WEBSITE INFORMATION AND COOKIE NOTICE
To immediately access the cookie policy, click here
Introduction
In order to offer personalized and non-personalized services as provided by its website, Vesev Impresa Sociale S.r.l. VAT Number 10063041213 (hereinafter referred to as "Vesev"), as the Data Controller, needs to process certain identifying data necessary for providing these services.
In accordance with Article 13 of GDPR 679/2016 – "European Regulation on the Protection of Personal Data" and concerning the personal data related to you that will be subject to processing, Vesev ensures, within the framework of legal provisions, that the processing of personal data is carried out respecting fundamental rights and freedoms, as well as the dignity of the data subject, with particular reference to confidentiality, personal identity, the right, and the protection of personal data.
This document describes the management procedures of the website https://napex.art/ concerning the processing of personal data for those who interact with the provided services. This information is provided according to the European Regulation on the Protection of Personal Data 679/2016 (hereinafter GDPR) specifically for the mentioned site and not for other sites that may be accessible by the user through links, for which Vesev is not responsible in any way.
This information is therefore created and customized for visitors of the website https://napex.art and this document cancels and replaces any other document previously published regarding web privacy and cookies.
Specific Information
Additional and contextual information is provided on the site's pages, set up for specific services that require data collection via forms.
Types of Processed Data
Personal data may be collected automatically during the navigation and use of the site and its services, or it may be voluntarily provided by the user.
Among the personal data collected by the Data Controller independently or through third parties, there may be, by way of example and not exhaustively: cookies, usage data, passwords, name, surname, and email.
Navigation Data and Other Data
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data, the transmission of which is implicit in the use of internet communication protocols. This information is not collected to be associated with identified individuals but, by its nature, could, through processing and association with data held by third parties, allow users to be identified. This category of data includes IP addresses or domain names of the computers used by users who connect to the site, URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response from the server (successful, error, etc.), and other parameters relating to the user's operating system and computer environment. This data is used solely to obtain anonymous statistical information about the use of the site and to check its correct functioning and is deleted immediately after processing. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site at the request of the competent authorities.
The possible use of cookies or other tracking tools by this site or third-party service providers used by it, unless otherwise stated, is intended to identify the user and record their preferences for purposes strictly related to the provision of the service requested by the user.
Failure to provide some personal data may prevent the site from providing its services.
Personal Data Voluntarily Provided by the User
At various points on this site, the user has the opportunity to provide their personal data (e.g., email address, name, postal code, other personal and non-personal data) by filling out forms or sending email messages. Providing this data is optional, explicit, and voluntary and results in the subsequent acquisition of the sender's email address, necessary to respond to requests, as well as any other personal data provided for the purposes of the service and any additional data provided by the user. Brief information is available on the pages that include forms, with an indication of the necessity of providing the data to use the specific service.
The user takes responsibility for third-party personal data that may be published or shared through this site and ensures they have the right to communicate or disseminate them, releasing the Data Controller from any liability to third parties.
Legal Basis for Processing
Personal data are processed, as highlighted in the next section, solely for purposes related to Vesev's activities and the related obligations. The legal bases can be found in consent (e.g., for the processing of "special categories of personal data" or for marketing/profiling) and/or in the execution of a contract or a service of our management in which the user is a party, or in the execution of pre-contractual measures taken at the request of the user, or in compliance with legal obligations to which the Data Controller is subject, or in the legitimate interest of the same.
Processing Purposes
The user's data are collected and processed for the following purposes:
- Carrying out operations strictly related and instrumental to managing relationships with users or site visitors, such as:
- navigation;
- registration and authentication
- Collecting, storing, and processing user data for:
- anonymous and/or aggregate statistical analysis;
- statistical analysis for checking the quality of the services offered by the site.
Additional processing purposes may be carried out, subject to explicit consent, when necessary, for services activatable within the site. These may include, but are not limited to: interaction with social networks and external platforms, social applications, payment management, interaction with support and feedback platforms, infrastructure monitoring, traffic optimization, interaction with live chat platforms, remarketing and behavioral targeting, address management, and email message sending, viewing content from external platforms, commercial affiliation, heat mapping, user database management, and support and contact request management.
Optional Provision of Data, Consequences of Refusal, and Consent Management
The provision of data is optional, except for those indicated as mandatory to allow the user access to the services offered.
The processing of data for the purposes specified in point 1 of the previous section is obligatory, and the failure to provide it or its incorrect communication may limit or prevent the full use of the site's functionalities and services.
More information about cookies on the site is provided in the "Cookies Policy" document, which can be accessed from this full information as well as the banner published on the site.
Furthermore, only with the express consent of the user can the data be used to send market research or commercial information about the products and promotional initiatives of the Data Controller via postal mail, email, telemarketing, SMS, MMS.
At any time, users can review this information and, if necessary, modify previously provided consents, check and/or modify the status of active services, and request additional services.
Data Processing Methods
The processing of personal data may be carried out with or without the aid of electronic, automated tools, including by associating them and integrating them with other databases and using cookies. In any case, the processing will be carried out with every precaution to guarantee data security and confidentiality for the time necessary to carry out the service requested by the user, or as required by the purposes described in this document. Users can always request the interruption of data processing or the deletion of data.
Vesev has also implemented all the necessary computer security measures, as indicated in the GDPR, by adopting security measures considered adequate to minimize the risk of the privacy violation of users by third parties, continuously updated whenever necessary.
