The European Legislation No. 2016/679 concerning the protection of personal data (hereinafter "Privacy Regulation or EU Regulation") and the Legislative Decree 30th June 2003 No. 196 "Code regarding the protection of personal data" (hereinafter the "Code") provide for the right to the protection of personal data and ensure its processing in compliance with fundamental rights and freedoms, as well as the integrity of the person in question, with particular focus on confidentiality and security, personal identity and the right to protect personal data.
“Processing” of personal data is understood as, pursuant to article 4, paragraph 1, No. 2 of the Privacy Regulation, any operation or set of operations, performed with or without the aid of automated processes applied to Personal Data or sets of Personal Data, including collection, registration, organisation, structuring, storage, adaptation or the modification, extraction, consultation, use, communication by transmission, diffusion or any other form of provision, comparison or interconnection, limitation, cancellation or destruction.
The San Lorenzo S.p.a, located in Ameglia (SP) - Via Armezzone No. 3, 19031, VAT Number 01109160117, in its capacity as Data Controller (hereinafter the "Data Controller"), in the person of the legal representative pro tempore, pursuant to and by effect of article 13 of Privacy Legislation No. 2016/679, we hereby
The Data Controller may gather information on the Interested party when they are browsing the Site, in the following ways:
a) Browsing data
During their normal operation, the computer systems and software procedures used to operate this website gather various personal data whose transmission is implicit in use of Internet communication protocols. This data category includes: the IP addresses, the browser type used, the operating system, the domain name and the website addresses it was accessed from, information on pages visited by users within the site, the access time, the period stayed on each single page, the internal path analysis and other parameters related to the operating system and the user's computer environment. This also includes, where accepted by the visitor, the cookies (for see the specific section 5 of this report).
b) Data provided by the visitor/user
Personal data may be processed either in hardcopy or using IT tools in compliance with the provisions outlined on the protection of personal data. In particular regarding the security measures, pursuant to article 32 of the Privacy Regulation and by complying with all precautionary measures that can meet the required level of confidentiality and security.
All the data subject of this information shall be processed and stored by the Data Controller and by those appointed as Data Processors, and/or expressly authorised for processing by the Data Controller, in compliance with the principle of proportionality, for the time period strictly necessary for each purpose identified, which is deemed to be a maximum of 24 months from the last contact, always subject to the storage/archiving criteria for additional periods if foreseen by the current legislation regarding criminal, fiscal and financial matters (which envisage a maximum time of 10 years from their gathering and/or ending of the relative aim) and/or if requested by the relevant Authorities concerned. This specific processing is based on the meeting of legal obligations and on the legitimate interest of the Owner to exercise their rights (Article 6, paragraph 1, letter c) and f) of the EU Regulation).
The provision of data for the purposes referred to in Article 2, lett. a) of this information is mandatory for the proper functioning of the Site, as it required to meet the legal obligations in place, as well as by the Owner, in exercising their legitimate interests (Article 6, paragraph 1, lett. c) and f) of the EU Regulation). However, the Site user has the choice of denying consent to the installation of cookies in the manner outlined in the relevant article 5 of this report.
The provision of data for the purposes referred to in art. 2, lett. b) of this information is completely voluntary and not mandatory, and requires consent from the interested parties with explicit acceptance of this information for the processing. Failure to provide the data accompanied by the relative consent to the processing shall mean the Owner is unable to respond/manage any potential requests for support and/or contact.
The data collected shall also be processed by the Company so as to exercise its legitimate interests, pursuant to Article 6, paragraph 1, letter f) of the Privacy Regulation, to promote its services to users who have already used it, through the sending of periodic informative and/or commercial communications, without prejudice to the users' right to oppose the processing at any time, pursuant to article 18 of the Privacy Regulation. It is understood that this processing is carried out in compliance with the provisions of article 130, paragraph 4 of the Privacy Code
If the Data Subject does not provide consent and/or provides only part of the data requested or provides inaccurate and/or incomplete data, it shall not be possible for the Data Controller to carry out any processing. Therefore, no responses can be provided and the interested party shall not be contacted by the owner.
