The information contained in these pages is provided in application of Italian Legislative Decree no. 196 of 30 June 2003 (Personal Data Protection Code) integrated with the provisions of Italian Legislative Decree n 101 of 10 August 2018 and of the Regulation (EU) 2016/679 of the European Parliament and of the Council, of 27 April 2016, (General Data Protection Regulation – GDPR).
This policy describes the methods of processing the personal data of users that may be collected during consultation of the CD Pharma Group S.r.l. website, relating to the internet domain cdpharma.it. These processing methods do not concern other sites, pages or online services that can be reached via hypertext links that may be published and refer to resources outside the cdpharma.it domain.
The Data Controller is CD PHARMA Group S.r.l., which, as Data Controller, pursuant to and for the purposes of Regulation (EU) 2016/679, on the “protection of natural persons with regard to the processing of personal data and on the free movement of such data”, hereby informs you that the processing of your data will be based on principles of correctness, lawfulness, transparency and protection of confidentiality and rights.
DATA PROTECTION OFFICER
Pursuant to Article 37 et seq. of Regulation (EU) 2016/679, CD Pharma Group has identified and appointed the Data Protection Officer (DPO). The DPO can be contacted by e-mail at: email@example.com.
TYPE OF PERSONAL DATA PROCESSED AND PURPOSES OF THE PROCESSING
During normal operation, the IT systems and software procedures used in the operation of this website acquire certain personal data whose transmission is implicit in the use of internet communication protocols. This information is not collected to be associated with identified individuals, but by its nature it could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given to the server (successful, error etc.) and other parameters related to the operating system and to the user’s computer environment.
These data are used for the sole purpose of obtaining anonymous statistical information regarding use of the site and to check that it is working correctly. They are stored on the organisation’s servers for the period indicated in paragraph no. 10. The data could be used to ascertain responsibility in the event of hypothetical computer crimes against the website.
LEGAL BASIS FOR DATA PROCESSING
The legal basis for data processing is the legitimate interest of the Data Controller referred to in Art. 6 para. 1(f) of European Regulation no 679/2016.
HOW PROCESSING TAKES PLACE
All processing takes place through the adoption of security, technical and organisational measures, appropriate to the processing itself as set out in Article 32 of the Regulation. All data are processed electronically and measures to minimise processing are implemented, as regards the type of data, access authorisations and storage times.
RECIPIENTS OR CATEGORIES OF RECIPIENTS OF PERSONAL DATA
The data may be disclosed:
- to those subjects (e.g. administrative, judicial, supervisory and control authorities) to which such disclosure must take place in order to fulfil an obligation established by law, by a regulation or by EU legislation;
- third parties, suppliers of products and/or services.
Depending on the situation, these recipients process personal data as independent data controllers or processors.
Furthermore, natural persons belonging to the following categories may become aware of the data as persons authorised to process them and only in relation to the data necessary to carry out the tasks assigned to them: employees of CD Pharma or seconded to it, contract workers, interns, consultants and employees of external companies appointed as processors.
TRANSFER OF DATA TO NON-EU COUNTRIES
No data transfer to a non-EU country or international organisation is envisaged.
DATA SUBJECT RIGHTS
The subjects to whom the personal data refer, pursuant to Article 13 of Regulation (EU) 679/2016, have the right at any time to obtain confirmation as to whether or not data concerning him or her exist and find out their content and origin, verify their accuracy or request to integrate, update or rectify them. The subjects to whom the personal data refer also have the right to request erasure, transmission of data to other controllers, anonymisation or blocking of data processed in violation of the law, as well as to oppose processing in any case, for legitimate reasons. Data subjects also have the right to appeal to the supervisory authority (Italian Data Protection Authority).
Requests relating to Article 13 of Regulation (EU) 679/2016 must be addressed to the Data Controller at the Cooperative’s certified e-mail address.
DATA STORAGE PERIOD
CD Pharma will process the personal data collected as strictly necessary in order to pursue the predetermined purposes; the data collected with the cookies indicated in this policy will be kept for a maximum period of 1 year from acquisition, subject to an extension in the event of a dispute (until the dispute is resolved).
You have the right to lodge a complaint with the competent supervisory authority, the “Italian Data Protection Authority” in the event that you believe that your rights in the field of personal data protection are at risk [garanteprivacy.it].
AUTOMATED DECISION-MAKING PROCESS
Your data will not be included in any automated decision-making processes.
What are cookies?
A cookie is a small set of data that is sent from the web server to the user’s browser and stored by the browser on the user’s device (computer, tablet, mobile phone or other). It can be read or subsequently retrieved by the server itself. It allows the web portal to store useful information within a session or in subsequent accesses that the user makes.
Are cookies used when browsing the CD Pharma site?
Cookies can be used for various reasons. In some parts of the portal, cookies are essential and without them it would not be possible, for example, to browse correctly.
In other parts they are used to obtain useful information to provide specific services; moreover, some external services (third parties) may need to install specific cookies on the user’s browser in order to provide the related services.
What types of cookies are used on our site?
Technical cookies are those used for the sole purpose of “transmitting a communication over an electronic communications network, or to the extent strictly necessary for the provider of an information society service explicitly requested by the subscriber or user to provide this service” (see Section 122, paragraph 1, of the Privacy Code). They are not used for other purposes and are normally installed directly by the owner or operator of the website. They can be divided into:
These are used to record data useful for normal site browsing and use on the user’s computer (for example making it possible to remember the preferred page size in a list). These cookies can then be divided up according to how long they stay on the user’s computer into:
session cookies, those that are automatically deleted at the end of each browsing session;
permanent cookies, those that have a longer life.
functional cookies, these cookies allow the portal to remember the choices made by the user to optimise functionality. For example, functional cookies allow you to remember a user’s specific settings, such as country selection and, if set, permanent access status.
Third party cookies
Some features are implemented using third-party services, listed below.
These services produce cookies that are linked to the services provided by third parties. The third party provides these services in exchange for information regarding user visits to our portal. Even third party cookie suppliers are required to comply with the relevant legislation. For this reason we refer you to the links of the web pages of third party sites, where users can find the consent forms for cookies and their related policies. In the event that these services are provided by indirect contacts with third parties, users must consult the sites of the subjects acting as intermediaries between us and the third parties themselves:
– Google Analytics: to optimise the information and services offered, the company portal and CD Pharma services use Google Analytics, a Google service that enables you to track and analyse the behaviour of online users with regard to times, geographical location and behaviour on the site.
How can cookies be deactivated or removed?
Most browsers accept cookies automatically, but it is possible to set the browser so that they are not accepted, automatically or upon request. We do not recommend such deactivation as normal browsing may be compromised and some or all of the features of some sites may not be available. If you do not wish your computer to receive and store cookies, you can change your browser’s security settings.
Update February 22, 2022