Data is processed at the operational offices of the Data Controller and in any other place where the parties involved in the processing are located. For further information, you can contact the Data Controller at the contact details specified below.
Data Retention Periods
Personal data will be processed for the time strictly necessary to achieve the purposes described above, to fulfill contractual, legal, and regulatory obligations, without prejudice to statutory and legal terms.
In particular, the criteria used to determine the retention period are established by specific legal provisions and tax regulations regarding the processing of administrative-accounting data.
For data collected for commercial purposes, the details are limited to 1 year from the acquisition date for profiling activities and 2 years for direct marketing activities.
The user's personal data on the site may also be kept for as long as permitted by Italian law to protect the legitimate interests of the Data Controller (Art. 2947, co. 1 and 3 c.c.).
Scope of Data Knowledge
The processing of personal data will be carried out within the limits of the general authorizations issued by the Guarantor for the protection of personal data, by persons expressly and specifically authorized by Vesev. Data may also be processed by third parties (outsourcers) that are used for the provision of services related to the pursued purpose, and our organization binds them with specific contractual clauses or formal appointments as External Data Processors for processing tasks carried out by them. In all cases, such subjects will process the data in accordance with the instructions received from the Data Controller, according to operational profiles attributed to them concerning the functions they perform, strictly necessary and instrumental for the execution of specific operations within the requested services and exclusively for the achievement of the purposes indicated in this information. The list of Data Processing Managers, constantly updated, can be requested by sending a communication through the methods indicated in the following section regarding the rights of the data subject.
Communication and Disclosure
Data may be communicated, with the term "communication" intended as making it known to one or more specific subjects, under the following terms:
- To subjects, public and private, who may access data by virtue of the provisions of the law, regulation, or European Community legislation, within the limits set by these rules (such as, by way of example, social security and welfare institutions, associations of local authorities, public administrations and bodies, associations, foundations, association or insurance-type bodies and/or organizations);
- To subjects who need to access the data for purposes auxiliary to the relationship that exists between the parties, within the limits strictly necessary to perform auxiliary tasks (for example, banks and credit institutions, service providers, carriers, and shipping companies);
- To our consultants, within the limits necessary to perform their assignment within our organization, subject to our letter of appointment imposing the duty of confidentiality and security;
- • To companies (providing auxiliary services, including information technology), subject to the signing of specific contractual clauses imposing the duty of confidentiality and security.
The data will not be disclosed, with the term "disclosure" meaning making it known to undetermined subjects in any way, even by making it available or consultation, unless specific consent, free and informed, is granted for each type of processing.
Legal Defense
The user's personal data may be used for the defense of the Data Controller in court or in the phases preceding its possible establishment, against misuse of the same or of the services connected by the user. The user declares that they are aware that the Data Controller may be required to disclose the data at the request of public authorities.
Data Controller
The Data Controller of personal data is Vesev, with its registered office at Via San Francesco di Paola, 78 - 80058 Torre Annunziata (NA).
The Data Controller maintains an updated list of appointed Data Processors, and it guarantees that this list is available for viewing by the data subject at the address specified above.
Data Processing Manager
Vesev, Via San Francesco di Paola, 78 – 80058 Torre Annunziata (NA).
Data Protection Officer
Mario Amura, mail: vesev.info@gmail.com, oppure pec: vesev@pec.it
Rights of the Data Subject
Data subjects, to whom the personal data refer, have the right to exercise their rights (Right of access to personal data and other rights) at any time, in particular: the right to obtain confirmation of the existence or otherwise of their personal data, access it, and be informed about its content and origin, verify its accuracy, request its integration or updating, and request its restriction or portability. Corrections and blocking can be requested if the data is incomplete, incorrect, or collected in violation of current regulations, and in this sense, it is also possible to object to their processing for legitimate reasons or to any automated decision-making process (including profiling), and to request deletion for the same reasons, as long as it is in compliance with the current regulations and in the absence of other obligations for the retention and processing on the part of Vesev. Data subjects also have the right to object to the processing of their personal data for marketing purposes, even if carried out through automated contact methods; this right also extends to traditional methods, and data subjects can exercise these rights in full or in part (e.g., only to communications via SMS, email, or telephone or opposing only the sending of promotional communications carried out through automated tools, etc.).
Regarding the exercise of the rights listed above, as well as to obtain the updated list of personal data processing managers, the data subject can make their requests through a specific communication sent by post to the same company or through the email address: vesev.info@gmail.com, also sending a communication to the email address indicated to obtain a prompt response. vesev.info@gmail.com, anche inviando comunicazione all’indirizzo e-mail indicato, al fine di ottenere tempestivo riscontro.
If the data subject has given consent for a specific purpose of processing, they always have the right to withdraw it at any time, without affecting the lawfulness of the processing based on the consent given before its withdrawal.
It should also be noted that the data subject always has the right to file a complaint with the Guarantor for the Protection of Personal Data for the exercise of their rights or for any other matter related to the processing of their personal data.
Application and Changes to This Notice
The Data Controller reserves the right to make changes to this privacy policy at any time, notifying users on this page. Therefore, it is advisable to frequently consult this page, referring to the last modification date indicated at the bottom. In case of non-acceptance of the changes made to this privacy policy, the user is required to discontinue the use of this site and related services and can request the Data Controller to delete their personal data. Unless otherwise specified, the previous privacy policy will continue to apply to personal data collected up to that moment.
Last update
06.05.2024