This statement is made in accordance with the provisions contained in Art. 13 of EU Reg. 2016/679, concerning the protection of individuals with regard to the processing of personal data and the free movement of such data (General Data Protection Regulation, “GDPR”) Such statement is to be considered valid only for the website "www.newandbest.it" and not for other websites that may be consulted by the user through links contained therein.
The data controller is NEW AND BEST H.F. srl with headquarter in Via Trani 330, Barletta (C.F./P.Iva: 03988520726). For any clarification and/ or exercise of user rights, the Owner can be contacted at the following email address: firstname.lastname@example.org.
The computer systems and software procedures used to operate with this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This consists of information that is not collected to be associated with identified parties, but which might, by its very nature, allow users to be identified through procedures of processing and association with data held by third parties. This category of data includes the IP addresses or domain names (DNS) of the computer used by users connecting to website, the address in the URI (Uniform Resource Identifier), notation of the requested resources, the time of request, the method used to to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (e.g. success, error, ecc.) and other paramethers relating to the user’s operating system and computer environment These data are used for the sole purpose of obtaining anonymous statistical information on the use of the website and to check its correct funtioning and will be deleted right after their elaboration. The data could be used to ascertain responsibility, but only in case of hypotetical computer crimes committed against the website;
Personal data provided spontaneously by the user If emails are sent voluntarily, explicitly and optionally to addresses given on this site, the subscribing to th newsletter, the CVs sent by the section “Job opportunity” and the compilation of the form “write us”, entail the subsequent acquisition of the sender/user's e-mail address and data.
The data will be used exclusively for the provision of the requested service and only for the time necessary to provide the same. Specific summary information will be progressively reported or displayed on the pages of the website prepared for particular services on request. The interested party is responsible for the veracity of such data and must, therefore, exempt the Data Controller from any liability to third parties.
Except as specified for the browsing data, the user is free to provide the personal data, but it is necessary for the attainment of the aforementioned purposes. Failure to provide such data makes it impossible to meet the request submitted.
Place of processing of data
The processing connected to the web services of this site takes place at the registered office of the Data Controller. They are handled only by technical personnel in charge of the processing and/or by any persons in charge of occasional maintenance operations who undertake to comply with European privacy laws and what is stated in this document.
Personal data received will be processed for the following purposes:
For the provision of the requested service;
To manage newsletter subscriptions; For the fulfilment of legal and contractual obligations;
To prevent or unmask fraud or abuse to the detriment of the website;
For the exercise of the rights and legitimate interests of the Owner.
The Data Controller, pursuant to art. 13 paragraph 3, undertakes not to use the personal data acquired for purposes of processing other than those for which they were collected, without having provided further information to the data subject regarding that different purpose and any other relevant information, without requiring additional consent (where mandatory).
The processing of data can take place in various forms: electronic, paper and telematic. All processing is carried out with the strictest confidentiality and protection through the adoption of appropriate security measures, of a technical and organizational nature, aimed at preventing access, disclosure, accidental or improper alteration, the unauthorised loss or destruction of the collected data.
The Data Controller, however, cannot guarantee that such measures for the security of the site exclude any risk of unauthorized access or dispersion of data by devices pertaining to the user. To this purpose, we advise the user to verify the existence on his computer of appropriate software for the protection of the network transmission of data, and that the Internet service provider has taken appropriate measures for the security of the transmission of data over the network.
The personal data acquired may be processed by the staff and/ or collaborators of the Data Controller, by the same duly authorized and trained. The data will be communicated to third parties only with express consent, unless the communication is mandatory by law or is necessary for purposes provided for by law for the pursuit of which the consent of the interested party is not required (for example, in the case of a request by the police or the judiciary or other competent bodies or to perform obligations arising from the contract concluded).
The personal data collected will be processed for the time strictly necessary to achieve the purposes for which they were collected as well as for the further period that may be necessary to comply with specific legal obligations. Unless liability is established in the event of hypothetical computer crimes to the detriment of the site, the data relating to navigation on the site will not be stored for more than 30 (thirty) days. Any accounting records will be kept for 10 (ten) years according to legal requirements. If, on the other hand, the processing is based on the user’s consent, the Data Controller may retain the personal data collected until such consent is revoked. No longer for the above reasons, the acquired data will be destroyed (right to be forgotten) or, if necessary, rendered anonymously (pseudonymization) for statistical or historicization purposes.
This site may share some of the data collected with services located outside the European Union. In particular, with Google, Facebook and Instagram, via social plugins and the Google Analytics service. The transfer is authorized and strictly regulated by article 45, paragraph 1, of EU Regulation 2016/679, so no further consent is required. The companies mentioned above guarantee their adherence to the Privacy Shield. Data will never be transferred to third countries that do not comply with the conditions set out in art. 45 and ss. Of UE regulation.
At any time, the user can exercise, with written request to the address Via Trani, n.330, Barletta (76121) or to the e-mail: email@example.com, pursuant to art.7 of Legislative Decree no. 196/2003 and art. 15-22 of the GDPR, the right to:
Request confirmation whether or not personal data are being processed and, if so, to obtain access to them (right of access - art.15);
Request the rectification of inaccurate personal data or the integration of incomplete personal data (right to rectification - art.16);
Request the erasure of personal data, in the cases provided by the Regulation (right to erasure "right to be forgotten" - art. 17); Request the restriction of processing, in the cases provided for by the Regulation (right to limitation - art. 18);
To receive personal data in a structured, commonly used and machine-readable format and to transmit such data to another Data Controller (right to portability - art. 20);
Object to processing at any time (right to object - Art. 21);
Revoke at any time the consent to the processing of personal data, without affecting the lawfulness of the processing based on the consent given before the revocation (right to revocation - art. 7);
Lodge a complaint with the Data Protection Authority (The form can be downloaded from the link www.garanteprivacy.it).
Any requests will be processed at the latest within one month of receipt, without prejudice to the possibility of extending this deadline for a further two months, if necessary, taking into account the complexity and number of requests received by the Owner.
This information may be subject to changes and/or updates. If substantial changes are made to the use of user data by the Owner, the latter will notify the user by publishing them with the utmost evidence on their pages or by alternative or similar means.