Privacy Policy
Pursuant to and for the purposes of Article 13 of EU Regulation 2016/679 (hereinafter also referred to as the “GDPR”), this document describes the methods for processing the personal data of users who browse and use the services available on the website of Dualee Srl, with registered office at Via Fontevivo 21M, 19125 La Spezia (SP), Italy (hereinafter also referred to as “DUALEE”), accessible online at the following address: https://www.dualee.net/
. This information does not apply to other websites, pages or online services that may be reached through hyperlinks published on the site but referring to resources outside the domain.
KEY DEFINITIONS AND LEGAL REFERENCES
Personal data
Any information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Special categories of personal data
Personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, as well as genetic data, biometric data processed for the purpose of uniquely identifying a natural person, data concerning health or a person’s sex life or sexual orientation, and judicial data.
Usage data
These are the data collected automatically by the website or by third-party applications used by the website, such as the IP addresses or domain names of the computers used by the data subject/user connecting to the site, the addresses in URI (Uniform Resource Identifier) notation, the method used to submit the access request to the server, the size of the file obtained in response, the numerical code indicating the status of the server’s response, the country of origin, the characteristics of the browser and operating system used by the visitor, the various time details of the visit, and the details relating to the path followed within the site, with particular reference to the sequence of pages viewed, the parameters relating to the operating system and the IT environment of the data subject.
Data subject
The natural person to whom the Personal Data relates. In the case of browsing the website, the individual who uses the site (or a person authorised by them) and whose personal data is subject to processing.
User
The individual who uses this website and who, unless otherwise specified, coincides with the Data Subject.
Processing
Any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Data Controller
The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the Controller or the specific criteria for its nomination may be provided for by Union or Member State law.
Data Protection Officer (DPO)
The natural or legal person who informs and advises the Data Controller on personal data processing, monitors compliance with the GDPR, provides guidance on Data Protection Impact Assessments (DPIA), and cooperates with and acts as the contact point for the Supervisory Authority.
Data Processor
The natural or legal person, public authority, agency or other body which processes personal data on behalf of the Data Controller.
Authorised person
The natural person authorised to carry out processing operations on personal data.
Recipient
The natural or legal person, public authority, agency or another body to which personal data are disclosed, whether or not a third party. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as Recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing.
Website and Database
The IT system within which the Personal Data of Data Subjects are also collected.
Cookie
A small piece of data stored on the Data Subject’s device.
Legal References
Legislative Decree No. 196/2003, as amended and supplemented, and EU Regulation 2016/679 (GDPR).
Changes to the Personal Data Processing Notice
DUALEE reserves the right to amend this notice at any time. Users are therefore advised to consult this page regularly, with particular reference to the revision date indicated at the bottom.
Further information on the processing of personal data
Additional information regarding the processing of personal data may be requested at any time using the contact details provided at the end of this notice.
Requests will be handled within 30 days.
Requests will be handled within 30 days.
Data Controller
Dualee Srl, Via Fontevivo 21M, 19125 La Spezia (SP), Italy.
Types of data processed
Usage data
The IT systems and software procedures used to operate this website acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols.
This category of data includes the IP addresses or domain names of the computers and devices used by users, the URI/URL (Uniform Resource Identifier/Locator) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.), and other parameters relating to the user’s operating system and IT environment.
Such information is collected through cookies, which are small text files that websites transmit to the device used by the user (PC, smartphone, tablet).
For further information, data subjects are invited to consult the website’s Cookie Policy
This category of data includes the IP addresses or domain names of the computers and devices used by users, the URI/URL (Uniform Resource Identifier/Locator) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.), and other parameters relating to the user’s operating system and IT environment.
Such information is collected through cookies, which are small text files that websites transmit to the device used by the user (PC, smartphone, tablet).
For further information, data subjects are invited to consult the website’s Cookie Policy
Purposes and legal basis of the processing
Personal data provided by users/data subjects are processed by the Data Controller to enable browsing.
The Personal Data
The Personal Data collected by DUALEE through its website are necessary for:
- Browsing the website;
- Collection of statistical information on the use of the services (for example, most visited pages, number of visitors by time slot or per day, geographical areas of origin, etc.).
The legal basis for the processing of the data necessary for the operation of the website, pursuant to Article 6 of the GDPR, is as follows: processing is necessary for the purposes of the legitimate interests pursued by the Data Controller or by a third party.
Methods of processing and data retention period
Personal data are processed using IT and electronic tools, including automated means, in compliance with security measures designed to prevent data loss, unlawful or improper use, and unauthorised access.
Processing is carried out only for the period necessary to fulfil the purposes for which the personal data are collected (website navigation).
Further information regarding the retention of personal data may be requested at any time using the contact details provided at the end of this notice.
Categories of recipients of personal data
Personal data processed for the operation of the website may be shared with third parties, namely Dualee’s service providers, appointed as Data Processors in accordance with Article 28 of EU Regulation 2016/679.
Further information on the Data Processors may be requested at any time using the contact details provided at the end of this notice.
Data transfer
Personal data processed by DUALEE are transferred and/or stored in encrypted internal archives that are not accessible to unauthorised persons.
Further information regarding the transfer of personal data may be requested at any time using the contact details provided at the end of this notice.
The website also provides access to the company platform dedicated to whistleblowing reports.
Rights of data subjects
Users may contact the Data Controller with regard to all matters relating to the processing of their personal data and for the exercise of the rights provided for under Articles 15 et seq. of EU Regulation 2016/679 (including, by way of example, the right of access to data, the right to object to or restrict processing, the right to rectification and erasure, the right to data portability, etc.).
Where the relevant legal conditions are met, users may also lodge a complaint with the Supervisory Authority for the protection of personal data.
Where the relevant legal conditions are met, users may also lodge a complaint with the Supervisory Authority for the protection of personal data.
To obtain further information on the processing of personal data and to exercise the rights provided for by EU Regulation 2016/679, the following contact details must be used, indicating as the subject of the communication “Exercise of the rights of data subjects pursuant to Articles 15–22 of the GDPR”:
e-mail: francesco.cicillini@dualee.it
certified e-mail (PEC): dualee@pec.it
Requests will be handled within 30 days.