaining the same.
The data (IP address) used for site security purposes (blocking attempts to damage the site) are stored for 30 days / 6 months / 12 months, depending on the choice made in the Cookie Popup. Data for analytics purposes (statistics) are stored only in aggregated form. Data collected for consultancy requests or professional assignments are stored for the time necessary for the performance of the assignment and for ancillary purposes (judicial protection, etc.).
DATA TRANSFER TO THIRD PARTIES
Data collected by the site generally is not provided to third parties, except in specific cases:
- legitimate request by the judicial authority and only in cases provided by law;
- if necessary for the provision of a specific service requested by the User;
- for the execution of security checks or optimization of the site.
TRANSFER OF DATA TO NON-EUROPEAN UNION COUNTRIES
We may need to share some of the data collected with services located outside the European Union area, particularly with Google, Facebook, and Microsoft (LinkedIn) through social plugins and the Google Analytics service. The transfer is authorized based on specific decisions of the European Commission or based on the Standard Contractual Clauses of the individual services (see the paragraphs related to third-party services).
SECURITY MEASURES
We process visitor/user data lawfully and correctly, adopting appropriate security measures to prevent unauthorized access, disclosure, alteration, or unauthorized destruction of data. We are committed to protecting the security of your personal data during transmission, using Secure Sockets Layer (SSL) software, which encrypts information in transit. Processing is carried out using computer and/or telematic tools, with organizational methods and logics strictly related to the indicated purposes. In addition to the Data Controller, in some cases, other categories of persons involved in the organization of the site or external subjects (such as third-party technical service providers, hosting providers) may have access to the data.
Cookie
We use cookies, which are text files that are recorded on the user’s device or that allow access to information on the user’s device. Cookies allow the storage of information about visitors’ preferences, are used to ensure the correct functioning of the site, and improve its functionality by personalizing page content based on the browser type, or to simplify navigation by automating processes (e.g., login, site language), and finally to analyze the use of the site by visitors.
We use the following categories of cookies:
- Technical cookies, used solely for the transmission of electronic communications, to ensure correct site visualization and navigation. Additionally, they allow distinguishing between various connected users to provide the correct service (login), and for site security reasons. Some of these cookies are deleted when the browser is closed (session cookies), while others have a longer duration (such as the cookie necessary for storing user consent regarding cookie use, which lasts for 1 year). No consent is required for these cookies.
- Analytical cookies, used directly by the site operator to collect information, in aggregated form, about the number of users and how they visit the site. They are considered equivalent to technical cookies as the service is based on aggregated data.
- Profiling and marketing cookies, used exclusively by third parties other than the owner of this site, to collect information about user behavior during browsing and their interests and consumption habits, also to provide personalized advertising. These cookies are blocked as much as possible and are activated only following user choice.
By clicking “I Consent” on the banner at the first site access, the visitor expressly consents to the use of cookies and similar technologies, and specifically to the recording of such cookies on their device for the purposes outlined in this document, or to access information on their device through cookies.
Disabling Cookies Through the Browser
The user can refuse the use of cookies and can revoke a previously given consent at any time. Since cookies are linked to the browser used, they can be disabled directly through the browser, thus refusing/revoking consent for cookie use, or through the banner at the bottom of the page (Cookie Settings).
Disabling cookies might prevent the proper use of some site functions. In particular, services provided by third parties may not be accessible and thus may not be displayed. For example:
- YouTube videos or other video-sharing services;
- social media buttons for social networks.
Instructions for disabling cookies can be found on the following web pages:
Mozilla Firefox – Microsoft Internet Explorer – Microsoft Edge – Google Chrome – Opera – Apple Safari
Third-party Cookies/Services
The site also serves as an intermediary for third-party cookies (such as social network buttons), used to provide additional services and functionalities to visitors and to simplify the use of the site. These services are also used by third parties to collect data on user interests to provide them with personalized advertising on partner sites. Not on this site, which does not have any type of advertising. This site has no control over their cookies, entirely managed by third parties, and does not have access to the information collected through these cookies. Information on the use of these cookies, their purposes, and methods for potential disabling is provided directly by third parties in the links indicated below. It should be noted that user tracking generally does not involve identification unless the User is already registered with the service and is also logged in, in which case it is assumed that the User has already expressed consent directly to the third party at the time of registration for the related service (e.g., Facebook).
The site uses cookies/services from the following third parties:
– Google Ireland ltd
For information on data use and its processing by Google Ireland Ltd., please refer to informativa privacy di Google, “How Google Uses Data When You Use Our Partners’ Sites or Apps,” and “Google Ads Data.
Plugin Social Network
The site also incorporates plugins and/or buttons to allow easy sharing of content on your favorite social networks. When you visit a page on our website containing a plugin, your browser connects directly to the social network servers from where the plugin is loaded, and the server may track your visit to our website and, if applicable, associate it with your social account, especially if you are logged in at the time of your visit or if you have recently visited a website containing social plugins. If you do not wish the social network to record data relating to your visit to our website, you must log out of your social account and possibly delete the cookies that the social network has installed in your browser.
This site has installed plugins with advanced privacy protection functions for users, which do not send cookies or access cookies in the user’s browser upon page opening, only after the user clicks on the plugin.
The collection and use of information by these third parties are regulated by their respective privacy policies, to which reference should be made:
– Facebook (link informativa cookie)
– Twitter (link informativa cookie)
– LinkedIn (link informativa cookie)
User Rights (Data Subject)
Under the European Regulation 679/2016 (GDPR), the User can, according to the methods and within the limits provided by current legislation, exercise the following rights:
- oppose in whole or in part, for legitimate reasons, the processing of personal data concerning them for sending advertising materials, direct sales, market research, or commercial communication;
- request confirmation of the existence of personal data concerning them (right of access);
- know its origin;
- receive intelligible communication;
- have information about the logic, methods, and purposes of the processing;
- request the updating, rectification, integration, deletion, transformation into anonymous form, blocking of data processed in violation of the law, including those no longer necessary for the purposes for which they were collected;
- in cases of processing based on consent, receive, at the sole cost of any support, the data they provided to the owner, in a structured form, readable by a data processor, and in a format commonly used by an electronic device;
- the right to file a complaint with the Supervisory Authority (Privacy Guarantor – link to the Guarantor’s page);
- as well as, more generally, exercise all the rights recognized by current legal provisions.
Requests should be addressed to the Data Controller.