This Site only uses technical cookies for the purposes of operating the pages of this Site correctly and improving security.
Data Controller and Personal Data Protection Officer
The Controller has appointed a Data Protection Officer (DPO) pursuant to Article 37 of the GDPR, who can be contacted for any questions or requests by writing to the email address firstname.lastname@example.org or to the postal address Personal Data Protection Officer c/o Chemi S.p.A., Via dei Lavoratori, 54, 20092 Cinisello Balsamo (MI).
What are cookies
Cookies are small text strings created by a server and stored in text files on the hard disk of your computer or any device you use to access the Internet (smartphone, tablet). They make it possible to collect information on the navigation made by the user on the website.
Cookies can be stored permanently on the user's computer and have a variable duration (persistent cookies), but they can also disappear when the browser is closed or have a limited duration (session cookies).
Cookies may be set by the website you are visiting (so-called first party cookies) or may be set by other websites (so-called third party cookies).
- Technical cookies
- a. Session/navigation cookies: The use of so-called session cookies (which are not permanently stored on the user's computer and disappear when the browser is closed) is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to enable the safe and efficient exploration of the Site and its applications. The so-called session cookies used on the Site avoid the use of other IT techniques that could potentially compromise the confidentiality of users' browsing and do not allow the acquisition of personal data identifying the user. They do not require the user's consent for their installation.
- b. Persistent cookies: persistent cookies remain on the device even after leaving the website, until the user deletes them or until their expiry date is reached. The Site creates this type of cookie and stores them on the device so that they can be read when the user visits the Site again. This makes it possible, for example, to find the preferences that have been set (e.g. storing registered users...) on subsequent visits to the Site. They do not require the user's consent for their installation.
- Analytics cookies
These are cookies installed to collect aggregate information of a mainly statistical nature (time spent on a web page, number of visitors to the Site, etc.).
- First-party analytical cookies: these are similar to technical cookies in that they are installed directly by the website you are visiting to improve its usability. They do not require the user's consent for their installation.
- Third-party analytical cookies: analytical cookies created and installed by third parties to analyse users' browsing in order to compile statistics on visits or to improve the content on offer, to show similar products and, possibly, to place targeted advertising on web pages. The Controller does not use these types of cookies on the Site.
- Profiling cookies
These are cookies used to track the user's navigation on the web and create profiles on their tastes, habits, choices, etc. These cookies can be used to transmit to the user's terminal advertising messages in line with the preferences already expressed by the user when surfing online. The Controller does not use these types of cookies on the Site.
What cookies are used on this Site
This Site does not use profiling or analytical cookies, but only first-party technical cookies for the proper functioning of the Site's pages and to guarantee security. As set out in the Guidelines on cookies and other tracking tools, Italian Data Protection Authority, 10 June 2021, for this type of cookies it is not necessary for the user to give consent as described in the previous paragraph.
The cookies used on the Site and their characteristics are set out in the following table.
|Set up by web applications developed with ASP.NET MVC technologies, it helps prevent CSRF (Cross-Site Request Forgery) attacks.
|It determines the device used to access the Website. This allows the Website to be formatted accordingly.
|Saves the user's preferred language for navigating the Website.
How to disable cookies by configuring your browser
Most Internet browsers are initially set up to accept cookies automatically. This means that the user has the possibility, at any time, to set his browser to accept all cookies, only some, or to refuse them, disabling their use by the sites. In addition, the user can normally set his browser preferences in such a way as to be notified each time a cookie is stored on his computer. Through your browser, you can automatically or manually delete cookies or request that certain cookies not be installed. Another option is to change your browser settings so that you receive a warning whenever a cookie is installed. For further information about setting the cookie preferences through the browser, you can refer to the instructions in the relevant section of the browser help.
Some useful links are provided as examples:
Microsoft Edge: https://support.microsoft.com/en-us/help/4027947/microsoft-edge-delete-cookies.
Mozilla Firefox: http://support.mozilla.org/en-US/kb/Enabling%20and%20disabling%20cookies.
Apple Safari: https://support.apple.com/en-us/guide/safari/sfri11471/15.1/mac/12.0.
If you would like to know more about cookies in general, you can visit the page http://www.allaboutcookies.org.
If you would like to learn more about behavioural advertising and online privacy, please visit http://www.youronlinechoices.com.
Please note that if cookies are disabled, some functions of the web pages may not function properly. Also, if you delete cookies from your browser, they will be re-installed when you visit the Site again.
Processing methods and scope of communication of personal data
This Site processes user data lawfully and correctly, adopting appropriate security measures to prevent unauthorised access, disclosure, modification or destruction of data. Personal data shall only be made accessible to those who, by reason of their duties, have been expressly authorised and instructed to process the data by the Data Controller pursuant to Article 29 of the GDPR.
Personal data may also be processed by companies we trust to carry out tasks of a technical and organisational nature on our behalf, including but not limited to: companies dealing with the management and technical maintenance of the Site or third parties with which the Data Controller collaborates for services of a commercial nature. The aforementioned companies have been appointed by the Data Controller as external personal data controllers in accordance with Article 28 of the GDPR.
The updated list of data processors is available, upon request, by sending a communication to the contacts indicated below.
Moreover, in addition to the aforementioned subjects, the personal data of the data subject may be communicated, where required or provided for by current legislation, to the competent supervisory and control authorities, tax authorities and other authorities, within their sphere of competence.
With regard to the transfer of data to non-EU countries, including countries that may not guarantee the same level of protection provided for by the GDPR, the Controller informs you that no transfers are made to third countries. Any transfers may involve anonymised data which, being anonymous, do not fall within the scope of the GDPR. The data will not be disseminated.
Rights of the data subjects
By contacting the Controller, by post at Chemi S.p.A. via dei Lavoratori, 54, 20092, Cinisello Balsamo (MI), or by e-mail at email@example.com, data subjects may exercise their rights according to Articles 15-22 of the GDPR, including the rights to access their data, erasure, rectification of inaccurate data, integration of incomplete data, and restriction of processing in the cases defined in Articles 15-22 of the GDPR, as well as of opposition to processing, for reasons related to their particular situation, in cases of legitimate interest of the Controller.
Furthermore, data subjects, in the event that the processing is based on consent or contract and is carried out by automated means, have the right to receive in a structured, commonly used and machine-readable format the data, as well as, if technically feasible, to transmit them to another data controller without hindrance.
Data subjects have the right to lodge a complaint with the competent supervisory authority in the Member State in which they usually reside or work.