The following information is provided, in accordance with EU Reg. 2016/679 (General Data Protection Regulation), as well as Legislative Decree 196/03 as amended by Legislative Decree 101/18, to Users who interact with Scuola di Alpinismo Mountain Experience's web services accessible electronically from the address
http://www.canyoningvalbodengo.com/ corresponding to the home page of Scuola di Alpinismo Mountain Experience's official website. In compliance with the obligations dictated in terms of the protection of personal data, this site respects and protects the confidentiality of visitors and users.
- THE "OWNER" OF THE DATA PROCESSING
The "owner" of the data processing, relating to identified or identifiable persons who have consulted this site, is Scuola di Alpinismo Mountain Experience, with headquarter/local unit in Gordona (SO), locality Prato Pincée snc, 23020 Gordona SO - Italy, in the person of the owner Mr. Pascal Van Duin, who can be contacted for any information or request at the following addresses:
Tel. +39 331 111 0333
Mail: info@canyoningvalbodengo.com
- TYPES OF DATA PROCESSED
2.1. Navigation data - log files
The computer systems and applications dedicated to the operation of this website detect, during their normal operation, some data (whose transmission is implicit in the use of Internet communication protocols) not associated with directly identifiable Users.
Among the data collected are the IP addresses and domain names of the computers used by the Users who connect to the site, the URI (Uniform Resource Identifier) addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters regarding the operating system and computer environment used by the User.
These data are processed, for the time strictly necessary, for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its regular operation.
2.2. Data provided voluntarily by the User
The voluntary and explicit sending of e-mails to the addresses indicated in the different access channels of this site and the compilation of the "formats" (masks) specifically prepared involve the subsequent acquisition of the sender/user's address and data, necessary to respond to the requests made and/or provide the requested service. The email address provided by the user could be used to send the user any commercial information on new active promotions.
Specific summary information will be reported or displayed on the pages of the site prepared for particular services on request.
2.3. Cookies
What are cookies
Cookies are small text files that sites visited by users send to their terminals, where they are stored and then retransmitted to the same sites on subsequent visits. They may contain, for example, user-selected settings such as language or currency, products uploaded to the shopping cart or authentication information (login).
Depending on the characteristics and use of cookies, different categories can be distinguished:
-
Strictly necessary cookies: these are essential for the proper functioning of the site and have been used to manage login and access to the site. The duration of cookies is strictly limited to the working session (closed the browser are deleted). Their deactivation compromises the use of services accessible by login (if any);
- analysis and performance cookies: these are cookies used to collect and analyse site traffic and usage anonymously. These cookies, while not identifying the user, make it possible, for example, to detect if the same user logs in again at different times. They also make it possible to monitor the system and improve its performance and usability. The deactivation of such cookies can be used without any loss of functionality;
- profiling cookies: these are permanent cookies used to identify (anonymously or otherwise) your preferences and improve your browsing experience;
- third party cookies: when you visit a website you may receive cookies both from the site you visit (owners) and from sites managed by other organisations (third parties). The management of the information collected by third parties is governed by the relevant information to which you should refer.
- Analytics cookies, similar to technical cookies where used directly by the site operator to collect information, in aggregate form, on the number of users and how they visit the site itself; for the installation of such cookies is not required the prior consent of users, while it remains the obligation to give information pursuant to art. 13 of the Code, which the site operator, if using only such devices, may provide in the manner it deems most appropriate;
Duration of cookies
Some cookies (session cookies) remain active only until you close your browser or execute the logout command (if any).
Other cookies survive the closing of the browser and are also available on subsequent visits by the user. These cookies are called persistent cookies and their duration is fixed by the server when they are created. In some cases an expiry date is set, in other cases the duration is unlimited.
Cookies management
You can decide whether or not to accept cookies using your browser settings. However, disabling all or part of the technical cookies may compromise the use of the site features reserved for registered users (if any). On the contrary, the usability of public content is also possible by completely disabling cookies. Disabling "third party" cookies in no way affects navigability.
Cookies used by this site
This site uses technical cookies, which are installed automatically when you access the site. These are cookies that are inherent in the use of ASP.NET and IIS technology to provide a correct service delivery. They are strictly necessary and limited to the work session
Neither proprietary nor third party "profiling cookies" are used.
No persistent cookies are used either.
Statistical cookies" (Google Analytics) are used to collect information in aggregate form to enable the website operator to improve and optimise the content of the website.
- LEGAL BASIS
The processing of the customer's data is based on the consent given directly by the customer, through subscription to the site, manual registration and subscription to the newsletter. The processing is necessary and to allow the conclusion of the service contract, or with the use or consultation of this site by visitors and users who explicitly approve this privacy policy and consent to the processing of their personal data in relation to the methods and purposes described below, including any disclosure to third parties if necessary to provide the service.
- PURPOSE OF DATA PROCESSING
Scuola di Alpinismo Mountain Experience processes personal data to the extent that this is strictly necessary for the performance of its institutional functions, excluding processing when the purposes pursued can be achieved by means of anonymous data or methods that allow the data subject to be identified only when necessary.
