Published: May 25, 2018
II. General Information on Data Processing
Users of the Site in General
III. Automatically Collected Information. Web Browsing Data
As with all websites, this site also makes use of log files in which information from user visits is automatically collected and stored. The information collected could include the following:
• Internet Protocol (IP) Address
• Type of browser and device parameters used to connect to the site
• Name of the Internet Service Provider (ISP)
• Date and time of visit/request
• Number of clicks, where applicable
• Method used to submit the request to the server
• Size of the file obtained in response
• Digital code indicating the status of the response given by the server
• Other parameters related to the operating system and the user’s IT environment
The information listed above is handled automatically and collected in an exclusively aggregated form in order to verify the correct functioning of the site, and for security reasons. For the purposes of security (spam filters, firewalls, virus detection), automatically registered data may also include personal data such as IP address (the one that uniquely identifies, at least at that time, the host of origin), which could be used — in compliance with the laws in force on the subject — to block attempts to damage the site, harm other users, the carrying out of malicious activities, and activities that constitute a crime. This type of data is used to protect the site and its users.
The listed data is used for the sole purpose of obtaining anonymous statistical information on the use of the website and to check its correct functioning.
Definition of Cookies
A cookie is a small text file sent to the browser by the visited website and then stored on the hard disk of the user’s computer. When you connect to the website again, cookies are read back and recognized by the website that sent them. While visiting a website, you may receive cookies from a third-party website (so-called “third-party cookies”), for example, links to web pages of other domains.
Cookies can be used for different purposes, such as allowing a website to recognize a user’s device, or monitoring sessions and storing specific information about users accessing the server.
Types of Cookies
Technical Cookies are necessary for a website to function properly and to allow a user to make use of a service.
Functional Cookies are used to facilitate website navigation, to store selected settings, and to provide customized features.
Analytical Cookies are used by websites to collect information on usage habits, visited pages, and any errors that may occur during browsing. These cookies do not collect information that could identify the user’s computer. All information collected by these cookies is aggregated and therefore anonymous.
Each browser has a different procedure for managing settings. Below are specific instructions for each browser:
This site also acts as an intermediary for third-party cookies, which are used to provide additional services and features to users. These also improve user experience of the site via such things as buttons for social media, or video. This site has no control over the cookies of third parties—they are entirely managed by third parties. As a consequence, information on the use of these cookies and their purpose, as well as how to disable them, are provided directly by the third parties on the pages indicated below.
V. Social Networks
The collection and use of the data obtained by means of the plugins are regulated by the respective privacy policies of the social networks, to which reference should be made.
VI. Data Processing Location
The data collected by this site are processed at the headquarters of the Data Controller and at the web hosting datacenter.
VII. Transfer of Data in Non-EU Countries
This site may share some of the collected data with services located outside the European Union area. In particular with Google, Facebook, and Microsoft (LinkedIn) through social plugins and Google Analytics. The transfer is authorized on the basis of specific rulings of the European Union and the Guarantor for the protection of personal data, in particular, ruling 1250/2016 (Privacy Shield), for which no further consent is required. The companies mentioned above guarantee their adherence to the Privacy Shield.
VIII. Safety Measures
This site processes the data of users in a lawful and proper manner, adopting appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of data. Processing is carried out by using computer and/or electronic tools, using appropriate measures at the organizational, technical, and administrative level in order to protect personal data within our company, using criteria strictly related to the purposes stated. However, no data transmission and no storage system can be guaranteed as 100% secure. Users who have reason to believe that their interactions with us are no longer secure are asked to kindly report the issue immediately.
In addition to the Data Controller, in certain cases other parties involved in the running of the website may have access to stored personal data (administrative, sales, legal department, and system administrator personnel) or external individuals (such as third-party technical service providers, mail couriers, hosting providers, IT companies, and communication agencies) which may, if necessary, be appointed by the Data Controller to handle personal data.
The personal data of users shall be kept for as long as necessary, or permitted, in light of the purposes for which they are collected. The criteria adopted for determining storage times are as follows: (i) the period of time in which users regularly use the seum.it site; (ii) the need to fulfill a contract or a legal obligation to which we are subject; (iii) the opportunity to retain data in light of our legal position (for example, with regard to time limits, disputes, or regulatory compliance checks).
IX. Rights of the User
Pursuant to the GDPR and Italian regulations, the user can, in the manner and within the limits established by current legislation, exercise the following rights in relation to his or her personal data:
• Request confirmation of the existence of personal data concerning him/her (right of access)
• To know its origin
• Receive intelligible communications
• To have information about the criteria, the methods, and the purposes of the processing
• Request the updating, rectification, integration, cancellation, transformation into anonymous form, blocking of data processed in violation of the law, including those no longer necessary for the pursuit of the purposes for which they were collected
• In cases of consent-based processing, receive any support at-cost for data on yourself that has been provided to the Data Controller, in a structured and readable form, complied by a data processor, and in a format commonly available on electronic devices
• Right to file a complaint with the Supervisory Authority
• As well as, more generally, exercise all the rights that are recognized by the current provisions of law
Requests should be addressed to the Data Controller. In particular, the user can exercise his or her rights in regard to the processing of personal data by contacting the Data Controller at the address provided above. We will respond to the request in accordance with the applicable laws. Users are invited to indicate in their request which personal data they wish to have modified, to inform us if they prefer that such data be deleted from our database, or to specify what limitations they wish to put on our use of their personal data.
X. Data Controller
The Data Controller — in accordance with the GDPR and other Italian data protection laws, as well as other provisions on data protection — is SEUM S.r.l, Piazza Risorgimento, No. 24, 52100, Arezzo, Italy, which can be contacted at the following email address: firstname.lastname@example.org