Contact Form: Information on Personal Data Processing

Pursuant to Regulation (EU) 2016/679, this page describes the methods used to process personal data provided by users via the “Contact” form available on all pages of the website www.cdr-mediared.it.

This information does not apply to other websites, pages, or online services that may be accessed via hyperlinks published on our website.

Data Controller

The Data Controller is CDR S.r.l., with registered office at: Via degli Artigiani, 6 – 50055 Ginestra Fiorentina (FI), Italy.

Email cdr@cdr-mediared.it

Data Protection Officer

CDR S.r.l. is not required to appoint a Data Protection Officer (DPO) pursuant to Article 37 of Regulation (EU) 2016/679.

Purpose, Legal Basis, and Nature of the Data Processing

The personal data provided by users through the “Contact” form are processed by the Data Controller for the purpose of handling requests (e.g., responding to inquiries or information requests).

The personal data processed are solely those provided by the user when sending messages through the form.

The provision of personal data (company name, first and last name, mobile number, email, and message) is optional. However, failure to provide this information will prevent the Data Controller from responding to the requests.

For details regarding the use of cookies on this website, please refer to the Cookie Policy, accessible via the “Privacy” link available in all sections of the site.

Types of Data Processed and Purpose of Processing

Data Provided by the User

The personal data provided directly by users through the “Contact” form will result in the acquisition of the data entered.

Data Processing Methods

The collected data are processed using electronic tools and, only occasionally, paper-based methods.

For the processing of data related to the website’s services, the Data Controller uses servers located within the European territory and IT systems hosted at the company’s headquarters. Data transfers abroad are not foreseen.

Appropriate technical and organizational measures are implemented to ensure a suitable level of security, preventing data loss, unlawful or improper use, and unauthorized access.

The personal data voluntarily provided by users are stored for the duration of the contractual relationship and in accordance with legal obligations.

Data Recipients

Your data may be accessed or disclosed to employees or collaborators of our company, specifically authorized and/or designated as “external data processors” (e.g., the service provider responsible for website development and maintenance).

Data Subject Rights

Data subjects have the right to obtain from CDR S.r.l., in the cases provided for by the Regulation, access to their personal data and the rectification or erasure of such data, or restriction of processing that concerns them, or to object to processing, as well as the right to data portability (Articles 15 et seq. of the Regulation).

Requests should be addressed to: cdr@cdr-mediared.it

Right to Lodge a Complaint

If a data subject believes that the processing of their personal data through this website violates the Regulation, they have the right to lodge a complaint with the Data Protection Authority, pursuant to Article 77 of the Regulation, or to take appropriate legal action (Article 79 of the Regulation).

Marketing and Profiling Cookies

This section describes how the website www.cdr-mediared.it, owned by CDR S.r.l. as Data Controller, manages the personal data of users who visit it. This statement is provided in accordance with the provisions of the law.

The Data Controller pays the utmost attention to the protection of users’ personal data. Processing is based on principles of lawfulness, fairness, transparency, and the protection of confidentiality in accordance with Legislative Decree 196/2003 and the European Regulation 2016/679 (GDPR 2016/679).

1. Data Controller

The Data Controller is CDR S.r.l., with registered office at:
Via degli Artigiani, 6 – Ginestra Fiorentina, 50055 Lastra a Signa – Florence (Italy)

2. Place of Data Processing

Processing related to the services on this website takes place at the headquarters of CDR S.r.l. and is carried out exclusively by technical personnel appointed for this purpose. The web server hosting www.cdr-mediared.it, owned by CDR S.r.l., is housed at Aste Giudiziarie Inlinea S.p.A., based in Via delle Grazie 5, 57125, Livorno, Italy.

No data from the web service is shared. Personal data provided by users who submit requests are used solely to provide the requested service or response.

3. Types of Data Processed

Browsing Data

The IT systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.

This information is not collected to be associated with identified data subjects, but by its nature could, through processing and association with data held by third parties, allow users to be identified.

This category of data includes IP addresses or domain names of the computers used by users who connect to the site, URI (Uniform Resource Identifier) addresses of requested resources, the time of the request, the method used to submit the request to the server, the size of the file returned, the numeric code indicating the status of the server’s response (successful, error, etc.), and other parameters related to the user’s operating system and IT environment.

These data are used solely to obtain anonymous statistical information on the use of the site and to check its proper functioning, and are deleted immediately after processing. The data could be used to ascertain liability in case of hypothetical computer crimes against the site.

