DATA PROTECTION WEBSITE
update with EU Regulation 2016/679
RELAIS AGLI OLIVI SRL, "Data Controller", takes the user's privacy seriously and undertakes to respect it. This "Privacy Policy" describes the processing of personal data processed by the Data Controller through the website https://www.relaisagliolivi.com The Data Controller may process the personal data of the user when he visits the Website and uses the services and functionalities present on the Website. In the sections of the Website where the personal data of the user is collected, a specific information is published according to the 'art. 13 - 14 of the EU Reg. 2016/679. If required by the EU Reg. 2016/679 the user's consent will be required before proceeding to the processing of your personal data. If the user provides personal data of third parties, he must ensure that the communication of data to the Data Controller and the subsequent processing for the purposes specified in the applicable privacy information complies with EU Reg. 2016/679 and applicable legislation.
Identification details of the owner, manager and Data Protection Officer (GDPR) The Data Controller is RELAIS AGLI OLIVI SRL with registered office in Via Salieri,14 - 37017 Lazise (VR). The contact details of the Data Controller are: Tel: 0457580675 Fax: 0457580675 Email: info@relaisagliolivi.com; Pec: relaisagliolivi@legalmail.it;; The Data Processor is Mrs UBINI ELISABETTA; The contact details of the Data Processor are: Tel: 0457580675 Fax: 0457580675 Email: info@relaisagliolivi.com
The Data Controller is not subject to the appointment of the Data Protection Officer (DPO).
Type of data processed
The visit and consultation of the Site do not generally involve the collection and processing of personal data of the user except for navigation data and cookies as specified below. In addition to the so-called "navigation data" (see below), personal data voluntarily provided by the user may be processed when the latter interacts with the functionality of the Website or asks to use the services offered on the Website. of data, the Data Controller may also collect the personal data of the user from third parties in the performance of its activity.
Cookies and browsing data
The site uses "cookies". By using the Website, you consent to the use of cookies in accordance with this Privacy Policy. Cookies are small files stored on the hard disk of the user's computer. There are two macro - categories of cookies: technical cookies and profiling cookies.
Technical cookies are necessary for the proper functioning of a website and to allow user navigation; without them the user may not be able to view the pages correctly or use some services.
Profiling cookies have the task of creating user profiles to send advertising messages in line with the preferences expressed by the user during navigation.
Cookies can also be classified as:
 "session" cookies, which are deleted immediately when the browser is closed;
 "persistent" cookies, which remain in the browser for a certain period (they are used, for example, to recognize the device that connects to a site facilitating authentication operations for the user)
 “own” cookies generated and managed directly by the manager of the website on which the user is browsing;
 “third-party” cookies generated and managed by parties other than the operator of the website on which the user is browsing.
Cookies used on the site The Website uses the following types of cookies:
1) own, session and persistent cookies, necessary to allow navigation on the Site, for purposes of internal security and system administration;
2) third-party, session and persistent cookies, necessary to allow the user to use multimedia elements on the Site, such as images and videos;
3) persistent third-party cookies used by the Site to send statistical information to the Google Analytics system, through which the Data Controller can perform statistical analysis of accesses / visits to the Site. The cookies used exclusively pursue statistical purposes and collect information in the form aggregate. Through a pair of cookies, one of which persistent and the other of session (with expiration at the end of the browser), Google Analytics also saves a register with the start times of the visit to the Site and exit from it. You can prevent Google from tracking data through cookies and the subsequent processing of data by downloading and installing the browser plug-in from the following address: http://tools.google.com/dlpage/gaoptout?hl=it
4) persistent third-party cookies used by the Site to include in its pages the buttons of some social networks (Facebook, Twitter and Google+). By selecting one of these buttons, the user can publish on the personal page of the relative social-network the contents of the web page of the Website he is visiting.
Cookies on the Site:
COOKIES [Indicate the site name] TYPE [Indicate if own or third-party] AIMS ' [Indicate the purpose of the presence of cookies] PRIVACY POLICY [Indicate the privacy policy of reference] _gid Third-party Used to distinguish users. http://www.google.com/intl/it/policies/privacy/ _ga Third-party Used to distinguish users. http://www.google.com/intl/it/policies/privacy/ alertCookie Register consent to the use of cookies https:// www.relaisagliolivi.com /
CONCRETE5 Identification of the browsing session
The Site may contain links to other sites (es. third party websites).
