Privacy policy

This information statement illustrates how this website manages the personal data of its users. It is provided pursuant to artt. 13 and 14 of EU Regulations 2016/679(GDPR) and current national legislation and it is directed to those who interact with the web services provided by UNIVITI SRL, electronically accessible via the address:

www.univiti.it

which corresponds to the home page of the official website of UNIVITI SRL.
This privacy policy is provided exclusively for the website of ANTAL SRL but not for any other website the user might visit through links.
The policy is also inspired by Recommendation 2/2001 adopted on 17 May 2001 by European personal data protection authorities, grouped in the Working Party established by Article 29 of Directive 95/46/EC for the purpose of identifying the minimum requirements for collecting personal data on-line and, in particular, the procedures, the timing, and the nature of the information that data controllers must provide to users when the latter access web pages, regardless of the purposes of such access.

Data Controller
The Data Controller is UNIVITI SRL, headquarters in Via A. Volta, 1/c - 31027 Spresiano (TV).

Type of data and purposes of the processing

Browsing data
During their normal functioning, Information Technology systems and software procedures necessary for the functionality of this website acquire some personal data whose transmission is implicit in the internet communication protocol.
These data are not collected with the purpose of being connected to identified subjects, but because of their nature they might indirectly allow the identification of those subjects through processing and association with third party information.
This category of data includes IP addresses, domain names, URI (Uniform Resource Identifier) addresses referenced to requested resources, the time of the request, how the request is submitted to the server, the dimension of the resulting file, the numeric code indicating the response status and other parameters connected to the operating system and to the user’s system environment.
These data are used exclusively for the purpose of gathering statistical anonymous information about the use of the website and to verify its proper functioning; they are erased immediately after being processed. The abovementioned data may be used to assess responsibility in the case of computer crimes committed against this website; except for this circumstance, web contact data are not retained for longer than seven days.

Data voluntarily provided by the user
The optional, specific and voluntary transmission of an e-mail message to one of the addresses present on this website, which can also occur by filling out specific forms, entails the subsequent acquisition of the sender’s address, which is necessary in order to carry out the request, along with further data that may be included in the e-mail.

The data you voluntarily provide may be processed for the following purposes:

  • Upon specific request of the Data Subject, processing requests for information on the services/products marketed directly by UNIVITI SRL, and the processing of any reports that may also be sent through the contact form (art. 6 par. 1 let. b) GDPR 2016/679);
  • Upon specific request of the Data Subject, the management of E-Recruitment or other form of professional collaboration (art. 6 par. 1 let. b) GDPR 2016/679);
  • Upon specific request of the Data Subject, the subscription to the informational and/or commercial newsletter (art. 6 par. 1 let. a) GDPR 2016/679);
  • Subject to the express consent of the Data Subject, the sending of informative, commercial and/or promotional communications, in full compliance with the GDPR 2016/679, current national legislation and the Provision by the Italian Data Protection Authority 04/07/2013 “Guidelines on promotional activity and contrast to spam” (art. 6 par. 1 let. a) GDPR 2016/679).

Specific information statements may be found in the website pages dedicated to each service available upon request.

The collection and registration of data will be carried out for specified, explicit and legitimate purposes and in a manner that is compatible with these purposes, in relation to the processing that is required for conducting business activities. So that the data are accurate and, where necessary, kept up to date. So that the data are adequate, relevant and limited to what is necessary in relation to the purposes for which they are collected and subsequently processed in accordance with GDPR 2016/679 and current national legislation.
Personal data may be processed with both paper and telematic means, or in any case with means suitable for recording and memorizing the data, and, in any case, their safety is guaranteed, and the utmost confidentiality of the data subject is protected. Specific security measures are observed to prevent data loss, unlawful or incorrect use, and unauthorized access in full compliance with art. GDPR 2016/679 and the current national legislation.