Cookies

Our site uses cookies. By browsing our site and accepting the terms of this policy, you consent to the use of cookies in accordance with the conditions described herein.

What are cookies?

Cookies are small data files that websites visited by users send to their device. These files can be deleted at the end of each session or stored to be retransmitted on the next visit to the same site. Cookies allow a website to recognize a user’s device, track navigation across pages, and identify users returning to the site.

There are several types of cookies:

Technical Cookies include:

• Navigation and session cookies – These ensure normal browsing and use of the website (e.g., they allow access to restricted areas).

• Functionality cookies – These make browsing easier for the user by storing preferences (e.g., chosen language).

• Analytics cookies – These are used to produce aggregated statistical analyses on how users navigate the website (e.g., number of pages visited, number of clicks on a page, etc.).

• Profiling Cookies – These cookies are used to create user profiles based on preferences, choices, and behaviors observed while browsing. They are subsequently used to send advertising messages aligned with those preferences.

Only third-party profiling cookies are used on this website.

Third-Party Cookies

While browsing the website, users may also receive cookies from third-party websites or servers (“third-party cookies”). This happens when the site contains elements (e.g., images, maps, sounds, specific links to other domain pages) hosted on servers other than the one the user is visiting.

These cookies are set directly by third-party service providers and not by cdr-mediared.it. Therefore, cdr-mediared.it is not responsible for their operation. As clarified by the Italian Data Protection Authority: “The obligation to inform users about the use of cookies and, if necessary, to obtain their prior consent lies with the operator of the site that uses them. Where a site allows the transmission of third-party cookies, the obligation to provide information and obtain consent is generally the responsibility of the third party.”

To ensure transparency, we inform users that the site uses the following third-party cookies:

Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Inc. (“Google”). Google Analytics uses cookies, which are text files placed on your device to help the website analyze how users interact with the site. The information generated by the cookie about your use of the website (including your anonymized IP address) will be transmitted to and stored by Google on servers in the United States. Google uses this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators, and providing other services relating to website activity and Internet usage. Google may also transfer this information to third parties when required by law, or when such third parties process the information on Google’s behalf. Google will not associate your IP address with any other data held by Google.

This cookie is not managed by CDR S.r.l. For more information, please consult Google’s privacy policy at: https://www.google.com/intl/it/policies/privacy

If you prefer that Google Analytics does not use the collected data in any way, you can:

Use anonymous browsing mode (Do Not Track) from your browser. To learn how to activate this option, check your browser’s support page Internet Explorer, Google Chrome, Mozilla Firefox, Apple Safari

Refuse the use of cookies by selecting the appropriate settings in your browser. However, this may prevent you from using all features of this website.

You can also prevent Google from collecting data via cookies related to your use of the website (including your IP address) by downloading and installing the following browser plugin: https://tools.google.com/dlpage/gaoptout?hl=it

Embedded Content

The website cdr-mediared.it occasionally integrates embedded content such as YouTube videos, or elements from platforms such as Twitter, Facebook, Google+, LinkedIn, and others, depending on the need. cdr-mediared.it has no control over the cookies that may be set by these third-party platforms. Therefore, we strongly recommend that users refer directly to each third party’s cookie policy to gain full control over how their data is used. Here are some useful links to the cookie policies of third-party services that may be embedded in our site:

• Facebook → https://www.facebook.com/help/cookies/

• Twitter → https://twitter.com/privacy?lang=en

• YouTube → https://www.google.it/intl/it/policies/privacy/

• Google+ → https://www.google.com/policies/technologies/types

• LinkedIn → https://www.linkedin.com/legal/privacy-policy

Cookie Blocking and Management

You can configure your browser to accept all cookies, reject all cookies, or to notify you whenever a cookie is set. Since each browser is different, please refer to your browser’s help section for instructions on how to manage your cookie preferences.

Here are some useful links for managing cookies in popular browsers:

• Delete/disable cookies in Firefox: https://support.mozilla.com/it/kb/Eliminare%20i%20cookie

• Delete/disable cookies in Edge: https://support.microsoft.com/it-it/help/4027947/windows-delete-cookies

• Delete/disable cookies in Chrome: https://support.google.com/chrome/bin/answer.py?hl=it&answer=95647

Data Provided Voluntarily

Apart from what is specified for browsing data – necessary for the operation of communication protocols—the provision of personal data by users is optional and voluntary. However, it may be essential in order to receive certain services: in such cases, failure to provide data could make it impossible to provide the requested service.