The Data Controller does not make any access or control over cookies, web beacons and other user tracking technologies that could be used by third party sites that the user can access from the Site; the Data Controller does not carry out any control over the contents and materials published by or obtained through third-party websites, nor on the relative methods of processing of the user's personal data, and expressly disclaims any related liability for such eventualities. The user is required to verify the privacy policy of third party sites accessed through the Site and to inquire about the conditions applicable to the processing of their personal data. This Privacy Policy applies only to the Site as defined above.
How to disable cookies in browsers
The following are the methods for deactivating cookies for the main browsers: Firefox:
1. Open Firefox
2. Press the "Alt" button on the keyboard
3. In the toolbar at the top of the browser, select "Tools" and then "Options"
4. Then select the "Privacy" tab
5. Go to "History Settings:" and then "Use Custom Settings". Deselect "Accept cookies from sites" and save your preferences. Internet Explorer:
1. Open Internet Explorer
2. Click on the "Tools" button and then on "Internet Options"
3. Select the "Privacy" tab and move the slider to the privacy level you want to set (upwards to block all cookies or down to allow them all)
4. Then click on OK Google Chrome:
1. Open Google Chrome
2. Click on the "Tools" icon
3. Select "Settings" and then "Advanced Settings"
4. Select "Content settings" under "Privacy and security"
5. In the "Cookies" tab you can deselect cookies and save preferences Safari:
1. Open Safari
2. Choose "Preferences" in the toolbar, then select the "Security" panel in the dialog that follows
3. In the "Accept cookies" section you can specify when Safari should save cookies from websites. For more information click on the Help button (marked with a question mark)
4. For more information on cookies that are stored on your computer, click on "Show Cookies"
5. In the "Cookies" tab you can deselect cookies and save your preferences
If an integration service is installed with social networks, it is possible that, even if users do not use the service, the same collect traffic data relating to the pages in which it is installed.
 Like button and Facebook widget (Facebook, Inc.)
Integration services with the Facebook social network, provided by Facebook, Inc.
Personal data collected: cookies and usage data.
For more information: Privacy Policy
 +1 Button and Google+ Widget (Google Inc.)
Integration services with the social network Google+, provided by Google Inc.
Personal data collected: cookies and usage data.
For more information: Privacy Policy
 Tweet button and Twitter widget (Twitter, Inc.)
Integration services with the Twitter social network, provided by Twitter, Inc.
Personal data collected: cookies and usage data.
For more information: Privacy Policy
 "Pin it" button and Pinterest social widgets (Pinterest)
They are interaction services with the Pinterest platform, provided by Pinterest Inc.
Personal data collected: cookies and usage data.
For more information: Privacy Policy
Statistics
The services contained in this section allow the Data Controller to monitor and analyse traffic data and are use Google Analytics (Google Inc.)
 Google Analytics (Google Inc.)
It is a web analytics service provided by Google Inc. ("Google"). Google uses personal data collected to track and examine the use of this site, compile reports and share them with other services developed by Google.
Google may use personal data to contextualise and personalize the advertisements of its advertising network.
Personal data collected: cookies and usage data.
For more information: Privacy Policy
For disabling: Opt Out
 Tracking conversions of Google AdWords (Google Inc.)
It is a statistics service provided by Google Inc. that connects the actions performed by users of this site to data coming from the network of Google AdWords ads.
Personal data collected: cookies and usage data.
For more information: Privacy Policy
 Tracking conversions of Facebook Ads (Facebook, Inc.)
It is a statistics service provided by Facebook, Inc. that connects data from the Facebook ad network with the actions performed within this site
Personal data collected: cookies and usage data.
For more information: Privacy Policy
 Woopra (Woopra)
It is a statistical service provided by Woopra Inc.
Personal data collected: cookies and usage data.
