•Directive 2002/58/EC – on “personal data processing and protection of private life in the field of electronic communications”.
•Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (“General Data Protection Regulation”).
DATA CONTROLLER
While consulting this web site, data on identified or identifiable people can be processed. The Data Controller is I.C.R. Industrie Cosmetiche Riunite S.p.A., Strada Provinciale 25, Km 2,8-26900 Lodi (LO) email info@icrcosmetics.com.
DATA PROCESSING PLACE AND STORING TIMES
The processing operations connected with the web services of this site are carried out at the seat of the above-specified Data Controller only by the expressly authorized staff, or by possible third suppliers in charge of occasional maintenance operations, appointed as Data Processors pursuant to article 28 of the GDPR. The collected data will be stored – for each type of data processed – only for the time needed to carry out the specific purposes explained in the special summarizing information notices displayed in the pages of the web site and drawn up for particular services.
TYPE OF DATA PROCESSED
Navigation data
The information systems and the software procedures necessary for the functioning of this web site acquire, during their normal exercise, some personal data whose transfer is implicit in the employment of communication protocols on the Internet. This information is not gathered to be associated to identified Data Subjects, but – due to its nature – it could allow the users to be identified. To this category belong the IP addresses and the domain names of the PCs used by the users that connect to the web site, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request, the method used to submit the request to the server, the dimension of the file obtained, the numeric code indicating the status of the answer given by the server (successful, error, uest, the metho etc.) and other parameters concerning the operation system and the user’s information environment.
These data are used only to obtain anonymous statistic information on the employment of the web site and to control it works correctly and are cancelled immediately after the processing. The data, besides, could be used to assess the responsibility in case of possible cyber-crimes against the web site.
Data provided voluntarily by the user
The optional, explicit and voluntary sending of personal data by the user in the registration forms on this site entails the subsequent acquisition of the data provided by the sender, necessary for the provision of the requested service. Specific summary information will be progressively reported or displayed on the pages of the site set up for particular services on request.
COOKIES
Cookies are small text files containing a certain amount of information exchanged between a website and the user’s terminal (usually the browser). They are mainly used for the purpose of operating the websites and making them operate more efficiently, as well as for the purpose of providing information to the owners of the site itself. Cookies can be both session and persistent. Session cookies remain stored in the terminal for a short period of time and are deleted as soon as the user closes the browser. Their use is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to allow a safe and efficient exploration of the site. Persistent cookies, on the other hand, remain stored in the user’s terminal until a set deadline. Since they are not deleted directly when the browser is closed, they make it possible to remember the choices made by the user on the site and to collect information about the pages of the site visited by the user, the frequency with which the site is visited and to identify the navigation path of the users, in order to improve the experience on this site. Session or persistent cookies may be First Party or Third Party cookies, depending on whether the person who installs the cookies on the user’s terminal is the same operator of the site that the user is visiting (we will then talk about First Party cookies) or a different person (we will then talk about Third Party cookies).
Cookies used by this site
This site uses both First Party and Third Party cookies as it uses the functionality of Google Analytics services, offered by Google Inc.
Google Analytics uses “cookies” to collect and analyze information about the use of websites visited by the user. For more information on Google Analytics cookies and their use by Google Inc., please visit the website:
the information on the use of cookies by Google is available at the following address:
Google Analytics’ privacy policy at the address:
http://www.google.com/intl/en/analytics/privacyoverview.html
The table below shows, in detail, the cookies currently present on the website.
COOKIE NAME | DEFAULT EXPIRY DATE | TYPE | DESCRIPTION COOKIE |
_ga | Default maturity is set after 2 years | Third Part Analytical | This cookie is associated with Google Analytics and is used to distinguish users by assigning each user a randomly generated number as an identifier. It is used to calculate the number of visitors to the page, sessions and data in order to produce anonymous statistical analysis reports. |
– | – | – | – |
In addition to the cookies in the table, this site also uses so-called session cookies (for example, the cookie _icl_current_language, which allows the storage of the choice of language by the user), or those cookies that are not stored permanently on the user’s computer and disappear when the browser is closed. Their use is strictly limited.
Management of cookies
Normally, browsers allow you to control most cookies through your browser’s settings. Please note, however, that the total or partial disabling of so-called technical cookies may compromise the use of the site features. In any case, if the user does not wish to receive any type of cookie on his computer, neither from this site, nor from others, he can raise the level of privacy protection by changing the security settings of his browser:
Mozilla Firefox: https://support.mozilla.org/it/kb/Gestione%20dei%20cookie
Google Chrome: https://support.google.com/chrome/answer/95647?hl=it
Internet Explorer: http://windows.microsoft.com/it-it/windows-vista/block-or-allow-cookies
Safari 6/7 Mavericks: https://support.apple.com/kb/PH17191?viewlocale=it_IT&locale=it_IT
Yosemite Safari 8: https://support.apple.com/kb/PH19214?viewlocale=it_IT&locale=it_IT
Safari on iPhone, iPad, or iPod touch: https://support.apple.com/it-it/HT201265
LINKS TO OTHER WEBSITES
This site may contain links or references for accessing other sites. By clicking on the appropriate links you can, for example, share our content. We inform you that the Data Controller does not control the cookies or other monitoring technologies of these websites to which this Policy does not apply.
