Privacy Policy

and information pursuant to art. 13 of EU Regulation 2016/679
Nature of the provision of data
The personal data requested are collected by the website https://eu.tecoonline.eu/ and processed on IT media, in order to satisfy requests for contact and information.

Data controller
Teco srl, based in Ravenna, at via G. Ricci Curbastro 8, is the Data Controller pursuant to and for the purposes of EU Reg. 2016/679.

Data controllers
Third parties who may process personal data on behalf of the Data Controller as "External Data Processors" may become aware of the Users' personal data, such as, by way of example, suppliers of IT services functional to the operations of the Foundation, suppliers of outsourced or cloud computing services, professionals and consultants. Users have the right to obtain a list of any data controllers appointed by the Owner, by making a request to the Owner in the manner indicated below.

Purpose of the processing

The data provided will be retained by the Data Controller for the following purposes and in compliance with EU Regulation 2016/679 (GDPR):
1. install optional technical cookies on the user's device as per the cookies policy;
2. make the data available to third parties for instrumental purposes strictly necessary to carry out the services requested by the interested party or to implement legal provisions;
3. manage user data to provide feedback;
4. execute requests to exercise the rights of the interested party;
5. ensure correct and lawful processing of data, safeguarding its confidentiality, also by applying suitable security measures.
All processing carried out within this site will be carried out with electronic or telematic tools, with logic related to the purposes for which the data were collected and in compliance with current security regulations, for the specified purposes. Consent for such processing, except for that relating to the installation of optional cookies, is mandatory; any refusal will make it impossible to manage the activities listed in points 1 to 5 of this paragraph.
Recipients of the data
For purposes related to the provision of the service to which the interested party has subscribed, the data will be made available to third parties, who will act as data controllers, and who provide services instrumental to satisfying the user's request or to whom the communication of the data is necessary to comply with laws or regulations or community legislation (for example, public bodies). They may also be made available to law enforcement agencies (e.g.: prevention and repression of crimes, including those of an IT nature), judiciary, authorities and public bodies competent for individual matters for their institutional activities or in the case of asserting or defending their own rights in court. The list of names of these third parties can be requested directly from the Data Controller in the ways specified in this privacy policy. The personal data will be made available to people expressly authorized by the Data Controller - and for this purpose appointed authorized data processing persons - who carry out processing activities essential for the pursuit of the purposes indicated above; the categories of persons in charge are specified from time to time in the information. Generally speaking, these are the people responsible for providing specific services, administration and management of information services. The data provided will not be transmitted outside the community territory.

Retention period
Based on the identified purposes, the following data retention periods are defined:
1. installation of technical and analytics cookies and other optional cookies on the user's device: as per our cookie policy on the same site.
2. make the data available to third parties for instrumental purposes strictly necessary to carry out the services requested by the interested party or to implement legal provisions: until the user requests cancellation or for the periods identified by the legal provisions;
3. execute requests to exercise the rights of the interested party: up to 10 years from collection. The retention times of personal data are documented in our records of processing activities.

Rights of the interested party
The following rights of the interested party are guaranteed:
– Right to access data (Art. 15 EU Reg. 2016/679)
– Right of rectification (Art. 16 EU Reg. 2016/679)
– Right to cancellation (Art. 17 EU Reg. 2016/679)
– Right of limitation (Art. 18 EU Reg. 2016/679)
– Right to data portability (Art. 20 EU Reg. 2016/679)
– Right to object (Art. 21 EU Reg. 2016/679)
The interested party, if the acquisition of the data by the owner occurred following the provision of consent, has the right to revoke the consent at any time. Furthermore, if the interested party considers one or more of his rights violated, he can lodge a complaint with the Privacy Authority according to the methods indicated at the following link: https://www.garanteprivacy.it/home/diritti/come-agire -to-protect-your-personal-data. It is also specified that automated decision-making processes are not used by the Data Controller. All the above rights can be exercised, at any time and without any charge, by writing to the email address info@tecoonline.com.

Security of personal data
The security standards used by the Owner to make your personal information private and confidential, including "firewalls" and data transmission through SSL (Secure Socket Layer), are the highest in the state of the art. Furthermore, specific techniques are used to protect this data from unauthorized access by third parties. In any case, the minimum security measures indicated by the Privacy Code and subsequent amendments are guaranteed. You can check whether you are operating in safe mode in several ways:
• receiving a warning message from your navigation program;
• checking that the address of the page you are on is preceded by the abbreviation Https;
• checking the symbol that appears at the bottom, left or right, in the window of your navigation program: if you see a whole key or a closed padlock it means that SSL is active.

In any case, the Data Controller adopts suitable and preventive security measures aimed at safeguarding the confidentiality, integrity, completeness and availability of personal data. As established by the regulatory provisions governing the security of personal data, technical, logistical and organizational measures have been developed which aim to prevent damage, even accidental losses, alterations, improper and unauthorized use of the data. Similar preventive security measures are adopted by third parties (data controllers) who are entrusted with data processing operations on our behalf and for whom the Data Controller has dictated rules of conduct and instructions for security procedures to be followed, ensuring correct implementation. of the same by those responsible. The Owner is not responsible for untruthful information sent directly by the user (example: correctness of the e-mail address or postal address or other personal data), as well as for information concerning him or her and which has been provided by a subject third, even fraudulently.

Browsing data
The computer systems and software procedures used to operate this site acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This is information that is not collected to be associated with identified users, but which by its very nature could, through processing and association with data held by third parties, allow the users themselves to be identified. This category of data includes the IP addresses or domain names of the computers used by users who connect to the site, the addresses in URI (Uniform Resource Identifier) notation of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error or similar) and other parameters relating to the operating system and the user's IT environment. These data are used only to obtain anonymous statistical information on the use of the site and to check its correct functioning and are deleted immediately after processing. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site.