For more information: Privacy Policy d to keep track of User behaviour.
Advertising
These services allow you to use the user's data for commercial communication purposes in different forms of advertising, such as the banner, also in relation to the user's interests and may use cookies to identify the user to view personalized advertisements based on to the interests and behaviour of the user, also detected outside this site..
 Google AdSense (Google Inc.)
It is an advertising service provided by Google Inc. This service uses the "DoubleClick" Cookie, which traces the use of this site and the user's behaviour in relation to advertisements, products and services offered.
It is possible to deactivate the DoubleClick cookie at any time, through the appropriate procedure provided by Google, from the following web address: google.com/settings/ads/onweb/optout?hl=it.
Data collected: cookies and usage data.
For more information: Privacy Policy
 Remarketing and Behavioral Advertising
These services allow the display of advertisements based on the past use of this site by the user.
 AdWords Remarketing (Google Inc.)
It is a Remarketing and Behavioural Advertising service provided by Google Inc. that links the activity of this site with the AdWords advertising network and the DoubleClick cookie.
Personal data collected: cookies and usage data.
For more information: Privacy Policy
For disabling: Opt Out
 Displaying content from external platforms
Services that allow the display of content hosted on external platforms from the pages of this site and interact with them.
In case a service of this type is installed, it is possible that, even if users do not use the service, the same collect traffic data related to the pages in which it is installed.
 Google Fonts (Google Inc.)
It is a service of integrations of character styles managed by Google Inc. that allows this site to integrate such content within its pages.
Personal data collected: cookies and usage data.
For more information: Privacy Policy
 TripAdvisor widget (TripAdvisor LLC)
It is a content visualization service managed by TripAdvisor LLC that allows this site to integrate content from this external platform within its pages.
Personal data collected: cookies and usage data.
For more information: Privacy Policy
 Google Maps widget (Google Inc.)
It is a map visualization service managed by Google Inc. that allows this site to integrate such contents within its pages.
Personal data collected: cookies and usage data.
For more information: Privacy Policy
 Instagram Widget (Instagram, Inc.)
It is an image visualization service managed by Instagram, Inc. that allows this site to integrate such contents within its pages.
Personal data collected: cookies and usage data.
For more information: Privacy Policy
To deny consent to the use of one or more profiling cookies the user can access the link to deny the consent given in the section relating to the service described above, if any, or in any case refer to the appropriate sections available on the website of the relative manufacturer alternatively, follow the disabling procedure provided by the main browsers:
 Microsoft Windows Explorer
http://windows.microsoft.com/en-us/windows-vista/block-or-allow-cookies
 Mozilla Firefox
http://support.mozilla.org/en-US/kb/Enabling%20and%20disabling%20cookies
 Google Chrome
https://support.google.com/accounts/answer/61416?hl=it
 Apple Safari
http://www.apple.com/legal/privacy/
 Flash cookies
http://www.macromedia.com/support/documentation/en/flashplayer/help/settings_manager02.html#118539
Storage of personal data
Personal data is stored and processed through computer systems owned and managed by the Data Controller or by third party technical service providers; for more details, please refer to the "Scope of accessibility of personal data" section below. The data is processed exclusively by specifically authorized personnel, including personnel assigned to carry out extraordinary maintenance operations.
Purposes and methods of data processing
The Data Controller may process the personal and sensitive data of the user for the following purposes:
- use by users of services and features on the Site;
- management of requests and reports from their users, sending of newsletters, management of applications received through the Website, etc.
Furthermore, with the additional and specific optional consent of the user, the Data Controller may process personal data for marketing purposes, that is, to send the user promotional material and / or commercial communications relating to the Company's services, at the addresses indicated, both through traditional methods and / or means of contact (such as, paper mail, telephone calls with operator, etc.) and automated (such as, internet communications, fax, e-mail, text messages, applications for mobile devices such as smartphones and tablets -cd.APPS-, social network accounts - eg via Facebook or Twitter -, calls with automatic operator, etc.).
Personal data are processed both in paper and electronic form and entered into the company information system in full compliance with EU Reg. 2016/679, including security and confidentiality profiles and based
on principles of correctness and lawfulness of processing. In compliance with EU Reg. 2016/679, the data are kept and kept for the Data Controller.