Strictly in relation to the purposes indicated above and for the consents provided the personal data collected may be communicated to the following subjects or subject categories:
Personal data may be disclosed to company employees and/or collaborators specifically authorised for processing in accordance with Article 29 of the EU Regulation.
All the processing carried out by third parties with respect to the Owner who are employed by the organisation shall be duly authorised by the Owner itself, after delegating the third party as Data Processor, pursuant to article 28 of the EU Regulation. All processing shall be carried out in compliance with the regulations on security and privacy. Personal data collected will not be released, unless this is required by a legal provision or regulation or by EU legislation.
They are not used for other purposes and are normally installed directly by the website's Controller or operator. They can be divided into browser or session cookies, which guarantee the normal browsing and use of the website (for example, allowing purchases to be made or obtaining authentication to access restricted areas); analytics cookies can be defined as technical cookies in being used directly by the site operator to collect information on the number of users and how they visit the site in aggregate form. Functional cookies instead enable the user to browse based on a set of selected criteria (for example, the language, products selected for purchase) so as to improve the quality of the service provided.
For installation of said cookies prior consent of users is not required. However, users must be granted the option of not saving them.
A list of all the cookies used by the Site is set out below this Cookie Policy.
The first group lists the so-called technical cookies, use of which, as mentioned above, does not require the user's consent.
If present on the Website, the profiling cookies are listed in the second group. For both groups, the following information is reported for each cookie type:
Sanlorenzoyacht.com | Cookies necessary to allow browsing on the Site, for the purpose of internal security and system administration |
|
It is also possible to change the browser settings to accept or reject this type of cookie. Please refer to the instructions provided by the specific browser used |
Doubleclick.net | Audience profiling | Permanent and profiling |
It is also possible to change the browser settings to accept or reject this cookie type. Please refer to the instructions provided by the specific browser used |
- Google Analytics - permanent and profiling cookies, cookies for the Google Analytics service. Detailed information: google.com/policies/privacy - configuration tools: tools.google.com/dlpage/gaoptout?hl=it;
- Facebook.com - permanent cookies, installed to include the Social buttons on the Website pages. Detailed information: facebook.com/help/cookies; for the configuration tools, the user must log-in to their Facebook account;
- Twitter.com - permanent cookies, installed to include the Social buttons on the Website pages. Detailed information: support.twitter.com/articles/20170514 - configuration tools: twitter.com/settings/security;
- Google + - Permanent cookies, installed to include the Social buttons on the Website pages. Detailed information: google.it/intl/it/policies/technologies/cookies- configuration tools: google.it/intl/it/policies/technologies/managin;
- Linkedin.com- permanent cookies, installed to include on the Website pages the Social buttons. Detailed information: linkedin.com/legal/cookie-policy- configuration tools: linkedin.com/settings;
- Maps.google.com - permanent cookies, required for adding maps to the Site. Detailed information: google.com/policies/privacy/;
- Google.com/fonts - permanent cookies, required for importing fonts in the Website. Detailed information: google.com/policies/privacy/.
The Data Controller is the San Lorenzo S.p.a. company with premises in Ameglia (SP) - Via Armezzone No. 3, 19031, VAT Number 01109160117, in the person of its pro tempore legal representative.
The contact person for the purpose of exercising the user's rights is Antonio Russo, with premises at the aforementioned Owner, and can be contacted at the following email a.russo@sanlorenzoyacht.com
The updated list of all the Data Managers appointed over time is available at the registered office of the Data Controller and shall be provided upon written request, in the forms required by law.
At any time, the Data Subject may exercise their rights, vis-à-vis the Data Controller or the Data Processor, pursuant to Chapter III (articles 12-22) of the Regulation.
In particular, the Interested parties have: