Privacy & Cookie Policy
Dear User, Consitek S.r.l. has great respect for the privacy of its users. Any data that may be communicated by the user through the website will be treated with the utmost care and with all tools necessary to ensure its security, in full compliance with the applicable legislation on data confidentiality. We wish to inform you that the “European Regulation 2016/679 on the protection of individuals with regard to the processing of personal data and on the free movement of such data” (hereinafter referred to as the “GDPR”) safeguards individuals with respect to the processing of their personal data as a fundamental right. Pursuant to Article 13 of the GDPR, we inform you of the following:
A. CATEGORIES OF DATA
The data subject to processing may include the following:
a. Data collected automatically.
The IT systems and software procedures used to operate this website collect certain personal data as part of their normal operation, the transmission of which is implicit in the use of internet communication protocols. This data could potentially allow user identification. It includes IP addresses and domain names of computers used by users connecting to the site, URI (Uniform Resource Identifier) addresses of requested resources, request submission method, size of the response file, numeric code indicating server response status (success, error, etc.), and other parameters related to the user's operating system, browser, and computing environment, as well as ISP name, visit date and time, referring page and exit page.
b. Data voluntarily provided by the user.
Voluntarily and explicitly sending emails to the addresses indicated on the website does not require consent and entails the acquisition of the sender’s address and data needed to respond to requests, as well as any other personal data included in the message. These data are considered voluntarily provided by the user when requesting service. By submitting a comment or other information, the user explicitly accepts the privacy policy and agrees that the provided content may be shared with third parties. Specific summary information will be displayed on site pages designed for particular services upon request (forms). Users must explicitly consent to the use of data provided in these forms in order to submit them.
c. Cookies.
The website uses cookies. Data collected through cookies may be used to access parts of the site, for statistical purposes, or to enhance and streamline the user experience, including evaluating user behavior and adapting content accordingly. More details are available in the cookie policy.
d. Plug-ins.
The site includes plug-ins and/or buttons for social media platforms, to allow easy content sharing on your preferred networks. These plug-ins are designed to not set cookies when the page is loaded, in order to protect user privacy. Cookies may be set, only if required by social networks, when the user voluntarily uses the plug-in. If the user is already logged into the social network, it means they have already consented to the use of cookies via this site at the time of their social network registration. Information collection and usage through plug-ins are governed by the privacy policies of the respective social networks.
B. DATA CONTROLLER
The data controller is Consitek S.r.l., Piazza del Duomo 16, 20122 – Milan (MI), VAT No. 07857830967, reachable at: dpo@consitek.com
C. SOURCE OF PERSONAL DATA
The personal data in the possession of the controller are collected directly from the data subject.
D. PURPOSE AND LEGAL BASIS OF DATA PROCESSING
-
For data collected automatically: the legal basis is the controller's legitimate interest, and the purpose is to ensure and improve the browsing experience.
-
For data voluntarily provided by the user: the legal basis is consent. In the case of email sent to our addresses, the purpose is to provide responses to user requests. For data submitted via forms, the purpose is stated in the specific privacy notice.
-
For cookies and plug-ins: refer to the specific cookie policy.
E. DATA RECIPIENTS
Within the limits of the above purposes, your data may be communicated to entities involved in the processing, both internal and external to the controller, including employees, partners, consultants, private companies, third-party service providers, hosting providers, IT companies, and communication agencies. Your data will not be publicly disseminated.
F. DATA TRANSFER TO THIRD COUNTRIES
Collected data may be transferred to third countries outside the European Economic Area (EEA), either based on adequacy decisions by the Commission or through appropriate safeguards, for the purposes listed above.
G. DATA RETENTION PERIOD
In accordance with the principle of storage limitation (Art. 5, GDPR), data retention is regularly reviewed:
-
Automatically collected data are processed only for the time necessary to gather statistical information and to ensure proper functioning and security of the website, or according to legal deadlines.
-
Voluntarily provided data are retained no longer than necessary to achieve the purposes for which they were collected, or according to applicable legal deadlines.
H. RIGHTS OF THE DATA SUBJECT
You have the right to request from the controller access to your data, rectification or erasure, restriction of processing, or to object to processing. You also have the right to data portability and to withdraw your consent at any time. These rights can be exercised by contacting the controller. Additionally, you may lodge a complaint with a supervisory authority.
I. MANDATORY OR OPTIONAL NATURE OF DATA PROVISION
Providing your data is mandatory while browsing our website with respect to purposes outlined in points D.1 and D.2, to enable proper service delivery. Consent for processing data as described in point D.3 is optional and will not affect the service.
J. DATA PROCESSING METHODS
Your personal data will be processed in accordance with the aforementioned legislation and the confidentiality obligations of the controller. Data may be processed using electronic, paper-based, or other suitable tools (e.g., cloud systems, digital archives), in compliance with the appropriate technical and organizational security measures as defined by the GDPR.
K. FINAL NOTES AND POLICY UPDATES
This privacy notice applies solely to this website and not to any other sites linked within it. It may be updated to reflect legal changes. Users are advised to check this page periodically to stay informed. Previous versions can always be requested from the data controller.
L. AUTOMATED DECISION-MAKING
There are no automated decision-making processes.
