PRIVACY POLICY

pursuant to article 13 of UE Regulation 2016/679 (hereinafter “GDPR”)

Idées protects your privacy

in the use of personal data

acquired through this web www.idees.it

1. GENERAL INFORMATION

Users are advised (hereinafter, also as "concerned parties", pursuant to art. 4, para. 1 of the GDPR) on the following general profiles, valid for all areas of processing:

  1. The Data Controller is Idèes, in the person of its legal representative Maria Antonietta Srigari, with headquarters in Milan - via Compagnoni n. 24, Tax ID and VAT no. IT 12908500155, which can also be contact on: info@idees.it – tel.: +39 02.70003787).

  2. All information on the concerned parties, directly or indirectly referring to natural persons, are processed in a lawful, correct and transparent manner in relation to the concerned party, in compliance with the general principles established by art. 5 of the GDPR.

  3. In order to prevent data loss, abuse or incorrect use of data and unauthorised access, specific security measures have been implemented.

  4. The site only collects, through computer systems and media or paper (see: print of computer document), "ordinary" data or information that does not include " particular categories of data" ( personal data that reveal the racial or ethnic origin, political opinions, religious or philosophical convictions, or union membership, as well as processing genetic data, biometric data intended to uniquely identify a natural person, data related to the health or sexual life or sexual orientation of the person) or " legal data " (personal information on criminal convictions and crimes or related security measures). 

  5. The website is hosted by Aruba SpA, with registered office in Ponte San Pietro (BG), via San Clemente n. 53 – Tax ID 04552920482 and VAT no. 01573850516, members appointed external company managing the processing, processing the data on behalf of the owner, whose servers - for the purpose of website management - are placed within the European Economic Area; any transfer of data to sub-processors abroad will be covered by standard contractual clauses and/or by a relative adequacy decision, in compliance with articles 45 and 46 of the GDPR.

  6. The updated list of people authorised to implement processing on behalf of the Data Controller as well as external data processors appointed by Idées is available at the Data Controller's registered office. 

  7. Finally, the privacy policy of Idées does not entail the processing of personal data of individuals below the age of 18. Therefore this site does not intentionally collect personal information relative to minors. In the event that information concerning minors is unintentionally recorded, the Controller shall promptly delete it at the user's request.

2. YOUR PERSONAL INFORMATION

Si descrivono le modalità di gestione dei dati personali acquisiti tramite il presente sito web www.share-communication.com che prevedono la possibile interazione con l’utente:

  • (2.1) Browsing data

  • (2.2) request a consultation

  • (2.3) other data

  • (2.3) Cookies

2.1 Browsing Data

During their normal operation, the computer systems and software procedures used to operate this website acquire some personal data, the transmission of which is implicit in the use of Internet communication protocols. This information is not collected with the intent of associating it with identified users but, by its very nature, could lead to the identification of users through processing and association with data held by third parties. This data category includes IP addresses, or domain names of the computers used by users to connect to the Website, URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, size of the file obtained in response, numerical code indicating the server response status (successful, error etc.), and other parameters pertaining to the user's operating system, and IT environment.

Purpose and legal ground for the processing

(GDPR, Art.13, paragraph 1, letter c)

This data is solely used to compile anonymous statistics on the use of the Website and to verify its correct operation. The data could also be used to ascertain responsibility in the event of hypothetical computer crimes against the Website (legitimate interests of the Data Controller - GDPR considering no. 49).

Scope of communication

(GDPR Art.13 paragraph 1 letters e, f) 

The data is processed by internal staff of the Data Controller, duly authorised and instructed to process (GDPR - art. 29) as well as by external managers duly appointed (see point 1.6).

Duration of data storage

(GDPR - Art.13, paragraph 2, letter a)

The data is stored for very short fractions of time or for the strictly necessary time required by the browsing itself.

Transfer

(GDPR - Art.13, paragraph 2, letter f)

The data is not given by the concerned party but automatically acquired by the site's IT systems.

2.2 Request a consultation

In the “Request a consultation / Contact / Are you planning a project ?” section ed in other sections of the website containing a contact request of the user, which is redirected to the e-mail of the Data Controller, allowing the concerned party to request contact to the i-Share staff, which acquires the e-mail address of the sender and any other personal data received on the initiative of the person concerned.