Specific purposes, relating to individual processing operations, may be reported in detail within the various access channels. Within them the User may find additional information on the processing of personal data.
- METHODS OF PROCESSING
Personal data are processed by automated tools for the time strictly necessary to achieve the purposes for which they are collected.
The personal data provided by users who fill in the form to send the e-mail from the site are used only to use the service itself and are not communicated to third parties, unless the communication is required by law.
Some of the data acquired may also be aggregated in anonymous form to produce the statistical elaborations necessary for the provision of new personalised services.
Personal data are processed with automated tools for the time strictly necessary to achieve the purposes for which they were collected.
At the headquarters of the Data Controller, the processing may be carried out on paper. In both cases, the personal data are entered into the database secured by the Data Controller and managed by the persons in charge and authorised persons. The list of data processors and authorised persons is available at the company's registered office.
Specific security measures are observed to prevent data loss, illegal or incorrect use and unauthorized access.
- PLACE OF PROCESSING
The data collected by the site are processed at the premises/local unit of the Data Controller, in Prato Pincée snc, 23020 Gordona SO .
The processing operations connected to the web services of this site are carried out exclusively by Scuola di Alpinismo Mountain Experience's technical staff, in charge of processing.
- OPTIONALITY OF DATA CONFERMENT
The user is free to provide personal data contained in the request forms for the various services offered on the portal; failure to provide the data required will make it impossible to obtain the service.
- COMMUNICATION AND/OR DISSEMINATION OF DATA
The personal data of users who request the sending of informative material (mailing-lists, answers to questions, notices and newsletters, acts and measures, etc..) are used solely for the purpose of performing the service or provision requested and are communicated to third parties only in cases where:
- this is necessary for the fulfillment of the requests (e.g., sending the requested documentation);
- the communication is required by legal or regulatory obligations;
- during legal proceedings.
- DURATION OF STORAGE
Personal data will be kept for the time strictly necessary to achieve the purposes described in this Privacy Policy. After this period, your personal data will be kept only to comply with legal and regulatory obligations (e.g. for 10 years for accounting purposes) or to allow the Company to maintain proof of your rights and obligations.
- SECURITY MEASURES
This site processes user data in a lawful and correct manner, taking appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of data.
Please note that any transmission of data via the Internet cannot achieve absolute security standards. It is therefore the User's responsibility to verify the correctness of the personal data concerning him/her and, if necessary, to rectify, update or, in any case, modify the data during processing. It is also the User's responsibility to take appropriate security measures in order to avoid the danger of interception, loss, alteration or destruction of e-mail messages.
Therefore, the user provides his or her personal data at his or her own risk and, to the maximum extent permitted by current law, the data controller shall in no way be liable for their disclosure due to errors, omissions or unauthorized actions of third parties during or after their transmission to the same. The Company recommends that the user (i) periodically update the software to protect the transmission of data on the networks and check that the provider of electronic communications services has adopted appropriate means for the security of data transmission on the networks (e.g. firewalls and spam filters). In the unlikely event that the data controller believes that the security of the user's personal data in its possession or under its control has been or may have been compromised, the data controller will inform the user of the event in the manner prescribed by applicable law, using the prescribed methods (by providing the company with your email address, you consent to receive such communications in electronic format through that email address).
- RIGHTS OF DATA SUBJECTS
Data subjects", i.e. natural persons, legal persons, entities or associations, to whom the data refer, have the following rights:
- to ask the data controller at any time to confirm the existence or otherwise of their personal data, to know the content and origin, to verify its accuracy, to obtain access to the data, to request its integration or updating, or to rectify or limit its processing. The interested parties also have the right to request the cancellation, transformation into anonymous form or blocking of data concerning them, processed in violation of the law, and to oppose in any case, for legitimate reasons, to their processing. Corrections, cancellations or limitations to the processing carried out at the request of the data subject, unless this proves impossible or involves a disproportionate effort, will be communicated by the data controller to the recipients to whom the personal data have been transmitted;
- oppose their processing;
- obtain the portability of the data as regulated by art. 20 of the EU Regulation;
- revoke the consent at any time without prejudice to the lawfulness of the processing based on the consent given before the revocation (it should be noted that the right to revoke consent cannot obviously concern cases where the processing is necessary, for example, to fulfil a legal obligation to which the data controller is subject or for the performance of a task in the public interest or related to the exercise of public authority vested in the data controller);
- submit a complaint to the Guarantor for the protection of personal data, following the procedures and indications published on the official website of the Authority;
The data subject may request a copy of the personal data being processed by contacting the offices of the data controller or by sending the relevant request to the following e-mail address: info@canyoningvalbodengo.com .
The interested party, through the above mentioned mailbox, may also request the data controller to correct or delete personal data, as well as oppose their processing or request their limitation (all compatible with the purposes of the processing itself).
The exercise of the rights referred to in the previous points is not subject to any formal constraint and is free of charge. When contacting the Data Controller, the user must make sure to include his/her name, email address, postal address and/or telephone number(s) as well as a copy of a valid document for identification purposes, to be sure that the same can handle his/her request correctly
The data controller is required to provide a reply within one month of the request, which can be extended up to three months in case of particular complexity.