Privacy Policy pursuant to art. 13 GDPR
 
Pursuant to art. 13 of the GDPR (EU regulation 2016/679), the following information is provided, consistently with the principle of transparency, in order to make the user aware of the characteristics and methods of data processing.
Data controller
We inform you that the Data Controller is: GI.MA s.r.l. in the person of the legal representative p.t., with registered office in Firenze, via Pistoiese n.153 / b tel: 055.301117 mail: Cette adresse e-mail est protégée contre les robots spammeurs. Vous devez activer le JavaScript pour la visualiser.
Purpose of the processing and legal basis
Your personal data will be used for the following purposes:
1) Sending of commercial and / or promotional communications
2) Access to the reserved area of the company website
3) Analysis of purchasing and profiling habits, not carried out in an automated way.
The legal basis for the processing is the provision of services requested by the recipient.
In order to pursue our purposes, it may be necessary to process your personal and contact data, e.g. name, surname, date of birth, e-mail address, residence or home address, postal code, cell phone.
Navigation data and Cookies
Navigation data
The computer systems and software procedures used to operate this site acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.
This category of data includes IP addresses or domain names of computers and terminals used by users, URI/URL (Uniform Resource Identifier/Locator) of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the response from the server (successful, error, etc..) and other parameters regarding the operating system and computer environment.
These data, necessary for the use of web services, are also processed in order to:
• obtain statistical information on the use of the services (most visited pages, number of visitors per time slot or daily, geographical areas of origin, etc.);
• check the correct functioning of the services offered.
Surfing data do not persist for more than seven days (except for the possible need to ascertain crimes by the judicial authorities).
Cookies and other tracking systems
We do not use cookies for user profiling, nor do we use other tracking methods.
Instead, session cookies (not persistent) are used strictly limited to what is necessary for the safe and efficient navigation of the sites. The memorization of session cookies in the terminals or in the browser is under the user's control, whereas on the servers, at the end of the HTTP sessions, information relative to the cookies remain recorded in the logs of the services, with a conservation time in any case not exceeding seven days like the other navigation data.
The user can accept or refuse the use of cookies by following the instructions in the banner that will appear when you first access our site or change the navigation settings of your browser to completely disable cookies.
Recipients and any categories of recipients of personal data
The data are processed within the entity by authorized persons of the data processing under the responsibility of the owner for the above purposes.
The data may be communicated to external data processors who have entered into specific agreements, conventions, memoranda of understanding, contracts with the data controller.
In any case, the communication or diffusion of data required, in accordance with the law, to the Public Security Authority, the Judicial Authority or other public subjects for purposes of defense, state security and investigation of crimes is excluded.
Apart from the aforementioned cases, personal data are not in any way and for any reason communicated or disseminated to third parties.
Finally, the Data Controller will not transfer the data to a third country or to an international organization.
Data retention period
Personal data will be stored for a period of time necessary to achieve the purposes for which they are collected and in any case until the time of cancellation requested by the user.
Data processing takes place in Italy.
The data may be stored on both paper and computer.
Rights of the interested party and Complaint
The Data Subject may lodge a complaint with a Supervisory Authority and exercise pursuant to Articles 15 to 22 of the RGPD the right to:
- request from the data controller access to the personal data concerning him/her, their rectification or erasure, the restriction of processing;
- oppose the processing;
- request the portability of the data,
by contacting the following Cette adresse e-mail est protégée contre les robots spammeurs. Vous devez activer le JavaScript pour la visualiser.
For further information, please visit the institutional website of the Privacy Guarantor www.garanteprivacy.it

GI.MA. srl

via Pistoiese, 153/b Florence Italy - Tel. +39 055 301117    P.I. / C.F. 03540410481