Security and quality of personal data
The Data Controller undertakes to protect the security of the user's personal data and complies with the security provisions established by applicable law to avoid data loss, illegal or illegal use of data and unauthorized access to the same. Furthermore, the information systems and computer programs used by the Data Controller are configured in such a way as to minimize the use of personal and identifying data; these data are processed only for the achievement of the specific purposes pursued from time to time. The Data Controller uses multiple advanced security technologies and procedures to promote the protection of users' personal data; for example, personal data is stored on secure servers located in places with secure and controlled access. The user can help the Data Controller to update and keep correct their personal data communicating any changes related to their address, their qualification, contact information, etc.
Scope of communication and data access
Your personal data may be communicated to:
• all the subjects to whom the right of access to such data is recognized by regulatory provisions;
• to our collaborators, employees, as part of their duties;
• to all those natural and / or legal persons, public and / or private, when the communication is necessary or functional to the performance of our activity and in the manner and for the purposes illustrated above;
Nature of provision of personal data
The provision of some personal data by the user is mandatory to allow the Company to manage communications, requests received by the user or to contact the user himself to respond to his request. This type of data is marked with an asterisk symbol [*] and in this case, the conferment is mandatory to allow the Company to process the request which, in default, cannot be processed. On the contrary, the collection of other data not marked with an asterisk is optional: failure to provide data will not entail any consequences for the user.
The provision of personal data by the user for marketing purposes, as specified in the section "Purposes and methods of processing" is optional and the refusal to provide them will have no consequence. The consent granted for marketing purposes is intended to be extended to the sending of communications carried out through automated and traditional methods and / or contact means, as above exemplified.
Rights of the interested party
Article 15
Right of access of the interested party
1. The data subject has the right to obtain from the data controller confirmation that the processing of personal data concerning him or her is in progress and, in this case, to obtain access to personal data and the following information:
a) the purposes of the processing;
b) the categories of personal data in question;
c) the recipients or categories of recipients to whom the personal data have been or will be communicated, if recipients of third countries or international organizations;
(d) where possible, the retention period of the personal data provided or, if not possible, the criteria used to determine this period;
e) the existence of the right of the interested party to request the data controller to rectify or delete personal data or limit the processing of personal data concerning him or to oppose their treatment;
f) the right to lodge a complaint with a supervisory authority;
g) if the data are not collected from the data subject, all information available on their origin;
h) the existence of an automated decision-making process, including the profiling referred to in Article 22, paragraphs 1 and 4, and, at least in such cases, significant information on the logic used, as well as the importance and expected consequences of such processing for the interested party.
2. Where personal data are transferred to a third country or to an international organization, the data subject shall have the right to be informed of the existence of adequate safeguards pursuant to Article 46 relating to the transfer.
3. The data controller provides a copy of the personal data being processed. In case of further copies requested by the interested party, the data controller may charge a reasonable fee contribution based on administrative costs. If the interested party submits the request by electronic means, and unless otherwise indicated by the interested party, the information is provided in a commonly used electronic format.
4. The right to obtain a copy as per § 3 must not affect the rights and liberties of others.
Article 16
Right of rectification
The data subject has the right to obtain from the data controller the correction of inaccurate personal data concerning him without undue delay. Considering the purposes of the processing, the data subject has the right to obtain the integration of incomplete personal data, also by providing an additional declaration.
Article 17
Right to cancellation ("right to be forgotten")
1. The data subject has the right to obtain from the data controller the deletion of personal data concerning him without undue delay and the data controller is obliged to cancel the personal data without undue delay if one of the following reasons exists:
a) personal data are no longer necessary with respect to the purposes for which they were collected or otherwise processed;
b) the interested party revokes the consent on which the treatment is based in accordance with Article 6, § 1, subparagraph a), or Article 9, § 2 (a), and if there is no other legal basis for the processing;
c) the interested party opposes the treatment pursuant to Article 21, § 1, and there is no legitimate overriding reason to proceed with the processing, or opposes the treatment pursuant to Article 21, § 2;
d) personal data have been processed unlawfully;
e) personal data must be deleted to fulfil a legal obligation under Union or Member State law to which the controller is subject;
f) personal data have been collected regarding the information society service offer referred to in Article 8, § 1.
