This page refers to the data processing and management of personal data transmitted or otherwise acquired by the Owner Atos Besana s.r.l. while browsing. This information is available for all websites that may be consulted via hyperlink.
In compliance with the provisions of articles 13 and 14 of the European Regulation 679/2016 concerning the protection of personal data of persons and taking into account the Recommendation no. 2/2001 of the Group established by art. 29 of Directive 95/6 / EC regarding the minimum protection requirements for online data collection in the European Union, we inform you of the following.
Holder of the processing of personal data
The holder of the processing of personal data is ATOS BESANA s.r.l.
via Milano 40/46 – 20090 – Cesano Boscone (MI)
Tel. (02) 90119921 (4 linee R.A.)
Fax (02) 9016217
amministrazione@atosbesana.com
P. IVA 09187390159
Type of data processed by our site and recipients
While browsing the website www.atosbesana.it, the following data are acquired and processed by the Data Controller, independently or through third parties:
- Navigation data
It is that personal data transmitted and automatically purchases with the mere connection to the site.
This information is not collected by itself in order to identify the user, but by their very nature could actually allow identification.
These are the IP addresses, the domain names of the computers or mobile devices used for the connection, the addresses in the URI (Uniform Resource Identifier) notation of the requested resources, the connection and request time, the request method and each another parameter related to the user’s operating system and its IT environment.
The recipients of this data are DHH Italia Srl (Artera)
- Identifying data provided by the user voluntarily
This type of data includes those that may be transmitted by the interested party in specific sections of the site for purposes related to the section itself and always prior consent from the user to the specific purpose (for example contact form).
The interested party always assumes the responsibility of the personal data of third parties obtained, published and shared on our site and guarantees to have the right to communicate and disseminate them, freeing the holder from any responsibility towards the third parties in question.
Recipient of the data is the owner, who informs the data subject with specific privacy information and acquires the consent to the processing where necessary.
- Data identifying the data subject supplied via Cookies
During browsing, the user can also unconsciously provide identification data through Cookies installed for user recognition at each access and suitable to reveal their habits and tastes. The policy of management and use of Cookies is better explained in the Cookies Policy section of this site, which is also referred to for a better understanding of the data that fall into this category.
The recipients of this data vary depending on the activated Cookie. For more details see the Cookie Policy.
Legal basis of the treatment
The legal basis of the processing is the consent freely given by the user concerned at the time of providing his data and / or the need to execute the contract with the Owner.
The latter treats lawfully the data also to fulfill a legal obligation to which it is subject, where necessary to safeguard vital interests of the data subject or other physical person and where necessary to perform a task of public interest or connected to the exercise of public powers of which the owner was invested (Article 6 EU Regulation 2016/679).
The user is always entitled to know the concrete legal basis of the processing of his data by sending an express request to the contact details of the owner.
Purpose of the treatment
The user’s data are acquired and processed in order to provide their services and ensure the fulfillment of the contract signed with the interested party or fulfill any pre-contractual requests forwarded by the same (for example, the preparation and submission of an estimate).
The data are also purchases and processed for the following purposes: communications with the user, visualization of the content of external platforms (youtube, google maps) and interaction with them.
Methods of processing and details of the services used
The processing by the owner of the data acquired through the site and for the purposes identified above is through the use of computer and / or telematic tools, rarely paper and through management software.
The Data Controller has adopted appropriate technical and organizational measures to guarantee the protection of the data processed in compliance with current legislation, as well as an adequate security policy which includes training of the personnel in charge of the treatment so that the same ensures that the treatment is always carried out insecurity.
In case of appointment of data processors (for example hosting providers, IT companies, suppliers in general), the Data Controller ensures that they constantly operate in compliance with the provisions of the Law by adopting appropriate technical and organizational measures to protect the rights of the data subject.
Time and place of data retention
Personal data collected from this site are processed at the headquarters of the owner.
The data may be transferred to third parties and third countries outside the European Union only with the express consent of the user concerned and according to the procedures and purposes already indicated above. The user has the right to know in detail the security measures taken by the Data Controller to protect the data transmitted to third parties and outside the EU by sending a specific request to that effect at the extremes reported at the beginning.
Retention period
The data are processed and kept for the time necessary to achieve the purposes for which they were collected; in any case for the time of navigation and more in case of consent given by the interested party to the installation and use of cookies.
Further details can be consulted on the complete privacy notice and the user is always entitled to withdraw consent to the processing of his data, except for the right of the holder to keep it in order to comply with a legal obligation or for the Authority’s order.
User’s rights – interested party
– The user is always entitled to access the data concerning him / her that are treated by the site, request correction and updating as well as the cancellation or limitation, unless it conflicts with the legal obligations of the owner (for example related to tax purposes) and tributaries).
– The interested party has the right to oppose the processing without legal basis and for marketing purposes only (Article 21 EU Regulation 679/2016).
– The interested party has the right to the portability of data concerning him for the purpose of transmitting them from one data controller to another, according to the provisions of the Law (Article 20 of the EU Regulation 679/2016).
– The interested party has the right to revoke the consent to the processing at any time without prejudice to the lawfulness of the treatment based on the consent previously given and in any case unless the treatment is imposed on the holder to comply with legal obligations.
– The interested party has the right to lodge a complaint with the Guarantor for the Protection of personal data in any case in which he considers that the rights he enjoys under Italian and EU legislation regarding the protection of personal data have been violated.
– Where the Data Controller uses automated decision-making processes that produce legal effects on the data subject or has a similar impact on his / her personal data, the data subject has the right to know at any time. what is the logic on which these processes are based, as well as the importance and the expected consequences for this treatment in its regard.
– In carrying out its activity, the Data Controller performs the data of the interested profiling activity, understood as the use of such data to analyze or predict aspects concerning professional performance, economic situation, health, personal preferences, interests, ‘reliability, behavior, location or movement of the data subject. The activities carried out by the site have been explained above, as well as the fact that they are based on the consent freely given by the user.
– The owner transfers to third parties and transfers to countries or international organizations in whole or in part the personal data of the interested party, in the presence of specific consent by the same and ensuring in any case adequate data protection in accordance with the legislation in force concerning personal data protection, as specified above. The interested party is informed of the appropriate guarantees adopted by the Data Controller to ensure constant data protection and to assure the data subject of the exercise of his rights, as well as the place where his data are available and the means to obtain a copy.
The interested party exercises his rights by sending emails on amministrazione@atosbesana.com or calling to +39 (02) 90119921 (4 linee R.A.)
This Privacy Policy is subject to constant review and updating in order to ensure the adequacy of the legislation on privacy and the protection of user rights.
Legal references
This information is prepared in compliance with the principles of the 2016/679 EU regulation and of the recommendation n ° 2/2001 of the working group established by the art. 29 of the directive n ° 95/46 / CE.