The following pages include a description of the methods used to manage the personal data of users consulting this website. This information is provided, according to article 13 of the Italian Law Decree 196/2003 “Italian Personal Data Protection Code”, to everyone who interacts with the “OMCD S.p.A.” web services, which are accessible online starting on the first page of the official website, at this address http://www.omcd.it. This information is only provided for the “http://www.omcd.it” website; therefore it excludes all other websites that can be accessed via links. This statement is also in conformity with Recommendation no. 2/2001 related to the minimum requirements for online data collection in the European Union, adopted by the European Data Protection Authorities – Working Party of article 29, Directive No. 95/46/EU on 17 May 2001; this Recommendation was adopted in order to identify the minimum requirements for the online collection of personal data, specifically the methods, timeframes, and nature of the information which data controllers must provide to users when users connect to a web page for any reason.
The private data of identified or unidentified persons who consult this website may be handled. The Data Controller is OMCD S.p.A.
Data Protection Officer
As foreseen in article 13, comma 1 – letter f of the Italian Legislative decree no. 196 of June 30, 2003: “When the Data Controller has designated more than one Data Protection Officer, at least one of these must be identified by indicating the website or other sources which provide an updated list of said Data Protection Officers”. In order to comply with this regulation, an updated list of the Data Protection Officers will be available by sending an email to: firstname.lastname@example.org.
Data handling location
Data gathered in connection to the web services offered by this website will be handled at the aforementioned headquarters of the Data Controller by the technical staff of the data handling office, or by other persons who conduct occasional maintenance operations. No data retrieved from web services will be communicated or spread to others. The personal data provided by users who submit requests for informational material (brochures, flyers, quotes, etc.) is used for the sole aim of carrying out the requested service, and will not be communicated to third parties.
Types of data handled
The computer systems and software used to run this website during normal operations acquire certain personal data (IP addresses, domain names of the users’ computers connecting to the website). This information is not collected in relationship to specific users, but due to its inherent nature, such information could enable the users to be identified via processing and associations with data held by third parties. This data is used for the sole purpose of obtaining anonymous statistical information concerning the website’s use and to monitor the website’s proper operation, and the data is immediately cancelled after this elaboration. In certain cases, the data may be used to ascertain liability in a suspected computer crime directed against the website. Other than the aforementioned cases, data on web contacts will not be held for more than seven days.
Data Provided Voluntarily by Users
The optional, explicit and voluntary sending or transmission of e-mails to the addresses given on the website will entail the subsequent acquisition of the sender’s email address, which is required to respond to requests, as well as any other personal data present in the e-mail. The provision of the information is voluntary, and users are not obligated to provide the personal data on information request forms at “omcd.it”. However refusal of such may render the user’s request impossible.
Data handling methods
Personal data is handled through automated tools only for the time that is needed to carry out the aims for which it was gathered. Specific security measures have been put in place in order to avoid the loss of data, its illegal or inappropriate use, and its non-authorized access.
Rights of the parties involved
Parties that provide personal data have the right at any time to obtain confirmation of the existence of supplied data, be informed about its content and source, verify whether it is correct, and request any integrations, updates, or corrections (article 7 of Law Decree 196/2003). According to this article, the parties involved have the right to request the cancellation, transformation into an anonymous form, or block of data that has been handled in violation of the law, and to oppose its handling in any case, for legitimate reasons. Requests should be sent to the Data Controller by sending an email to this address: email@example.com