Personal data voluntarily provided by users (e.g., registration to the site, subscription to newsletters, participation in events or prize contests, information requests, emails sent directly to CDR) are used solely to provide the requested service or response. Such data are disclosed to third parties only if strictly necessary to deliver the service.

The provision of personal data for direct marketing and/or profiling purposes is entirely optional, and users are free to provide or withhold consent.

This consent can be revoked at any time by returning to the site and clicking on the “Cookie Policy” link in the website footer.

Regarding the processing of personal data for sending newsletters and other informational material about services offered by the Data Controller, users can unsubscribe at any time by clicking the “Unsubscribe” link at the bottom of every email.

Minors

Minors under the age of 16 are not permitted to provide personal data. The Data Controller declines all responsibility for any false statements submitted by a minor. If the falsity of any such statements is discovered, all personal data and any related content will be immediately deleted. The Data Controller will support parents or legal guardians in handling any requests concerning minors’ personal data.

4. Purposes of Processing and Use of Session Technical Cookies

Personal data voluntarily provided by users of the website are processed for the following purposes:

• To respond to information or quotation requests made by the user

• To subscribe users to newsletters

• To process anonymous statistical analyses

• To comply with legal obligations and requirements from competent authorities

5. Method of Expressing Consent

Consent to the processing of personal data through non-technical cookies may be given by clicking on a specific checkbox presented within a banner.

6. Methods of Processing and Data Retention

The processing of personal data will be carried out using both automated and manual methods, with procedures and tools that comply with the security measures required by Article 32 of the GDPR 2016/679 and Legislative Decree 196/2003. Only authorized individuals will carry out the processing, in accordance with Article 29 of the GDPR.

In compliance with the principles of lawfulness, purpose limitation, and data minimization, as stated in Article 5 of the GDPR 2016/679, personal data will be retained only for the time strictly necessary to fulfill the purposes for which they were collected and processed. Retention will also respect legal time limits and continue only until the data subject requests cancellation from the services provided. Il consenso al trattamento di dati personali mediante cookie non tecnici potrà essere espresso mediante il click su una specifica casella presentata all’interno di un banner.

7. Personal Data Retention Period

Personal data collected for the purposes described in this notice will be stored for no more than 12 months from the date of collection. The Data Controller reserves the right to request renewed consent from the data subject and/or to verify previously provided consents at any time.

8. Place of Processing

Personal data will be processed at the registered and operational offices of the Data Controller.

9. Disclosure and Communication of Personal Data

Personal data may be disclosed to:

• Couriers, shipping companies, or third parties entrusted with packaging, shipping, and/or delivery of materials requested via the website

• Companies, consultants, professionals, and legal or natural persons, in cases where communication is necessary or useful to fulfill contractual obligations or legal requirements

• Companies providing information society services, particularly hosting service providers

• Any subject entitled to access personal data by virtue of legal or administrative provisions

No personal data will be disclosed to third parties or made public without the user’s prior and explicit consent.

10. Data Transfer

The Data Controller does not transfer personal data to third countries.

11. Withdrawal of Consent

Pursuant to Article 23 of Legislative Decree 196/2003 and Article 6 of GDPR 679/2016, the data subject may withdraw consent to the processing of their personal data at any time.

12. Data Subject Rights

At any time, the user may exercise their rights under Article 7 of the Privacy Code and Articles 15–22 of GDPR 2016/679, including the right to:

• Request confirmation as to whether or not personal data concerning them exist

• Obtain information on the purposes of processing, categories of personal data, recipients or categories of recipients to whom the data have been or will be disclosed, and where possible, the retention period

• Request the rectification or erasure of data

• Request the restriction of processing

• Obtain data portability (i.e., receive the data from one controller in a structured, commonly used and machine-readable format, and transmit them to another controller without hindrance)

• Object to processing at any time, including processing for direct marketing or profiling purposes

• Object to automated decision-making processes, including profiling

• Lodge a complaint with the competent Supervisory Authority

Requests should be addressed to:

CDR S.r.l.
Via degli Artigiani, 6 – Ginestra Fiorentina – 50055 Lastra a Signa (Florence, Italy)
Phone: +39 055 871 431
Fax: +39 055 871 422
Email: privacy@cdr-mediared.it

Changes to This Privacy Policy

The Data Controller reserves the right to modify this privacy policy at any time and will publish any updates on this page. Users are encouraged to check this page frequently, referring to the “last updated” date at the bottom.

Informativa Privacy – Art. 13 del Regolamento UE 679/2016