INFORMATION ON THE PROCESSING OF PERSONAL DATA
Information pursuant to Article 13 of Regulation (EU) 2016/679
Pursuant to Regulation (EU) 2016/679 (hereinafter "Regulation"), this page describes the methods for processing the personal data of users who consult the site http://www.grupponsa.it
1. Data Controller
The data controller is the NSA Group (NSA SPA, NSA SRL, NSA SOLUZIONI ASSICURATIVE SPA, ALA SRL), with shared offices in Milan (MI) via P. Mascagni 15, Milan (MI) via Conservatorio 30, Castel Mella (BS) via O. Fallaci 38, tel: 03040265, mail: firstname.lastname@example.org.
The Data Protection Officer (RPD / DPO) can be reached at the email address: email@example.com.
2. Place of data processing
The treatments connected to the web services of this site take place at the aforementioned office and are only handled by technical personnel in charge of processing, or by persons in charge of occasional maintenance operations adequately trained on the protection of privacy.
3. Types of data processed
Navigation data. The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This is information that is not collected to be associated with identified interested parties, but which by their very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users who connect to the site, the addresses in the Uniform Resource Identifier (URI) notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user's IT environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and are deleted immediately after processing. The data could be used to ascertain responsibility in the event of hypothetical computer crimes against the site: except for this possibility, the data on web contacts do not persist for more than seven days and in any case no longer than the time necessary to process the requests submitted.
Data provided voluntarily by the user.
The optional, explicit and voluntary sending of e-mails to the addresses indicated on this site entails the subsequent acquisition of the sender's address, necessary to respond to requests, as well as any other personal data included in the message. The personal data collected in this way will be used by the NSA Group for the sole purpose of responding to the request for information received and for any subsequent related communications.
Specific summary information will be progressively reported or displayed on the pages of the site set up for particular services on request.
4. Purpose and legal basis of the processing
a) Execution of the contract or the fulfillment of pre-contractual commitments
Manage contact requests using the form on the "contact us" page
b) Statistical research / analysis on aggregated or anonymous data, therefore without the possibility of identifying the user, aimed at measuring the functioning of the Site, measuring traffic and evaluating usability and interest.
c) Purposes necessary to ascertain, exercise or defend a right in court or whenever the judicial authorities exercise their judicial functions;
d) Subject to Consent, to carry out direct marketing or commercial communications with traditional and / or automated tools by email, SMS, MMS.
The processing of data relating to the curriculum and the data necessary for the selection of personnel will be processed in accordance with the specific information provided in the previous section relating to the submission of your application.
5. Data retention
The data will be kept for the entire period necessary to pursue the purposes contained in this information. The data retention period is as follows:
- for the obligations of law, regulations and community regulations, the data can be kept for the periods imposed by these regulatory sources;
- for the purposes referred to in point 4 lett. d) of this information, the data may be kept until the consent is revoked or the request for cancellation is made;
in any case, all data can be kept for a period necessary to assert or defend a right of the company based on Italian and European regulations.
6. Provision of data
The provision of data is optional or necessary depending on the specific purpose for which the data is processed. Failure to provide data marked with the symbol * or wording (required) will make it impossible to obtain what is requested through the form.
7. Data recipients
Your personal data will be processed by employees of the NSA Group, these employees have been authorized to process personal data and have received adequate operating instructions in this regard. Furthermore, personal data may be disclosed for the purposes specified above to third parties to whom certain activities are entrusted. These third parties will operate as independent Data Controllers or will be designated as Data Processors and are essentially included in the following categories: IT and / or archiving service providers or other technical / organizational services; maintenance service provider; consultants; group company; Supervisory authorities.
The personal data provided will not be subject to disclosure.
8. Transfer of personal data to a third country and / or an international organization
The NSA Group ensures that the processing of personal data by recipients located outside the EU Economic Area takes place in compliance with the applicable legislation. Indeed, transfers are made through adequate guarantees, such as adequacy decisions, Standard Contractual Clauses approved by the European Commission or other guarantees considered adequate.
The newsletter is managed on the MailChimp® platform, belonging to the Rocket Science Group, LLC, which is based in the United States. The aforementioned company will process the data of the interested parties as an independent Data Controller, information at the link: http://mailchimp.com/legal/privacy.
9. Rights of interested parties
The interested parties have the right to obtain from the NSA Group, in the cases provided for, access to personal data and the correction or cancellation of the same or the limitation of the processing that concerns them or to oppose the processing (articles 15 and following of the Regulation). Requests should be sent to the email address: firstname.lastname@example.org.
Interested parties who believe that the processing of personal data referring to them, carried out through this site, occurs in violation of the provisions of the Regulation have the right to lodge a complaint with the Guarantor, as required by art. 77 of the Regulation itself, or to take appropriate judicial offices (Article 79 of the Regulation).