Cookies, plugins, interactions with external platforms
The complete information statement about the usage of internet cookies and the interactions between this website and external platforms (for example, Social Networks) is available at the following link:

Cookie Policy for the website www.univiti.it

Mandatory or optional nature of the provision of personal data and consequences of failure to provide such data.
Apart from browsing data, the user’s consent is optional. However, failure to provide such data will make it impossible for UNIVITI SRL to process the request. Consent may be withdrawn at any time by contacting the Data Controller at the following e-mail address: info@univiti.it.

Recipients or categories of recipients of personal data.
Without prejudice to the communications in compliance to legal obligations, all collected and processed data may be communicated to the following subjects:

  • Professional and consultants, in particular those providing IT and ICT services (including e-mail services);
  • subject who are processing data on behalf of the Controller as Data Processor under art. 28 GDPR 2016/679, including but not limited to professional and/or Company operating in the following fields: IT, ICT (including e-mail services). The complete and up-to-date list of the Data Processors is available, upon request of the right holders, at the headquarters of the Data Controller.
  • Subjects who are legally entitled to access the data in accordance to current legislation and/or to whom the data shall be communicated for compliance with a legal obligation to which the Controller is subject.

Personal data may be processed by employees and co-workers assigned to the competent Company offices, explicitly authorized in accordance with art. 29 GDPR 2016/679 and current national legislation.

Transfers of personal data abroad
Your data may be communicated and/or transferred abroad only for the purposes stated in this policy or for strictly technical reasons due to the structure of the company IT System and/or for the implementation of technical and organisational measures which the Data Controller has deemed adequate (art. 32 GDPR 2016/679), exclusively in accordance to artt. 44 s.s. GDPR 2016/679.

Data retention
Provided data shall be retained in our filing systems according to the following parameters:

  • Data provided voluntarily by the user: until the service is processed (“storage limitation principle”, art. 5 GDPR 2016/679) or according to the deadlines provided for by the law.
  • Data processed for marketing purposes: 24 months;

In relation to the specific statutes of limitation provided for by law, the data retention period may be extended if the data is necessary for the establishment, exercise or defence of legal claims.
Verifications on data obsolescence in relation to their purposes are performed periodically.

Rights of the data subject.
In relation to such personal data, the Data Subject can exercise his rights within the conditions set by artt. 15-22 GDPR 2016/679 and current national legislation. Specifically, the GDPR recognizes the following Data Subject rights:

  • Right of access by the data subject (art. 15 GDPR 2016/679);
  • Right to rectification (art. 16 GDPR 2016/679);
  • Right to erasure (art. 17 GDPR 2016/679);
  • Right to restriction of processing (art. 18 GDPR 2016/679);
  • Information about the recipients of the notification regarding rectification or erasure of personal data or restriction of processing, upon request of the Data Subject (art. 19 GDPR 2016/679);
  • Right to data portability (art. 20 GDPR 2016/679);
  • Right to object (art. 21 GDPR 2016/679);
  • Right not to be subject to a decision based solely on automated processing, including profiling (art. 22 GDPR 2016/679).

In the case of signing any kind of consent to data processing upon request of UNIVITI SRL, it shall be noted that the Data Subject may withdraw it at any time, without prejudice to mandatory obligations in accordance with legislation applicable at the time of the request, by contacting the Data Controller at the following e-mail address: info@univiti.it.

Right to lodge a complaint.
If any data subject considers that the processing of personal data relating to him or her infringes GDPR 2016/679, he or her shall have the right to lodge a complaint with a supervisory authority, in particular in the Member State of his or her habitual residence, place of work or place of the alleged infringement, pursuant to art. 77 GDPR, or to refer to the competent courts (art. 79 GDPR 2016/679).

For further information you can contact the Data Controller:

UNIVITI SRL
Via A. Volta, 1/c - 31027 Spresiano (TV)
Tel. +39 0422 725942 - Fax +39 0422 888944
eM.: info@univiti.it