2. The data controller, if he has made public personal data and is obliged, pursuant to § 1, to delete them, considering the available technology and implementation costs, takes reasonable measures, including technical ones, to inform the data controllers who are processing personal data of the request of the person concerned to delete any link, copy or reproduction of his personal data.
3. Paragraphs 1 and 2 shall not apply to the extent that processing is necessary:
a) for exercising the right to freedom of expression and information;
(b) for the fulfilment of a legal obligation requiring treatment under Union or Member State law to which the controller is subject or for the performance of a task carried out in the public interest or in the exercise of official authority of which the data controller is invested;
c) for reasons of public interest in the public health sector in accordance with Article 9, § 2, points h) and i), and of Article 9, § 3;
d) for the purposes of archiving in the public interest, scientific or historical research or for statistical purposes in accordance with Article 89, § 1, in so far as the right referred to in § 1 risks making it impossible or seriously prejudices the achievement of the objectives of this treatment; or
e) for the assessment, exercise or defence of a right in court.
Article 18
Right of limitation of treatment
1. The data subject has the right to obtain from the data controller the limitation of processing when one of the following hypotheses occurs:
a) the interested party disputes the accuracy of personal data for the period necessary for the data controller to verify the accuracy of such personal data;
b) the processing is illegal, and the interested party opposes the cancellation of personal data and asks instead that its use is limited;
c) although the data controller no longer needs it for processing purposes, personal data are necessary for the data subject to verify, exercise or defend a right in court;
d) the interested party has opposed the treatment pursuant to Article 21, § 1, pending verification of the possible prevalence of the legitimate reasons of the data controller with respect to those of the interested party.
2. If the treatment is limited pursuant to § 1, such personal data shall be processed, except for storage, only with the consent of the interested party or for the establishment, exercise or defence of a right in court. or to protect the rights of another natural or legal person or for reasons of significant public interest of the Union or of a Member State.
3. The data subject who has obtained the processing restriction pursuant to § 1 shall be informed by the controller before the limitation is revoked.
Article 19
Obligation to notify in case of rectification or cancellation of personal data or limitation of processing
The data controller shall inform each of the recipients to whom the personal data have been transmitted of any corrections or cancellations or limitations of the processing carried out pursuant to Article 16, Article 17, § 1, and Article 18, unless this proves impossible or involves a disproportionate effort.
The data controller informs the recipient of these recipients if the data subject requests it.
Article 20
Right to data portability
1. The data subject shall have the right to receive personal data concerning him / her provided to a data controller in a structured, commonly used and readable form by automatic device and has the right to transmit such data to another data controller without impediments on the part of the data controller to whom he has provided them if:
a) the processing is based on consent pursuant to Article 6, § 1, letter a), or Article 9, § 2, letter a), or on a contract within the meaning of Article 6, § 1, letter b); is
b) the treatment is carried out by automated means.
2. In exercising its rights regarding data portability pursuant to § 1, the data subject shall have the right to obtain direct transmission of personal data from one controller to another, if technically feasible.
3. The exercise of the right referred to in § 1 of this Article is without prejudice to Article 17. This right does not apply to the treatment necessary for the performance of a task in the public interest or connected to the exercise of public authority as the data controller is invested. 4. The right referred to in § 1 must not affect the rights and liberties of others.
Article 21 Right of opposition
1. The interested party has the right to oppose at any time, for reasons connected with his situation, to the processing of his personal data pursuant to Article 6, § 1, letters e) of), including profiling based on these provisions.
The data controller refrains from further processing personal data unless he demonstrates the existence of binding legitimate reasons to proceed with the processing that prevail over the interests, rights and freedoms of the data subject or for the assessment, exercise or the defence of a right in court.
2. If personal data are processed for direct marketing purposes, the data subject has the right to object at any time to the processing of personal data concerning him / her for such purposes, including profiling in so far as it is related to such marketing direct.
