ITALTEL S.p.A. pays particular attention to the protection of personal data of the visitors to its website www.italtel.com (hereinafter, also “data subjects” or “users”).
Therefore, this page describes the methods and the purposes of processing of the personal data of those who access the website, pursuant to art. 13 and 14 of the Regulation (EU) 2016/679 (hereinafter the “Regulation” or “GDPR”).
This Policy takes into account the national and European laws applicable from time to time to the protection of personal data.
For specific services, specific information notices will be provided to the data subjects and, where necessary, specific consent will be requested for the processing of their personal data.
The Data Controller and the Data Protection Officer (DPO)
The Data Controller is ITALTEL S.p.A., a company with registered office at Viale L. Schiavonetti, 270/F, 00173 Rome (the “Data Controller” or “ITALTEL”).
Pursuant to Art. 37 of the Regulation, ITALTEL has appointed the Data Protection Officer (DPO), who can be reached through the e-mail address firstname.lastname@example.org.
Place of the data processing
The personal data of which ITALTEL is the Data Controller are processed at the ITALTEL offices by authorized and trained persons.
Computer systems and software procedures used to operate this website acquire, during their normal operations, some personal data whose transmission is implicit in the use of internet communication protocols.
This data are not collected to be associated with identified data subjects, but they can be processed and linked with data held by third parties, only upon explicit request from the Judicial Authority, and could identify users.
This category of data includes the IP addresses or the domain names of the computers used by the users, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the code related to the status of the response given by the server (successful, error, etc.) and other parameters related to the operating system and the user’s IT environment.
These data constitute the register of connections and are used for the sole purpose of obtaining anonymous statistical information about the use of the website and checking its operations. The register of connections is kept at the disposal of the Judicial Authority and exhibited only upon explicit request.
Data provided voluntarily by the user
The optional, explicit and voluntary sending of e-mails to the addresses indicated on the website implies the subsequent acquisition of the personal data provided, such as, for example, the sender’s e-mail address used to respond to requests.
Specific information notices set up for specific services on request are available on the pages of the website.
Except as specified for the navigation data above, the user is free to provide the personal data requested, but refusing the provision it may make impossible to provide the requested services.
Processing methods and data retention
Personal data are processed using automated means for the time strictly necessary to achieve the purposes for which they were collected and, in any case, in accordance with relevant applicable regulations.
After this period, the data will be deleted or transformed into anonymous form, unless their further retention is necessary to comply with legal obligations or to comply with orders given by Public Authorities and / or Supervisory Bodies.
Specific security measures are taken to prevent data loss, illicit or incorrect use and unauthorised access in accordance with Art. 32 of the GDPR.
Finally, no personal data coming from web services will be disclosed.
Categories of recipient
To achieve the aforementioned purposes, or in the event that this is necessary or required by law or authority, the Data Controller reserves the right to communicate the data to the following recipients:
- companies of computer maintenance or similar services;
- Public Authorities and Supervisory Bodies and, in general, relevant public or private subjects (g., Prefecture, Police Headquarters, Judicial Authority, in any case only within the limits of the applicable laws);
- other companies of the group of which the Data Controller is part, or any parent company, subsidiary or associated companies, pursuant to Art. 2359 of the Italian Civil Code.
Transfer of personal data to third countries or organisations outside the EU
Personal data related to the users of this site will not be transferred outside the EU.
Where necessary and in any case solely for the pursuit of the aforementioned purposes, personal data could be transferred to non-EU countries or organizations that guarantee a level of protection of the personal data deemed adequate by the European Commission on the basis of its own decision, or in any case, on the basis of other appropriate safeguards, such as Standard Contractual Clauses adopted by the European Commission.
A copy of any personal data transferred abroad, as well as the list of non-EU countries or organizations to which such data have been transferred, may be requested to the Data Controller by ordinary mail to the Data Controller’s office or by the e-mail addresses email@example.com or firstname.lastname@example.org.
Data subjects’ rights
At any time, data subjects may exercise their rights towards the Data Controller according to Chapter III of the GDPR, such as the right of access, rectification, integration, erasure, restriction of processing, portability and the right to object in presence of legal conditions.
The right to object (opt-out) the processing for direct marketing can be invoked at any time.
In order to assert their rights, data subjects shall send a communication to the registered office of ITALTEL by specifying “Privacy” in the subject. Alternatively, such communication can be sent via e-mail to email@example.com or by contacting the Data Protection Officer (DPO) by sending an email to firstname.lastname@example.org. In the same manner, data subjects can request the list of Data Processors.
Finally, users may lodge a complaint to the Italian Data Protection Authority (www.garanteprivacy.it).
Italtel reserves the right to change or update this policy at any time. Any changes or updates will take effect immediately following their publication on this website.
Latest update of this document: 7 October 2022.