The store will not work correctly in the case when cookies are disabled.
Utilizziamo i cookie per rendere la tua esperienza migliore. Per rispettare la nuova direttiva e-Privacy, dobbiamo chiedere il tuo consenso per impostare i cookie.
GDPR PRIVACY AND COOKIE INFORMATION - EU Regulation 2016/679 (25 MAY 2018)
1.Introduction The European Union has raised the required standards by applying (from 25 May 2018) to all the countries belonging to the EU the GDPR a new legislation that changes the rules to collect, store and use user information and therefore in order to maintain existing contacts, companies are informing about the change and in some cases to give a new authorization to use the data. Often, however, it is not clear what authorization is being given, which is why we thought of simplifying its content. First of all: GDPR is the acronym for General Data ProtectionRegulation (in Italian General Data Protection Regulation - European Regulation EU 2016/679). The aim of this new privacy law is to allow European citizens to have greater control over the way in which individuals, companies and public bodies collect and use their personal data. Then, in plain English, here's what it consists of, what changes and what to do.
What is the GDPR As we have said, the GDPR is the European regulation for the protection of personal data that replaces the current Directive 95/46 / EC on Data Protection, dating back to 1995. This new law takes into account the sudden changes that have taken place in the digital world and also unifies European laws in this regard, with the specific objective of preserving (our) right to be in full control of the information that concerns us. The regulation consists of 99 articles all aimed at giving citizens greater control of their personal data, and clarifying responsibilities in case of violations of privacy. In addition, the GDPR establishes some fundamental principles that have been much discussed recently: the right to be forgotten (users can ask to remove information about themselves forever), data portability (that is, you can download and transfer data from one platform to another , without binding to a certain account) and the obligation to notify in case of data breach (companies, if they suffer leaks of sensitive information, must communicate it to the users whose data they have within 72 hours). The substantial changes introduced by the GDPR with respect to the previous privacy regulations concern 4 specific areas: the territorial area, obtaining consent, the introduction of the DPO and sanctions. The territorial scope provides that the new law applies to the data of all European citizens and to all companies that process or manage such data, regardless of the country in which they have their registered office or where the data are processed. Obtaining consent: as before, consent to the processing of data must be free, informed and explicit, as tacit or presumed consent will not be admitted in.News regarding minors, whose consent will be considered valid from 16 years of age, before that age, consent must be expressed by a parent or guardian. Linked to obtaining consent is the introduction of the DPO, i.e. the Data ProtectionOfficer (in Italian Data Protection Officer). It is an independent figure in charge of ensuring correct management of personal data. As has been pointed out, however, it is still not clear what the DPO is and what it does. What data it protects The GDPR regulation applies to a wide range of personal data including name, identification and location numbers, as well as IP addresses, cookies and other fingerprints. On the European Data Protection Supervisor website, personal data are defined as follows: «Any information relating to an identified or identifiable natural person, called" data subject "- an identifiable person is a person who can be identified, directly or indirectly, in particular by referring to an identification number or to one or more specific factors of its physical, physiological, mental, economic, cultural or social identity »The new regulation, however, as can be easily understood, also concerns us individual users. How? First of all, you can expect to be informed more about how your data is used: companies must be clear and transparent about everything, that's why you may receive a barrage of emails asking to tick the boxes to give consent for the use of data. MG Visio Srl operates in the LED lighting sector, through branches, agents, license and distribution agreements. Within this website - owned by MG Visio Srl.
2. Roles and responsibilities in the privacy field
The Data Controller is the company MG Visio Srl. With registered office in Via Antonino Giuffré 101, 00128 Rome, Italy. The pro tempore contact person for Marketing is responsible for the web services offered. Personal data may be processed by persons appointed as Managers, as well as by Data Processors responsible for managing the requested service.
3. Type of data processed and processing purposes
The website offers informative and sometimes interactive content. While browsing the site, you can therefore acquire information about the visitor, in the following ways: · Navigation data The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This category of data includes: IP addresses, the type of browser used, the operating system, the domain name and the addresses of websites from which access or exit has been made, information on the pages visited by users within the site, the access time, the stay on the single page, the analysis of the internal path and other parameters relating to the operating system and the user's IT environment. These technical / IT data are collected and used exclusively in an aggregate and anonymous manner and could be used to ascertain responsibility in the event of hypothetical computer crimes against the site. Data provided voluntarily by the visitor These are all personal data freely released by the visitor on the site to, for example, register for news letters and / or access a reserved area, request information on a specific product or service through an email contact, write to an e-mail address or call a toll-free number to have direct contact with customer service. Where provided, this information may be used for user profiling purposes. Where this occurs, appropriate information will be provided and free and specific consent will be acquired for marketing and / or profile delineating purposes, according to the techniques (initially during the collection of consent according to the "opt-in" concept and subsequently when refusing consent according to the "opt-out" concept) envisaged by current privacy legislation.
4. Technologies used
5. Methods of data processing
The processing of personal data is carried out mainly using electronic procedures and supports (DB, CRM platforms, etc.) for the time strictly necessary to achieve the purposes for which the data were collected and, in any case, in accordance with the principles of lawfulness , correctness, non-excess and relevance provided for by the current privacy legislation.
6. Redirect to external sites
7. Rights of the interested parties
The subjects to whom the personal data refer (so-called "data subjects"), processed through this website, have the right to exercise their rights in the manner and within the limits set by the privacy legislation applicable on the national territory. In particular, the exercise of the following rights is recognized: - the right to access personal data present in its paper and / or electronic archives; - the right to request their rectification, updating and cancellation, if incomplete or incorrect, and to oppose their treatment for legitimate and specific reasons; - the right to obtain the correction of inaccurate personal data without undue delay. Taking into account the purposes of the processing, the interested party has the right to obtain the integration of incomplete personal data, also by providing an additional declaration; - the right to obtain the cancellation of personal data concerning him without undue delay if one of the reasons set out in art. 17, paragraph 1 of the Regulations; - the right to obtain the limitation of treatment when one of the hypotheses referred to in art. 18, paragraph 1 of the Regulations; - the right to data portability within the limits and in the ways provided for by art. 20 of the Regulation and the Guidelines on data portability; - the right to lodge complaints with the competent authority. To exercise these rights, obtain the updated list of data processors (where designated), report problems or ask for clarifications on the processing of your personal data, please direct your requests to the Data Controller, specifying the subject of the request, to the following address (email@example.com). 8. Duration of processing and data retention times The Data will be processed for the time necessary to carry out the activity covered by the services provided and, also subsequently, limited to the fulfillment of any legal obligations.