Purpose and legal ground for the processing

(GDPR, Art.13, paragraph 1, letter c)

The only necessary identification and contact data (email / name/surname) are requested in order to be able to respond to the contact requests of the interested parties on areas and/or subjects of interest of the user him/herself. The request is sent on the basis of the consent provided by the concerned party, freely and in an informed manner, expressed by unequivocal positive action (GDPR - art.6, para. 1, lett. a, considering no. 32) via a specific link in the contact box and/or by virtue of the execution of pre-contractual measures taken at the request of the interested party (GDPR - art.6, para.1, lett. b). 

Scope of communication

(GDPR Art.13 paragraph 1 letters e, f) 

The data is processed by internal staff of the Data Controller, duly authorised and instructed to process (GDPR - art. 29) as well as by external managers duly appointed (see point 1.6).

Duration of data storage

(GDPR - Art.13, paragraph 2, letter a)

The data is generally kept for times compatible with the purpose of the collection, in order to match this request; for users who have become Clients, the storage period coincides with the duration of the contractual relationship and up to 2 months from its termination; for the other categories of concerned parties, the storage period cannot be longer than 24 months.

Transfer

(GDPR - Art.13, paragraph 2, letter f)

The transfer of data (e-mail/name/surname), which is carried out automatically by sending an e-mail by the concerned party, is necessary to obtain a reply from the Idées staff; further data contained (i.e.: phone/subject) or in the body of the message is completely optional, and may facilitate contact and/or the dealing of the request sent by the concerned party.

2.3 Other data voluntarily supplied by the user

The optional, explicit and voluntary sending of e-mails and ordinary post to the addresses indicated on this website (info@idées.it) or to the others telephone contacts entails the subsequent acquisition of the sender's address, which is necessary to reply to requests, as well as any other personal data included in the messages. If the sender sends his/her curriculum to submit his/her professional application, he/she remains solely responsible for the relevance and accuracy of the information sent. Upon receipt of this voluntary curriculum, the appropriate privacy policy will be issued to the concerned party by e-mail, and processing will be carried out for the purpose of a potential candidate selection. In any case, the sender must refrain from sending information that falls under the "particular categories of data" or " judicial data" (see point 1.4 - General Information); in case of receipt, such information will be deleted, not being in any way processed by the Owner.

2.4 Cookies

The cookie policy can be viewed in the relevant section.

3. YOUR LEGAL RIGHTS

3.1 You may freely exercise the following rights in relation to the processing of data handled by Idées:

a) Obtain confirmation that the processing of data concerning you is ongoing or not, and in the latter case, get access to the data and information relative to the processing. 

b) Request the amendment of incorrect information; 

c) Request that the data is deleted in the event that, among other reasons, this is no longer necessary for the purposes for which they were requested; in this case, Idées will cease to process the data, except in case they are necessary for the assessment, exercise, or defence of a right. 

d) Request a limit to the data processing, in which case this can only be processed with the consent of the concerned party; exceptions include data retention and use for the assessment, exercise or defence of a right or to protect the rights of other physical or legal persons or for reasons of public interest that concern the European Union or a Member State. 

e) Oppose, in whole or in part, for legitimate reasons to the processing of your data, in which case, Idées will have to cease to process the data, except in the case in which they are necessary to deal with potential complaints. 

f) Receive, in a structured format, widely used and readable by an automatic device, the data provided to Idées or request that by Idées transfer it directly to another holder when feasible. 

g) Revoke the consent granted, if applicable, for the purposes specified in paragraph 2 above without jeopardising the legitimacy of the processing on the basis of the consent provided prior to the revocation.

3.2 The aforesaid rights of access, amendment, cancellation, limitation, opposition, and data portability may be exercised directly by the concerned party or by a legal or voluntary representative, by requesting said contact details by sending a registered letter to Idèes at its operations centre in Milan (20129 – MI) - via Compagnoni n. 24, or e-mail at info@idees.it or, currently limited to the Italian national territory, certified email at mariaantonietta-strigari@pec.it

The Concerned Party shall have the right to lodge a complaint with a supervisory authority.

4. POLICY UPDATE

It should be noted that this information may be subject to regular reviews, also in relation to applicable legislation and jurisprudence. In the event of significant changes, appropriate evidence will be given in the home-page of the site for a suitable duration of time. In any case, the concerned party is invited to regularly view this policy.

This is an information note, pursuant to art. 13 of the GDPR, valid exclusively for the www.idees.it site and not for other websites that may be consulted by the user through links.