OPTION OF PROVIDING DATA
Apart from what has been specified concerning the surfing data, users are free to provide their personal data or not. However, the non-providing can entail the impossibility of obtaining what they asked.
PROCESSING METHODS
Personal data are processed, even through the use of automated tools. Specific safety measures are observed in order to prevent the loss of data, the illegal or wrong use of them and any unauthorized access. Data Controller, took all minimum security measures provided by the law and inspiring to the main international standards it took further security measures in order to minimize the risks concerning secrecy, availability and integrity of the personal data gathered and processed.
SHARING, COMMUNICATION AND DIFFUSION OF DATA
The data collected may be transferred or disclosed to other companies for activities strictly connected and instrumental to the operation of the service, such as the management of the computer system. The personal data provided by users who submit contact requests are used for the sole purpose of performing the service or provision requested and are disclosed to third parties only if this is necessary for this purpose. Outside of these cases, personal data will not be disclosed except for contractual or legal provisions, or unless specific consent is requested from the interested party.
In this sense, personal data could be transmitted to third parties, but only and exclusively in the event that:
there is explicit consent to share data with third parties;
there is a need to share information with third parties in order to provide the requested service;
this is necessary to comply with requests from the Judicial or Public Security Authorities.
No data deriving from the web service is disclosed.
RIGHTS OF THE INTERESTED PARTIES
The legislation for the protection of personal data expressly provides for certain rights for the subjects to whom the data refer (so-called interested party). In particular, in relation to the processing of the aforementioned data, based on articles 15 and ss. of the Regulations, we remind you of the right to obtain access to personal data concerning you; the correction of data (correction of inaccurate data or integration), the deletion of data processed in violation of the law or if one of the reasons specified in Article 17 of the GDPR exists, as well as the right to data portability. You also have the right to lodge a complaint with a supervisory authority if you believe that the rights indicated here have not been recognized.
MODIFICATIONS TO THIS PRIVACY POLICY
The Data Controller periodically checks its privacy and security policy and, if necessary, reviews it in relation to regulatory, organizational or technological changes. In the event of a change in the policies, the new version will be published on this page of the site.
QUESTIONS, CLAIMS, SUGGESTIONS AND EXERCISE OF THE RIGHTS
All those who are interested in obtaining more information, providing suggestions or sending claims or objections concerning the personal data protection policy or the way our Company processes the personal data, as well as to assert the rights foreseen by the legislation concerning the protection of personal data, can make it in writing to I.C.R. Industrie Cosmetiche Riunite S.p.A., Strada Provinciale 25, Km 2,8-26900 Lodi (LO) or send an email to info@icrcosmetics.com.
Having read the privacy information provided pursuant to art. 13 of Regulation (EU) 2016/679
Pursuant to art. 13 of Regulation (EU) 2016/679 (GDPR), we inform you that your personal data, freely given by you, will be processed by I.C.R. Industrie Cosmetiche Riunite SpA, as Data Controller, in order to guarantee your correct registration in the restricted access area, manage your purchases at every stage (including the shipment of the same to the place indicated by you) and / or allow us to contact you for needs related to the sales service. The legal basis of the processing indicated is the execution of pre-contractual measures adopted at the request of the interested party and the execution of a contract of which the interested party is a party (Article 6 paragraph 1 letter b) of the Regulations. The provision of your personal data is free, however failure to provide them will prevent us from fulfilling the purposes indicated above. If you decide to provide us with your data, we inform you that these will be processed by personnel authorized by the Data Controller and will be kept for the time necessary to fulfill the indicated purpose. In no case will your data be disclosed but we inform you that they may be disclosed to third parties who perform, on behalf of the Data Controller, specific services aimed at guaranteeing the correct pursuit of the aforementioned purposes. Finally, we remind you that, pursuant to articles 15 et seq. of the GDPR, you have the right to obtain confirmation of the existence or not of data concerning you, to obtain an indication of the origin and of the purposes and methods of processing, updating, rectification, integration of data as well as the cancellation of data processed in violation of the law or if one of the reasons specified by article 17 of the GDPR exists. To exercise these rights, you can contact the Data Controller by writing to I.C.R. Industrie Cosmetiche Riunite S.p.A., Provincial Road 25, Km 2.8 – 26900 Lodi (LO) or by sending an email to info@icrcosmetics.com. We also remind you that you have the right to lodge a complaint with the Guarantor Authority in the event that you believe that the aforementioned rights have been violated or to take the appropriate judicial offices.