3. If the data subject objects to processing for direct marketing purposes, personal data are no longer processed for these purposes.
4. The right referred to in paragraphs 1 and 2 shall be explicitly brought to the attention of the interested party and shall be presented clearly and separately from any other information at the latest at the time of the first communication with the data subject.
5. In the context of the use of information society services and without prejudice to Directive 2002/58 / EC, data subjects may exercise their right to object by automated means using technical specifications.
6. Where personal data are processed for scientific or historical research purposes or for statistical purposes pursuant to Article 89, § 1, the data subject shall have the right to object to the processing of personal data for reasons connected with his situation concerning him, unless the processing is necessary for the performance of a task in the public interest.
Article 22 Automated decision-making process concerning natural persons, including profiling
1. You have the right not to be subjected to a decision based solely on automated processing, including profiling, which produces legal effects concerning yourself or which significantly affects your person.
2. § 1 shall not apply if the decision:
a) is necessary for the conclusion or execution of a contract between the data subject and a data controller;
(b) is authorized by the law of the Union or of the Member State to which the controller is subject, which also specifies appropriate measures to protect the rights, freedoms and legitimate interests of the data subject;
c) is based on the explicit consent of the interested party.
3. In the cases referred to in § 2 (a) and (c), the controller shall implement appropriate measures to protect the rights, freedoms and legitimate interests of the data subject, at least the right to obtain human intervention from the holder treatment, to express their opinion and to challenge the decision.
4. The decisions referred to in § 2 are not based on the categories of personal data referred to in Article 9, § 1, unless Article 9 (2) (a) or (g) applies, and adequate measures to protect the rights, freedoms and legitimate interests of the data subject are not in force.
Withdrawal of consent You have the right to withdraw consent to the processing of your personal data through the following channels: - registered A / R at the following address: Via Salieri, 14 - 37017 Lazise; - E-mail to the following address: relaisagliolivi@legalmail.it;
This communication must be accompanied by a photocopy of your identity document (front and back), with the following text: "revocation of consent to the processing of all my personal data". At the end of this operation your personal data will be removed from the archives as soon as possible.
Exercise of rights If you wish to obtain further information on the processing of your personal data, or exercise the rights referred to in the paragraph "RIGHTS OF THE INTERESTED PARTY" you can use the following channels: - registered A / R at the following address: Via Salieri, 14 - 37017 Lazise; - E-mail to the following address: relaisagliolivi@legalmail.it;
This communication should specify which right you wish to exercise.
Before we can provide you, or change any information, you may need to verify your identity and answer a few questions. An answer will be provided as soon as possible.
Complaint to control authorities
You can also make a complaint about the processing of your personal and / or sensitive data carried out by the Data Controller to the supervisory authority (Guarantor for the protection of personal data) using the following channels:
- Recommended A / R at the following address: Piazza di Monte Citorio, 121 - 00186 ROME;
- Telephone: 06.69677; - Fax: 06.69677.3785;
- E-mail: garante@gpdp.it; - PEC: protocollo@pec.gpdp.it;
Minors In communicating your personal data you guarantee that you are not less than 16 years old.
The Data Controller does not intend to collect any personal data of individuals under the age of sixteen. Where necessary, we will specifically indicate to children not to disclose their information through our sites and / or we will take reasonable steps to ensure parent / guardian control over such communication.
Parents / guardians should be aware that our privacy policy and privacy policy will regulate the use of personal data, but information voluntarily given by minors - or others - in comments or similar can be used by third parties to generate unsolicited correspondence.
We invite all parents / guardians to educate their children to the safe and responsible use of their personal data while surfing the Internet, preparing all appropriate checks of the case to the extent and in the manner that they deem appropriate.
Changes to our privacy policy
Considering that the state of improvement of automatic control mechanisms does not make them free from errors and malfunctions, we reserve the right to make any changes to this privacy statement which we deem necessary or which will be made mandatory by law. or different regulatory source. You should be careful to periodically check this privacy statement, as it will be assumed that you have accepted changes and updates if you continue to use the site after they have been published.