• Privacy Policy

    Information on the processing of personal data

    1. Home
    2. Privacy Policy

Privacy Policy

This page describes how the Cammino dei Santi website ("Controller"), www.camminodeisanti.it ("Site"), manages personal data of the "users" who consult it ("Users" or "Data Subjects"). The information is also provided pursuant to art. 14 of REG. EU 679/2016 ("Regulation") to Users who interact with the web services of the Controller starting from the address: www.camminodeisanti.it. The information is provided only for this Site and not for any other websites that the user may consult through specific links. The information is also inspired by Recommendation No. 2/2001 adopted by European authorities for the protection of personal data, gathered in the Group established by art. 29 of Directive No. 95/46/EC, on May 17, 2001, to identify some minimum requirements for collecting personal data online, particularly the methods, timing, and nature of the information that data controllers must provide to users when they connect to web pages, regardless of the purposes of the connection.

The Data Controller The Data Controller is Net Smart srls, located at Piazza Santa Scolastica 1 – 03043 Cassino, email noc@netsmart.it, PEC netsmartsrls@pec.it.

Types of Data Processed The following categories of personal data ("Personal Data") will be processed:

Navigation Data The IT systems and software procedures used for the functioning of this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols ("Navigation Data"). This includes information that is not collected to be associated with identified data subjects, but which by their nature could, through elaborations and associations with data held by third parties, allow identifying users. This category of data includes IP addresses or domain names of computers used by users connecting to the site, URI (Uniform Resource Identifier) addresses of requested resources, time of the request, method used to submit the request to the server, size of the file obtained in response, numerical code indicating the status of the server’s response (success, error, etc.) and other parameters related to the user's operating system and computing environment.

Personal Data Provided Voluntarily by the User The optional, explicit, and voluntary sending of email to the addresses indicated on this Site results in the subsequent acquisition of the sender's address, necessary to respond to requests, as well as any other personal data included in the message.

Cookies This Site uses only "technical cookies" necessary to optimize navigation; no personal data of users is acquired in this regard. No cookies are used to transmit personal information, nor are any so-called persistent cookies of any kind, or systems for tracking users, used. The use of so-called session cookies (which are not persisted on the user's computer and disappear with the closing of the browser) is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to ensure safe and efficient exploration of the site. The so-called session cookies used on this Site prevent the use of other potentially harmful IT techniques for users' navigation privacy and do not allow the acquisition of identifying personal data of the user.

Purpose of Processing and Legal Basis The Navigation Data, as identified above, are used solely to obtain anonymous statistical information on the use of the site and to check its proper functioning, and are deleted immediately after processing. Navigation Data may be used to ascertain responsibilities in case of hypothetical computer crimes against the Site: barring this eventuality, web contact data do not persist for more than seven days. The Personal Data voluntarily provided by Users are processed solely to perform the requested service or performance (e.g., requests for information, sending notifications about news publications on the site, etc.). The "technical cookies" used serve the purpose of optimizing navigation and ensuring the correct functioning of the website. The processing of Your Personal Data for the aforementioned purposes is based on art. 6, paragraph 1 lett. f) which states that “processing is necessary for the pursuit of the legitimate interest of the data controller,” as well as under art. 6, paragraph 1 lett. c) which states that “processing is necessary to fulfill a legal obligation to which the data controller is subject.”

Data Processors For the previously indicated purposes and the achievement of the institutional purposes of the Controller, Personal Data may be communicated to third parties duly appointed "Data Processors," such as data digitization service companies, archiving, email management, site management, IT services management, etc.

Methods of Processing and Storage Processing will be carried out in automated and/or manual form, in compliance with the provisions of art. 32 of GDPR 2016/679 regarding security measures, by specifically appointed individuals, and in accordance with the provisions of art. 29 GDPR 2016/ 679. We inform you that, in compliance with the principles of legality, limitation of purposes, and data minimization, pursuant to art. 5 GDPR 2016/679, subject to your free and explicit consent, your personal data will be retained for the time necessary to achieve the purposes for which they are collected and processed, and, in any case, for a period not exceeding the limitation period for the related rights. The possible refusal to provide consent for processing may imply the impossibility of fulfilling the requested activities.

Scope of Communication and Dissemination We also inform you that the collected data will never be disseminated and will not be communicated without your explicit consent, except for necessary communications that may involve the transfer of data to public authorities, to consultants, or to other parties, even as external data processors, for compliance with legal obligations.

Rights of the Data Subject At any time, the Data Subject may exercise, pursuant to art. 7 of Legislative Decree 196/2003 and articles 15 to 22 of EU Regulation No. 2016/679, the right to:

  1. request confirmation of the existence or non-existence of their personal data;
  2. obtain information about the purposes of processing, categories of personal data, recipients or categories of recipients to whom personal data has been or will be communicated and, where possible, the retention period;
  3. obtain correction and deletion of data;
  4. obtain restriction of processing;
  5. obtain data portability, i.e., receive it from a data controller, in a structured, commonly used, and machine-readable format, and transmit it to another data controller without hindrance;
  6. object to processing at any time;
  7. object to automated decision-making related to individuals, including profiling;
  8. request the data controller access to personal data and rectification or deletion of the same or restriction of processing concerning them, or to object to their processing, as well as the right to data portability;
  9. revoke consent at any time without affecting the lawfulness of processing based on consent before revocation;
  10. lodge a complaint with the Data Protection Authority, located in Rome, Piazza Venezia No. 11 (tel. +39 06696771), following the procedures and guidelines published on the website of the authority garantprivacy.it.

You can exercise your rights, in whole or in part, for legitimate reasons related to the processing of personal data concerning you, even if pertinent to the purpose of collection. In particular, you have the right to object to the processing of personal data concerning you for the purposes of sending commercial advertising material or commercial communication. The exercise of such rights is permitted by sending a request to the email address noc@netsmart.it or to the PEC address netsmartsrls@pec.it.