Informative note as per art. 13 of Italian Law 196/2003
The Data Controller
The data controller is MESA S.r.l. whose head office is in Via Magliotto 2, 17100 Savona (ITALY). In order to provide the best service possible, the data controller might process information related to identified or identifiable natural or legal people.
Type of processed data
The IT systems and the software procedures appointed to the functioning of this website gain, during their normal activity, some personal data whose transmission is implied within the usage of Internet communication protocols.
It is about information which is not gathered to be associated to identified people, but which for its own nature might allow to identify users by means of elaboration and association of data owned by third parties. In this category are included IP addresses or domain names of the computers used by the users who connect to the website, the URI (Uniform Resource Identifier) addresses of the required resources, the time of the enquiry, the method used to forward the request to the server, the dimension of the file obtained as an answer, the number code indicating the status of the answer given by the server (well received, error, etc.) and other parameters related to the operative system and the IT environment of the user. These data are used only to get anonymous statistic information about the usage of the website and to check the correct functioning, and they are erased after the elaboration. The data might be used to ascertain the responsibilities in the hypothetical case of cybercrime to the detriment of the website.
Data Voluntarily Supplied by the User
The optional, explicit and voluntary sending of emails to addresses indicated on this website involves subsequent acquisition of the sender’s address, as well as any other personal data inserted in the communication, necessary to answer to and fulfill the requests. Usually the data controller does not gather the data sent by the users in any paper or electronic database, with exception for what extensively specified in the pages that are used for providing services on demand.
No cookies are used to transmit personal information, nor are so-called persistent cookies or user tracking systems implemented. Use of the so-called session cookies – which are not stored permanently on the user's computer and disappear upon closing the browser – is exclusively limited to the transmission of session ID's – consisting of server-generated casual numbers – as necessary to allow secure, effective navigation.
The so-called session cookies used by this website make it unnecessary to implement other computer techniques that are potentially detrimental to the confidentiality of user navigation, whilst they do not allow acquiring the user's personal identification data.
Purpose of Processing
In case of a contact request, personal data might be processed in range of other activities. In particular, MESA might:
1. Conduct activities of transmission of newsletters / mailing list, marketing communications, retail selling, market research, also on collaboration with third parties
2. Conduct marketing communications and/or product or service offers and/or transmission of advertising material related to products and services from third party companies
3. Conduct user and client profiling in order to better pursue, through a process of personalization, the purposes 1, 2 and 3.
The user can, in any moment, restrict the use of one or more communication media used for the above mentioned activities by sending a communication to the data controller.
Optional Data Provision
With the exception of navigation data, the user is free to choose whether or not to furnish personal data where requested on certain the pages or sections of the site. Failure to furnish the requested information may make it impossible to obtain the requested service. For the sake of completeness, it should be pointed out that in some cases – which are not the subject of the standard management of this website – our Authority may request information pursuant to Section 157(1) of Legislative Decree no. 196/2003 with a view to supervising the processing of personal data. In these cases it is mandatory to comply under penalty of administrative penalties.
Personal data is processed with automated means for no longer than is necessary to achieve the purposes for which it has been collected. Specific security measures, especially antivirus softwares, are implemented to prevent the data from being lost, used unlawfully and/or inappropriately, and accessed without authorization.
Data Subjects' Rights
Data subjects are entitled at any time to obtain confirmation of the existence of personal data concerning them and be informed of their contents and origin, verify their accuracy, or else request that such data be supplemented, updated or rectified (Section 7 of Legislative Decree no. 196/2003).
The above Section also provides for the right to request erasure, anonymization or blocking of any data that is processed in breach of the law as well as to object in all cases, on legitimate grounds, to processing of the data.