“Personal Data” (art. 4, n. 1 of Regulation): any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
“Processing” (art. 4, n. 2 of Regulation): any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Data Controller and contacts
Registered office: Milano (MI), Corso Magenta, n. 56
Operational headquarters: Milano (MI), via Torri Bianche, n. 10
Data Protection Officer
Avv. Luca Biffi
The computer systems and software procedures used to opertate this website, during their normal operation, some Personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified subjects, but by their very nature they may allow to identify users through processing and association with data held by third parties.
This category of data includes IP addresses or domain names of the computers used by users who connect to the website, the addresses in the URI (Uniform Resourse Identifier) notation of the requested resources, the time of request, the method used to submit the request to the server, and other parameters related to the ioperating system and the user’s computer environment.
These data are used for the only purpose to obtaining anonymous statistical information on the use of the website and to check its correct functioning, to identify anomalies and abuses, and are immediately deleted after being processed.
These data may be used to ascertain responsibility in case of computer crimes.
Other purposes of the processing of Personal Data
Subject to user’s prior express consent and until that consent is withdrawn, any personal data that may be included in a customer relationship management system (CRM), may also be processed for marketing purposes, in other words, by way of example, for the sending of promotional and commercial communications related to services offered by FINCONS, as notification of events, both by automated means of contact (e.g. SMS, fax, e-mail and web applications) and by traditional means of contact (such as telephone calls with an agent and traditional mail).
You shall then be prompted via an online form on our website or by other procedures to provide your consent to the processing of your personal data for such purposes. If you withold or withdraw your consent to the marketing purposes described above, your data shall be processed only for the purposes referred to in the previous paragraph.
With regard to the e-mails that will be sent, the following actions performed by the user shall be tracked by means of technical cookies:
- actual receipt of the e-mail;
- opening of the e-mail;
- any action carried out (such as clicking on a link contained in the e-mail).
Any of user’s personal data thay may be collected in accordance with the method described above shall be processed only for technical reasons and, in particular, in order to confirm that the e-mail was properly sent and received, as well as to verify for statistical purposes, in aggregated form, any accessing of the website. The legal basis for the processing is the consent user has given FINCONS where appropriate.
User’s personal data and contact details shall be retained for no more than 24 months, given that user can withdraw consent at any time.
With regard to additional processings which are not mentioned in this policy, it is only about section “Job”.
*Recipients of Personal data
User’s personal data may be shared, for the purposes referred to above, with contractors** providing professional services in EU countries:
Controller’s Managers and Personnel;
IT services companies.
(**) the list of external personal data processors/recipients is available at the Controller’s heeadquarters.